https://pulumi.com logo
Title
q

quaint-match-50796

04/13/2023, 11:12 AM
Anyone is using the ConnectedCluster from Azure Native? I'm having issues with it. What key are you using at agentPublicKeyCertificate? Do it need anything else to be installed?
l

limited-rainbow-51650

04/14/2023, 10:54 AM
Hello @quaint-match-50796, I saw your support email coming in, but I'll answer here so more people can see the answer. When looking at the Azure documentation, this command seems to perform all-in one installation:
az connectedk8s connect --name AzureArcTest1 --resource-group AzureArcTest
My assumption for now that it contains the following steps: • Creates a keypair • Installs Helm locally • Deploys the Helm chart for Arc Agent, feeding it the private key from the keypair • Creates the ConnectedCluster resource on Azure, feeding it the public key from the keypair I have been searching the docs today for the Arch Agent helm chart, but couldn't find it. If you can find it, then here is in short the Pulumi resources you can use to mimic that
az
CLI command: • tls.LocallySignedCert (or another certificate source) • kubernetes.helm.v3.Release with the private key from the certificate in the input values (which doesn't need the Helm CLI) • azure-native.kubernetes.ConnectedCluster with the certificate as the
agentPublicKeyCertificate
With the private part of the certificate in your cluster, and the public key on the Azure side, the agent arc pod(s) should be able to set up the connection.
q

quaint-match-50796

04/14/2023, 11:08 AM
Thank you @limited-rainbow-51650! MS tries to hide the helm repo and charts inside their az cli extension. In the end, it maps to: "mcr.microsoft.com/azurearck8s/batch1/stable/azure-arc-k8sagents:1.10.6"