[OSDOCS-15316]: Creating a hosted cluster on bare metal

Author: lahinson

hosted_control_planes/hcp-deploy/hcp-deploy-bm.adoc

@@ -19,7 +19,7 @@ The {mce-short} supports only the default `local-cluster`, which is a hub cluste
 
 A _hosted cluster_ is an {product-title} cluster with its API endpoint and control plane that are hosted on the management cluster. The hosted cluster includes the control plane and its corresponding data plane. You can use the {mce-short} console or the hosted control plane command-line interface, `hcp`, to create a hosted cluster.
 
-The hosted cluster is automatically imported as a managed cluster. If you want to disable this automatic import feature, see _Disabling the automatic import of hosted clusters into {mce-short}_.
+The hosted cluster is automatically imported as a managed cluster. If you want to disable this automatic import feature, see "Disabling the automatic import of hosted clusters into {mce-short}".
 
 include::modules/hcp-bm-prepare.adoc[leveloffset=+1]
 include::modules/hcp-bm-prereqs.adoc[leveloffset=+2]
@@ -48,23 +48,47 @@ include::modules/hcp-bm-infra-reqs.adoc[leveloffset=+2]
 include::modules/hcp-bm-dns.adoc[leveloffset=+1]
 include::modules/hcp-custom-dns.adoc[leveloffset=+2]
 
-include::modules/hcp-bm-hc.adoc[leveloffset=+1]
+include::modules/hcp-bm-add-nodes-to-inventory.adoc[leveloffset=+1]
+
+[id="hcp-bm-create-hc"]
+== Creating a hosted cluster on bare metal
+
+When you create a hosted cluster with the Agent platform, the HyperShift Operator installs the Agent Cluster API provider in the hosted control plane namespace. You can create a hosted cluster on bare metal or you can import one.
+
+include::modules/hcp-bm-hc.adoc[leveloffset=+2]
 
 [role="_additional-resources"]
 .Additional resources
 * xref:../../hosted_control_planes/hcp-import.adoc[Manually importing a hosted cluster]
+* link:https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.13/html/clusters/cluster_mce_overview#configure-hosted-disconnected-digest-image[Extracting the {product-title} release image digest]
 
 include::modules/hcp-bm-hc-console.adoc[leveloffset=+2]
 
-.Next steps
-* To access the web console, see xref:../../web_console/web-console.adoc#web-console-overview[Accessing the web console].
+[role="_additional-resources"]
+.Additional resources
+* xref:../../web_console/web-console.adoc#web-console-overview[Accessing the web console]
 
 include::modules/hcp-bm-hc-mirror.adoc[leveloffset=+2]
 
-.Next steps
-* To create credentials that you can reuse when you create a hosted cluster with the console, see link:https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.13/html/clusters/cluster_mce_overview#creating-a-credential-for-an-on-premises-environment[Creating a credential for an on-premises environment].
-* To access a hosted cluster, see xref:../../hosted_control_planes/hcp-manage/hcp-manage-bm.adoc#hcp-bm-access_hcp-manage-bm[Accessing the hosted cluster].
-* To add hosts to the host inventory by using the Discovery Image, see link:https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.13/html/clusters/cluster_mce_overview#add-host-host-inventory[Adding hosts to the host inventory by using the Discovery Image].
-* To extract the {product-title} release image digest, see link:https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.13/html/clusters/cluster_mce_overview#configure-hosted-disconnected-digest-image[Extracting the {product-title} release image digest].
+[role="_additional-resources"]
+.Additional resources
+* link:https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.13/html/clusters/cluster_mce_overview#creating-a-credential-for-an-on-premises-environment[Creating a credential for an on-premises environment]
+* link:https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.13/html/clusters/cluster_mce_overview#add-host-host-inventory[Adding hosts to the host inventory by using the Discovery Image]
 
 include::modules/hcp-bm-verify.adoc[leveloffset=+1]
+
+include::modules/hcp-bm-access.adoc[leveloffset=+1]
+include::modules/hcp-bm-scale-np.adoc[leveloffset=+1]
+include::modules/hcp-bm-add-np.adoc[leveloffset=+2]
+include::modules/hcp-bm-autoscale.adoc[leveloffset=+2]
+include::modules/hcp-bm-autoscale-disable.adoc[leveloffset=+2]
+
+[role="_additional-resources"]
+.Additional resources
+* xref:../../hosted_control_planes/hcp-troubleshooting.adoc#scale-down-data-plane_hcp-troubleshooting[Scaling down the data plane to zero]
+
+include::modules/hcp-bm-ingress.adoc[leveloffset=+1]
+
+[role="_additional-resources"]
+.Additional resources
+* xref:../../networking/networking_operators/metallb-operator/about-metallb.adoc#about-metallb_about-metallb[About MetalLB and the MetalLB Operator]

hosted_control_planes/hcp-deploy/hcp-deploy-ibm-power.adoc

@@ -37,7 +37,17 @@ include::modules/hcp-ibm-power-infra-reqs.adoc[leveloffset=+1]
 include::modules/hcp-ibm-power-dns.adoc[leveloffset=+1]
 include::modules/hcp-custom-dns.adoc[leveloffset=+2]
 
-include::modules/hcp-bm-hc.adoc[leveloffset=+1]
+[id="hcp-bm-create-hc-ibm-power"]
+== Creating a hosted cluster on bare metal
+
+When you create a hosted cluster with the Agent platform, the HyperShift Operator installs the Agent Cluster API provider in the hosted control plane namespace. You can create a hosted cluster on bare metal or you can import one.
+
+include::modules/hcp-bm-hc.adoc[leveloffset=+2]
+
+[role="_additional-resources"]
+.Additional resources
+* xref:../../hosted_control_planes/hcp-import.adoc[Manually importing a hosted cluster]
+* link:https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.13/html/clusters/cluster_mce_overview#configure-hosted-disconnected-digest-image[Extracting the {product-title} release image digest]
 
 [id="hcp-ibm-power-heterogeneous-nodepools_{context}"]
 == Creating heterogeneous node pools on agent hosted clusters

hosted_control_planes/hcp-deploy/hcp-deploy-ibmz.adoc

@@ -43,11 +43,17 @@ include::modules/hcp-ibm-z-infra-reqs.adoc[leveloffset=+1]
 include::modules/hcp-ibm-z-dns.adoc[leveloffset=+1]
 include::modules/hcp-custom-dns.adoc[leveloffset=+2]
 
-include::modules/hcp-bm-hc.adoc[leveloffset=+1]
+[id="hcp-bm-create-hc-ibm-z"]
+== Creating a hosted cluster on bare metal
+
+When you create a hosted cluster with the Agent platform, the HyperShift Operator installs the Agent Cluster API provider in the hosted control plane namespace. You can create a hosted cluster on bare metal or you can import one.
+
+include::modules/hcp-bm-hc.adoc[leveloffset=+2]
 
 [role="_additional-resources"]
 .Additional resources
-
+* xref:../../hosted_control_planes/hcp-import.adoc[Manually importing a hosted cluster]
+* link:https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.13/html/clusters/cluster_mce_overview#configure-hosted-disconnected-digest-image[Extracting the {product-title} release image digest]
 * xref:../../hosted_control_planes/hcp-deploy/hcp-deploy-bm.adoc#hcp-bm-hc-console_hcp-deploy-bm[Creating a hosted cluster on bare metal by using the console]
 
 include::modules/hcp-ibm-z-infraenv.adoc[leveloffset=+1]

hosted_control_planes/hcp-deploy/hcp-deploy-non-bm.adoc

@@ -74,7 +74,7 @@ include::modules/hcp-bm-hc-mirror.adoc[leveloffset=+2]
 
 * To create credentials that you can reuse when you create a hosted cluster with the console, see link:https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.13/html/clusters/cluster_mce_overview#creating-a-credential-for-an-on-premises-environment[Creating a credential for an on-premises environment].
 
-* To access a hosted cluster, see xref:../../hosted_control_planes/hcp-manage/hcp-manage-bm.adoc#hcp-bm-access_hcp-manage-bm[Accessing the hosted cluster].
+* To access a hosted cluster, see xref:../../hosted_control_planes/hcp-deploy/hcp-deploy-bm.adoc#hcp-bm-access_hcp-deploy-bm[Accessing the hosted cluster].
 
 * To add hosts to the host inventory by using the Discovery Image, see link:https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.13/html/clusters/cluster_mce_overview#add-host-host-inventory[Adding hosts to the host inventory by using the Discovery Image].
 

hosted_control_planes/hcp-manage/hcp-manage-bm.adoc

@@ -8,28 +8,9 @@ toc::[]
 
 After you deploy {hcp} on bare metal, you can manage a hosted cluster by completing the following tasks.
 
-include::modules/hcp-bm-access.adoc[leveloffset=+1]
-include::modules/hcp-bm-scale-np.adoc[leveloffset=+1]
-include::modules/hcp-bm-add-np.adoc[leveloffset=+2]
-include::modules/hcp-bm-autoscale.adoc[leveloffset=+2]
-include::modules/hcp-bm-autoscale-disable.adoc[leveloffset=+2]
-
-[role="_additional-resources"]
-.Additional resources
-
-* xref:../../hosted_control_planes/hcp-troubleshooting.adoc#scale-down-data-plane_hcp-troubleshooting[Scaling down the data plane to zero]
-
-include::modules/hcp-bm-ingress.adoc[leveloffset=+1]
-
-[role="_additional-resources"]
-.Additional resources
-
-* xref:../../networking/networking_operators/metallb-operator/about-metallb.adoc#about-metallb_about-metallb[About MetalLB and the MetalLB Operator]
-
 include::modules/hcp-bm-machine-health.adoc[leveloffset=+1]
 include::modules/hcp-bm-machine-health-disable.adoc[leveloffset=+1]
 
 [role="_additional-resources"]
 .Additional resources
-
 * xref:../../machine_management/deploying-machine-health-checks.adoc#deploying-machine-health-checks[Deploying machine health checks]

modules/hcp-bm-access.adoc

@@ -1,6 +1,6 @@
 // Module included in the following assemblies:
 //
-// * hosted_control_planes/hcp-manage/hcp-manage-bm.adoc
+// * hosted_control_planes/hcp-deploy/hcp-deploy-bm.adoc
 // * hosted_control_planes/hcp-manage/hcp-manage-non-bm.adoc
 
 :_mod-docs-content-type: PROCEDURE

modules/hcp-bm-add-nodes-to-inventory.adoc

@@ -0,0 +1,246 @@
+// Module included in the following assemblies:
+//
+// * hosted_control_planes/hcp-deploy/hcp-deploy-bm.adoc
+
+
+:_mod-docs-content-type: PROCEDURE
+[id="hcp-bm-add-nodes-to-inventory_{context}"]
+= Adding bare-metal nodes to a hardware inventory
+
+On {hcp}, the control-plane components run as pods on the management cluster while the data plane runs on dedicated nodes. You can use the Assisted Service to boot your hardware with a discovery ISO that adds your hardware to a hardware inventory. Later, when you create a hosted cluster, the hardware from the inventory is used to provision the data-plane nodes. The object that is used to get the discovery ISO is an `InfraEnv` resource. You need to create a `BareMetalHost` object that configures the cluster to boot the bare-metal node from the discovery ISO.
+
+.Procedure
+
+. Create a namespace to store your hardware inventory by entering the following command:
++
+[source,terminal]
+----
+$ oc --kubeconfig ~/<directory_example>/mgmt-kubeconfig create \
+  namespace <namespace_example>
+----
++
+where:
++
+<directory_example>:: Is the name of the directory where the kubeconfig file for the management cluster is saved.
+<namespace_example>:: Is the name of the namespace that you are creating; for example, `hardware-inventory`.
++
+.Example output
+[source,terminal]
+----
+namespace/hardware-inventory created
+----
+
+. Copy the pull secret of the management cluster by entering the following command:
++
+[source,terminal]
+----
+$ oc --kubeconfig ~/<directory_example>/mgmt-kubeconfig \
+  -n openshift-config get secret pull-secret -o yaml \
+  | grep -vE "uid|resourceVersion|creationTimestamp|namespace" \
+  | sed "s/openshift-config/<namespace_example>/g" \
+  | oc --kubeconfig ~/<directory_example>/mgmt-kubeconfig \
+  -n <namespace> apply -f -
+----
++
+where:
++
+<directory_example>:: Is the name of the directory where the kubeconfig file for the management cluster is saved.
+<namespace_example>:: Is the name of the namespace that you are creating; for example, `hardware-inventory`.
++
+.Example output
+[source,terminal]
+----
+secret/pull-secret created
+----
+
+. Create the InfraEnv resource by adding the following content to a YAML file:
++
+[source,yaml]
+----
+apiVersion: agent-install.openshift.io/v1beta1
+kind: InfraEnv
+metadata:
+  name: hosted
+  namespace: <namespace_example>
+spec:
+  additionalNTPSources:
+  - <ip_address>
+  pullSecretRef:
+    name: pull-secret
+  sshAuthorizedKey: <ssh_public_key>
+----
+
+. Apply the changes to the YAML file by entering the following command:
++
+[source,terminal]
+----
+$ oc apply -f <infraenv_config>.yaml
+----
++
+Replace `<infraenv_config>` with the name of your file.
+
+. Verify that the `InfraEnv` resource was created by entering the following command:
++
+[source,terminal]
+----
+$ oc --kubeconfig ~/<directory_example>/mgmt-kubeconfig \
+  -n <namespace_example> get infraenv hosted
+----
+
+. Create `BareMetalHost` objects by adding the following content to a YAML file:
++
+[NOTE]
+====
+When you apply this YAML file the following objects are created: secrets with credentials for the Baseboard Management Controller (BMCs), the `BareMetalHost` objects, and a role for the HyperShift Operator to be able to manage the agents. Notice how the `InfraEnv` resource is referenced in the `BareMetalHost` objects by using the `infraenvs.agent-install.openshift.io: hosted` custom label. This ensures that the nodes are booted with the ISO generated.
+====
++
+[source,yaml]
+----
+apiVersion: v1
+kind: Secret
+metadata:
+  name: hosted-worker0-bmc-secret
+  namespace: <namespace_example>
+data:
+  password: <password>
+  username: <username>
+type: Opaque
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: hosted-worker1-bmc-secret
+  namespace: <namespace_example>
+data:
+  password: <password>
+  username: <username>
+type: Opaque
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: hosted-worker2-bmc-secret
+  namespace: <namespace_example>
+data:
+  password: <password>
+  username: <username>
+type: Opaque
+---
+apiVersion: metal3.io/v1alpha1
+kind: BareMetalHost
+metadata:
+  name: hosted-worker0
+  namespace: <namespace_example>
+  labels:
+    infraenvs.agent-install.openshift.io: hosted
+  annotations:
+    inspect.metal3.io: disabled
+    bmac.agent-install.openshift.io/hostname: hosted-worker0
+spec:
+  automatedCleaningMode: disabled
+  bmc:
+    disableCertificateVerification: True
+    address: <bmc_address>
+    credentialsName: hosted-worker0-bmc-secret
+  bootMACAddress: aa:aa:aa:aa:02:01
+  online: true
+---
+apiVersion: metal3.io/v1alpha1
+kind: BareMetalHost
+metadata:
+  name: hosted-worker1
+  namespace: <namespace_example>
+  labels:
+    infraenvs.agent-install.openshift.io: hosted
+  annotations:
+    inspect.metal3.io: disabled
+    bmac.agent-install.openshift.io/hostname: hosted-worker1
+spec:
+  automatedCleaningMode: disabled
+  bmc:
+    disableCertificateVerification: True
+    address: <bmc_address>
+    credentialsName: hosted-worker1-bmc-secret
+  bootMACAddress: aa:aa:aa:aa:02:02
+  online: true
+---
+apiVersion: metal3.io/v1alpha1
+kind: BareMetalHost
+metadata:
+  name: hosted-worker2
+  namespace: <namespace_example>
+  labels:
+    infraenvs.agent-install.openshift.io: hosted
+  annotations:
+    inspect.metal3.io: disabled
+    bmac.agent-install.openshift.io/hostname: hosted-worker2
+spec:
+  automatedCleaningMode: disabled
+  bmc:
+    disableCertificateVerification: True
+    address: <bmc_address>
+    credentialsName: hosted-worker2-bmc-secret
+  bootMACAddress: aa:aa:aa:aa:02:03
+  online: true
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  name: capi-provider-role
+  namespace: <namespace_example>
+rules:
+- apiGroups:
+  - agent-install.openshift.io
+  resources:
+  - agents
+  verbs:
+  - '*'
+----
++
+where:
++
+<namespace_example>:: Is the your namespace.
+<password>:: Is the password for your secret.
+<username>:: Is the user name for your secret.
+<bmc_address>:: Is the BMC address for the `BareMetalHost` object.
+
+. Apply the changes to the YAML file by entering the following command:
++
+[source,terminal]
+----
+$ oc apply -f <bare_metal_host_config>.yaml
+----
++
+Replace `<bare_metal_host_config>` with the name of your file.
+
+. Enter the following command, and then wait a few minutes for the `BareMetalHost` objects to move to the `Provisioning` state:
++
+[source,terminal]
+----
+$ oc --kubeconfig ~/<directory_example>/mgmt-kubeconfig -n <namespace_example> get bmh
+----
++
+.Example output
+[source,terminal]
+----
+NAME             STATE          CONSUMER   ONLINE   ERROR   AGE
+hosted-worker0   provisioning              true             106s
+hosted-worker1   provisioning              true             106s
+hosted-worker2   provisioning              true             106s
+----
+
+. Enter the following command to verify that nodes are booting and showing up as agents. This process can take a few minutes, and you might need to enter the command more than once.
++
+[source,terminal]
+----
+$ oc --kubeconfig ~/<directory_example>/mgmt-kubeconfig -n <namespace_example> get agent
+----
++
+.Example output
+[source,terminal]
+----
+NAME                                   CLUSTER   APPROVED   ROLE          STAGE
+aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaa0201             true       auto-assign
+aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaa0202             true       auto-assign
+aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaa0203             true       auto-assign
+----