Page History
| Add_workflow_for_techpubs | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
| Table of Contents | ||
|---|---|---|
|
The following steps describe the procedures the procedures to Instantiate the Azure Standalone SBC or the HA SBC with HFE using IAC:. The Azure CLI version used for this document is 2.24.
- Access and Share SBC Image in Azure.
- Retrieve the latest IAC tarball from the Ribbon Support Portal.
- Create an Ubuntu 18.04 LTS instance in Azure.
- Run az login and sign in as a user with the role 'owner' for the subscription.
Create If you haven't created one already, create a Service Principal that contains 'owner' permissions for the subscription.
Example:
Code Block az ad sp create-for-rbac -n rbbn-iac --role="owner" --scopes="/subscriptions/XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXa511"
Info - The Ensure the Service Principle created as 'owner' has sufficient privileges to create and assign roles.
- Store the relevant credentials and re-use to prevent continuous creation of Service Principalsoutputs "appId" and "password" from the commands to use as credentials for login in as the Service Principal.
- Verify the The output includes credentials that you must protect.
Copy the IAC tarball to the Azure instance.
Code Block scp -i <pem_file> <iac_tarball> <username>@<ip_azure_instance>:/home/<username>Make a directory to extract the IAC tarball:
Code Block mkdir iac_package
Copy the IAC tarball to the created directory created above and change it to that directory:
Code Block cp iac_sustaining_*.tar.gz iac_package/ cd iac_package
Extract the IAC tarball using tar.
Code Block tar xvfz iac_sustaining_*.tar.gz
To set up the IAC environment, follow the instructions available in
./iac_package/README.md- Follow the Azure instructions in ./iac_package/help/REAMDE.azure.md file to create either:
- Standalone SBC
- To setup Standalone, follow the instructions in ./iac_package/orchestration/azure/sbc_stand_alone/README.md
- HA SBC with HFE
- To setup SBC HA with HFE 2.1, follow the instructions in ./iac_package/orchestration/azure/sbc_hfe2.1/README.md
- Create a HFE Storage Account to store the HFE_AZ.sh script
- Standalone SBC
- For either Standalone or HA with HFE, update the "terraform.tfvars" to provide inputs for deployment. Update the following:
- resource_group_names
- resource_group_locations
- hfe_script_url
- remote_ssh_ip
- address_prefix_pkt0Src
- address_prefix_pkt1Src
image_name
Code Block image_name = "/subscriptions/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxa31/resourceGroups/mage_RBBN-SBC-RG/providers/Microsoft.Compute/images/rbbn-sbc-v10.01.11.img
Export the following environment variables, stored from the Service Principal creation:
Code Block export ARM_SUBSCRIPTION_ID="<subscription_id>" export ARM_TENANT_ID="<tenant_id>" export ARM_CLIENT_ID="<client_id><appId>" export ARM_CLIENT_SECRET="<client_secret><password>"
- Use the Terraform commands mentioned below:
Initialize Terraform:
Code Block terraform init
Run Terraform plan command, to preview the changes and ensure that "terraform.tfvars" are configured correctly before applying:
Code Block terraform plan
Apply the resource configuration:
Code Block terraform apply
Info Ensure to create resources according to deployment needs.
Info For Standalone SBC, make a note of the following field:
- SBC public IP: sbc_public_ip
Info For the HA SBC with HFE setup, make a note of the following fields:
- Active SBC public IP: active_sbc_public_ip
- Standby SBC public IP: standby_sbc_public_ip
To destroy all SBC resources from Microsoft Azure:
Code Block terraform destroy
Overview
Content Tools