Skip to content

Latest commit

 

History

History
85 lines (57 loc) · 6.07 KB

README.md

File metadata and controls

85 lines (57 loc) · 6.07 KB

azure-iot-operations

Overview

This repo contains the deployment definition of Azure IoT Operations (AIO) and allows for AIO to be deployed to an Arc-enabled K8s cluster. This repository does not encourage pull requests, as the repo is meant for publicly sharing the releases of AIO and not shared development of AIO.

Please see the Azure IoT Operations Documentation.

Forking the Repo

If you want to fork this repo and try deployment of AIO through GitOps, there are some additional steps you will need to take to set up the fork.

  1. Set the AZURE_CREDENTIALS repository secret.

    1. Create a Service Principal resource for the repository to use when performing GitHub actions.

      # If you haven't upgraded your Azure CLI lately, run the following.
      az upgrade
      
      # Create a Service Principal to perform operations on the provided subscription.
      az ad sp create-for-rbac --name $SP_NAME --role owner --scopes /subscriptions/$SUBSCRIPTION_ID --json-auth
    2. Copy the JSON output from the Service Principal creation command and paste into a repository secret named AZURE_CREDENTIALS in your fork. Repository secrets can be found under Settings > Secrets and variables > Actions. To learn more, see creating secrets for a repository.

  2. To be able to use secrets in AIO, follow the AIO Out-of-Band Pre-Install Steps to create an AKV and a Service Principal with access to AKV.

  3. Create and setup K8s Arc-enabled cluster.

    1. If you don't have an existing K8s cluster, try minikube.

    2. Arc-enable your K8s cluster using the az connectedk8s connect command.

      az connectedk8s connect -n $CLUSTER_NAME -l $LOCATION -g $RESOURCE_GROUP --subscription $SUBSCRIPTION_ID
    3. Use the az connectedk8s enable-features command to enable custom location support on your cluster.

      az connectedk8s enable-features -n $CLUSTER_NAME -g $RESOURCE_GROUP --features cluster-connect custom-locations
    4. Run cluster setup script from tools/setup-cluster/setup-cluster.sh.

      1. In setup-cluster.sh, update the variables at the top of the script to have the values for your Azure Subscription, Resources, and Cluster.
  4. Deploy Azure IoT Operations.

    1. Create parameter file where environment configuration is specified for your AIO deployment. For an example, see environments/example.parameters.json.

      Parameter Requirement Type Description
      clusterName [Required] string The Arc-enabled cluster resource in Azure.
      clusterLocation [Optional] string If the cluster resource's location is different than its resource group's location, the cluster location will need to be specified. Otherwise, this parameter will default to the location of the resource group.
      location [Optional] string If the resource group's location is not a supported AIO region, this parameter can be used to override the location of the AIO resources.
      dataProcessorSecrets [Optional]1 object Add the name of the SecretProviderClass and k8s AKV SP secret that were created from the setup-cluster.sh. This should be something like aio-default-spc and aio-akv-sp, respectively.

      Example:
      {
      "secretProviderClassName": "aio-default-spc",
      "servicePrincipalSecretRef": "aio-akv-sp"
      }
      mqSecrets [Optional]1 object Add the name of the SecretProviderClass and k8s AKV SP secret that were created from the setup-cluster.sh. This should be something like aio-default-spc and aio-akv-sp, respectively.

      Example:
      {
      "secretProviderClassName": "aio-default-spc",
      "servicePrincipalSecretRef": "aio-akv-sp"
      }
      opcUaBrokerSecrets [Optional]1 object Add the name of the k8s AKV SP secret that was created from the setup-cluster.sh. This should be something like aio-akv-sp and kind should be csi.

      Example:
      {
      "kind": "csi",
      "csiServicePrincipalSecretRef": "aio-akv-sp"
      }

      1 This param is only necessary if you are using different values than the defaults specified in setup-cluster.sh.

    2. On the forked repo, select Actions and select I understand my workflows, go ahead and enable them.

    3. Run the Deploy Azure IoT Operations GitHub Action. You'll need to provide both the subscription and resource group where your Arc-enabled cluster resource is and the path to the environment parameters file you created previously.

Trademarks

This project may contain trademarks or logos for projects, products, or services. Authorized use of Microsoft trademarks or logos is subject to and must follow Microsoft’s Trademark & Brand Guidelines. Use of Microsoft trademarks or logos in modified versions of this project must not cause confusion or imply Microsoft sponsorship. Any use of third-party trademarks or logos are subject to those third-party’s policies.

Terms of Use

Please see Supplemental Terms of Use for Microsoft Azure Previews.

Contributing

Please see Contributing.

Reporting Security Issues

Please see Security.