[OSDOCS-19523]: Setting up a management cluster for HCP on Azure#112346
[OSDOCS-19523]: Setting up a management cluster for HCP on Azure#112346lahinson wants to merge 1 commit into
Conversation
openshift-ci
Bot
added
the
size/S
|
🤖 Fri Jun 05 17:45:12 - Prow CI generated the docs preview: |
lahinson
force-pushed
the
osdocs-19523-hcp-azure-mgmt-cluster
branch
from
60d1b62 to
f6205ee
Compare
openshift-ci
Bot
added
size/M
lahinson
force-pushed
the
osdocs-19523-hcp-azure-mgmt-cluster
branch
from
f6205ee to
c1f7f63
Compare
openshift-ci
Bot
added
size/L
lahinson
force-pushed
the
osdocs-19523-hcp-azure-mgmt-cluster
branch
from
c1f7f63 to
c48e073
Compare
| .. Create an array of name servers as shown in the following example: | ||
| + | ||
| [source,terminal] | ||
| ---- |
There was a problem hiding this comment.
@bryan-cox @Nirshal I thought the code on lines 76 - 79 looked a little unusual, so I searched the openshift-docs repo, and I don't see any other examples where we define an array like that in the official docs. Is there another way to create an array?
There was a problem hiding this comment.
I don't know... I was following the upstream doc on that, it seemed a reasonable approach at the time. I think we need to wait for Bryan on that.
| .. Add NS records to the parent zone as shown in the following example: | ||
| + | ||
| [source,terminal] | ||
| ---- |
There was a problem hiding this comment.
Similar to my earlier comment, the code on lines 86 - 92 looks unconventional for the official docs. Suggestions for alternatives are appreciated.
lahinson
force-pushed
the
osdocs-19523-hcp-azure-mgmt-cluster
branch
2 times, most recently
from
4e236a3 to
b6e8ec7
Compare
lahinson
force-pushed
the
osdocs-19523-hcp-azure-mgmt-cluster
branch
from
b6e8ec7 to
0ffa8aa
Compare
lahinson
force-pushed
the
osdocs-19523-hcp-azure-mgmt-cluster
branch
2 times, most recently
from
b593de4 to
9a3c574
Compare
| DNS_RECORD_NAME="<my_subdomain>" | ||
| RESOURCE_GROUP_NAME="<my_resource_group>" | ||
| DNS_ZONE_NAME="<my_subdomain.my_parent.dns.zone.com>" | ||
| ---- |
There was a problem hiding this comment.
The user should be made aware that if --external-dns-domain matches {cluster-name}.{base-domain}, the CPO creates a private DNS zone that shadows the cluster domain, causing *.apps DNS resolution to fail (console and ingress become unavailable). See hypershift#8480 for details.
@bryan-cox do you think it's worth adding a caveat here about DNS zone naming to help users avoid this condition? Or is this better covered in the private clusters doc?
There was a problem hiding this comment.
I plan to add the private clusters procedures in a separate PR, so that caveat will be covered there. If you'd like me to to mention it here, too, let me know.
| NAME READY STATUS RESTARTS AGE | ||
| external-dns-xxxxx-xxxxx 1/1 Running 0 1m | ||
| operator-xxxxx-xxxxx 1/1 Running 0 1m | ||
| ---- |
There was a problem hiding this comment.
The procedure creates the K8s secret but there doesn't seem to be a step that configures the HyperShift Operator to actually use external DNS. When I set up external DNS via MCE for ACM-30209 testing, I had to apply a ConfigMap to pass the install flags to the operator:
apiVersion: v1
kind: ConfigMap
metadata:
name: hypershift-operator-install-flags
namespace: local-cluster
data:
installFlagsToAdd: "--external-dns-provider=azure --external-dns-credentials <secret> --external-dns-domain-filter <dns-zone>"
installFlagsToRemove: ""Without this, I suspect the HO wouldn't pick up the external DNS configuration and the external-dns pod from the verification step wouldn't be running. @bryan-cox can you confirm?
There was a problem hiding this comment.
I'll wait for Bryan's confirmation, but I have no problem adding those details if they are needed.
|
The upstream HyperShift docs (hypershift#8566) treat external DNS as optional. It might help to clarify upfront whether this entire procedure can be skipped if the user doesn't need external DNS, or if it's considered the recommended path for self-managed Azure. |
Good point, @Nirshal. For the downstream docs, I think the assumption is that users are working in production environments, so we want to suggest that external DNS is the recommended path. @bryan-cox keep me honest if that's incorrect :) |
lahinson
force-pushed
the
osdocs-19523-hcp-azure-mgmt-cluster
branch
from
9a3c574 to
0ff2c44
Compare
|
@lahinson: all tests passed! Full PR test history. Your PR dashboard. DetailsInstructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here. |
|
The This is because your PR targets the If the update in your PR does NOT apply to version 5.0 onward, please re-target this PR to go directly into the appropriate |
7 participants
Version(s): 4.22+
Issue: https://redhat.atlassian.net/browse/OSDOCS-19523
Link to docs preview: https://112346--ocpdocs-pr.netlify.app/openshift-enterprise/latest/hosted_control_planes/hcp-deploy/hcp-deploy-azure.html#hcp-azure-mgmt-cluster_hcp-deploy-azure
QE review:
Additional information: