Standardize DevOps practices across hybrid and multicloud environments
source link: https://techcommunity.microsoft.com/t5/itops-talk-blog/standardize-devops-practices-across-hybrid-and-multicloud/ba-p/2795010?WT_mc_id=DOP-MVP-4025064
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Standardize DevOps practices across hybrid and multicloud environments
In this video, I had the chance to speak with Jason Hansen (Principal Program Manager at Microsoft) about how you can use Azure Arc to standardize DevOps practices across hybrid and multicloud environments.
Configurations and GitOps with Azure Arc-enabled Kubernetes
In relation to Kubernetes, GitOps is the practice of declaring the desired state of Kubernetes cluster configurations (deployments, namespaces, etc.) in a Git repository. This declaration is followed by a polling and pull-based deployment of these cluster configurations using an operator. The Git repository can contain:
Flux, a popular open-source tool in the GitOps space, can be deployed on the Kubernetes cluster to ease the flow of configurations from a Git repository to a Kubernetes cluster. Flux supports the deployment of its operator at both the cluster and namespace scopes. A flux operator deployed with namespace scope can only deploy Kubernetes objects within that specific namespace. The ability to choose between cluster or namespace scope helps you achieve multi-tenant deployment patterns on the same Kubernetes cluster.
Azure Arc GitOps
What is Azure Arc-enabled Kubernetes?
With Azure Arc-enabled Kubernetes, you can attach and configure Kubernetes clusters located either inside or outside Azure. When you connect a Kubernetes cluster to Azure Arc, it will:
To connect a Kubernetes cluster to Azure, the cluster administrator needs to deploy agents. These agents:
Azure Arc-enabled Kubernetes supports industry-standard SSL to secure data in transit. Also, data at rest is stored encrypted in an Azure Cosmos DB database to ensure data confidentiality.
Supported Kubernetes distributions
Azure Arc-enabled Kubernetes works with any Cloud Native Computing Foundation (CNCF) certified Kubernetes clusters. The Azure Arc team has worked with key industry partners to validate conformance of their Kubernetes distributions with Azure Arc-enabled Kubernetes.
Supported scenarios
Azure Arc-enabled Kubernetes supports the following scenarios:
Learn more:
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
%3CLINGO-SUB%20id%3D%22lingo-sub-2795010%22%20slang%3D%22en-US%22%3EStandardize%20DevOps%20practices%20across%20hybrid%20and%20multicloud%20environments%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2795010%22%20slang%3D%22en-US%22%3E%3CP%3EIn%20this%20video%2C%20I%20had%20the%20chance%20to%20speak%20with%20Jason%20Hansen%26nbsp%3B%3CSPAN%3E(%3C%2FSPAN%3EPrincipal%20Program%20Manager%20at%20Microsoft)%20about%20how%20you%20can%20use%20Azure%20Arc%20to%26nbsp%3Bstandardize%20DevOps%20practices%20across%20hybrid%20and%20multicloud%20environments.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3C%2FP%3E%3CDIV%20class%3D%22video-embed-center%20video-embed%22%3E%3CIFRAME%20class%3D%22embedly-embed%22%20src%3D%22https%3A%2F%2Fcdn.embedly.com%2Fwidgets%2Fmedia.html%3Fsrc%3Dhttps%253A%252F%252Fwww.youtube.com%252Fembed%252FodjSlJhNER8%253Ffeature%253Doembed%26amp%3Bdisplay_name%3DYouTube%26amp%3Burl%3Dhttps%253A%252F%252Fwww.youtube.com%252Fwatch%253Fv%253DodjSlJhNER8%26amp%3Bimage%3Dhttps%253A%252F%252Fi.ytimg.com%252Fvi%252FodjSlJhNER8%252Fhqdefault.jpg%26amp%3Bkey%3Dfad07bfa4bd747d3bdea27e17b533c0e%26amp%3Btype%3Dtext%252Fhtml%26amp%3Bschema%3Dyoutube%22%20width%3D%22600%22%20height%3D%22337%22%20scrolling%3D%22no%22%20title%3D%22YouTube%20embed%22%20frameborder%3D%220%22%20allow%3D%22autoplay%3B%20fullscreen%22%20allowfullscreen%3D%22true%22%3E%3C%2FIFRAME%3E%3C%2FDIV%3E%3CP%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CH2%20id%3D%22configurations-and-gitops-with-azure-arc-enabled-kubernetes%22%20id%3D%22toc-hId--348727122%22%20id%3D%22toc-hId--348727055%22%3EConfigurations%20and%20GitOps%20with%20Azure%20Arc-enabled%20Kubernetes%3C%2FH2%3E%0A%3CP%3EIn%20relation%20to%20Kubernetes%2C%20GitOps%20is%20the%20practice%20of%20declaring%20the%20desired%20state%20of%20Kubernetes%20cluster%20configurations%20(deployments%2C%20namespaces%2C%20etc.)%20in%20a%20Git%20repository.%20This%20declaration%20is%20followed%20by%20a%20polling%20and%20pull-based%20deployment%20of%20these%20cluster%20configurations%20using%20an%20operator.%20The%20Git%20repository%20can%20contain%3A%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3EYAML-format%20manifests%20describing%20any%20valid%20Kubernetes%20resources%2C%20including%20Namespaces%2C%20ConfigMaps%2C%20Deployments%2C%20DaemonSets%2C%20etc.%3C%2FLI%3E%0A%3CLI%3EHelm%20charts%20for%20deploying%20applications.%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.fluxcd.io%2F%22%20data-linktype%3D%22external%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3EFlux%3C%2FA%3E%2C%20a%20popular%20open-source%20tool%20in%20the%20GitOps%20space%2C%20can%20be%20deployed%20on%20the%20Kubernetes%20cluster%20to%20ease%20the%20flow%20of%20configurations%20from%20a%20Git%20repository%20to%20a%20Kubernetes%20cluster.%20Flux%20supports%20the%20deployment%20of%20its%20operator%20at%20both%20the%20cluster%20and%20namespace%20scopes.%20A%20flux%20operator%20deployed%20with%20namespace%20scope%20can%20only%20deploy%20Kubernetes%20objects%20within%20that%20specific%20namespace.%20The%20ability%20to%20choose%20between%20cluster%20or%20namespace%20scope%20helps%20you%20achieve%20multi-tenant%20deployment%20patterns%20on%20the%20same%20Kubernetes%20cluster.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-center%22%20image-alt%3D%22Azure%20Arc%20GitOps.png%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F313586iF1C25C697E481D88%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22Azure%20Arc%20GitOps.png%22%20alt%3D%22Azure%20Arc%20GitOps%22%20%2F%3E%3CSPAN%20class%3D%22lia-inline-image-caption%22%20onclick%3D%22event.preventDefault()%3B%22%3EAzure%20Arc%20GitOps%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CH2%20id%3D%22what-is-azure-arc-enabled-kubernetes%22%20id%3D%22toc-hId-2138785711%22%20id%3D%22toc-hId-2138785778%22%3EWhat%20is%20Azure%20Arc-enabled%20Kubernetes%3F%3C%2FH2%3E%0A%3CP%3EWith%20Azure%20Arc-enabled%20Kubernetes%2C%20you%20can%20attach%20and%20configure%20Kubernetes%20clusters%20located%20either%20inside%20or%20outside%20Azure.%20When%20you%20connect%20a%20Kubernetes%20cluster%20to%20Azure%20Arc%2C%20it%20will%3A%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3EAppear%20in%20the%20Azure%20portal%20with%20an%20Azure%20Resource%20Manager%20ID%20and%20a%20managed%20identity.%3C%2FLI%3E%0A%3CLI%3EBe%20placed%20in%20an%20Azure%20subscription%20and%20resource%20group.%3C%2FLI%3E%0A%3CLI%3EReceive%20tags%20just%20like%20any%20other%20Azure%20resource.%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3ETo%20connect%20a%20Kubernetes%20cluster%20to%20Azure%2C%20the%20cluster%20administrator%20needs%20to%20deploy%20agents.%20These%20agents%3A%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3ERun%20in%20the%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3CCODE%3Eazure-arc%3C%2FCODE%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3EKubernetes%20namespace%20as%20standard%20Kubernetes%20deployments.%3C%2FLI%3E%0A%3CLI%3EHandle%20connectivity%20to%20Azure.%3C%2FLI%3E%0A%3CLI%3ECollect%20Azure%20Arc%20logs%20and%20metrics.%3C%2FLI%3E%0A%3CLI%3EWatch%20for%20configuration%20requests.%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3EAzure%20Arc-enabled%20Kubernetes%20supports%20industry-standard%20SSL%20to%20secure%20data%20in%20transit.%20Also%2C%20data%20at%20rest%20is%20stored%20encrypted%20in%20an%20Azure%20Cosmos%20DB%20database%20to%20ensure%20data%20confidentiality.%3C%2FP%3E%0A%3CH3%20id%3D%22supported-kubernetes-distributions%22%20class%3D%22heading-anchor%22%20id%3D%22toc-hId--1465620111%22%20id%3D%22toc-hId--1465620044%22%3ESupported%20Kubernetes%20distributions%3C%2FH3%3E%0A%3CP%3EAzure%20Arc-enabled%20Kubernetes%20works%20with%20any%20Cloud%20Native%20Computing%20Foundation%20(CNCF)%20certified%20Kubernetes%20clusters.%20The%20Azure%20Arc%20team%20has%20worked%20with%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fazure%2Fazure-arc%2Fkubernetes%2Fvalidation-program%3FWT.mc_id%3Dmodinfra-38691-thmaure%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%20data-linktype%3D%22relative-path%22%3Ekey%20industry%20partners%20to%20validate%20conformance%3C%2FA%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3Eof%20their%20Kubernetes%20distributions%20with%20Azure%20Arc-enabled%20Kubernetes.%3C%2FP%3E%0A%3CH3%20id%3D%22supported-scenarios%22%20class%3D%22heading-anchor%22%20id%3D%22toc-hId-1021892722%22%20id%3D%22toc-hId-1021892789%22%3ESupported%20scenarios%3C%2FH3%3E%0A%3CP%3EAzure%20Arc-enabled%20Kubernetes%20supports%20the%20following%20scenarios%3A%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3E%3CP%3EConnect%20Kubernetes%20running%20outside%20of%20Azure%20for%20inventory%2C%20grouping%2C%20and%20tagging.%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3EDeploy%20applications%20and%20apply%20configuration%20using%20GitOps-based%20configuration%20management.%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3EView%20and%20monitor%20your%20clusters%20using%20Azure%20Monitor%20for%20containers.%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3EEnforce%20threat%20protection%20using%20Azure%20Defender%20for%20Kubernetes.%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3EApply%20policy%20definitions%20using%20Azure%20Policy%20for%20Kubernetes.%3C%2FP%3E%0A%3C%2FLI%3E%0A%3CLI%3E%3CP%3ECreate%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fazure%2Fazure-arc%2Fkubernetes%2Fcustom-locations%3FWT.mc_id%3Dmodinfra-38691-thmaure%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%20data-linktype%3D%22relative-path%22%3Ecustom%20locations%3C%2FA%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3Eas%20target%20locations%20for%20deploying%20Azure%20Arc-enabled%20Data%20Services%2C%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fazure%2Fapp-service%2Foverview-arc-integration%3FWT.mc_id%3Dmodinfra-38691-thmaure%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%20data-linktype%3D%22relative-path%22%3EApp%20Services%20on%20Azure%20Arc%3C%2FA%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E(including%20web%2C%20function%2C%20and%20logic%20apps)%20and%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fazure%2Fevent-grid%2Fkubernetes%2Foverview%3FWT.mc_id%3Dmodinfra-38691-thmaure%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%20data-linktype%3D%22relative-path%22%3EEvent%20Grid%20on%20Kubernetes%3C%2FA%3E.%3C%2FP%3E%0A%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CH2%20class%3D%22position-fixed%20display-flex%20flex-direction-column%22%20role%3D%22navigation%22%20aria-label%3D%22Primary%22%20data-bi-name%3D%22left%20toc%22%20id%3D%22toc-hId-1011389618%22%20id%3D%22toc-hId-1011389685%22%3ELearn%20more%3A%3C%2FH2%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CNAV%20class%3D%22position-fixed%20display-flex%20flex-direction-column%22%20role%3D%22navigation%22%20aria-label%3D%22Primary%22%20data-bi-name%3D%22left%20toc%22%3E%0A%3CUL%3E%0A%3CLI%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fazure%2Fazure-arc%2Foverview%3FWT.mc_id%3Dmodinfra-38691-thmaure%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EAzure%20Arc%20overview%3C%2FA%3E%3C%2FLI%3E%0A%3CLI%3EAzure%20Cloud%20Adoption%20Framework%20for%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fazure%2Fcloud-adoption-framework%2Fscenarios%2Fhybrid%2Fscenario-overview%3FWT.mc_id%3Dmodinfra-38691-thmaure%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EHybrid%20and%20Multicloud%20Scenarios%3C%2FA%3E%3C%2FLI%3E%0A%3CLI%3ELearn%20more%20about%20Arc%20enabled%20servers%2C%20see%20the%20following%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fazure%2Fazure-arc%2Fservers%2Foverview%3FWT.mc_id%3Dmodinfra-38691-thmaure%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Eoverview%3C%2FA%3E%3C%2FLI%3E%0A%3CLI%3ELearn%20more%20about%20Arc%20enabled%20Kubernetes%2C%20see%20the%20following%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fazure%2Fazure-arc%2Fkubernetes%2Foverview%3FWT.mc_id%3Dmodinfra-38691-thmaure%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Eoverview%3C%2FA%3E%3C%2FLI%3E%0A%3CLI%3ELearn%20more%20about%20Arc%20enabled%20data%20services%2C%20see%20the%20following%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fazure.microsoft.com%2Fservices%2Fazure-arc%2Fhybrid-data-services%2F%3FWT.mc_id%3Dmodinfra-38691-thmaure%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Eoverview%3C%2FA%3E%3C%2FLI%3E%0A%3CLI%3EExperience%20Arc%20enabled%20services%20from%20the%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fazurearcjumpstart.io%2Fazure_arc_jumpstart%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3EJumpstart%20proof%20of%20concept%3C%2FA%3E%3C%2FLI%3E%0A%3CLI%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fitops-talk-blog%2Fazure-arc-for-cloud-solutions-architects%2Fba-p%2F2521928%3FWT.mc_id%3Dmodinfra-38691-thmaure%22%20target%3D%22_blank%22%3EAzure%20Arc%20for%20Cloud%20Solutions%20Architects%3C%2FA%3E%3C%2FLI%3E%0A%3CLI%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fitops-talk-blog%2Fazure-arc-for-it-pros%2Fba-p%2F2347921%3FWT.mc_id%3Dmodinfra-38691-thmaure%22%20target%3D%22_blank%22%3EAzure%20Arc%20for%20IT%20Pros%3C%2FA%3E%3C%2FLI%3E%0A%3CLI%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fitops-talk-blog%2Fazure-arc-for-security-engineers%2Fba-p%2F2367830%3FWT.mc_id%3Dmodinfra-38691-thmaure%22%20target%3D%22_blank%22%3EAzure%20Arc%20for%20Security%20Engineers%3C%2FA%3E%3C%2FLI%3E%0A%3CLI%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fitops-talk-blog%2Fazure-arc-for-developers%2Fba-p%2F2561513%3FWT.mc_id%3Dmodinfra-38691-thmaure%22%20target%3D%22_blank%22%3EAzure%20Arc%20for%20Developers%3C%2FA%3E%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3C%2FNAV%3E%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-2795010%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-center%22%20image-alt%3D%22Azure%20Arc%20Standardize%20DevOps%20practices%20across%20hybrid%20and%20multicloud%20environments.jpg%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F313584iD57E1F2EE16F836B%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22Azure%20Arc%20Standardize%20DevOps%20practices%20across%20hybrid%20and%20multicloud%20environments.jpg%22%20alt%3D%22Azure%20Arc%20Standardize%20DevOps%20practices%20across%20hybrid%20and%20multicloud%20environments%22%20%2F%3E%3CSPAN%20class%3D%22lia-inline-image-caption%22%20onclick%3D%22event.preventDefault()%3B%22%3EAzure%20Arc%20Standardize%20DevOps%20practices%20across%20hybrid%20and%20multicloud%20environments%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3ELearn%20how%20to%20use%20Azure%20Arc%20to%20standardize%20DevOps%20practices%20across%20hybrid%20and%20multicloud%20environments%3C%2FP%3E%3C%2FLINGO-TEASER%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2795010%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EThomas%20Maurer%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Sep 29 2021 05:20 AM
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK