Terraform AKS baseline clusters - deployment walkthrough

Focused View

Nick Romney

2:22:06

9 View

1. Course introduction

1. Course overview.mp4

02:05

2.1 aks-baseline.zip

2. Course code download and structure.mp4

01:33

3. Instructor biography and experience.mp4

01:12

2. AKS cluster with Azure CLI

1. Azure Quickstart and Shell Scripts.mp4

01:34

2. Script 2.1 - Prerequisites.mp4

01:56

3. Script 2.2 - Create a Resource Group.mp4

00:53

4. Script 2.3 - Create an AKS cluster in 10 minutes.mp4

01:36

5. Script 2.4 - Run a report on the newly-created AKS cluster.mp4

02:08

6. Script 2.5 - Connect to the AKS cluster with Azure CLI and kubectl.mp4

01:40

7. Script 2.6 - Deploy the Store Application.mp4

00:55

8. Script 2.7 - Test the Store Application.mp4

01:38

9. Script 2.8 - Delete resources.mp4

02:51

10. Script 2.9 - Tidy up kube config.mp4

01:13

3. First steps with Terraform

1. Terraform CLI introduction.mp4

01:14

2. Code directory 3 - Create Storage Account for Terraform state.mp4

05:17

3. Code directory 4 - Create a Resource Group with Terraform.mp4

03:51

4. Code directory 5 - Create AKS cluster with Terraform module.mp4

10:33

5. Code directory 6 - Use Terraform variables well.mp4

03:15

4. Create AKS baseline with Terraform

1. What is the AKS baseline architecture.mp4

02:58

2. IaC wrapper script and .tfvars variable sets.mp4

03:49

3. Variable set 100 - Subscription Resource Group.mp4

01:42

4. Variable set 110 - Cost Alerts.mp4

02:13

5. Variable set 120 - Register Kubernetes providers.mp4

01:26

6. Script 7.2.1 - Create Self-Signed certificates with OpenSSL.mp4

04:29

7. Script 7.2.2 - Validate Self-Signed certificates with OpenSSL.mp4

01:42

8. Script 7.3 - Create Entra ID groups and users.mp4

04:00

9. Variable set 200 - Spoke Resource Group.mp4

03:01

10. Variable set 210 - Spoke monitoring.mp4

01:40

11. Variable set 220 - Spoke networking.mp4

02:36

12. Variable set 230 - Spoke Public IP.mp4

02:33

13. Cluster introduction.mp4

02:08

14. Variable set 300 - Cluster Resource Group.mp4

02:51

15. Variable set 310 - Cluster Identities.mp4

01:49

16. Variable set 320 - Cluster Monitoring.mp4

01:57

17. Variable set 330 - Cluster Azure Container Registry.mp4

01:41

18. Variable set 340 - Cluster Policies.mp4

02:57

19. Variable set 350 - Cluster Keyvault.mp4

03:08

20. Script 7.2.3 - Upload Certificate and Secrets to Azure Keyvault.mp4

02:55

21. Variable set 360 - Cluster Application Gateway.mp4

02:51

22. Variable set 370 - AKS cluster.mp4

07:39

23. Variable set 380 - Bootstrap AKS cluster with Flux GitOps.mp4

01:42

24. Script 7.7 - Validate bootstrapped AKS cluster.mp4

01:47

25. Script 7.8 - Ensure namespaces and policies are present.mp4

00:44

26. Script 7.9 - Deploy Traefik Ingress Controller.mp4

01:52

27. Script 7.10 - Deploy ASP.Net Sample App.mp4

01:45

28. Connect to Sample App.mp4

02:03

29. Script 7.11 - Validate Web Application Firewall protection.mp4

01:57

30. Variable set 400 - Hub Resource Group.mp4

01:24

31. Variable set 410 - Hub Monitoring.mp4

01:57

32. Variable set 420 - Hub Networking.mp4

02:00

33. Variable set 430 - Hub Azure Firewall.mp4

02:36

34. Variable set 440 - Peer Spoke and Hub VNETs.mp4

02:01

35. Variable set 450 - User Defined Routing Spoke to Hub.mp4

01:52

36. Variable set 460 - Recreate AKS cluster with User Defined Routing.mp4

02:30

37. Variable set 470 - Bootstrap AKS cluster.mp4

01:50

38. Look at Azure firewall logs.mp4

02:39

39. Variable set 000 - Destroy all resources.mp4

03:58

5. Thank you and next steps

1. Thank you, and next steps.html

Description

Use Azure CLI and Terraform to deploy a baseline AKS cluster in hours not days - full end-to-end walkthrough

What You'll Learn?

Create AKS clusters with Azure CLI and Terraform CLI
Be able to deploy an AKS baseline cluster based on the reference from Azure Architecture Center
Understand how (and where) to change Terraform variables to configure the cluster
How to wrap Azure CLI in bash shell scripts to make it idempotent

Who is this for?

Cloud Engineer with experience on a different public cloud, or bare metal. You've worked with managed Kubernetes on a different cloud provider (AWS EKS, Google GKE, Oracle OKE) and want to get up to speed on AKS quickly

Developer / DevOps. You want to better understand the infrastructure where your application runs, to make being on-call a nicer experience

IT Operations. You know other Azure services, but haven't worked with AKS.

Network Engineer. You come from a classical networking background, working with routers and switches, but you're being asked questions about Azure's Virtual Networks, route tables, and Azure Firewall.

What You Need to Know?

You should know the basics of Azure such as using the Azure portal, working with Resource Groups, and networking resources such as Virtual Networks, Subnets and Route Tables.

You should be comfortable working with Command Line tools such as Azure CLI and kubectl in a Linux environment, and executing shell scripts in a terminal. Although we'll use the Azure portal to review a few things, most of our time will be working with text files in an Integrated Development Environment, and running commands in the built-in terminal.

You should have some familiarity with the the essentials of Kubernetes, such as namespaces, deployments, and pods, but if you have used Docker's play-with-k8s labs or run a local Minikube cluster, that will be enough.

You should understand the Infrastructure as Code concept of **declarative** resources - *the desired outcome* rather than the **imperative** approach of *the steps to get there*

More details

Description
In this course, we're going to deploy AKS clusters using different Infrastructure as Code approaches. Some of the key topics that we'll cover include:
Creating a cluster with Azure CLI
Using the Azure CLI in an idempotent way, so you can run and re-run the code without generating warnings and errors
We'll switch to using Terraform, and see how useful the module for Azure AKS is, which may be all you need to spin up some test clusters
We'll spend the bulk of the course on walking through the AKS Baseline Cluster from the Azure Architecture Centre, but converted from a massive Azure Bicep file into individual Terraform resources which are considerably easier to understand. This will enable you to use Terraform variables to toggle the creation of the resources you need in your own context.
Launch your first AKS cluster in 15 minutes with Azure CLI. We turn the steps in the Azure quickstart tutorial into idempotent bash shell scripts, so you can run them again and again. We'll run through the full process, including deploying an application to the cluster, and then deleting the cluster, resource group and Kubernetes context.

Create an Azure storage account and container to store Terraform state. We'll use bash shell scripts to wrap Azure CLI commands to create a backend for Terraform, and set up the storage firewall to allow access from your IP address.

Create the Minimum Viable Product in Terraform - using a remote backend to maintain state, take an Azure resource group through the Terraform lifecycle of init, plan, apply, destroy.

A cluster in 15 minutes - this time via Terraform. Use the official Azure Terraform Module to create a cluster in minutes. Similar to creating a cluster with Azure CLI, the Terraform code will create a resource group, virtual network, subnet, and AKS cluster.

Split code into subscription, hub, spoke, and cluster. Use Terraform's count keyword, combined with boolean variables to control the creation of resources. Prepare your code for production by a separation of concerns into hub and spoke networking, and choose whether to use the expensive Azure Firewall for your outbound routing.
Who this course is for:
Cloud Engineer with experience on a different public cloud, or bare metal. You've worked with managed Kubernetes on a different cloud provider (AWS EKS, Google GKE, Oracle OKE) and want to get up to speed on AKS quickly
Developer / DevOps. You want to better understand the infrastructure where your application runs, to make being on-call a nicer experience
IT Operations. You know other Azure services, but haven't worked with AKS.
Network Engineer. You come from a classical networking background, working with routers and switches, but you're being asked questions about Azure's Virtual Networks, route tables, and Azure Firewall.

User Reviews

Rating

average 0

Total votes0

Focused display

Microsoft Azure

Kubernetes

Terraform

Nick Romney

Instructor's Courses

Nick Romney is a seasoned, hands-on IT professional who’s bridged the gap between Ops and Dev teams for years - and most-recently helped a smaller bank on its journey to containerisation on Kubernetes whilst retaining the strict security controls expected of the financial sector.He holds the U.K. Master’s degree standard Certified Information Systems Security Professional (CISSP) security qualification, paired with more than 20 certifications on Terraform, Kubernetes, Security, AWS, Azure, and Oracle Cloud Infrastructure.

Udemy

View courses Udemy

Students take courses primarily to improve job-related skills.Some courses generate credit toward technical certification. Udemy has made a special effort to attract corporate trainers seeking to create coursework for employees of their company.