new requirements page

Author: JnHs

articles/azure-arc/kubernetes/network-requirements.md

@@ -27,5 +27,6 @@ For a complete list of network requirements for Azure Arc features and Azure Arc
 
 ## Next steps
 
+- Learn about other [requirements for Arc-enabled Kubernetes](system-requirements.md).
 - Use our [quickstart](quickstart-connect-cluster.md) to connect your cluster.
 - Review [frequently asked questions](faq.md) about Arc-enabled Kubernetes.

articles/azure-arc/kubernetes/quickstart-connect-cluster.md

@@ -23,13 +23,7 @@ In addition to the prerequisites below, be sure to meet all [network requirement
 
 * A basic understanding of [Kubernetes core concepts](../../aks/concepts-clusters-workloads.md).
 
-* An identity (user or service principal) which can be used to [log in to Azure CLI](/cli/azure/authenticate-azure-cli) and connect your cluster to Azure Arc.
-
-  > [!IMPORTANT]
-  >
-  > * The identity must have 'Read' and 'Write' permissions on the Azure Arc-enabled Kubernetes resource type (`Microsoft.Kubernetes/connectedClusters`).
-  > * If connecting the cluster to an existing resource group (rather than a new one created by this identity), the identity must have 'Read' permission for that resource group.
-  > * The [Kubernetes Cluster - Azure Arc Onboarding built-in role](../../role-based-access-control/built-in-roles.md#kubernetes-cluster---azure-arc-onboarding) can be used for this identity. This role is useful for at-scale onboarding, as it has only the granular permissions required to connect clusters to Azure Arc, and doesn't have permission to update, delete, or modify any other clusters or other Azure resources.
+* An [identity (user or service principal)](system-requirements.md#azure-ad-identity-requirements) which can be used to [log in to Azure CLI](/cli/azure/authenticate-azure-cli) and connect your cluster to Azure Arc.
 
 * [Install or upgrade Azure CLI](/cli/azure/install-azure-cli) to the latest version.
 
@@ -45,9 +39,9 @@ In addition to the prerequisites below, be sure to meet all [network requirement
   * Self-managed Kubernetes cluster using [Cluster API](https://cluster-api.sigs.k8s.io/user/quick-start.html)
 
     >[!NOTE]
-    > The cluster needs to have at least one node of operating system and architecture type `linux/amd64`. Clusters with only `linux/arm64` nodes aren't yet supported.
+    > The cluster needs to have at least one node of operating system and architecture type `linux/amd64` and/or `linux/arm64`.
 
-* At least 850 MB free for the Arc agents that will be deployed on the cluster, and capacity to use approximately 7% of a single CPU. For a multi-node Kubernetes cluster environment,  pods can get scheduled on different nodes.
+* At least 850 MB free for the Arc agents that will be deployed on the cluster, and capacity to use approximately 7% of a single CPU.
 
 * A [kubeconfig file](https://kubernetes.io/docs/concepts/configuration/organize-cluster-access-kubeconfig/) and context pointing to your cluster.
 
@@ -67,23 +61,17 @@ In addition to the prerequisites below, be sure to meet all [network requirement
     Install-Module -Name Az.ConnectedKubernetes
     ```
 
-* An identity (user or service principal) which can be used to [log in to Azure PowerShell](/powershell/azure/authenticate-azureps)  and connect your cluster to Azure Arc.
-
-  > [!IMPORTANT]
-  >
-  > * The identity must have 'Read' and 'Write' permissions on the Azure Arc-enabled Kubernetes resource type (`Microsoft.Kubernetes/connectedClusters`).
-  > * If connecting the cluster to an existing resource group (rather than a new one created by this identity), the identity must have 'Read' permission for that resource group.
-  > * The [Kubernetes Cluster - Azure Arc Onboarding built-in role](../../role-based-access-control/built-in-roles.md#kubernetes-cluster---azure-arc-onboarding) is useful for at-scale onboarding as it has the granular permissions required to only connect clusters to Azure Arc. This role doesn't have the permissions to update, delete, or modify any other clusters or other Azure resources.
+* An [identity (user or service principal)](system-requirements.md#azure-ad-identity-requirements) which can be used to [log in to Azure PowerShell](/powershell/azure/authenticate-azureps)  and connect your cluster to Azure Arc.
 
 * An up-and-running Kubernetes cluster. If you don't have one, you can create a cluster using one of these options:
   * [Kubernetes in Docker (KIND)](https://kind.sigs.k8s.io/)
   * Create a Kubernetes cluster using Docker for [Mac](https://docs.docker.com/docker-for-mac/#kubernetes) or [Windows](https://docs.docker.com/docker-for-windows/#kubernetes)
   * Self-managed Kubernetes cluster using [Cluster API](https://cluster-api.sigs.k8s.io/user/quick-start.html)
 
     >[!NOTE]
-    > The cluster needs to have at least one node of operating system and architecture type `linux/amd64`. Clusters with only `linux/arm64` nodes aren't yet supported.
+    > The cluster needs to have at least one node of operating system and architecture type `linux/amd64` and/or `linux/arm64`.
 
-* At least 850 MB free for the Arc agents that will be deployed on the cluster, and capacity to use approximately 7% of a single CPU. For a multi-node Kubernetes cluster environment,  pods can get scheduled on different nodes.
+* At least 850 MB free for the Arc agents that will be deployed on the cluster, and capacity to use approximately 7% of a single CPU.
 
 * A [kubeconfig file](https://kubernetes.io/docs/concepts/configuration/organize-cluster-access-kubeconfig/) and context pointing to your cluster.
 

articles/azure-arc/kubernetes/system-requirements.md

@@ -0,0 +1,111 @@
+---
+title: "Azure Arc-enabled Kubernetes system requirements"
+ms.date: 03/07/2023
+ms.topic: conceptual
+description: Learn about the system requirements to connect Kubernetes clusters to Azure Arc.
+---
+
+# Azure Arc-enabled Kubernetes system requirements
+
+This article describes the basic requirements for [connecting a Kubernetes cluster to Azure Arc](quickstart-connect-cluster.md), along with system requirement information related to various Arc-enabled Kubernetes scenarios.
+
+## Cluster requirements
+
+Azure Arc-enabled Kubernetes works with any Cloud Native Computing Foundation (CNCF) certified Kubernetes clusters. This includes clusters running on other public cloud providers (such as GCP or AWS) and clusters running on your on-premises data center (such as VMware vSphere or Azure Stack HCI).
+
+You must also have a [kubeconfig file](https://kubernetes.io/docs/concepts/configuration/organize-cluster-access-kubeconfig/) and context pointing to your cluster.
+
+The cluster must have at least one node with operating system and architecture type `linux/amd64` and/or `linux/arm64`. Eligible ARM64 scenarios can be enabled using [Azure CLI](/cli/azure/install-azure-cli) installed on AMD64 machines.
+
+Currently, no Azure Arc-enabled Kubernetes [cluster extensions](conceptual-extensions.md) are supported on ARM64-based clusters. To install and use cluster extensions, the cluster needs to have at least one node of operating system and architecture type `linux/amd64`.
+
+The following table outlines architecture requirements for Arc-enabled Kubernetes scenarios:
+
+| Scenario | AMD64 |ARM64 |
+|-----------------|----------|----------|
+|[Azure CLI installation](/cli/azure/install-azure-cli) |X | |
+|Onboarding |X |X |
+|[Cluster connect](cluster-connect.md) |X |X |
+|[Viewing Kubernetes resources in the Azure portal](kubernetes-resource-view.md) |X |X |
+|[Cluster extensions](conceptual-extensions.md) |X | |
+
+## Compute and memory requirements
+
+The Arc agents deployed on the cluster require:
+
+- At least 850 MB of free memory
+- Capacity to use approximately 7% of a single CPU
+
+For a multi-node Kubernetes cluster environment, pods can get scheduled on different nodes.
+
+## Management tools
+
+Connecting a cluster to Azure Arc requires [Helm 3](https://helm.sh/docs/intro/install), version 3.7.0 or earlier.
+
+You'll also need to use either Azure CLI or Azure PowerShell.
+
+For Azure CLI:
+
+- [Install or upgrade Azure CLI](/cli/azure/install-azure-cli) to the latest version.
+- Install the latest version of **connectedk8s** Azure CLI extension:
+
+  ```azurecli
+  az extension add --name connectedk8s
+  ```
+
+For Azure PowerShell:
+
+- Install [Azure PowerShell version 6.6.0 or later](/powershell/azure/install-az-ps).
+- Install the **Az.ConnectedKubernetes** PowerShell module:
+
+    ```azurepowershell-interactive
+    Install-Module -Name Az.ConnectedKubernetes
+    ```
+
+## Azure AD identity requirements
+
+To connect your cluster to Azure Arc, you must have an Azure AD identity (user or service principal) which can be used to log in to [Azure CLI](/cli/azure/authenticate-azure-cli) or [Azure PowerShell](/powershell/azure/authenticate-azureps) and connect your cluster to Azure Arc. 
+
+This identity must have 'Read' and 'Write' permissions on the Azure Arc-enabled Kubernetes resource type (`Microsoft.Kubernetes/connectedClusters`). If connecting the cluster to an existing resource group (rather than a new one created by this identity), the identity must have 'Read' permission for that resource group.
+
+The [Kubernetes Cluster - Azure Arc Onboarding built-in role](../../role-based-access-control/built-in-roles.md#kubernetes-cluster---azure-arc-onboarding) can be used for this identity. This role is useful for at-scale onboarding, as it has only the granular permissions required to connect clusters to Azure Arc, and doesn't have permission to update, delete, or modify any other clusters or other Azure resources.
+
+## Azure resource providers
+
+To use Azure Arc-enabled Kubernetes, the following [Azure resource providers](../../azure-resource-manager/management/resource-providers-and-types.md) must be registered in your subscription:
+
+* **Microsoft.Kubernetes**
+* **Microsoft.KubernetesConfiguration**
+* **Microsoft.ExtendedLocation**
+
+You can register the resource providers using the following commands:
+
+Azure PowerShell:
+
+```azurepowershell-interactive
+Connect-AzAccount
+Set-AzContext -SubscriptionId [subscription you want to onboard]
+Register-AzResourceProvider -ProviderNamespace Microsoft.Kubernetes
+Register-AzResourceProvider -ProviderNamespace Microsoft.KubernetesConfiguration
+Register-AzResourceProvider -ProviderNamespace Microsoft.ExtendedLocation
+```
+
+Azure CLI:
+
+```azurecli-interactive
+az account set --subscription "{Your Subscription Name}"
+az provider register --namespace Microsoft.Kubernetes
+az provider register --namespace Microsoft.KubernetesConfiguration
+az provider register --namespace Microsoft.ExtendedLocation
+```
+
+You can also register the resource providers in the [Azure portal](../../azure-resource-manager/management/resource-providers-and-types.md#azure-portal).
+
+## Network requirements
+
+Be sure that you have connectivity to the [required endpoints for Azure Arc-enabled Kubernetes](includes/network-requirements.md).
+
+## Next steps
+
+- Review the [network requirements for using Arc-enabled Kubernetes](system-requirements.md).
+- Use our [quickstart](quickstart-connect-cluster.md) to connect your cluster.

articles/azure-arc/kubernetes/toc.yml

@@ -31,6 +31,8 @@
   items:
   - name: Agent overview
     href: conceptual-agent-overview.md
+  - name: System requirements
+    href: system-requirements.md
   - name: Network requirements
     href: network-requirements.md
   - name: Connectivity modes