In case you will be also deploying a remote cluster with ACS (Create-Infrastructure.ps1 script without the -SkipClusterInCloud flag), you will need to setup some prerequisites for such deployment:
- Subscription admin service principal credentials (you need to provide this)
- Public SSH key (you need to provide this)
All the prerequistes will be automatically saved in a key vault which can be accessed later in other scripts.
To create and get the service principal credentials, simply follow these instructions(scroll down to "Create an Azure Active Directory application" section). You will need the application ID and the key from your principal.
For SSH access, you will need a private / public key pair. For setting these up under windows, you can find some instructions here.
You could also use some of the tools like Bitvise which are capable of creating private / public keys themselves.
Tip: if you used Azure CLI to provision ACS clusters already, you can simply reuse the public key found in C:\Users\<<your user>>\.ssh
First, make sure you log in to your Azure Subscription with
Login-AzureRmAccountand, if necessary, switch to the correct subscription using
# to find out the subscirption id, run Get-AzureRmSubscription
Select-AzureRmSubscriptionExecute this line to securely enter your credentials for the service principal:
$servicePrincipalCredentials = Get-CredentialAfterwards, you can execute the Create-Prerequisites.ps1 script itself:
.\Create-CloudClusterPrerequisites.ps1 -EnvironmentTag <<your_env_tag>> -MachineSshPublicKey "ssh-rsa AAAA...6SkIQ0opBt" -ServicePrincipalCredentials $servicePrincipalCredentialsIf everything was setup correctly, you can verify the contents of your key vault in the cloud:
Key vault name will be ca-automation-<<your_env_tag>>