Add documentation

jsturtevant · jsturtevant · commit 2bc6a358effc · 2020-12-22T11:37:43.000-08:00
diff --git a/docs/book/src/SUMMARY.md b/docs/book/src/SUMMARY.md
@@ -17,3 +17,4 @@
     - [Managed Clusters (AKS)](./topics/managedcluster.md)
     - [Spot Virtual Machines](./topics/spot-vms.md)
     - [Virtual Networks](./topics/custom-vnet.md)
+    - [Windows](./topics/windows.md)
diff --git a/docs/book/src/topics/windows.md b/docs/book/src/topics/windows.md
@@ -0,0 +1,133 @@
+# Windows clusters
+
+## Overview
+
+CAPZ enables you to create Windows Kubernetes clusters on Microsoft Azure.
+
+To deploy a cluster using Windows, use the [Windows flavor template](https://raw.githubusercontent.com/kubernetes-sigs/cluster-api-provider-azure/master/templates/cluster-template-windows.yaml).
+
+## Deploy a workload
+
+After you Windows VM is up and running you can deploy a workload. Using the deployment file below:
+
+```
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: iis-1809
+  labels:
+    app: iis-1809
+spec:
+  replicas: 1
+  template:
+    metadata:
+      name: iis-1809
+      labels:
+        app: iis-1809
+    spec:
+      containers:
+      - name: iis
+        image: mcr.microsoft.com/windows/servercore/iis:windowsservercore-ltsc2019
+        resources:
+          limits:
+            cpu: 1
+            memory: 800m
+          requests:
+            cpu: .1
+            memory: 300m
+        ports:
+          - containerPort: 80
+      nodeSelector:
+        "kubernetes.io/os": windows
+  selector:
+    matchLabels:
+      app: iis-1809
+---
+apiVersion: v1
+kind: Service
+metadata:
+  name: iis
+spec:
+  type: LoadBalancer
+  ports:
+  - protocol: TCP
+    port: 80
+  selector:
+    app: iis-1809
+```
+
+Save this file to iis.yaml then deploy it:
+
+```
+kubectl apply -f .\iis.yaml
+```
+
+Get the Service endpoint and curl the website:
+
+```
+kubectl get services
+NAME         TYPE           CLUSTER-IP   EXTERNAL-IP   PORT(S)        AGE
+iis          LoadBalancer   10.0.9.47    <pending>     80:31240/TCP   1m
+kubernetes   ClusterIP      10.0.0.1     <none>        443/TCP        46m
+
+
+curl <EXTERNAL-IP>
+```
+
+## Details
+
+See the CAPI proposal for implementation details: https://github.com/kubernetes-sigs/cluster-api/blob/master/docs/proposals/20200804-windows-support.md
+
+### VM and VMSS naming
+
+Azure does not support creating Windows VM's with names longer than 15 characters ([see additional details historical restrictions](https://github.com/kubernetes-sigs/cluster-api/issues/2217#issuecomment-743336941)).  
+
+When creating a cluster with `AzureMachine` if the AzureMachine is longer than 15 characters then the first 9 characters of the cluster name and appends the last 5 characters of the machine to create a unique machine name.  
+
+When creating a cluster with `Machinepool` if the Machine Pool name is longer than 9 characters then the Machine pool uses the prefix `win` and appends the last 5 characters of the machine pool name.
+
+### VM password and access
+The VM password is [random generated](https://cloudbase-init.readthedocs.io/en/latest/plugins.html#setting-password-main)
+by Cloudbase-init during provisioning of the VM. For Access to the VM you can use ssh which will be configured with SSH
+public key you provided during deployment. 
+
+To SSH:
+
+```
+ssh -t -i .sshkey -o 'ProxyCommand ssh -i .sshkey -W %h:%p capi@<api-server-ip>' capi@<windows-ip> powershell.exe
+```
+
+> There is also a [CAPZ kubectl plugin](https://github.com/kubernetes-sigs/cluster-api-provider-azure/blob/master/hack/debugging/Readme.md) that automates the ssh connection using the Management cluster
+
+To RDP:
+
+```
+ssh -L 5555:10.1.0.4:3389 capi@20.69.66.232
+```
+
+And then open an RDP client to `localhost:5555`
+
+### Image creation
+The images are built using [image-builder](https://github.com/kubernetes-sigs/image-builder) and published the the Azure Market place. They use [Cloudbase-init](https://cloudbase-init.readthedocs.io/en/latest/) to bootstrap the machines via Kubeadm.  
+
+Find the latest published images: 
+
+```
+az vm image list --publisher cncf-upstream --offer capi-windows -o table --all  
+Offer         Publisher      Sku                           Urn                                                                 Version
+------------  -------------  ----------------------------  ------------------------------------------------------------------  ----------
+capi-windows  cncf-upstream  k8s-1dot18dot13-windows-2019  cncf-upstream:capi-windows:k8s-1dot18dot13-windows-2019:2020.12.11  2020.12.11
+capi-windows  cncf-upstream  k8s-1dot19dot5-windows-2019   cncf-upstream:capi-windows:k8s-1dot19dot5-windows-2019:2020.12.11   2020.12.11
+capi-windows  cncf-upstream  k8s-1dot20dot0-windows-2019   cncf-upstream:capi-windows:k8s-1dot20dot0-windows-2019:2020.12.11   2020.12.11
+```
+
+If you would like customize your images please refer to the documentation on building your own [custom images](custom-images.md).
+
+### Kube-proxy and CNIs
+
+Kube-proxy and Windows CNIs are deployed via Cluster Resource Sets.  Windows doesn't not have a kube-proxy image due 
+to not having Privileged containers which would provide access to the host.  The current solution is using wins.exe as 
+demonstrated in the [Kubeadm support for Windows](https://kubernetes.io/docs/tasks/administer-cluster/kubeadm/adding-windows-nodes/).    
+
+Windows Privileged Container support is in [KEP](https://github.com/kubernetes/enhancements/pull/2037) form with plans to 
+implement in 1.21.  Kube-proxy and other CNI will then be replaced with the Privileged containers. 
diff --git a/templates/flavors/windows/kustomization.yaml b/templates/flavors/windows/kustomization.yaml
@@ -3,6 +3,4 @@ resources:
   - ../base
   - machine-deployment.yaml
   - machine-deployment-windows.yaml
-patchesStrategicMerge:
-  - kubeadm-control-plane.yaml
-  - cluster.yaml
+  
