DeviceOn
  • Get Started
    • ⬇️Resources Download
    • 💡About DeviceOn
      • Feature Highlight
      • Cloud Versions
      • Agent Versions
      • Security Architecture
    • 🛠️Installation and Deployment
      • Server (Standard)
        • Windows
        • Ubuntu
        • Azure Marketplace
        • AWS Marketplace
      • Server (Enterprise)
        • Azure Kubernetes
      • Agent
        • Windows
        • Ubuntu
    • ⏲️Version History
      • Version 5.3.12
      • Version 5.2.4
      • Version 5.1.2
      • Version 5.0.3
      • Version 4.7.2
      • Version 4.6.3
      • Version 4.5.5
      • Version 4.4.2
      • Version 4.3.10
      • Version 4.3.3
      • Version 4.2.3
    • ❓FAQ
      • General
      • Technical
  • SECURITY STANDARD
    • ISA/IEC 62443
    • Compliance
  • User Interface & Functions
    • 💻Server (Standalone)
      • Server Management Tools
      • Background Service
  • 🖥️Agent
    • User Interface
    • Background Services
  • 🏠Web User Interface
    • Overview
    • Device Management
      • Device List
      • Real-time Monitoring & Rule Engine
      • Remote Control & Diagnostic
      • Device Data
      • Device Group
      • Task Management (Batch Control)
      • Provision & Configuration
      • Anomaly Detection
    • App Management (OTA)
    • Container Management
    • System Setting
    • Dashboard
    • Event Logs
    • Account Management
  • LAB
    • 📦Application (OTA)
      • Package and Deploy your Application
      • Security Update for Windows
      • Upgrade DeviceOn Agent in On-premises DeviceOn Server
  • 🔧Out-of-Band
    • Intel AMT
      • Local Management (iAMT)
      • Cross-Network Integration (Open AMT)
    • IPMI
    • AMD DASH
    • Advantech iBMC
    • Advantech EdgeBMC
  • 🌐System
    • Update DeviceOn Server to the Latest Version
    • Enabling Automated Backups and Restores from Backup Archives
    • Enable Passive Mode on FTP Server
    • Enable HTTPs for DeviceOn Web Service
    • License Management
  • ⚒️Managed Devices
    • Set up Device Thresholds and Enable Trigger Notifications
    • Set up the Application Watchdog and Enable Trigger Notifications
    • Visualize Device Data through Grafana Dashboards
    • Onboard Multiple Devices at Once
    • Securely Connect to DeviceOn using x.509 Certificates
    • Enable Windows Lockdown Features
Powered by GitBook
On this page
  • Prerequisites
  • Step 1: Obtain the following three parameters for deployment
  • Step 2: Deploy DeviceOn via Custom Template

Was this helpful?

  1. Get Started
  2. Installation and Deployment
  3. Server (Enterprise)

Azure Kubernetes

PreviousServer (Enterprise)NextAgent

Last updated 1 year ago

Was this helpful?

This document tries to describe, and guide you, how to deploy DeviceOn on Azure cloud. The version is focused on Azure components to integrate to provide security, scalability and high availability.

Microsoft Azure provides lot’s of cloud services with security, scalability and high available. Based on Azure components, DeviceOn could focus on functionalities for device management and data acquisition. We fully integrate with below services:

  • Azure Application Gateway (WAF protection and traffic load balancer), Optional

  • Kubernetes (Container Management)

  • Azure AD (Authentication), Optional

  • Cosmos DB, Azure PostgreSQL (Database)

  • Azure Function, IoTHub (Secure Device Connection)

  • Stream Analytics, Event Hub, Service Bus (Message Bus and Filter)

When you build on Azure’s secure foundation, you accelerate your move to the cloud by achieving compliance more readily, allowing you to enable privacy-sensitive cloud scenarios, such as financial and health service, with confidence.

Prerequisites

To achieve the goal to deploy DeviceOn, some resources have to be acquired and preconditions must be met as well.

  • An active Azure subscription.

Step 1: Obtain the following three parameters for deployment

  • Application ID

  • Password (Client Secrets)

  • Tenant ID

  1. Sign into your Azure account through Azure CLI

Use any way you prefer to open a Command Prompt and enter

az login

  1. Select your Subscription

After you login, the terminal console will list all subscriptions, please select the subscription that you would like to deploy.

az account set --subscription SUBSCRIPTION_NAME

If you don’t know which subscriptions you have, you can use below command to list all the subscriptions, and determine whether the subscription has been selected according to isDefault.

az account list --output table

  1. Create a service principal

The last step to create a service principal and generate these parameters. (1. Application ID, 2. Password and 3. Tenant ID)

az ad sp create-for-rbac --name SERVICE_PRINCIPAL_NAME --role "owner"

If you want to further limit the scope of service principle to resource group, please try to create the resource group, and then use the following command to limit.

az ad sp create-for-rbac --name SERVICE_PRINCIPAL_NAME --role "owner" --scopes /subscriptions/SUBSCRIPTION_ID/resourceGroups/{ResourceGroup1}

Step 2: Deploy DeviceOn via Custom Template

  1. Open the Azure Portal

  1. Enter the following values:

Resource Group

Select the resource group name you created in the last section.

Region

Select a location for the resource group. For example, Southeast Asia.

Application Id

The application Id is obtained from Step 1.

Password

The password is obtained from Step 1.

Tenant Id

The tenant Id is obtained from Step 1.

Email

After deployment, the result/progress will be sent to this email

Location

Enter the location name according to the data center. for examle, Asia East(eastasia), Asia Southeast(southeastasia), Japan East(japaneast), US East(eastus), Europe North(northeurope)

IoTHub Sku

S1/S2/S3, the default is S1, you could adjust the tier from Azure Poral, if need.

IoTHub Unit

default is 1

Activate Key

AKS Max Node Count

Maximum number of Kubernetes nodes to auto-scaling

Utc Value

Fix value for generating unique string

  1. Select Review + create

  2. Validation and start to create.

5. Deployment Process

The entire deployment process takes about 30 minutes. After completion, you will receive a mail notification. The content of the mail includes the DeviceOn web Service IP and login Account password.

Assuming that your mail is intercepted/block or not received due to mail server filters, we will synchronously write this information to the Azure Blob Log container. Go to your resource group (you entered at the stage of deployment) storage account -> container -> Log -> ServerInformation.log. If the container has not been created, please wait a few minutes for initialization.

  1. Result

There are two resource group generated on your subscription, one is you entered at the stage of deployment, which include the services such as: AKS, IoTHub, EventHub, Stream Analytics, CosmosDB, PostgreSQL…etc. Another resource group name prefix name starts with MC, that contains AKS VM node.

An Azure CLI installed on your laptop, please refer to to download and setup. The Azure CLI is available to install in Windows, macOS and Linux environments. It can also be run in a Docker container and Azure Cloud Shell.

Second option, if you don’t want to install Azure CLI, you can also adopt Azure Cloud Shell, please refer to .

Note: If the CLI can open your default browser, it will do so and load a sign-in page. Otherwise, you need to open a browser page and follow the instructions on the command line to enter an authorization code after navigating to in your browser. Sign in with your account credentials in the browser.

Click ->

This will open the Azure Portal () in your subscription and create the required resources.

Advantech hardware connection, enter N/A (free support for 1000 Advantech devices), or please to purchase license key for Non-Advantech devices.

🛠️
Azure documentation
Microsoft documentation
https://aka.ms/devicelogin
portal.azure.com
contact us