Following our release a few months back of the new landing zone accelerator for Azure Arc-enabled servers, today we’re launching the Azure Arc-enabled Kubernetes landing zone accelerator within the Azure Cloud Adoption Framework. The landing zone accelerator provides best practices, guidance, and automated reference implementations so that customers can get started with their deployments quickly and easily.
The Azure Arc-enabled Kubernetes landing zone accelerator makes it easier for customers to increase security, governance, and compliance posture on clusters that are deployed outside of Azure. Along with Azure Arc, services such as Microsoft Defender for Cloud, Azure Sentinel, Azure Monitor, Azure Log Analytics, Azure Policy, and many others are included in the reference implementations that can then be extended to production environments.
In addition, the accelerator puts a lot of focus on modern DevOps-related practices and software deployment patterns in a Kubernetes architecture such as the use of GitOps, Continues Integration and Deployment (CI/CD), and Service Mesh and the automation disciplines around it.
Design areas within the landing zone accelerator
The Azure Arc-enabled Kubernetes landing zone accelerator enables customers’ cloud adoption journey with considerations, recommendations, and architecture patterns most important to customers. For deploying Azure Arc-enabled Kubernetes in the most recommended way, we created a set of ten critical design areas. Each of these specific areas walks customers through a set of design considerations, recommendations, architectures, and next steps:
- Identity and access management
- Network topology and connectivity
- Resource organization
- Governance and security disciplines
- Management disciplines
- Automation disciplines
- Extensions management
- CI/CD and GitOps disciplines
- Services observability
- Cost governance
Automation for landing zone accelerator
The Azure Arc landing zone accelerator uses the sandbox automation powered by Azure Arc Jumpstart as its reference implementation. Since launching 2 years ago, Azure Arc Jumpstart has grown to more than 100 automated scenarios, thousands of visitors a month, and a vivid open-source community sharing their learnings on Azure Arc. As part of Jumpstart, we developed ArcBox, an automated sandbox environment for all-things Azure Arc, deployed in customers’ Azure subscriptions.
Here’s what Manuel Sánchez Rodríguez, Technical Manager, Azure Evangelist, and a Microsoft MVP at NTT DATA had to say about the Jumpstart - "For us, the Azure Arc Landing Zone Accelerator helps us build with our customers a successful implementation of a platform foundation that takes care of the shared services (network, security, identity, and governance) needed to effectively build and run a landing zone. Being able to provide prescriptive guidance and accelerate implementation through Jumpstart's infrastructure templates as code has been key to preparing customer's landing zones while making sure they adhere to the architecture and best practices of the Cloud Adoption Framework."
For the Azure Arc-enabled Kubernetes landing zone accelerator, we developed the new ArcBox for DevOps, which will act as the sandbox automation solution for Azure Arc-enabled Kubernetes with services like Azure Policy, Azure Monitor, Microsoft Defender for Cloud, Open Service Mesh (OSM), GitOps, Azure Key Vault, and more.
This provides customers with a comprehensive experience that can just be deployed and have a fully operational Azure Arc-enabled Kubernetes environment.
The sandbox automation supports Bicep, Terraform, and ARM templates, so customers can choose what makes sense to them and their organizations’ automation practices. This is also part of our continued investment in the ArcBox product line.
Getting started
Hop over to the Hybrid and multicloud Cloud Adoption Framework page and explore the Azure Arc-enabled Kubernetes landing zone accelerator, the critical design areas, and sandbox automation.
Learn more at the Hybrid Azure Hybrid, Multicloud, and Edge Day digital event
We will be hosting our annual Azure Hybrid, Multicloud, and Edge Day digital event on June 15, 2022. You’ll hear from Microsoft leadership and engineers on how you can innovate anywhere with Azure Arc, learn from customers using Azure solutions for their hybrid scenarios, and get to ask questions in the live Q&A chat. Register now >