Closed LaurentLesle closed 2 years ago
az login --allow-no-subscriptions org_name=contoso rover -bootstrap \ -aad-app-name ${org_name}-platform-landing-zones
Will register the secrets to support OIDC connect from Github actions.
az login org_name=contoso rover -bootstrap \ -aad-app-name ${org_name}-platform-landing-zones \ -gitops-pipelines github
Create or check the Azure bootstrap app id exist register the secrets for Github Actions deployment Set the deployment mode to multi subscriptions
az login org_name=contoso rover -bootstrap \ -aad-app-name ${org_name}-platform-landing-zones \ -gitops-pipelines github \ -gitops-number-runners 4 \ -bootstrap-script '/tf/caf/landingzones/templates/platform/deploy_platform.sh' \ -playbook '/tf/caf/landingzones/templates/platform/caf_platform_prod_nonprod.yaml' \ -subscription-deployment-mode multi_subscriptions \ -sub-management www-guid \ -sub-connectivity xxx-guid \ -sub-identity yyy-guid \ -sub-security zzz-guid
Create only the azure AD application (global admin privilege)
Create or Read (if no global admin privilege) and register the details as secret in Github
Will register the secrets to support OIDC connect from Github actions.
All in one
Create or check the Azure bootstrap app id exist register the secrets for Github Actions deployment Set the deployment mode to multi subscriptions