Terraform can be used for managing the ELMS infrastructure on Azure. You can find the definitions in the terraform folder. Terraform can be set up locally and resources can be deployed to a chosen Azure subscription.
There are two deployment options:
- Option 1: Select
terraform/environments/basic-elmsif you want to use your existing IoT Hub and IoT Edge devices and deploy only the ELMS resources. - Option 2: Select
terraform/environments/extended-elmsif you want to create a sandbox environment with a new IoT Hub, IoT Edge device linked with a VM and the ELMS resources.
The following steps are needed to achieve this:
- Install Docker Desktop.
- Install Visual Studio Code extension Remote - Containers.
- Open project in a devcontainer. Run the
Remote-Containers: Open Folder in Container...command and select the local folder.
After that you will have all the needed tools, so continue with step 2.
Open a terminal, run the following commands and, if needed, select the Azure subscription which will be targeted by the Terraform deployment:
az login
az account set --subscription="<subscription_id>"When running Terraform for the first time against an Azure subscription, the backend must be created. In the existing Terraform configuration, the backend will be stored in Azure as it provides additional security for the state file. It consists of an Azure storage account and a container which will be used to store the Terraform state file. It is important to note that this storage account will not be managed by Terraform and must be created manually. The storage account name must be globally unique within Azure.
The Terraform backend can be set up by running the init-tfstate-storage.sh script, located in the terraform/scripts folder and providing the required parameters (resource_group_name=$1, location=$2, storage_account_name=$3).
cd terraform/scripts
./init-tfstate-storage.sh "<resource_group_name>" "<location>" "<storage_account_name>"Should a user prefer to not use an Azure storage account and store the Terraform backend locally, then the following code snippet must be removed from the terraform/environments/<target_environment>/main.tf and the above script won't be required anymore.
backend "azurerm" {
}Select a <target_environment>. It is either basic-elms or extended-elms.
cd terraform/environments/<target_environment>If using
-
local backend, run:
terraform init
-
Azure backend, run:
terraform init -backend-config=backend.tfvars -backend-config=storage_account_name="<storage_account_name>"The
storage_account_nameis the name of the storage account created in the previous step. The other necessary variables are taken from thebackend.tfvarsfile which contains the values used in theinit-tfstate-storage.shscript.
The actual provisioning of the resources happens in this step. The command will display what are the differences between the terraform state file and the new local changes and will prompt manual input of the response yes to begin provisioning.
Depending on the chosen target_environment, you will need to provide several parameters, specifically those that do not have a default value assigned in the environments/<target_environment>/variable.tf file.
If you want to use the Monitoring architecture, then you need to change the default value of the following variable: send_metrics_device_to_cloud to true.
The default values of any other variables can be overridden by specifying additional parameters in the apply command.
This command has an impact on the pre-existent IoT Hub. It adds a new IoT Hub endpoint and route. Before agreeing to apply the changes, make sure to carefully review the Terraform plan so that there is no unwanted impact to the existing IoT Hub message routing.
cd terraform/environments/basic-elms
terraform apply -var location="<location>" -var rg_name="<rg-name>" -var iothub_id="<iothub-resource-id>" -var iothub_name="<iothub-name>"Apart from the ELMS specific resources, this command will create a resource group, an IoT Hub and an Edge device with a linked VM.
cd terraform/environments/extended-elms
terraform apply -var location="<location>"If your chosen target-environment is basic-elms then add the tag logPullEnabled="true" to your IoT edge devices' twins to allow log pulling from the modules. This can be done in the Azure Portal or with the following command:
az iot hub device-twin update --device-id <edge_device_name> --hub-name <iothub_name> --tags '{"logPullEnabled": "true"}'If you choose extended-elms, then no action is needed as the tag is automatically applied to the Edge device.
The entire infrastructure can be deleted by running:
cd terraform/environments/<target_environment>
terraform destroy