You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
- Open communication to Control Plane IP (`controlplaneendpoint` parameter in `createconfig` command).
48
-
- Open communication to Appliance VM IP (`k8snodeippoolstart` parameter in `createconfig` command).
49
-
- Open communication to the reserved Appliance VM IP for upgrade (`k8snodeippoolend` parameter in `createconfig` command).
48
+
- Open communication to Appliance VM IP (`k8snodeippoolstart` parameter in `createconfig` command. May be referred to in partner products as Start Range IP, RB IP Start or VM IP 1).
49
+
- Open communication to the reserved Appliance VM IP for upgrade (`k8snodeippoolend` parameter in `createconfig` command. (May be referred to as End Range IP, RB IP End or VM IP 2).
50
50
- Internal and external DNS resolution. The DNS server must resolve internal names, such as the vCenter endpoint for vSphere or cloud agent service endpoint for Azure Stack HCI. The DNS server must also be able to resolve external addresses that are [required URLs](network-requirements.md#outbound-connectivity) for deployment.
51
51
- If using a proxy, the proxy server configuration on the management machine must allow the machine to have internet access and to connect to [required URLs](network-requirements.md#outbound-connectivity) needed for deployment, such as the URL to download OS images.
52
52
53
53
## Appliance VM requirements
54
54
55
-
Arc resource bridge consists of an appliance VM that is deployed on-premises. The appliance VM has visibility into the on-premises infrastructure and can tag on-premises resources (guest management) for availability in Azure Resource Manager (ARM). The appliance VM is assigned an IP address from the `k8snodeippoolstart` parameter in the `createconfig` command.
55
+
Arc resource bridge consists of an appliance VM that is deployed on-premises. The appliance VM has visibility into the on-premises infrastructure and can tag on-premises resources (guest management) for projection into Azure Resource Manager (ARM). The appliance VM is assigned an IP address from the `k8snodeippoolstart` parameter in the `createconfig` command (May be referred to in partner products as Start Range IP, RB IP Start or VM IP 1).
56
56
57
57
The appliance VM has the following requirements:
58
58
@@ -66,7 +66,7 @@ The appliance VM has the following requirements:
66
66
67
67
## Reserved appliance VM IP requirements
68
68
69
-
Arc resource bridge reserves an additional IP address to be used for the appliance VM upgrade. During upgrade, a new appliance VM is created with the reserved appliance VM IP. Once the new appliance VM is created, the old appliance VM is deleted, and its IP address becomes reserved for a future upgrade. The reserved appliance VM IP is assigned an IP address from the `k8snodeippoolend` parameter in the `az arcappliance createconfig` command.
69
+
Arc resource bridge reserves an additional IP address to be used for the appliance VM upgrade. During upgrade, a new appliance VM is created with the reserved appliance VM IP. Once the new appliance VM is created, the old appliance VM is deleted, and its IP address becomes reserved for a future upgrade. The reserved appliance VM IP is assigned an IP address from the `k8snodeippoolend` parameter in the `az arcappliance createconfig` command (May be referred to as End Range IP, RB IP End or VM IP 2).
70
70
71
71
The reserved appliance VM IP has the following requirements:
72
72
@@ -89,7 +89,7 @@ The control plane IP has the following requirements:
89
89
90
90
## User account and credentials
91
91
92
-
Arc resource bridge may require a separate user account with the necessary roles to view and manage resources in the on-premises infrastructure (such as Arc-enabled VMware vSphere or Arc-enabled SCVMM). If so, during creation of the configuration files, the `username` and `password` parameters will be required. The account credentials are then stored in a configuration file locally within the appliance VM.
92
+
Arc resource bridge may require a separate user account with the necessary roles to view and manage resources in the on-premises infrastructure (ex: Arc-enabled VMware vSphere). If so, during creation of the configuration files, the `username` and `password` parameters will be required. The account credentials are then stored in a configuration file locally within the appliance VM.
93
93
94
94
If the user account is set to periodically change passwords, [the credentials must be immediately updated on the resource bridge](maintenance.md#update-credentials-in-the-appliance-vm). This user account may also be set with a lockout policy to protect the on-premises infrastructure, in case the credentials aren't updated and the resource bridge makes multiple attempts to use expired credentials to access the on-premises control center.
95
95
@@ -103,7 +103,7 @@ There are several different types of configuration files, based on the on-premis
103
103
104
104
### Appliance configuration files
105
105
106
-
Three configuration files are created when the `createconfig` command completes (or the equivalent commands used by Azure Stack HCI and AKS hybrid): resource.yaml, appliance.yaml and infra.yaml.
106
+
Three configuration files are created when the `createconfig` command completes (or the equivalent commands used by Azure Stack HCI and AKS hybrid): <resourcename>-resource.yaml, <resourcename>-appliance.yaml and <resourcename>-infra.yaml.
107
107
108
108
By default, these files are generated in the current CLI directory when `createconfig` completes. These files should be saved in a secure location on the management machine, because they're required for maintaining the appliance VM. Because the configuration files reference each other, all three files must be stored in the same location. If the files are moved from their original location at deployment, open the files to check that the reference paths to the configuration files are accurate.
109
109
@@ -126,3 +126,5 @@ When deploying Arc resource bridge with AKS on Azure Stack HCI (AKS Hybrid), the
126
126
- Understand [network requirements for Azure Arc resource bridge (preview)](network-requirements.md).
127
127
- Review the [Azure Arc resource bridge (preview) overview](overview.md) to understand more about features and benefits.
128
128
- Learn about [security configuration and considerations for Azure Arc resource bridge (preview)](security-overview.md).
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments