This Quick-Start template simplifies your Infrastructure as Code journey with Azure edge products throughout their lifecycle. It includes a few Terraform modules (AKS Arc, Azure Stack HCI, Arc Site Manager and Arc extensions), a scalable hands-on repository structure and the automation tools to streamline the setup of the infrastructure configurations for production scaling.
By using this template, you can get all of the followings inside a single PR under your GitHub account
-
a scalable and extendible repository structure following the DevOps best practice
Repo Structure
│ ├───.azure │ │ backendTemplate.tf // Backend storage account config file │ │ │ └───hooks │ pre-commit // Git hook to generate deployment workflow and set backend │ ├───.github │ └───workflows │ site-cd-workflow.yml // Set up CD pipeline | terraform-plan.yml │ ├───dev // The first stage to deploy │ └───sample │ backend.tf │ main.tf // Main configuration file for the site │ provider.tf │ terraform.tf │ variables.tf │ ├───modules │ ├───base // Base module of all sites │ │ main.tf │ │ variables.tf │ │ │ ├───hci // Module to manage HCI clusters │ │ │ ├───hci-extensions // Module to manage HCI extensions │ ├───hci-provisioners // Module to connect servers to Arc │ │───aks-arc // Module to manage AKS Arc clusters │ └───hci-vm // Module to manage HCI VMs │ └───site-manager // Module to manage site-manager │ ├───prod // prod stage sites are deployed after qa stage │ │ │ └───prod1 │ └───qa // qa stage sites are deployed after dev stage │ └───qa1Base module contains the global variables across all sites. Each stage and each site folder contains the local variables specific to the stage/site. Local settings can override the global settings.
-
organized variables with the prefilled values to boost your initial setup
Variables Structure
Variable Type Description Example Where to set value Override Priority Global Variables The values of the global variables typically are consistent across the whole fleet but specific for one product domainFqdnin HCISet in modules/base/<product>.hci.global.tf. Add default value for variables.low Site specific variables The values of these variables are unique in each site siteIdThese variables must be set in the site main.tffile under each site folderhigh Pass through variables The values of these variables are inherited from GitHub secrets subscriptionIdmodules/base/<product>.hci.misc.tfReference variables These variables are shared by 2 or more products locationIts definition can be found in variables.<product>.*.tfif its link isref/<product>/<variable_name> -
a customizable CD pipeline with the automations.
CI/CD Pipeline
Yes if you want to:
- Create an initial site containing AKS Arc, HCI23H2 along with Arc extensions using Terraform
- If you have manually created a PoC site and wish to convert the PoC site settings into Terraform code.
- Replicate the settings from the above site multiple times
- Integrate the above settings with CI/CD pipeline using GitHub Actions
- Automate all of the above scenarios
No if you want to:
- Create single AKS Arc or HCI instance using Terraform. Although this template contains the Terraform module for each of them, we are still waiting to officially publish them into public Terraform registry. You are welcome to use this repository for testing and exploration. For production usage, please contact arcIaCSupport@microsoft.com for each module's status.
- Use any other IaC tool such as Bicep or ARM to provision your Azure resources. We are working on our roadmap. Please stay tuned for future releases.
Supported Azure edge resource types
This repository implements AD preparation and Arc connection. Follow the instructions below to set up the rest of the components.
Steps: Getting-Started
Overview: Ready to deploy your first with AKS Arc on HCI23H2 along with Arc extensions? It's the right place for you. This scenario provides a quick and efficient way to establish a new site with edge resources with a predefined infrastructure template.
Steps: Create your first site
Expected outcome:
- A PR containing Terraform code set up for AKS Arc, HCI, Arc extensions under a single resource group
- A PR containing a pre-defined CI/CD pipeline with the 3 stages: Dev, QA, Prod
- Provisioning action will happen in your side (merge the PR to
main)
Overview: Automatically configure scaling settings based on the parameters defined in the previous steps.
Steps:
- This feature is currently in Private Preview. Before you begin: Sign up Private Preview
- Confirm and update the global configurations: If you would like to update the pre-filled values of the global configurations, follow the guidance Edit-Global-Parameters to make the change.
- Get the scaling code based on the quick-start template:
- Create a new branch from
mainby runninggit checkout -b <yourFeatureBranch> - Run
./az-edge-site-scale generate -c ./.azure/scale.csv -s ./dev/<yourSiteName>to get the scaling csv file. You can find a spread sheet under./.azure. The spread sheet contains all the entries which need customized inputs from you per site.
- Create a new branch from
- Scale with the automations
Expected outcome:
- A PR with the Terraform code for # of sites, each containing 1 HCI cluster, 1 AKS Arc cluster and the optional monitoring extension and Arc site manager extension.
- A PR containing a pre-defined CI/CD pipeline with the 3 stages: Dev, QA, Prod
- Provisioning action will happen in your side (merge the PR to
main)
Overview: If you already have a PoC Site modeled within a resource group. This scenario will codify the existing resources and translate them into Terraform modules, then using automations to replicate the custom templates for multiple sites.
Steps:
-
This feature is currently in Private Preview. Before you begin: Sign up Private Preview
[!NOTE] Resources under the resource group must belong to one single site. Code generation doesn't support resource groups containing multiple HCI clusters for now.
-
Convert the PoC site into IaC code:
- Create a branch from
mainbranch by runninggit checkout -b <yourFeatureBranch> - Add a new file
.azure/export.json. Do not usebaseas the name of the module. It may carry the original contents in your exported module.
[ { "resourceGroup": "/subscriptions/<your-subscription-id>/resourceGroups/<yourSampleResourceGroup>", "baseModulePath": "./modules/<name-of-the-module>", "groupPath": "./dev/<yourSiteName>" } ]- Commit and push
.azure/export.json:git commit -m <commit message>andgit push -u origin <yourFeatureBranch>. A GitHub workflow will be triggered automatically. Create a pull request tomain.You can find your workflow run as following.
- After workflow execution, check the generated code.
- If the workflow runs successfully, the generated code is identical to Azure resources. Please merge the branch ASAP. If there are changes happened after export, the changes will be reverted.
- If the workflow run fails, you can check
./dev/<yourSiteName>/export-diffto see what are the changes.
- Create a branch from
Expected outcome:
- A GitHub repository with Terraform code for # of sites, each containing custom settings for HCI clusters, AKS Arc clusters
- A pre-defined CI/CD pipeline containing 3 stages: Dev, QA, Prod
- Provisioning action will happen in your side (merge the PR to
main)
Any change merged into main branch will trigger the update pipeline. If the change fails in early stages, the deployment will be blocked so that this failure will not affect the production sites.
Following tutorials help you to turn on opt-in features:
- Customize Stages
- Update global parameters
- Disable Telemetry
- Untrack Resources from The Repository
- View your CI/CD pipeline running status
- TroubleShoot
Open issue or contact arcIaCSupport@microsoft.com for any issue or support
This project is licensed under the MIT License. See the LICENSE file for more information.
'Preview Terms'. This repository (the "Preview") is subject to the Supplemental Terms of Use for Microsoft Azure Previews. Unless otherwise noted, Customer should not use the Preview to process Personal Data or other Data that is subject to legal or regulatory compliance requirements.
'Confidentiality'.The Preview and any associated materials or documentation are confidential information and subject to obligations in your Non-Disclosure Agreement with Microsoft.
This repository is provided "as-is" without any warranties or support. Use at your own risk. Always test in a non-production environment before deploying to production.
This project welcomes contributions and suggestions. Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us the rights to use your contribution. For details, visit Microsoft opensource.
When you submit a pull request, a CLA bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., status check, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.
This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.
This project may contain trademarks or logos for projects, products, or services. Authorized use of Microsoft trademarks or logos is subject to and must follow Microsoft's Trademark & Brand Guidelines. Use of Microsoft trademarks or logos in modified versions of this project must not cause confusion or imply Microsoft sponsorship. Any use of third-party trademarks or logos are subject to those third-party's policies.
