Skip to content

Commit d719b13

Browse files
alt-keyalt-key
authored
Update cluster-connect.md
1 parent d7de226 commit d719b13

File tree

1 file changed

+18
-12
lines changed

1 file changed

+18
-12
lines changed

articles/azure-arc/kubernetes/cluster-connect.md

Lines changed: 18 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -25,6 +25,24 @@ Before you begin, review the [conceptual overview of the cluster connect feature
2525
- If you haven't connected a cluster yet, use our [quickstart](quickstart-connect-cluster.md).
2626
- [Upgrade your agents](agent-upgrade.md#manually-upgrade-agents) to the latest version.
2727

28+
- The machine running the Az CLI commands must have internet access to `https://<region>.obo.arc.azure.com:8084/`.
29+
30+
- Enable the [network requirements for Arc-enabled Kubernetes](network-requirements.md)
31+
32+
- Enable these endpoints for outbound access:
33+
34+
| Endpoint | Port |
35+
|----------------|-------|
36+
|`*.servicebus.windows.net` | 443 |
37+
|`guestnotificationservice.azure.com`, `*.guestnotificationservice.azure.com` | 443 |
38+
39+
> [!NOTE]
40+
> To translate the `*.servicebus.windows.net` wildcard into specific endpoints, use the command `\GET https://guestnotificationservice.azure.com/urls/allowlist?api-version=2020-01-01&location=<location>`. Within this command, the region must be specified for the `<location>` placeholder.
41+
42+
[!INCLUDE [arc-region-note](../includes/arc-region-note.md)]
43+
44+
45+
2846
### [Azure CLI](#tab/azure-cli)
2947

3048

@@ -64,18 +82,6 @@ Before you begin, review the [conceptual overview of the cluster connect feature
6482

6583
---
6684

67-
- In addition to meeting the [network requirements for Arc-enabled Kubernetes](network-requirements.md), enable these endpoints for outbound access:
68-
69-
| Endpoint | Port |
70-
|----------------|-------|
71-
|`*.servicebus.windows.net` | 443 |
72-
|`guestnotificationservice.azure.com`, `*.guestnotificationservice.azure.com` | 443 |
73-
74-
> [!NOTE]
75-
> To translate the `*.servicebus.windows.net` wildcard into specific endpoints, use the command `\GET https://guestnotificationservice.azure.com/urls/allowlist?api-version=2020-01-01&location=<location>`. Within this command, the region must be specified for the `<location>` placeholder.
76-
77-
[!INCLUDE [arc-region-note](../includes/arc-region-note.md)]
78-
7985
## Set up authentication
8086

8187
On the existing Arc-enabled cluster, create the ClusterRoleBinding with either Microsoft Entra authentication or service account token.

0 commit comments

Comments
 (0)