Create Azure Arc-enabled sqlmi instance using OpenShift tool
Create Azure Arc-enabled sqlmi instance using OpenShift tool
Microsoft official doc reference
Overview Steps:
https://docs.microsoft.com/en-us/azure/azure-arc/data/create-data-controller-using-kubernetes-native-tools#overview
- Create the custom resource definitions for the Arc data controller, Azure SQL managed instance, and PostgreSQL Hyperscale.
- Create a namespace in which the data controller will be created.
- Create the bootstrapper service including the replica set, service account, role, and role binding.
- Create a secret for the data controller administrator username and password.
- Create the webhook deployment job, cluster role and cluster role binding.
- Create the data controller.
- Create sqlmi instance.
Prerequisites
-
kubectloroccommand installed on your local machine
installkubectlhow to:https://kubernetes.io/docs/tasks/tools/
installochow to:https://mirror.openshift.com/pub/openshift-v4/clients/ocp/stable/
-
Setup
k8s clusteroropenshiftcluster(skipped on-premise)-
Create an Azure Red Hat OpenShift cluster with
azure-clihttps://docs.microsoft.com/en-us/azure/openshift/tutorial-create-cluster
when
openshiftcluster setup complete:-
OpenShift Console
-
API server URL
# will need for authentication az ad sp create-for-rbac --name jason-azarc --role Contributor --scopes /subscriptions/<subscription ID>/resourceGroups/<group Name> { "appId": "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx", "displayName": "jason-azarc", "password": "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx", "tenant": "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx" } # # note down the appID and password -
-
Connect to an Azure Red Hat OpenShift cluster
https://docs.microsoft.com/en-us/azure/openshift/tutorial-connect-cluster
# list console login info az aro list-credentials --name ocluster --resource-group az-arc # list azure openshift cluster info PS C:\Users\hubo> az aro list -o table Name ResourceGroup Location ProvisioningState WorkerCount URL -------- --------------- ---------- ------------------- ------------- ----------------------------------------------------------- ocluster az-arc eastus Succeeded 4 https://console-openshift-console.xxxxxxx.io/ # login in openshift [root@azk8s-oc ~]# oc login <API URL> -u kubeadmin -p <password> Login successful. You have access to 68 projects, the list has been suppressed. You can list all projects with 'oc projects' Using project "default". Welcome! See 'oc help' to get started.
-
Create a namespace in which the data controller will be created
[root@azk8s-oc ~]# oc create namespace arc
namespace/arc created
if use
openshiftcluster, need to edit namespace
[root@azk8s-oc ~]# oc edit namespace arc
namespace/arc edited
...
openshift.io/sa.scc.supplemental-groups: 1000700001/10000
openshift.io/sa.scc.uid-range: 1000700001/10000
...
Create the custom resource definitions
[root@azk8s-oc arc]# oc create -f https://raw.githubusercontent.com/microsoft/azure_arc/main/arc_data_services/deploy/yaml/custom-resource-definitions.yaml
[root@azk8s-oc arc]# oc project arc
Now using project "arc" on server "https://xxxxxxxxxxxxxxxxx".
[root@azk8s-oc arc]# oc apply -f arcdata-deployer.yaml
Create the bootstrapper service
Make sure image version is
v1.8.0_2022-06-14, latest versionv1.9.0_2022-07-12have pull issue
[root@azk8s-oc arc]# oc create -f https://raw.githubusercontent.com/microsoft/azure_arc/main/arc_data_services/deploy/yaml/bootstrapper.yaml
[root@azk8s-oc arc]# oc get pod
Create secrets for the metrics and logs dashboards
[root@azk8s-oc arc]# wget https://raw.githubusercontent.com/microsoft/azure_arc/main/arc_data_services/deploy/yaml/controller-login-secret.yaml
[root@azk8s-oc arc]# echo sql | base64 && echo Passw0rd |base64
c3FsCg==
UGFzc3cwcmQK
##
[root@azk8s-oc arc]# vim controller-login-secret.yaml
apiVersion: v1
data:
password: UGFzc3cwcmQK
username: c3FsCg==
kind: Secret
metadata:
name: metricsui-admin-secret
type: Opaque
---
apiVersion: v1
data:
password: UGFzc3cwcmQK
username: c3FsCg==
kind: Secret
metadata:
name: logsui-admin-secret
type: Opaque
linuxandPowershellthey have different encode results , that's a little confused which one should we use to sqlmi logon authentication.
Create the webhook deployment job, cluster role and cluster role binding
[root@azk8s-oc arc]# wget https://raw.githubusercontent.com/microsoft/azure_arc/main/arc_data_services/deploy/yaml/web-hook.yaml
# Edit the file and replace {{namespace}} in all places with the name of the namespace you created in the previous step
[root@azk8s-oc arc]# vim web-hook.yaml
[root@azk8s-oc arc]# oc create -f web-hook.yaml
Create the data controller
[root@azk8s-oc arc]# wget https://raw.githubusercontent.com/microsoft/azure_arc/release-arc-data/arc_data_services/deploy/yaml/data-controller.yaml
# replace some value base on your own env
[root@azk8s-oc arc]# vim data-controller.yaml
[root@azk8s-oc arc]# oc create -f data-controller.yaml
[root@azk8s-oc mnt]# oc get pod
NAME READY STATUS RESTARTS AGE
bootstrapper-pf2kn 1/1 Running 0 3h32m
control-swcxt 2/2 Running 1 (3h19m ago) 3h21m
controldb-0 2/2 Running 0 3h21m
logsdb-0 3/3 Running 0 3h20m
logsui-pq4ps 3/3 Running 0 3h19m
metricsdb-0 2/2 Running 0 3h20m
metricsui-c4bxg 2/2 Running 0 3h20m
Create Azure Arc-enabled SQL Managed Instance using Kubernetes tools
[root@azk8s-oc mnt]# wget https://raw.githubusercontent.com/microsoft/azure_arc/main/arc_data_services/deploy/yaml/sqlmi.yaml
# edit it base on your own env
[root@azk8s-oc mnt]# vim sqlmi.yaml
apiVersion: v1
data:
password: <your base64 encoded password>
username: <your base64 encoded username>
kind: Secret
metadata:
name: sql1-login-secret
type: Opaque
---
apiVersion: sql.arcdata.microsoft.com/v5
kind: SqlManagedInstance
metadata:
name: sql1
annotations:
exampleannotation1: exampleannotationvalue1
exampleannotation2: exampleannotationvalue2
labels:
examplelabel1: examplelabelvalue1
examplelabel2: examplelabelvalue2
spec:
dev: true #options: [true, false]
licenseType: LicenseIncluded #options: [LicenseIncluded, BasePrice]. BasePrice is used for Azure Hybrid Benefits.
tier: GeneralPurpose #options: [GeneralPurpose, BusinessCritical]
security:
adminLoginSecret: sql1-login-secret
scheduling:
default:
resources:
limits:
cpu: "2"
memory: 4Gi
requests:
cpu: "1"
memory: 2Gi
services:
primary:
type: LoadBalancer # base on your env
storage:
#backups:
# volumes:
# - className: azurefile # Backup volumes require a ReadWriteMany (RWX) capable storage class
# size: 5Gi
data:
volumes:
- className: default # use oc get storageclasses
size: 5Gi
datalogs:
volumes:
- className: default # oc get storageclasses
size: 5Gi
logs:
volumes:
- className: default # oc get storageclasses
size: 5Gi
[root@azk8s-oc mnt]# oc get sqlmi
NAME STATUS REPLICAS PRIMARY-ENDPOINT AGE
sql1 Ready 2 10.0.1.5,31477 3h26m
[root@azk8s-oc mnt]# sqlcmd -S 10.0.1.5,31477 -U<username> -P<Password>
本文来自博客园,作者:Jas0n0ss,转载请注明原文链接:https://www.cnblogs.com/Jas0n0ss/p/16427410.html
