Azure

This article was originally published at What to consider when using Azure AD as IDP? | Red Hat Cloud Experts In this guide, we will discuss key considerations when using Azure Active Directory (AAD) as the Identity Provider (IDP) for your ARO or ROSA cluster. Below are some helpful references: Configure ARO to Use Azure AD Configuring IDP for ROSA, OSD, and ARO Default Access for All Users in Azure Active Directory Once you set up AAD as the IDP for your cluster, it’s important to note that by default, all users in your Azure Active Directory instance will have access to the cluster. They can log in using their AAD credentials through the OpenShift Web Console endpoint: ...

Great! You just started your Azure journey and now it’s time to scale your infrastructure to meet the growing demands of your business. Microsoft Azure offers a robust cloud platform that can grow with you, but where do you begin? This article will introduce you to three fundamental building blocks for your Azure journey: Azure Subscriptions, Microsoft Entra ID (formerly Azure Active Directory), and Azure Enterprise Scale Landing Zones. Understanding the Basics Microsoft Entra ID (Former Azure Active Directory) Microsoft Entra ID, previously known as Azure Active Directory (Azure AD), is the backbone of identity and access management in Azure. It is a cloud-based identity and access management service that provides: ...

Introduction: In the realm of cloud computing, optimizing costs is paramount for businesses leveraging Microsoft Azure. Azure offers two primary cost-saving mechanisms: Azure Reservations and Azure Savings Plans. Both options come with distinct advantages, disadvantages, and usage scenarios. In this comprehensive guide, we’ll explore these features, penalties, and ideal use cases to empower you in making informed decisions tailored to your business needs. Understanding Azure Reservations: Azure Reservations provide businesses the opportunity to commit to one-year or three-year plans for various products within the Azure ecosystem. The commitment entails a promise of usage, enabling significant discounts of up to 72% off pay-as-you-go prices. ...

This article was originally published at Azure Front Door with ARO ( Azure Red Hat OpenShift ) | Red Hat Cloud Experts Securing exposing an Internet facing application with a private ARO Cluster. When you create a cluster on ARO you have several options in making the cluster public or private. With a public cluster you are allowing Internet traffic to the api and *.apps endpoints. With a private cluster you can make either or both the api and .apps endpoints private. ...

This article was originally published at https://cloud.redhat.com/experts/aro/prereq-list/ Before deploying an ARO cluster, ensure you meet the following prerequisites: Setup Tools Install Azure CLI: Essential for managing Azure resources. Refer to the official documentation Verify Resources Core Quota: Confirm availability of at least 40 cores to create and run an OpenShift Cluster. Permissions RBAC Settings: Ensure you have Contributor and User Access Administrator roles on the cluster resource group. Assign Network Contributor role on the virtual network, if using a separate resource group. For stricter security policies, create a custom role with necessary permissions. Reference link. Microsoft Entra (Former Azure AD): Have a member user of the tenant or a guest with Application administrator role for the tooling to create an application and service principal on your behalf for the cluster. Terraform: If you plan to use Terraform for the deployment of the cluster, see here the required permissions. Azure Integration Resource Provider: Register the Microsoft.RedHatOpenshift resource provider. Reference link. Red Hat Integration: Obtain a Red Hat pull secret (Recommended for access to additional content like Operators and Container Registries). Domain Configuration This step is optional since you can use the built-in domain. ...

This article was originally published at Setup a VPN Connection into an ARO Cluster with OpenVPN | Red Hat Cloud Experts When you configure an Azure Red Hat OpenShift (ARO) cluster with a private only configuration, you will need connectivity to this private network in order to access your cluster. This guide will show you how to configure a point-to-site VPN connection so you won’t need to setup and configure Jump Boxes. ...