Merge pull request #48673 from Amrita42/agent-install-new

mburke5678 · web-flow · commit 0f1378a8c2a9 · 2022-11-03T08:43:14.000-04:00
Created a sub-dir for Agent-based Installer with a proposed TOC
diff --git a/_topic_maps/_topic_map.yml b/_topic_maps/_topic_map.yml
@@ -292,10 +292,14 @@ Topics:
   Topics:
   - Name: Installing an on-premise cluster using the Assisted Installer
     File: installing-on-prem-assisted
-  - Name: Preparing to install
-    File: assisted-installer-preparing-to-install
-  - Name: Installing with the Assisted Installer
-    File: assisted-installer-installing
+- Name: Installing an on-premise cluster with the Agent-based Installer
+  Dir: installing_with_agent_based_installer
+  Distros: openshift-enterprise
+  Topics:
+  - Name: Preparing to install with Agent-based installer
+    File: preparing-to-install-with-agent-based-installer
+  - Name: Installing a cluster with Agent-based installer
+    File: installing-with-agent-based-installer
 - Name: Installing on a single node
   Dir: installing_sno
   Distros: openshift-enterprise
diff --git a/images/agent-based-installer-workflow.png b/images/agent-based-installer-workflow.png
diff --git a/installing/installing_with_agent_based_installer/attributes b/installing/installing_with_agent_based_installer/attributes
@@ -0,0 +1 @@
+../../_attributes/
diff --git a/installing/installing_with_agent_based_installer/images b/installing/installing_with_agent_based_installer/images
@@ -0,0 +1 @@
+../../images/
diff --git a/installing/installing_with_agent_based_installer/installing-with-agent-based-installer.adoc b/installing/installing_with_agent_based_installer/installing-with-agent-based-installer.adoc
@@ -0,0 +1,27 @@
+:_content-type: ASSEMBLY
+[id="installing-with-agent-based-installer"]
+= Installing a {product-title} cluster with the Agent-based Installer
+include::_attributes/common-attributes.adoc[]
+:context: installing-with-agent-based-installer
+
+toc::[]
+
+[id="prerequisites_installing-with-agent-based-installer"]
+== Prerequisites
+
+* You reviewed details about the xref:../../architecture/architecture-installation.adoc#architecture-installation[{product-title} installation and update] processes.
+* You read the documentation on xref:../../installing/installing-preparing.adoc#installing-preparing[selecting a cluster installation method and preparing it for users].
+
+include::modules/installing-ocp-agent.adoc[leveloffset=+1]
+
+[role="_additional-resources"]
+.Additional resources
+
+* See xref:../../installing/installing_bare_metal/installing-restricted-networks-bare-metal.adoc#installation-three-node-cluster_installing-restricted-networks-bare-metal[Configuring a three-node cluster] to deploy three-node clusters in bare metal environments.
+
+include::modules/sample-ztp-custom-resources.adoc[leveloffset=+1]
+
+[role="_additional-resources"]
+.Additional resources
+
+* See xref:../../scalability_and_performance/ztp-deploying-disconnected.adoc#ztp-deploying-disconnected[ZTP custom resources] to learn more about ZTP.
diff --git a/installing/installing_with_agent_based_installer/modules b/installing/installing_with_agent_based_installer/modules
@@ -0,0 +1 @@
+../../modules/
diff --git a/installing/installing_with_agent_based_installer/preparing-to-install-with-agent-based-installer.adoc b/installing/installing_with_agent_based_installer/preparing-to-install-with-agent-based-installer.adoc
@@ -0,0 +1,26 @@
+:_content-type: ASSEMBLY
+[id="preparing-to-install-with-agent-based-installer"]
+= Preparing to install with the Agent-based installer
+include::_attributes/common-attributes.adoc[]
+:context: preparing-to-install-with-agent-based-installer
+
+toc::[]
+
+== About the Agent-based Installer
+The Agent-based Installer is a combination of the Assisted Installer (AI) technology and the installer-provisioned infrastructure (IPI). It is a subcommand that resides in the {product-title} installer and also utilizes the {product-title} installer for the input asset management.
+It generates a bootable image containing all of the information required to deploy an {product-title} cluster.
+
+The Agent-based Installer is a sub-command that generates a live {op-system-first} ISO. The live ISO runs all of the required components that are running in containers pulled from the {product-title} release payload.
+
+The Agent-based Installer also utilizes Zero Touch Provisioning (ZTP) custom resources. ZTP allows you to provision new edge sites with declarative configurations of bare-metal equipment.
+
+include::modules/understanding-agent-install.adoc[leveloffset=+1]
+
+include::modules/installation-bare-metal-agent-installer-config-yaml.adoc[leveloffset=+1]
+
+include::modules/validations-before-agent-iso-creation.adoc[leveloffset=+1]
+
+[id="agent-based-installation-next-steps"]
+== Next steps
+
+* xref:../../installing/installing_with_agent_based_installer/installing-with-agent-based-installer.adoc#installing-with-agent-based-installer[Installing a cluster with the Agent-based Installer]
diff --git a/installing/installing_with_agent_based_installer/snippets b/installing/installing_with_agent_based_installer/snippets
@@ -0,0 +1 @@
+../../snippets/
diff --git a/modules/installation-bare-metal-agent-installer-config-yaml.adoc b/modules/installation-bare-metal-agent-installer-config-yaml.adoc
@@ -0,0 +1,92 @@
+// Module included in the following assemblies:
+
+//* installing-with-agent/installing-with-agent.adoc
+// Re-used content from Sample install-config.yaml file for bare metal without conditionals
+
+:_content-type: CONCEPT
+[id="installation-bare-metal-agent-installer-config-yaml_{context}"]
+= Sample install-config.yaml file for bare metal
+
+You can customize the `install-config.yaml` file to specify more details about your {product-title} cluster's platform or modify the values of the required parameters.
+
+[source,yaml]
+----
+apiVersion: v1
+baseDomain: example.com <1>
+compute: <2>
+- hyperthreading: Enabled <3>
+  name: worker
+  replicas: 0 <4>
+controlPlane: <2>
+  hyperthreading: Enabled <3>
+  name: master
+  replicas: 3 <5>
+metadata:
+  name: sno-cluster <6>
+networking:
+  clusterNetwork:
+  - cidr: 10.128.0.0/14 <7>
+    hostPrefix: 23 <8>
+  networkType: OpenShiftSDN <9>
+  serviceNetwork: <10>
+  - 172.30.0.0/16
+platform:
+  none: {} <11>
+fips: false <12>
+pullSecret: '{"auths": ...}' <13>
+sshKey: 'ssh-ed25519 AAAA...' <14>
+capabilities:
+  baselineCapabilitySet: None
+  additionalEnabledCapabilities:
+  - openshift-samples
+----
+<1> The base domain of the cluster. All DNS records must be sub-domains of this base and include the cluster name.
+<2> The `controlPlane` section is a single mapping, but the `compute` section is a sequence of mappings. To meet the requirements of the different data structures, the first line of the `compute` section must begin with a hyphen, `-`, and the first line of the `controlPlane` section must not. Only one control plane pool is used.
+<3> Specifies whether to enable or disable simultaneous multithreading (SMT), or hyperthreading. By default, SMT is enabled to increase the performance of the cores in your machines. You can disable it by setting the parameter value to `Disabled`. If you disable SMT, you must disable it in all cluster machines; this includes both control plane and compute machines.
+
++
+[NOTE]
+====
+Simultaneous multithreading (SMT) is enabled by default. If SMT is not enabled in your BIOS settings, the `hyperthreading` parameter has no effect.
+====
++
+[IMPORTANT]
+====
+If you disable `hyperthreading`, whether in the BIOS or in the `install-config.yaml` file, ensure that your capacity planning accounts for the dramatically decreased machine performance.
+====
+
+<4> This parameter controls the number of compute machines that the Agent-based installation waits to discover before triggering the installation process. It is the number of compute machines that must be booted with the generated ISO.
+
++
+[NOTE]
+====
+If you are installing a three-node cluster, do not deploy any compute machines when you install the {op-system-first} machines.
+====
++
+<5> The number of control plane machines that you add to the cluster. Because the cluster uses these values as the number of etcd endpoints in the cluster, the value must match the number of control plane machines that you deploy.
+<6> The cluster name that you specified in your DNS records.
+<7> A block of IP addresses from which pod IP addresses are allocated. This block must not overlap with existing physical networks. These IP addresses are used for the pod network. If you need to access the pods from an external network, you must configure load balancers and routers to manage the traffic.
++
+[NOTE]
+====
+Class E CIDR range is reserved for a future use. To use the Class E CIDR range, you must ensure your networking environment accepts the IP addresses within the Class E CIDR range.
+====
++
+<8> The subnet prefix length to assign to each individual node. For example, if `hostPrefix` is set to `23`, then each node is assigned a `/23` subnet out of the given `cidr`, which allows for 510 (2^(32 - 23) - 2) pod IP addresses. If you are required to provide access to nodes from an external network, configure load balancers and routers to manage the traffic.
+<9> The cluster network provider Container Network Interface (CNI) plug-in to install. The supported values are `OVNKubernetes` (default value) and `OpenShiftSDN` .
+<10> The IP address pool to use for service IP addresses. You can enter only one IP address pool. This block must not overlap with existing physical networks. If you need to access the services from an external network, configure load balancers and routers to manage the traffic.
+<11> You must set the platform to `none` for a single-node cluster. You can also set the platform to `vSphere` and `baremetal`.
+<12> Whether to enable or disable FIPS mode. By default, FIPS mode is not enabled. If FIPS mode is enabled, the {op-system-first} machines that {product-title} runs on bypass the default Kubernetes cryptography suite and use the cryptography modules that are provided with {op-system} instead.
++
+[IMPORTANT]
+====
+The use of FIPS Validated / Modules in Process cryptographic libraries is only supported on {product-title} deployments on the `x86_64` architecture.
+====
+
+<13> This pull secret allows you to authenticate with the services that are provided by the included authorities, including Quay.io, which serves the container images for {product-title} components.
+<14> The SSH public key for the `core` user in {op-system-first}.
++
+[NOTE]
+====
+For production {product-title} clusters on which you want to perform installation debugging or disaster recovery, specify an SSH key that your `ssh-agent` process uses.
+====
diff --git a/modules/installing-ocp-agent.adoc b/modules/installing-ocp-agent.adoc
@@ -0,0 +1,169 @@
+// Module included in the following assemblies:
+//
+// * installing-with-agent/installing-with-agent.adoc
+
+:_content-type: PROCEDURE
+[id="installing-ocp-agent_{context}"]
+= Installing {product-title} with the Agent-based Installer
+
+The following procedure deploys a single-node {product-title}. You can use this procedure as a basis and modify according to your requirements.
+
+.Procedure
+
+. Navigate to the link:https://mirror.openshift.com/pub/openshift-v4/x86_64/clients/ocp/latest [OpenShift mirror site] and download the latest version of the tarball that matches your operating system.
+
+. Extract the binary by running the following command:
++
+[source,terminal]
+----
+$ tar xvf <file> -C ~/.local/bin
+----
++
+The file contains the Agent-based Installer.
+
+. Install `nmstate` dependency by running the following command:
++
+[source,terminal]
+----
+$ sudo dnf install /usr/bin/nmstatectl -y
+----
+
+. Place the `openshift-install` binary in a directory that is on your PATH.
+
+. Create a directory to store the cluster manifests by running the following command:
++
+[source,terminal]
+----
+$ mkdir ~/<directory_name>
+----
+
++
+[NOTE]
+====
+This is the preferred method for the Agent-based installation. Using ZTP manifests is optional.
+====
+
+. Create the `install-config.yaml` file:
++
+[source,yaml]
+----
+cat << EOF > ./cluster-manifests/install-config.yaml
+apiVersion: v1
+baseDomain: test.example.com
+compute:
+- architecture: amd64
+  hyperthreading: Enabled
+  name: worker
+  replicas: 0
+controlPlane:
+  architecture: amd64
+  hyperthreading: Enabled
+  name: master
+  replicas: 1
+metadata:
+  name: sno-cluster <1>
+networking:
+  clusterNetwork:
+  - cidr: 10.128.0.0/14
+    hostPrefix: 23
+  machineNetwork:
+  - cidr: 192.168.111.0/16
+  networkType: OpenShiftSDN
+  serviceNetwork:
+  - 172.30.0.0/16
+platform:
+  none: {}
+pullSecret: '<pull_secret>' <2>
+sshKey: |
+  '<ssh_pub_key>' <3>
+  EOF
+----
++
+<1> Required.
+<2> Enter your pull secret.
+<3> Enter your ssh public key.
+
+. Create the `agent-config.yaml` file:
++
+[source,yaml]
+----
+  cat > agent-config.yaml << EOF
+  kind: AgentConfig
+  metadata:
+    name: sno-cluster
+  rendezvousIP: 192.168.111.80 <1>
+  hosts: <2>
+    - hostname: master-0
+      interfaces:
+        - name: eno1
+          macAddress: 00:ef:44:21:e6:a5
+      networkConfig:
+        interfaces:
+          - name: eno1
+            type: ethernet
+            state: up
+            mac-address: 00:ef:44:21:e6:a5
+            ipv4:
+              enabled: true
+              address:
+                - ip: 192.168.111.80
+                  prefix-length: 23
+              dhcp: false
+        dns-resolver:
+          config:
+            server:
+              - 192.168.111.1
+        routes:
+          config:
+            - destination: 0.0.0.0/0
+              next-hop-address: 192.168.111.2
+              next-hop-interface: eno1
+              table-id: 254
+  EOF
+----
++
+<1> This IP address is used to determine which node performs the bootstrapping process as well as running the `assisted-service` component.
+You must provide the IP address when you do not specify the node's IP addresses in the `networkConfig` parameter. If this address is not provided, one IP address is selected from the provided nodes's `networkConfig`.
+You must provide the IP address when you do not specify the node's IP addresses in the `networkConfig` parameter. If this address is not provided, one IP address is selected from the provided nodes's `networkConfig`.
+<2> The number of hosts defined must match the total number of hosts defined in the `install-config.yaml` file, which is the sum of the values of the `compute.replicas` and `controlPlane.replicas` parameters. When 3 master nodes and 0 worker nodes are defined in the `install-config.yaml` file,
+the number of hosts defined is 3. When 3 master nodes and 2 worker nodes are defined in the `install-config.yaml` file, the number of hosts defined is 5.
+
++
+. Create the Agent image by running the following command:
++
+[NOTE]
+====
+Ensure that the image is created in the same path as the **auth** folder. You can verify this with the following command:
+
+[source,terminal]
+----
+$ ls
+agent.iso  auth
+----
+====
++
+[source,terminal]
+----
+$ openshift-install agent create image
+----
+
+. Boot the `agent.iso` image on the bare metal machines. You can run the image on any Linux distribution.
+
+. To track the progress and verify sucessful installation, run the following command:
++
+[source,terminal]
+----
+$ openshift-install agent wait-for install-complete
+----
++
+.Example output
+[source,terminal]
+----
+...................................................................
+...................................................................
+INFO Cluster is installed
+INFO Install complete!
+INFO To access the cluster as the system:admin user when using 'oc', run
+INFO     export KUBECONFIG=/home/core/installer/auth/kubeconfig
+INFO Access the OpenShift web-console here: https://console-openshift-console.apps.sno-cluster.test.example.com
+----
diff --git a/modules/sample-ztp-custom-resources.adoc b/modules/sample-ztp-custom-resources.adoc
diff --git a/modules/understanding-agent-install.adoc b/modules/understanding-agent-install.adoc
diff --git a/modules/validations-before-agent-iso-creation.adoc b/modules/validations-before-agent-iso-creation.adoc
