Merge pull request #220803 from JnHs/jh-arck8-refdec722

denrea · web-flow · commit 39425f4b1b57 · 2022-12-07T13:21:36.000-08:00
refresh and cleanup
diff --git a/articles/azure-arc/kubernetes/conceptual-agent-overview.md b/articles/azure-arc/kubernetes/conceptual-agent-overview.md
@@ -1,50 +1,49 @@
 ---
 title: "Azure Arc-enabled Kubernetes agent overview"
-ms.date: 08/03/2021
+ms.date: 12/07/2022
 ms.topic: conceptual
-description: "This article provides an overview of the Azure Arc agents deployed on the Kubernetes clusters when connecting them to Azure Arc."
+description: "Learn about the Azure Arc agents deployed on the Kubernetes clusters when connecting them to Azure Arc."
 ---
 
 # Azure Arc-enabled Kubernetes agent overview
 
-[Kubernetes](https://kubernetes.io/) can deploy containerized workloads consistently on hybrid and multi-cloud environments. [Azure Arc-enabled Kubernetes](overview.md) provides a centralized, consistent control plane to manage policy, governance, and security across Kubernetes clusters on these heterogenous environments.
+[Azure Arc-enabled Kubernetes](overview.md) provides a centralized, consistent control plane to manage policy, governance, and security across Kubernetes clusters in different environments.
 
-This article provides an overview of the Azure Arc agents deployed on the Kubernetes clusters when [connecting them to Azure Arc](quickstart-connect-cluster.md).
+Azure Arc agents are deployed on Kubernetes clusters when you [connect them to Azure Arc](quickstart-connect-cluster.md),  This article provides an overview of these agents.
 
 ## Deploy agents to your cluster
 
-Most on-premises datacenters enforce strict network rules that prevent inbound communication on the network boundary firewall. Azure Arc-enabled Kubernetes works with these restrictions by not requiring inbound ports on the firewall. Azure Arc agents only require outbound communication to a [set list of network endpoints](quickstart-connect-cluster.md#meet-network-requirements).
+Most on-premises datacenters enforce strict network rules that prevent inbound communication on the network boundary firewall. Azure Arc-enabled Kubernetes works with these restrictions by not requiring inbound ports on the firewall. Azure Arc agents require outbound communication to a [set list of network endpoints](quickstart-connect-cluster.md#meet-network-requirements).
 
 :::image type="content" source="media/architectural-overview.png" alt-text="Diagram showing an architectural overview of the Azure Arc-enabled Kubernetes agents." lightbox="media/architectural-overview.png":::
 
 The following high-level steps are involved in [connecting a Kubernetes cluster to Azure Arc](quickstart-connect-cluster.md):
 
-1. Create a Kubernetes cluster on your choice of infrastructure (VMware vSphere, Amazon Web Services, Google Cloud Platform, etc.). 
-
-    > [!NOTE]
-    > Azure Arc-enabled Kubernetes currently only supports attaching existing Kubernetes clusters to Azure Arc. You must create the cluster before you connect it to Azure Arc.
+1. Create a Kubernetes cluster on your choice of infrastructure (VMware vSphere, Amazon Web Services, Google Cloud Platform, etc.). The cluster must already exist before you connect it to Azure Arc.
 
 1. Start the Azure Arc registration for your cluster.
-    * The agent Helm chart is deployed on the cluster.
-    * The cluster nodes initiate an outbound communication to the [Microsoft Container Registry](https://github.com/microsoft/containerregistry), pulling the images needed to create the following agents in the `azure-arc` namespace:
-
-        | Agent | Description |
-        | ----- | ----------- |
-        | `deployment.apps/clusteridentityoperator` | Azure Arc-enabled Kubernetes currently supports only [system assigned identities](../../active-directory/managed-identities-azure-resources/overview.md). `clusteridentityoperator` initiates the first outbound communication. This first communication fetches the Managed Service Identity (MSI) certificate used by other agents for communication with Azure. |
-        | `deployment.apps/config-agent` | Watches the connected cluster for source control configuration resources applied on the cluster. Updates the compliance state. |
-        | `deployment.apps/controller-manager` | An operator of operators that orchestrates interactions between Azure Arc components. |
-        | `deployment.apps/metrics-agent` | Collects metrics of other Arc agents to verify optimal performance. |
-        | `deployment.apps/cluster-metadata-operator` | Gathers cluster metadata, including cluster version, node count, and Azure Arc agent version. |
-        | `deployment.apps/resource-sync-agent` | Syncs the above-mentioned cluster metadata to Azure. |
-        | `deployment.apps/flux-logs-agent` | Collects logs from the flux operators deployed as a part of source control configuration. |
-        | `deployment.apps/extension-manager` | Installs and manages lifecycle of extension helm charts |
-        | `deployment.apps/kube-aad-proxy` | Used for authentication of requests sent to the cluster using Cluster Connect. |
-        | `deployment.apps/clusterconnect-agent` | Reverse proxy agent that enables the Cluster Connect feature to provide access to `apiserver` of the cluster. Optional component deployed only if the [Cluster Connect](conceptual-cluster-connect.md) feature is enabled.  |
-        | `deployment.apps/guard` | Authentication and authorization webhook server used for Azure Active Directory (Azure AD) RBAC. Optional component deployed only if [Azure RBAC](conceptual-azure-rbac.md) is enabled on the cluster.   |
+
+   * The agent Helm chart is deployed on the cluster.
+   * The cluster nodes initiate an outbound communication to the [Microsoft Container Registry](https://github.com/microsoft/containerregistry), pulling the images needed to create the following agents in the `azure-arc` namespace:
+
+     | Agent | Description |
+     | ----- | ----------- |
+     | `deployment.apps/clusteridentityoperator` | Azure Arc-enabled Kubernetes currently supports only [system assigned identities](../../active-directory/managed-identities-azure-resources/overview.md). `clusteridentityoperator` initiates the first outbound communication. This first communication fetches the Managed Service Identity (MSI) certificate used by other agents for communication with Azure. |
+     | `deployment.apps/config-agent` | Watches the connected cluster for source control configuration resources applied on the cluster. Updates the compliance state. |
+     | `deployment.apps/controller-manager` | An operator of operators that orchestrates interactions between Azure Arc components. |
+     | `deployment.apps/metrics-agent` | Collects metrics of other Arc agents to verify optimal performance. |
+     | `deployment.apps/cluster-metadata-operator` | Gathers cluster metadata, including cluster version, node count, and Azure Arc agent version. |
+     | `deployment.apps/resource-sync-agent` | Syncs the above-mentioned cluster metadata to Azure. |
+     | `deployment.apps/flux-logs-agent` | Collects logs from the Flux operators deployed as a part of [source control configuration](conceptual-gitops-flux2.md). |
+     | `deployment.apps/extension-manager` | Installs and manages lifecycle of extension Helm charts. |
+     | `deployment.apps/kube-aad-proxy` | Used for authentication of requests sent to the cluster using cluster connect. |
+     | `deployment.apps/clusterconnect-agent` | Reverse proxy agent that enables the cluster connect feature to provide access to `apiserver` of the cluster. Optional component deployed only if the [cluster connect](conceptual-cluster-connect.md) feature is enabled.  |
+     | `deployment.apps/guard` | Authentication and authorization webhook server used for Azure Active Directory (Azure AD) RBAC. Optional component deployed only if [Azure RBAC](conceptual-azure-rbac.md) is enabled on the cluster.   |
 
 1. Once all the Azure Arc-enabled Kubernetes agent pods are in `Running` state, verify that your cluster is connected to Azure Arc. You should see:
-    * An Azure Arc-enabled Kubernetes resource in [Azure Resource Manager](../../azure-resource-manager/management/overview.md). Azure tracks this resource as a projection of the customer-managed Kubernetes cluster, not the actual Kubernetes cluster itself.
-    * Cluster metadata (such as Kubernetes version, agent version, and number of nodes) appearing on the Azure Arc-enabled Kubernetes resource as metadata.
+
+   * An Azure Arc-enabled Kubernetes resource in [Azure Resource Manager](../../azure-resource-manager/management/overview.md). Azure tracks this resource as a projection of the customer-managed Kubernetes cluster, not the actual Kubernetes cluster itself.
+   * Cluster metadata (such as Kubernetes version, agent version, and number of nodes) appearing on the Azure Arc-enabled Kubernetes resource as metadata.
 
 ## Next steps
 
diff --git a/articles/azure-arc/kubernetes/validation-program.md b/articles/azure-arc/kubernetes/validation-program.md
@@ -1,17 +1,17 @@
 ---
 title: "Azure Arc-enabled Kubernetes validation"
-ms.date: 03/03/2021
+ms.date: 12/07/2022
 ms.topic: how-to
 description: "Describes Arc validation program for Kubernetes distributions"
 ---
 
 # Azure Arc-enabled Kubernetes validation
 
-Azure Arc-enabled Kubernetes works with any Cloud Native Computing Foundation (CNCF) certified Kubernetes clusters. The Azure Arc team has also worked with key industry Kubernetes offering providers to validate Azure Arc-enabled Kubernetes with their Kubernetes distributions. Future major and minor versions of Kubernetes distributions released by these providers will be validated for compatibility with Azure Arc-enabled Kubernetes.
+Azure Arc-enabled Kubernetes works with any Kubernetes clusters that are certified by the Cloud Native Computing Foundation (CNCF). The Azure Arc team has also worked with key industry Kubernetes offering providers to validate Azure Arc-enabled Kubernetes with their Kubernetes distributions. Future major and minor versions of Kubernetes distributions released by these providers will be validated for compatibility with Azure Arc-enabled Kubernetes.
 
 ## Validated distributions
 
-The following Microsoft provided Kubernetes distributions and infrastructure providers have successfully passed the conformance tests for Azure Arc-enabled Kubernetes:
+The following Microsoft-provided Kubernetes distributions and infrastructure providers have successfully passed the conformance tests for Azure Arc-enabled Kubernetes:
 
 | Distribution and infrastructure provider | Version |
 | ---------------------------------------- | ------- |
@@ -44,17 +44,16 @@ The Azure Arc team also ran the conformance tests and validated Azure Arc-enable
 
 The conformance tests run as part of the Azure Arc-enabled Kubernetes validation cover the following scenarios:
 
-1. Connect Kubernetes clusters to Azure Arc: 
+1. Connect Kubernetes clusters to Azure Arc:
     * Deploy Azure Arc-enabled Kubernetes agent Helm chart on cluster.
     * Agents send cluster metadata to Azure.
 
-2. Configuration: 
+2. Configuration:
     * Create configuration on top of Azure Arc-enabled Kubernetes resource.
     * [Flux](https://docs.fluxcd.io/), needed for setting up GitOps workflow, is deployed on the cluster.
     * Flux pulls manifests and Helm charts from demo Git repo and deploys to cluster.
 
 ## Next steps
 
-Learn how to connect your existing Kubernetes cluster to Azure Arc.
-> [!div class="nextstepaction"]
-> [Connect an existing Kubernetes cluster to Azure Arc](./quickstart-connect-cluster.md)
+* [Learn how to connect an existing Kubernetes cluster to Azure Arc](./quickstart-connect-cluster.md)
+* Learn about the [Azure Arc agents](conceptual-agent-overview.md) deployed on Kubernetes clusters when connecting them to Azure Arc.
