Skip to content
/ cd-monitoring-bootstrap Public
forked from Cloud-Direct-Monitoring/cd-monitoring-bootstrap

Create the additional resources for Project Morpheus' AMA deployments and DCR etc.

License

MIT license
0 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

cuanl-cd/cd-monitoring-bootstrap

BranchesTags
 
 

Repository files navigation

cd-monitoring-bootstrap

Professional Services repo to bootstrap a customer environment for the deployment of monitoring resources.

Prereqs

Managed Services will provide a set of info for the bootstrap process:

You will also need the git binary installed on your machine. Visual Studio Code is also assumed in this guide.

Clone

  1. Clone the repo

    git clone https://github.com/Cloud-Direct-Monitoring/cd-monitoring-bootstrap customer

    Change customer to a customer shortcode.

  2. Change directory

    cd customer

  3. Open Visual Studio Code

    code .

Customise

An terraform.tfvars file has been provided.

  1. Rename terraform.tfvars.example, removing the .example extension

  2. Customise the values

    • Specify the provided GitHub repo name and access token.
    • You will also need the resource ID for an existing Azure Monitor workspace. This will be used by the Data Collection Rule.

    Note that additional variables are defined in variables.tf.

  3. Save the terraform.tfvars file

  4. Save the secrets files into the secrets folder

Authenticate

  1. Log into the customer environment
  2. Set the context to the correct subscription

Deploy

  1. Validate

    terraform validate

    This will check that you have all of the expected secrets and variable values.

  2. Plan

    terraform plan

  3. Apply

    terraform apply

Checks

Once deployed, you should see the new resource group in the selected subscription.

If you have not specified a resource group name then it will default to rg-cdmonitoring-prod-uksouth-001.

The resource group will contain:

  • managed identity with
    • least privilege RBAC roles on the resource group scope
    • federated credential to enable the workflows to use OpenID Connect
  • storage account and a single container
    • ready for use as a remote state by Terraform

The client repo will also have a number of variables and secrets, plus parameter files.

Success

The workflows in the client repo may now be run by Managed Services.

Once deployed, the Azure Monitor Agent policies can be deployed to specify the new Data Collection Rule.

About

Create the additional resources for Project Morpheus' AMA deployments and DCR etc.

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • HCL 100.0%