18.0 Deploying the Identity Manager Containers

This section provides information on setting up the infrastructure and deploying the Identity Manager containers on Azure.

  1. Log in to the Azure portal.

    NOTE:Azure Cloud Shell is automatically authenticated using the initial account signed-in. If you need to use a different account, run the az login command and sign-in to Azure-CLI (Refer to Section: Uploading Identity Manager docker images to Azure Container Registry, Step 2).

  2. Perform the following steps to upload the IDM_4.8.5_Cloud_Deployment_files.zip file to the Azure CLI.

    1. Click .

    2. In the terminal window, click .

    3. Select the zip file to upload to Azure.

  3. Run the following command to extract the content of the zip file:

    unzip IDM_4.8.5_Cloud_Deployment_files.zip

  4. Navigate to the IDM_4.8.5_Cloud_Deployment_files directory.

  5. (Optional) Review the contents of the zip file.

  6. Run the following Terraform command to download all the required plug-ins needed for infrastructure deployment.

    terraform init

  7. Run the following Terraform command to plan and understand the deployment based on the input.

    terraform plan

  8. Run the following Terraform command to create the infrastructure as defined in the input.

    terraform apply --auto-approve

    NOTE:If you see an unsupported version exception, refer to troubleshooting Running the Terraform apply Command Displays an Exception.

  9. Run the following command to connect to the Kubernetes cluster and store the required configuration:

    az aks get-credentials --resource-group <resource group> --name <cluster name> --overwrite-existing

    For example,

    az aks get-credentials --resource-group idvault-rg --name cluster-name --overwrite-existing

  10. Run the following command to create an Nginx instance used to run the Load balancer:

    helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx

  11. Perform the following steps to obtain the public IP address of the Kubernetes Service from the Azure portal.

    1. Go to the Azure home page, and click All resources.

    2. In the search box, type load balancer and click enter.

    3. Click the load balancer associated with your resource group and AKS cluster.

    4. Go to Settings > Front end IP configuration and copy the first IP address.

  12. Navigate to the IDM_4.8.5_Cloud_Deployment_files directory, run the following command to run the pubic load balancer:

    helm install nginx-ingress ingress-nginx/ingress-nginx --namespace <your namespace> --set controller.replicaCount=1 --set controller.service.loadBalancerIP=<Kubernetes public IP address obtained from the Azure portal> --set controller.service.annotations."service\.beta\.kubernetes\.io/azure-dns-label-name"=<Domain Name>

    For example,

    helm install nginx-ingress ingress-nginx/ingress-nginx --namespace idm --set controller.replicaCount=1 --set controller.service.loadBalancerIP=192.168.0.1--set controller.service.annotations."service\.beta\.kubernetes\.io/azure-dns-label-name"=identitymanager

  13. To run the Helm Charts, run the following command:

    helm install identity-manager helmcharts/identity-manager-1.0.0.tgz --namespace <namespace> -f values.yaml

    For example,

    helm install identity-manager helmcharts/identity-manager-1.0.0.tgz --namespace idm -f values.yaml

  14. Run the following command to view the list of pods that are running in the Azure Kubernetes Service:

    kubectl get pods --watch -n <namespace>

    For example,

    kubectl get pods --watch -n idm