There are several approaches you can use to provision your environment, including ARM templates, PowerShell, Terraform and Azure CLI. They all have their advantages and disadvantages which is a whole sperate topic.
For the sake of this lab with have included two detailed labs using Azure CLI and Terraform, and a quickstart single script that can run in the Azure Portal Cloud Shell.
To Create all the resources needed for the lab in Azure, login into the Azure Portal and open the cloud shell highlighted with the red box in the screenshot below.
Copy the script below and replace <enter-a-unique-name-here> with your own resource group name without dashes or underscores. Then right click on the Cloud Shell bash window and paste in the script.
# Sets a random resource and resource group name
RG_NAME=aks$(date +%s%N | md5sum | cut -c1-6)
#Create Resource Group
az group create --name $RG_NAME --location westeurope
# Create Container Registry (ACR)
ACR_Name="${RG_NAME}ACR"
az acr create --resource-group $RG_NAME --name $ACR_Name --sku Standard --admin-enabled
# Create Cluster
AKS_Name="${RG_NAME}-akscluster"
az aks create \
--resource-group $RG_NAME \
--name $AKS_Name \
--node-count 3 \
--enable-addons http_application_routing \
--generate-ssh-keys \
--network-plugin azure \
--network-policy azure
# Connect to cluster
az aks get-credentials --resource-group $RG_NAME --name $AKS_Name
# Create Namespaces
kubectl create namespace dev
kubectl create namespace prod
# Create ClusterRoleBinding for Dashboard
kubectl create clusterrolebinding kubernetes-dashboard -n kube-system --clusterrole=cluster-admin --serviceaccount=kube-system:kubernetes-dashboard
# Install Nginx
helm repo add stable https://kubernetes-charts.storage.googleapis.com/
helm repo update
kubectl create clusterrolebinding kubernetes-default -n kube-system --clusterrole=cluster-admin --serviceaccount=kube-system:default
sleep 60s # hack needed to give tiller to sort its self out.
helm install stable/nginx-ingress --generate-name
This script can take upto half an hour to run, but once its finished you should have a new resource group with an Azure Container Registry and an AKS Cluster.
The cluster will have 'dev' and 'prod' namesapces installed along with a secret that enables it to pull images down from your private Azure Container Registry.
Now you should have successfully created a Kubernetes cluster (AKS) and an Azure Container Registry (ACR) to store your Docker images. You have also given AKS the authentication required to pull images from your private ACR.
This section is NOT REQUIRED for the lab
Alternatively, if you have more time and want to understand how we create each component, then you can follow the more detail step by step instructions for the Azure CLI or Terraform.
Before running through either of the options below you first need to login using the Azure CLI
az login
You then have the optional step of setting which subscription you would like to use in the current context.
az account set --subscription {subscription_guid}