MicrosoftDocs
diff --git a/‎.openpublishing.redirection.json
Lines changed: 5 additions & 0 deletions b/‎.openpublishing.redirection.json
Lines changed: 5 additions & 0 deletions
diff --git a/‎articles/azure-monitor/insights/container-insights-azure-redhat-setup.md
Lines changed: 9 additions & 5 deletions b/‎articles/azure-monitor/insights/container-insights-azure-redhat-setup.md
Lines changed: 9 additions & 5 deletions
diff --git a/‎articles/azure-monitor/insights/container-insights-azure-redhat4-setup.md
Lines changed: 133 additions & 0 deletions b/‎articles/azure-monitor/insights/container-insights-azure-redhat4-setup.md
Lines changed: 133 additions & 0 deletions
diff --git a/‎articles/azure-monitor/insights/container-insights-hybrid-setup.md
Lines changed: 47 additions & 16 deletions b/‎articles/azure-monitor/insights/container-insights-hybrid-setup.md
Lines changed: 47 additions & 16 deletions
diff --git a/‎articles/azure-monitor/insights/container-insights-onboard.md
Lines changed: 5 additions & 6 deletions b/‎articles/azure-monitor/insights/container-insights-onboard.md
Lines changed: 5 additions & 6 deletions
@@ -17351,6 +17351,11 @@
       "redirect_url": "/azure/monitoring/monitoring-container-insights-overview",
       "redirect_document_id": false
     },
+    {
+      "source_path": "articles/azure-monitor/insights/container-insights-optout-openshift.md",
+      "redirect_url": "/azure/azure-monitor/insights/container-insights-optout-openshift-v3",
+      "redirect_document_id": false
+    },
     {
       "source_path": "articles/mobile-engagement/mobile-engagement-send-personalized-notifications.md",
       "redirect_url": "/azure/azure-resource-manager/management/azure-subscription-service-limits#mobile-engagement-limits",
 
@@ -1,13 +1,13 @@
 ---
-title: Configure Azure Red Hat OpenShift clusters with Azure Monitor for containers | Microsoft Docs
-description: This article describes how to configure monitoring of a Kubernetes cluster with Azure Monitor hosted on Azure Red Hat OpenShift.
+title: Configure Azure Red Hat OpenShift v3.x with Azure Monitor for containers | Microsoft Docs
+description: This article describes how to configure monitoring of a Kubernetes cluster with Azure Monitor hosted on Azure Red Hat OpenShift version 3 and higher.
 ms.topic: conceptual
-ms.date: 02/12/2020
+ms.date: 04/02/2020
 ---
 
-# Configure Azure Red Hat OpenShift clusters with Azure Monitor for containers
+# Configure Azure Red Hat OpenShift v3 with Azure Monitor for containers
 
-Azure Monitor for containers provides rich monitoring experience for the Azure Kubernetes Service (AKS) and AKS Engine clusters. This article describes how to enable monitoring of Kubernetes clusters hosted on [Azure Red Hat OpenShift](../../openshift/intro-openshift.md) to achieve a similar monitoring experience.
+Azure Monitor for containers provides rich monitoring experience for the Azure Kubernetes Service (AKS) and AKS Engine clusters. This article describes how to enable monitoring of Kubernetes clusters hosted on [Azure Red Hat OpenShift](../../openshift/intro-openshift.md) version 3 and latest supported version of version 3, to achieve a similar monitoring experience.
 
 >[!NOTE]
 >Support for Azure Red Hat OpenShift is a feature in public preview at this time.
@@ -200,4 +200,8 @@ The Log Analytics workspace has to be created before you enable monitoring using
 
 - With monitoring enabled to collect health and resource utilization of your RedHat OpenShift cluster and workloads running on them, learn [how to use](container-insights-analyze.md) Azure Monitor for containers.
 
+- By default, the containerized agent collects the stdout/ stderr container logs of all the containers running in all the namespaces except kube-system. To configure container log collection specific to particular namespace or namespaces, review [Container Insights agent configuration](container-insights-agent-config.md) to configure desired data collection settings to your ConfigMap configurations file.
+
+- To scrape and analyze Prometheus metrics from your cluster, review [Configure Prometheus metrics scraping](container-insights-prometheus-integration.md)
+
 - To learn how to stop monitoring your cluster with Azure Monitor for containers, see [How to Stop Monitoring Your Azure Red Hat OpenShift cluster](container-insights-optout-openshift.md).
@@ -0,0 +1,133 @@
+---
+title: Configure Azure Red Hat OpenShift v4.x with Azure Monitor for containers | Microsoft Docs
+description: This article describes how to configure monitoring of a Kubernetes cluster with Azure Monitor hosted on Azure Red Hat OpenShift version 4 and higher.
+ms.topic: conceptual
+ms.date: 04/22/2020
+---
+
+# Configure Azure Red Hat OpenShift v4.x with Azure Monitor for containers
+
+Azure Monitor for containers provides rich monitoring experience for the Azure Kubernetes Service (AKS) and AKS Engine clusters. This article describes how to enable monitoring of Kubernetes clusters hosted on [Azure Red Hat OpenShift](../../openshift/intro-openshift.md) version 4.x to achieve a similar monitoring experience.
+
+>[!NOTE]
+>Support for Azure Red Hat OpenShift is a feature in public preview at this time.
+>
+
+Azure Monitor for containers can be enabled for one or more existing deployments of Azure Red Hat OpenShift v4.x using the following supported methods:
+
+- For an existing cluster using the provided bash script and running in the [Azure CLI](https://docs.microsoft.com/cli/azure/openshift?view=azure-cli-latest#az-openshift-create).
+
+## Supported and unsupported features
+
+Azure Monitor for containers supports monitoring Azure Red Hat OpenShift v4.x as described in the [Overview](container-insights-overview.md) article, except for the following features:
+
+- Live Data (preview)
+- [Collect metrics](container-insights-update-metrics.md) from cluster nodes and pods and storing them in the Azure Monitor metrics database
+
+## Prerequisites
+
+- Azure CLI version 2.0.72 or greater
+
+- [Helm 3](https://helm.sh/docs/intro/install/) CLI tool
+
+- [Bash version 4](https://www.gnu.org/software/bash/)
+
+- [Kubectl](https://kubernetes.io/docs/tasks/tools/install-kubectl/) command-line tool
+
+- To enable and access the features in Azure Monitor for containers, at a minimum you need to be a member of the Azure *Contributor* role in the Azure subscription, and a member of the [*Log Analytics Contributor*](../platform/manage-access.md#manage-access-using-azure-permissions) role of the Log Analytics workspace configured with Azure Monitor for containers.
+
+- To view the monitoring data, you are a member of the [*Log Analytics reader*](../platform/manage-access.md#manage-access-using-azure-permissions) role permission with the Log Analytics workspace configured with Azure Monitor for containers.
+
+## Enable for an existing cluster
+
+Perform the following steps to enable monitoring of an Azure Red Hat OpenShift version 4 and higher cluster deployed in Azure using the provided bash script.
+
+1. Sign into Azure
+
+    ```azurecli
+    az login
+    ```
+
+2. Download and save the script to a local folder that configures your cluster with the monitoring add-on using the following commands:
+
+    `curl -LO https://raw.githubusercontent.com/microsoft/OMS-docker/ci_feature/docs/aroV4/onboarding_azuremonitor_for_containers.sh.`
+
+3. To identify the **kube-context** of your cluster, after successful `oc login` on to your cluster, run the command `kubectl config current-context` and copy the value.
+
+### Integrate with an existing workspace
+
+The following step enables monitoring of your cluster using the bash script you downloaded earlier. To integrate with an existing Log Analytics workspace, perform the following steps to first identify the full resource ID of your Log Analytics workspace required for the `workspaceResourceId` parameter, and then run the command to enable the monitoring add-on against the specified workspace. If you don't have a workspace to specify, you can skip to step 5 and let the script create a new workspace for you.
+
+1. List all the subscriptions that you have access to using the following command:
+
+    ```azurecli
+    az account list --all -o table
+    ```
+
+    The output will resemble the following:
+
+    ```azurecli
+    Name                                  CloudName    SubscriptionId                        State    IsDefault
+    ------------------------------------  -----------  ------------------------------------  -------  -----------
+    Microsoft Azure                       AzureCloud   68627f8c-91fO-4905-z48q-b032a81f8vy0  Enabled  True
+    ```
+
+    Copy the value for **SubscriptionId**.
+
+2. Switch to the subscription hosting the Log Analytics workspace using the following command:
+
+    ```azurecli
+    az account set -s <subscriptionId of the workspace>
+    ```
+
+3. The following example displays the list of workspaces in your subscriptions in the default JSON format.
+
+    ```
+    az resource list --resource-type Microsoft.OperationalInsights/workspaces -o json
+    ```
+
+    In the output, find the workspace name, and then copy the full resource ID of that Log Analytics workspace under the field **ID**.
+
+4. Run the following command to enable monitoring, replacing the value for the `workspaceResourceId` parameter: 
+
+    `bash onboarding_azuremonitor_for_containers.sh <kube-context> <azureAroV4ResourceId> <LogAnayticsWorkspaceResourceId>`
+
+    Example:
+
+    `bash onboarding_azuremonitor_for_containers.sh MyK8sTestCluster /subscriptions/57ac26cf-a9f0-4908-b300-9a4e9a0fb205/resourceGroups/test-aro-v4-rg/providers/Microsoft.RedHatOpenShift/OpenShiftClusters/test-aro-v4  /subscriptions/57ac26cf-a9f0-4908-b300-9a4e9a0fb205/resourcegroups/test-la-workspace-rg/providers/microsoft.operationalinsights/workspaces/test-la-workspace`
+
+After you've enabled monitoring, it might take about 15 minutes before you can view health metrics for the cluster.
+
+### Integrate with default workspace
+
+The following step enables monitoring of your Azure Red Hat OpenShift v4.x cluster using the bash script you downloaded. In this example, you are not required to per-create or specify an existing workspace. This command simplifies the process for you by creating a default workspace in the default resource group of the cluster subscription if one does not already exist in the region. The default workspace created resembles the format of *DefaultWorkspace-\<GUID>-\<Region>*.  
+
+    `bash onboarding_azuremonitor_for_containers.sh <kube-context> <azureAroV4ResourceId>`
+
+    For example:
+
+    `bash onboarding_azuremonitor_for_containers.sh MyK8sTestCluster /subscriptions/57ac26cf-a9f0-4908-b300-9a4e9a0fb205/resourceGroups/test-aro-v4-rg/providers/Microsoft.RedHatOpenShift/OpenShiftClusters/test-aro-v4`
+
+After you've enabled monitoring, it might take about 15 minutes before you can view health metrics for the cluster.
+
+### From the Azure portal
+
+The multi-cluster view in Azure Monitor for containers highlights your Azure Red Hat OpenShift clusters that don't have monitoring enabled under the **Non-monitored clusters** tab. The **Enable** option next to your cluster does not initiate onboarding of monitoring from the portal. You are redirected to this article to manually enable monitoring following the steps earlier in this article.
+
+1. Sign in to the [Azure portal](https://portal.azure.com).
+
+2. On the Azure portal menu or from the Home page, select **Azure Monitor**. Under the **Insights** section, select **Containers**.
+
+3. On the **Monitor - containers** page, select **Non-monitored clusters**.
+
+4. From the list of non-monitored clusters, find the cluster in the list and click **Enable**. You can identify the results in the list by looking for the value **ARO** under the column **CLUSTER TYPE**. After you click **Enable**, you are redirected to this article.
+
+## Next steps
+
+- With monitoring enabled to collect health and resource utilization of your RedHat OpenShift version 4.x cluster and workloads running on them, learn [how to use](container-insights-analyze.md) Azure Monitor for containers.
+
+- By default, the containerized agent collects the stdout/ stderr container logs of all the containers running in all the namespaces except kube-system. To configure container log collection specific to particular namespace or namespaces, review [Container Insights agent configuration](container-insights-agent-config.md) to configure desired data collection settings to your ConfigMap configurations file.
+
+- To scrape and analyze Prometheus metrics from your cluster, review [Configure Prometheus metrics scraping](container-insights-prometheus-integration.md)
+
+- To learn how to stop monitoring your cluster with Azure Monitor for containers, see [How to Stop Monitoring Your Azure Red Hat OpenShift cluster](container-insights-optout-openshift.md).
@@ -2,13 +2,33 @@
 title: Configure Hybrid Kubernetes clusters with Azure Monitor for containers | Microsoft Docs
 description: This article describes how you can configure Azure Monitor for containers to monitor Kubernetes clusters hosted on Azure Stack or other environment.
 ms.topic: conceptual
-ms.date: 01/24/2020
+ms.date: 04/22/2020
 ---
 
 # Configure hybrid Kubernetes clusters with Azure Monitor for containers
 
 Azure Monitor for containers provides rich monitoring experience for the Azure Kubernetes Service (AKS) and [AKS Engine on Azure](https://github.com/Azure/aks-engine), which is a self-managed Kubernetes cluster hosted on Azure. This article describes how to enable monitoring of Kubernetes clusters hosted outside of Azure and achieve a similar monitoring experience.
 
+## Supported configurations
+
+The following is officially supported with Azure Monitor for containers.
+
+* Environments: 
+
+    * Kubernetes on-premises
+    
+    * AKS Engine on Azure and Azure Stack. For more information, see [AKS Engine on Azure Stack](https://docs.microsoft.com/azure-stack/user/azure-stack-kubernetes-aks-engine-overview?view=azs-1908)
+    
+    * [OpenShift](https://docs.openshift.com/container-platform/4.3/welcome/index.html) version 4 and higher, on-premises or other cloud environments.
+
+* Versions of Kubernetes and support policy are the same as versions of [AKS supported](../../aks/supported-kubernetes-versions.md).
+
+* Container Runtime: Docker, Moby, and CRI compatible runtimes such CRI-O and ContainerD.
+
+* Linux OS release for master and worked nodes: Ubuntu (18.04 LTS and 16.04 LTS), and Red Hat Enterprise Linux CoreOS 43.81.
+
+* Access control supported: Kubernetes RBAC and non-RBAC
+
 ## Prerequisites
 
 Before you start, make sure that you have the following:
@@ -28,10 +48,9 @@ Before you start, make sure that you have the following:
 * The following proxy and firewall configuration information is required for the containerized version of the Log Analytics agent for Linux to communicate with Azure Monitor:
 
     |Agent Resource|Ports |
-    |------|---------|   
-    |*.ods.opinsights.azure.com |Port 443 |  
-    |*.oms.opinsights.azure.com |Port 443 |  
-    |*.blob.core.windows.net |Port 443 |  
+    |------|---------|
+    |*.ods.opinsights.azure.com |Port 443 |
+    |*.oms.opinsights.azure.com |Port 443 |
     |*.dc.services.visualstudio.com |Port 443 |
 
 * The containerized agent requires Kubelet's `cAdvisor secure port: 10250` or `unsecure port :10255` to be opened on all nodes in the cluster to collect performance metrics. We recommend you configure `secure port: 10250` on the Kubelet's cAdvisor if it's not configured already.
@@ -41,16 +60,6 @@ Before you start, make sure that you have the following:
 >[!IMPORTANT]
 >The minimum agent version supported for monitoring hybrid Kubernetes clusters is ciprod10182019 or later.
 
-## Supported configurations
-
-The following is officially supported with Azure Monitor for containers.
-
-- Environments: Kubernetes on-premises, AKS Engine on Azure and Azure Stack. For more information, see [AKS Engine on Azure Stack](https://docs.microsoft.com/azure-stack/user/azure-stack-kubernetes-aks-engine-overview?view=azs-1908).
-- Versions of Kubernetes and support policy are the same as versions of [AKS supported](../../aks/supported-kubernetes-versions.md).
-- Container Runtime: Docker and Moby
-- Linux OS release for master and worked nodes: Ubuntu (18.04 LTS and 16.04 LTS)
-- Access control supported: Kubernetes RBAC and non-RBAC
-
 ## Enable monitoring
 
 Enabling Azure Monitor for containers for the hybrid Kubernetes cluster consists of performing the following steps in order.
@@ -237,7 +246,7 @@ To first identify the full resource ID of your Log Analytics workspace required
 ## Install the chart
 
 >[!NOTE]
->The following commands are applicable only for Helm version 2. Use of the --name parameter is not applicable with Helm version 3.
+>The following commands are applicable only for Helm version 2. Use of the `--name` parameter is not applicable with Helm version 3.
 
 To enable the HELM chart, do the following:
 
@@ -268,6 +277,28 @@ To enable the HELM chart, do the following:
     --set omsagent.domain=opinsights.azure.us,omsagent.secret.wsid=<your_workspace_id>,omsagent.secret.key=<your_workspace_key>,omsagent.env.clusterName=<your_cluster_name> incubator/azuremonitor-containers
     ```
 
+### Enable the Helm chart using the API Model
+
+You can specify an addon in the AKS Engine cluster specification json file, also referred to as the API Model. In this addon, provide the base64 encoded version of `WorkspaceGUID` and `WorkspaceKey` of the Log Analytics Workspace where the collected monitoring data is stored.
+
+Supported API definitions for the Azure Stack Hub cluster can be found in this example - [kubernetes-container-monitoring_existing_workspace_id_and_key.json](https://github.com/Azure/aks-engine/blob/master/examples/addons/container-monitoring/kubernetes-container-monitoring_existing_workspace_id_and_key.json). Specifically, find the **addons** property in **kubernetesConfig**:
+
+```json
+"orchestratorType": "Kubernetes",
+       "kubernetesConfig": {
+         "addons": [
+           {
+             "name": "container-monitoring",
+             "enabled": true,
+             "config": {
+               "workspaceGuid": "<Azure Log Analytics Workspace Guid in Base-64 encoded>",
+               "workspaceKey": "<Azure Log Analytics Workspace Key in Base-64 encoded>"
+             }
+           }
+         ]
+       }
+```
+
 ## Configure agent data collection
 
 Staring with chart version 1.0.0, the agent data collection settings are controlled from the ConfigMap. Refer to documentation about agent data collection settings [here](container-insights-agent-config.md).
 
@@ -2,7 +2,7 @@
 title: How to enable Azure Monitor for containers | Microsoft Docs
 description: This article describes how you enable and configure Azure Monitor for containers so you can understand how your container is performing and what performance-related issues have been identified. 
 ms.topic: conceptual
-ms.date: 11/18/2019
+ms.date: 04/21/2020
 
 ---
 
@@ -16,7 +16,9 @@ This article provides an overview of the options available to setup Azure Monito
 
 - Self-managed Kubernetes clusters hosted on [Azure Stack](https://docs.microsoft.com/azure-stack/user/azure-stack-kubernetes-aks-engine-overview?view=azs-1910) or on-premises using AKS Engine.
 
-- [Azure Red Hat OpenShift](../../openshift/intro-openshift.md)
+- [Azure Red Hat OpenShift](../../openshift/intro-openshift.md) version 3.x and 4.x
+
+- [Red Hat OpenShift](https://docs.openshift.com/container-platform/4.3/welcome/index.html) version 4.x
 
 Azure Monitor for containers can be enabled for new, or one or more existing deployments of Kubernetes using the following supported methods:
 
@@ -58,8 +60,7 @@ The information in the following table lists the proxy and firewall configuratio
 |Agent Resource|Ports |
 |--------------|------|
 | *.ods.opinsights.azure.com | 443 |  
-| *.oms.opinsights.azure.com | 443 | 
-| *.blob.core.windows.net | 443 |
+| *.oms.opinsights.azure.com | 443 |
 | dc.services.visualstudio.com | 443 |
 | *.microsoftonline.com | 443 |
 | *.monitoring.azure.com | 443 |
@@ -71,7 +72,6 @@ The information in the following table lists the proxy and firewall configuratio
 |--------------|------|-------------|
 | *.ods.opinsights.azure.cn | 443 | Data ingestion |
 | *.oms.opinsights.azure.cn | 443 | OMS onboarding |
-| *.blob.core.windows.net | 443 | Used for monitoring outbound connectivity. |
 | microsoft.com | 80 | Used for network connectivity. This is only required if the agent image version is ciprod09262019 or earlier. |
 | dc.services.visualstudio.com | 443 | For for agent telemetry using Azure Public Cloud Application Insights. |
 
@@ -81,7 +81,6 @@ The information in the following table lists the proxy and firewall configuratio
 |--------------|------|-------------|
 | *.ods.opinsights.azure.us | 443 | Data ingestion |
 | *.oms.opinsights.azure.us | 443 | OMS onboarding |
-| *.blob.core.windows.net | 443 | Used for monitoring outbound connectivity. |
 | microsoft.com | 80 | Used for network connectivity. This is only required if the agent image version is ciprod09262019 or earlier. |
 | dc.services.visualstudio.com | 443 | For agent telemetry using Azure Public Cloud Application Insights. |