6.2. Creating a provider connection for Microsoft Azure
You need a provider connection to use Red Hat Advanced Cluster Management for Kubernetes console to create and manage a Red Hat OpenShift Container Platform cluster on Microsoft Azure.
This procedure is a prerequisite for creating a cluster with Red Hat Advanced Cluster Management for Kubernetes.
6.2.1. Prerequisites
You must have the following prerequisites before creating a provider connection:
- A deployed Red Hat Advanced Cluster Management for Kubernetes hub cluster
- Internet access for your Red Hat Advanced Cluster Management for Kubernetes hub cluster so that it can create the Kubernetes cluster on Azure
- Azure login credentials, which include your Base Domain Resource Group and Azure Service Principal JSON. See azure.microsoft.com.
- Account permissions that allow installing clusters on Azure. See How to configure Cloud Services and Configuring an Azure account for more information.
6.2.2. Creating a provider connection by using the console
To create a provider connection from the Red Hat Advanced Cluster Management for Kubernetes console, complete the following steps:
- From the navigation menu, navigate to Automate infrastructure > Clusters.
On the Clusters page, select the Provider connections tab.
Existing provider connections are displayed.
- Select Add a connection.
- Select Microsoft Azure as your provider.
- Add a name for your provider connection.
Select a namespace for your provider connection from the list.
提示You can create a namespace specifically to host your provider connections, both for convenience and added security.
- You can optionally add a Base DNS domain for your provider connection. If you add the base DNS domain to the provider connection, it is automatically populated in the correct field when you create a cluster with this provider connection.
- Add your Base Domain Resource Group Name for your Azure account. This entry is the resource name that you created with your Azure account. You can find your Base Domain Resource Group Name by selecting Home > DNS Zones in the Azure interface. Your Base Domain Resource Group name is in the Resource Group column of the entry that contains the Base DNS domain that applies to your account.
Add your Client ID. This value is generated as the
appIdproperty when you create a service principal with the following command:az ad sp create-for-rbac --role Contributor --name <service_principal>
Replace service_principal with the name of your service principal.
Add your Client Secret. This value is generated as the
passwordproperty when you create a service principal with the following command:az ad sp create-for-rbac --role Contributor --name <service_principal>
Replace service_principal with the name of your service principal.
Add your Subscription ID. This value is the
idproperty in the output of the following command:az account show
Add your Tenant ID. This value is the
tenantIdproperty in the output of the following command:az account show
- Enter your Red Hat OpenShift Pull Secret. You can download your pull secret from Pull secret.
- Add your SSH Private Key and SSH Public Key to use to connect to the cluster. You can use an existing key pair, or create a new pair using a key generation program. See Generating an SSH private key and adding it to the agent for more information about how to generate a key.
- Click Create. When you create the provider connection, it is added to the list of provider connections.
You can create a cluster that uses this provider connection by completing the steps in Creating a cluster on Microsoft Azure.
6.2.3. Deleting your provider connection
When you are no longer managing a cluster that is using a provider connection, delete the provider connection to protect the information in the provider connection.
- From the navigation menu, navigate to Automate infrastructure > Clusters.
- Select Provider connections.
- Select the options menu for the provider connection that you want to delete.
- Select Delete connection.
