Can the Managed Identity be used with Azure-Redhat-OpenShift Cluster to collect Prometheus Metrics?

Question

Can the Managed Identity be used with Azure-Redhat-OpenShift Cluster to collect Prometheus Metrics?

slsbla 11

Hello,
I want to configure an ARO cluster that is ARC-Enabled to remote-write Prometheus metrics to Azure Monitoring Managed Prometheus .
I have created an Azure Monitoring Workspace and Added a Managed Identity to the ARO Arc enabled Resource group. while granting Roles and permission, I noticed that the documentation only refers to AKS clusters (see : https://learn.microsoft.com/en-us/azure/azure-monitor/essentials/prometheus-remote-write-managed-identity?source=recommendations#grant-aks-cluster-access-to-the-identity).

Even though, the Artical is mentioning that both AKS and Azure-Arc are supported (see: https://learn.microsoft.com/en-us/azure/azure-monitor/essentials/prometheus-remote-write-managed-identity?source=recommendations#cluster-configurations) I m not able to find a documentation for that , the Only thing that I found is regarding the Active Directory method.

Can you share with me the proer way to achieve that (connecting a Prometheus Server from an Arc-enabled (ARO) cluster to the Azure Managed Prometheus ) ?
Thank you.

SwathiDhanwada-MSFT 18,911 Reputation points

2022-12-14T15:21:52.76+00:00

@slsbla Thanks for your question. I am checking with product team and will get back to you soon.
Anonymous

2023-03-12T06:00:00.69+00:00

any update for this?
Anand Kumar S (MS/EDE1-XC) 0 Reputation points

2023-09-20T13:09:36.2833333+00:00

Any update on this. We are also looking to connect to azure key vault from ARO using managed identity, We are not able to attach managed identity to ARO.

1 answer

Your answer

SwathiDhanwada-MSFT 18,911 Reputation points

2022-12-14T15:21:52.76+00:00

@slsbla Thanks for your question. I am checking with product team and will get back to you soon.
Anonymous

2023-03-12T06:00:00.69+00:00

any update for this?
Anand Kumar S (MS/EDE1-XC) 0 Reputation points

2023-09-20T13:09:36.2833333+00:00

Any update on this. We are also looking to connect to azure key vault from ARO using managed identity, We are not able to attach managed identity to ARO.

Answer 1

Hi slsbla •

Welcome to the Microsoft Q&A Platform! Thank you for asking your question here.

I understand that you are looking for the confirmation, if ARO has Manage Identity.

We had the confirmation and you can read in details here: https://www.redhat.com/en/blog/managed-identity-workload-identity-azure#:~:text=We%20are%20pleased%20to%20announce,Red%20Hat%20OpenShift%20(ARO).

The entire process is detailed in the documentation.

Regarding the ARC-Enabled - search for ARO on this link - https://learn.microsoft.com/en-us/azure/azure-monitor/containers/kubernetes-monitoring-enable?tabs=cli

Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.

If you have any other questions or are still running into more issues, let me know in the "comments" and I would be happy to help you.

Thank You.

Lisboa

Share via

Can the Managed Identity be used with Azure-Redhat-OpenShift Cluster to collect Prometheus Metrics?

1 answer

Your answer