Please enable JavaScript.
Coggle requires JavaScript to display documents.
Argocd-deployment-in-new-cluster, Platform components integration - Coggle…
Argocd-deployment-in-new-cluster
Make sure you can connect to newly build cluster with kubeconfig file
Create new aks folder inside argocd dir
Update params.libsonnet file contents: uri, uriGrpc with new values
Run sealed-secret-installation.yaml in new cluster
https://github.com/prajithparammal/techonology-tips/blob/main/Account-Specific/SFK/manifests/sealed-secrets-installation.yaml
Verify your new cluster is added in parent argocd (
https://argocd.dev.xz98a.skf.io
)
Update clusters/xz-98a-aks-dev-01/cluster.jsonnet file to include our new cluster
Navigate to
https://argocd.dev.xz98a.skf.io/applications/cluster-app
to see a newly app created for new cluster argocd deplooyment
Proceed to sync this app, which will install argocd in new cluster.
At this stage, only pending item would be , argocd-server-ingress would not be created, since there is no nginx ingress at this moment.
Platform components integration
Add new cluster folder under cluster dir
External secrets
Nginx
Cert-manager
External-DNS
Misc (configuration for the OMS agent)
Update params.libsonnet as required
Update examples/azure-credentials-external-secrets-example.yaml file and run kubeseal to get the output in json
From the above output from kubeseal command, get the clientid, clientsecret and tenantid and udpate the values of externalSecretsEncryptedData under params.libsconnet file under newly build cluster directory
Make sure digital-manufacturing-service-principal-client-secret is added in key-vault
Navigate to Home ➡ SFK ➡ App registrations ➡ "Digital Manufacturing - Non Prod(28t)" ➡ Certificate & secrets ➡ New client secret ➡ Add secret
Navigate to Home ➡ Key vaults ➡ es-28t-dev-kv(choose right one for location) ➡ secrets ➡ +Genereate/Import ➡ Update name as digital-manufacturing-service-principal-client-secret and for vlaue Update the secret value which we created in above step
Make sure external-dns-azure-json is added in key vault
Update below values as per your location and then go to key Vault ➡ secrets ➡ +Genereate/Import ➡ Update name as external-dns-azure-json
Add the clientids to globals.libsonnet.
13 . Commit all changes
Verify in central argocd that everything but the ingresses synced succesfully.
Argocd is now running but we are unable to connect to it since nginx is not synced.
Follow the finishing steps as in readme