![]() ![]() The name of the Flux configuration is cluster-config.The cluster type is Azure Arc ( -t connectedClusters), but this example also works with AKS ( -t managedClusters) and AKS hybrid clusters provisioned from Azure ( -t provisionedClusters).The name of the Azure Arc cluster is flux-demo-arc. ![]() The resource group that contains the cluster is flux-demo-rg.The following example uses the az k8s-configuration create command to apply a Flux configuration to a cluster, using the following values and settings: For a demonstration, use the public gitops-flux2-kustomize-helm-mt repository. Use the k8s-configuration Azure CLI extension or the Azure portal to enable GitOps in an AKS or Arc-enabled Kubernetes cluster. Registration of the following Azure resource providers: To see a list of all installed Azure CLI extensions and their versions, use the following command: az extension list -o tableĮxperimental ExtensionType Name Path Preview Versionįalse whl connectedk8s C:\Users\somename\.azure\cliextensions\connectedk8s False 1.2.7įalse whl k8s-configuration C:\Users\somename\.azure\cliextensions\k8s-configuration False 1.5.0įalse whl k8s-extension C:\Users\somename\.azure\cliextensions\k8s-extension False 1.1.0 To update these packages to the latest versions: az extension update -n k8s-configuration Install the latest k8s-configuration and k8s-extension CLI extension packages: az extension add -n k8s-configuration ![]() Required to pull container images for Flux controllers. Required to fetch and update Azure Resource Manager tokens. Depends on (the supported regions mentioned earlier). Data plane endpoint for the agent to push status and fetch configuration information. Required for the agent to communicate with the Kubernetes Configuration service. The agents also require access to the following outbound URLs: Endpoint (DNS) The GitOps agents require outbound (egress) TCP to the repo source on either port 22 (SSH) or port 443 (HTTPS) to function. We generally recommend that you use the most recent version of the extension. The most recent version of the Flux v2 extension and the two previous versions (N-2) are supported. The GitOps service is adding new supported regions on a regular cadence. GitOps is currently supported in a subset of the regions that AKS supports. GitOps is currently supported in all regions that Azure Arc-enabled Kubernetes supports. Microsoft.KubernetesConfiguration RegistrationRequired Registered Namespace RegistrationPolicy RegistrationState To monitor the registration process, use the following command: az provider show -n Microsoft.KubernetesConfiguration -o table Registration is an asynchronous process and should finish within 10 minutes. Registration of the following Azure resource providers: az provider register -namespace Microsoft.KubernetesĪz provider register -namespace Microsoft.ContainerServiceĪz provider register -namespace Microsoft.KubernetesConfiguration Install kubectl locally using the az aks install-cli command: az aks install-cli kubectl is already installed if you use Azure Cloud Shell. The Kubernetes command-line client, kubectl. Install the Azure CLI or use the following commands to update to the latest version: az version Microsoft.KubernetesConfiguration/fluxConfigurationsĪzure CLI version 2.15 or later.Microsoft.KubernetesConfiguration/extensions.Read and write permissions on these resource types: If using AKS hybrid clusters provisioned from Azure (preview), read and write permissions on the Microsoft.ContainerService/provisionedClusters resource type). ![]() Read and write permissions on the Microsoft.ContainerService/managedClusters resource type. For more information, see Use a managed identity in AKS. For already created SPN-based clusters that need to be converted to MSI, run az aks update -g $RESOURCE_GROUP -n $CLUSTER_NAME -enable-managed-identity”`. Ensure that the AKS cluster is created with MSI (not SPN), because the microsoft.flux extension won't work with SPN-based AKS clusters.įor new AKS clusters created with az aks create, the cluster will be MSI-based by default. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |