Merge pull request #203062 from MicrosoftDocs/release-arc-data

Publish test version release for July release

Author: MikeRayMSFT

articles/azure-arc/data/create-data-controller-using-kubernetes-native-tools.md

@@ -1,6 +1,6 @@
 ---
-title: Create a Data Controller using Kubernetes tools
-description: Create a Data Controller using Kubernetes tools
+title: Create a data controller using Kubernetes tools
+description: Create a data controller using Kubernetes tools
 services: azure-arc
 ms.service: azure-arc
 ms.subservice: azure-arc-data
@@ -11,27 +11,28 @@ ms.date: 11/03/2021
 ms.topic: how-to
 ---
 
-# Create Azure Arc data controller using Kubernetes tools
+# Create Azure Arc-enabled data controller using Kubernetes tools
 
+A data controller manages Azure Arc-enabled data services for a Kubernetes cluster. This article describes how to use Kubernetes tools to create a data controller.
 
 ## Prerequisites
 
 Review the topic [Plan an Azure Arc-enabled data services deployment](plan-azure-arc-data-services.md) for overview information.
 
-To create the Azure Arc data controller using Kubernetes tools you will need to have the Kubernetes tools installed.  The examples in this article will use `kubectl`, but similar approaches could be used with other Kubernetes tools such as the Kubernetes dashboard, `oc`, or `helm` if you are familiar with those tools and Kubernetes yaml/json.
+To create the data controller using Kubernetes tools you will need to have the Kubernetes tools installed.  The examples in this article will use `kubectl`, but similar approaches could be used with other Kubernetes tools such as the Kubernetes dashboard, `oc`, or `helm` if you are familiar with those tools and Kubernetes yaml/json.
 
 [Install the kubectl tool](https://kubernetes.io/docs/tasks/tools/install-kubectl/)
 
 > [!NOTE]
-> Some of the steps to create the Azure Arc data controller that are indicated below require Kubernetes cluster administrator permissions.  If you are not a Kubernetes cluster administrator, you will need to have the Kubernetes cluster administrator perform these steps on your behalf.
+> Some of the steps to create the data controller that are indicated below require Kubernetes cluster administrator permissions.  If you are not a Kubernetes cluster administrator, you will need to have the Kubernetes cluster administrator perform these steps on your behalf.
 
 ### Cleanup from past installations
 
-If you installed the Azure Arc data controller in the past on the same cluster and deleted the Azure Arc data controller, there may be some cluster level objects that would still need to be deleted. 
+If you installed the data controller in the past on the same cluster and deleted the data controller, there may be some cluster level objects that would still need to be deleted. 
 
 For some of the tasks, you'll need to replace `{namespace}` with the value for your namespace. Substitute the name of the namespace the data controller was deployed in into `{namespace}`. If unsure, get the name of the `mutatingwebhookconfiguration` using `kubectl get clusterrolebinding`.
 
-Run the following commands to delete the Azure Arc data controller cluster level objects:
+Run the following commands to delete the data controller cluster level objects:
 
 ```console
 # Cleanup azure arc data service artifacts
@@ -83,30 +84,15 @@ kubectl delete mutatingwebhookconfiguration arcdata.microsoft.com-webhook-{names
 
 ## Overview
 
-Creating the Azure Arc data controller has the following high level steps:
+Creating the data controller has the following high level steps:
 
-   > [!IMPORTANT]
-   > Some of the steps below require Kubernetes cluster administrator permissions.
-
-1. Create the custom resource definitions for the Arc data controller, Azure SQL managed instance, and PostgreSQL Hyperscale. 
-1. Create a namespace in which the data controller will be created. 
+1. Create a namespace in which the data controller will be created.
+1. Create the deployer service account.
 1. Create the bootstrapper service including the replica set, service account, role, and role binding.
 1. Create a secret for the data controller administrator username and password.
-1. Create the webhook deployment job, cluster role and cluster role binding. 
 1. Create the data controller.
 
 
-## Create the custom resource definitions
-
-Run the following command to create the custom resource definitions.  
-
-   > [!IMPORTANT]
-   > Requires Kubernetes cluster administrator permissions.
-
-```console
-kubectl create -f https://raw.githubusercontent.com/microsoft/azure_arc/main/arc_data_services/deploy/yaml/custom-resource-definitions.yaml
-```
-
 ## Create a namespace in which the data controller will be created
 
 Run a command similar to the following to create a new, dedicated namespace in which the data controller will be created.  In this example and the remainder of the examples in this article, a namespace name of `arc` will be used. If you choose to use a different name, then use the same name throughout.
@@ -121,45 +107,46 @@ openshift.io/sa.scc.supplemental-groups: 1000700001/10000
 openshift.io/sa.scc.uid-range: 1000700001/10000
 ```
 
-If other people will be using this namespace that are not cluster administrators, we recommend creating a namespace admin role and granting that role to those users through a role binding.  The namespace admin should have full permissions on the namespace.  More granular roles and example role bindings can be found on the [Azure Arc GitHub repository](https://github.com/microsoft/azure_arc/tree/main/arc_data_services/deploy/yaml/rbac).
+If other people who are not cluster administrators will be using this namespace, create a namespace admin role and grant that role to those users through a role binding.  The namespace admin should have full permissions on the namespace.  More granular roles and example role bindings can be found on the [Azure Arc GitHub repository](https://github.com/microsoft/azure_arc/tree/main/arc_data_services/deploy/yaml/rbac).
+
+
+## Create the deployer service account
+
+   > [!IMPORTANT]
+   > Requires Kubernetes permissions for creating service account, role binding, cluster role, cluster role binding, and all the RBAC permissions being granted to the service account.
+
+Save a copy of [arcdata-deployer.yaml](https://raw.githubusercontent.com/microsoft/azure_arc/release-arc-data/arc_data_services/arcdata-deployer.yaml), and replace the placeholder `{{NAMESPACE}}` in the file with the namespace created in the previous step, for example: `arc`. Run the following command to create the deployer service account with the edited file.
+
+```console
+kubectl apply --namespace arc -f arcdata-deployer.yaml
+```
+
 
 ## Create the bootstrapper service
 
-The bootstrapper service handles incoming requests for creating, editing, and deleting custom resources such as a data controller, SQL managed instances, or PostgreSQL Hyperscale server groups.
+The bootstrapper service handles incoming requests for creating, editing, and deleting custom resources such as a data controller.
 
-Run the following command to create a bootstrapper service, a service account for the bootstrapper service, and a role and role binding for the bootstrapper service account.
+Run the following command to create a "bootstrap" job to install the bootstrapper along with related cluster-scope and namespaced objects, such as custom resource definitions (CRDs), the service account and bootstrapper role.
 
 ```console
-kubectl create --namespace arc -f https://raw.githubusercontent.com/microsoft/azure_arc/main/arc_data_services/deploy/yaml/bootstrapper.yaml
+kubectl apply --namespace arc -f https://raw.githubusercontent.com/microsoft/azure_arc/release-arc-data/arc_data_services/deploy/yaml/bootstrap.yaml
 ```
 
-Verify that the bootstrapper pod is running using the following command.  You may need to run it a few times until the status changes to `Running`.
+The [uninstall.yaml](https://raw.githubusercontent.com/microsoft/azure_arc/release-arc-data/arc_data_services/deploy/yaml/uninstall.yaml) is for uninstalling the bootstrapper and related Kubernetes objects, except the CRDs.
+
+Verify that the bootstrapper pod is running using the following command.
 
 ```console
-kubectl get pod --namespace arc
+kubectl get pod --namespace arc -l app=bootstrapper
 ```
 
-The bootstrapper.yaml template file defaults to pulling the bootstrapper container image from the Microsoft Container Registry (MCR).  If your environment does not have access directly to the Microsoft Container Registry, you can do the following:
+If the status is not _Running_, run the command a few times until the status is _Running_.
+
+The bootstrap.yaml template file defaults to pulling the bootstrapper container image from the Microsoft Container Registry (MCR). If your environment can't directly access the Microsoft Container Registry, you can do the following:
 - Follow the steps to [pull the container images from the Microsoft Container Registry and push them to a private container registry](offline-deployment.md).
-- [Create an image pull secret](https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/#create-a-secret-by-providing-credentials-on-the-command-lin) for your private container registry.
-- Add an image pull secret to the bootstrapper container. See example below.
-- Change the image location for the bootstrapper image. See example below.
-
-The example below assumes that you created a image pull secret name `arc-private-registry`.
-
-```yaml
-#Just showing only the relevant part of the bootstrapper.yaml template file here
-    spec:
-      serviceAccountName: sa-bootstrapper
-      nodeSelector:
-        kubernetes.io/os: linux
-      imagePullSecrets:
-      - name: arc-private-registry #Create this image pull secret if you are using a private container registry
-      containers:
-      - name: bootstrapper
-        image: mcr.microsoft.com/arcdata/arc-bootstrapper:v1.1.0_2021-11-02 #Change this registry location if you are using a private container registry.
-        imagePullPolicy: Always
-```
+- [Create an image pull secret](https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/#create-a-secret-by-providing-credentials-on-the-command-line) named `arc-private-registry` for your private container registry.
+- Change the image URL for the bootstrapper image in the bootstrap.yaml file.
+- Replace `arc-private-registry` in the bootstrap.yaml file if a different name was used for the image pull secret.
 
 ## Create secrets for the metrics and logs dashboards
 
@@ -203,27 +190,12 @@ kubectl create --namespace arc -f C:\arc-data-services\controller-login-secret.y
 
 Optionally, you can create SSL/TLS certificates for the logs and metrics dashboards. Follow the instructions at [Specify during Kubernetes native tools deployment](monitor-certificates.md).
 
-## Create the webhook deployment job, cluster role and cluster role binding
-
-First, create a copy of the [template file](https://raw.githubusercontent.com/microsoft/azure_arc/main/arc_data_services/deploy/yaml/web-hook.yaml) locally on your computer so that you can modify some of the settings.
-
-Edit the file and replace `{{namespace}}` in all places with the name of the namespace you created in the previous step. **Save the file.**
-
-Run the following command to create the cluster role and cluster role bindings.  
-
-   > [!IMPORTANT]
-   > Requires Kubernetes cluster administrator permissions.
-
-```console
-kubectl create -n arc -f <path to the edited template file on your computer>
-```
-
 
 ## Create the data controller
 
 Now you are ready to create the data controller itself.
 
-First, create a copy of the [template file](https://raw.githubusercontent.com/microsoft/azure_arc/main/arc_data_services/deploy/yaml/data-controller.yaml) locally on your computer so that you can modify some of the settings.
+First, create a copy of the [template file](https://raw.githubusercontent.com/microsoft/azure_arc/release-arc-data/arc_data_services/deploy/yaml/data-controller.yaml) locally on your computer so that you can modify some of the settings.
 
 Edit the following as needed:
 
@@ -248,7 +220,7 @@ Edit the following as needed:
 - **name**: The default name of the data controller is `arc`, but you can change it if you want.
 - **displayName**: Set this to the same value as the name attribute at the top of the file.
 - **registry**: The Microsoft Container Registry is the default.  If you are pulling the images from the Microsoft Container Registry and [pushing them to a private container registry](offline-deployment.md), enter the IP address or DNS name of your registry here.
-- **dockerRegistry**: The image pull secret to use to pull the images from a private container registry if required.
+- **dockerRegistry**: The secret to use to pull the images from a private container registry if required.
 - **repository**: The default repository on the Microsoft Container Registry is `arcdata`.  If you are using a private container registry, enter the path the folder/repository containing the Azure Arc-enabled data services container images.
 - **imageTag**: The current latest version tag is defaulted in the template, but you can change it if you want to use an older version.
 - **logsui-certificate-secret**: The name of the secret created on the Kubernetes cluster for the logs UI certificate.

articles/azure-arc/data/includes/azure-arc-data-preview-release.md

@@ -0,0 +1,38 @@
+---
+author: MikeRayMSFT
+ms.service: azure-arc
+ms.topic: include
+ms.date: 06/28/2022
+ms.author: mikeray
+---
+
+The current preview released on June 28, 2022.
+
+This preview is a test release.
+
+|Component|Value|
+|-----------|-----------|
+|Container images registry/repository |`mcr.microsoft.com/arcdata/test`|
+|Container images tag |`v1.9.0_2022-07-12`|
+|CRD names and version|`datacontrollers.arcdata.microsoft.com`: v1beta1, v1 through v6<br/>`exporttasks.tasks.arcdata.microsoft.com`: v1beta1, v1, v2<br/>`kafkas.arcdata.microsoft.com`: v1beta1<br/>`monitors.arcdata.microsoft.com`: v1beta1, v1, v2<br/>`sqlmanagedinstances.sql.arcdata.microsoft.com`: v1beta1, v1 through v6<br/>`postgresqls.arcdata.microsoft.com`: v1beta1, v1beta2<br/>`sqlmanagedinstancerestoretasks.tasks.sql.arcdata.microsoft.com`: v1beta1, v1<br/>`failovergroups.sql.arcdata.microsoft.com`: v1beta1, v1beta2, v1<br/>`activedirectoryconnectors.arcdata.microsoft.com`: v1beta1, v1beta2<br/>|
+|Azure Resource Manager (ARM) API version|2022-03-01-preview (No change)|
+|`arcdata` Azure CLI extension version|1.4.3 ([Download](https://aka.ms/az-cli-arcdata-ext))|
+|Arc enabled Kubernetes helm chart extension version|1.2.20031002|
+|Arc Data extension for Azure Data Studio|1.3.1 ([Download](https://aka.ms/ads-arcdata-ext))|
+
+New for this release:
+
+- Miscellaneous
+  - Extended the disk metrics reported in monitoring dashboards to include more queue length stats and more counters for IOPS. All disks are in scope for data collection that start with `vd` or `sd` now.
+
+- Arc-enabled SQL Managed Instance
+  - Added buffer cache hit ratio to collectd and surface it in monitoring dashboards.
+  - Improvements to the formatting of the legends on some dashboards.
+  - Added process level CPU  and memory metrics to the monitoring dashboards for the SQL managed instance process.
+  - syncSecondaryToCommit property is now available to be viewed and edited in Azure portal and Azure Data Studio.
+  - Added ability to set the DNS name for the readableSecondaries service in Azure CLI and Azure portal.
+
+- Data controller
+  - Permissions required to deploy the Arc data controller have been reduced to a least-privilege level.
+  - When deployed via the Azure CLI, the Arc data controller is now installed via a K8s job that uses a helm chart to do the installation. There's no change to the user experience.
+

articles/azure-arc/data/overview.md

@@ -24,7 +24,7 @@ Currently, the following Azure Arc-enabled data services are available:
 
 For an introduction to how Azure Arc-enabled data services supports your hybrid work environment, see this introductory video:
 
-> [!VIDEO https://docs.microsoft.com/Shows//Inside-Azure-for-IT/Choose-the-right-data-solution-for-your-hybrid-environment/player?format=ny]
+> [!VIDEO https://docs.microsoft.com/Shows/Inside-Azure-for-IT/Choose-the-right-data-solution-for-your-hybrid-environment/player?format=ny]
 
 ## Always current