Prepare the Equinix Metal configuration

  1. Log in to the Equinix Metal console.

  2. Select the project that you want to use for the Container Cloud deployment.

  3. In Project Settings > General, capture your Project ID.

  4. In Profile Settings > Personal API Keys, capture the existing user-level API Key or create a new one:

    1. In Profile Settings > Personal API Keys, click Add New Key.

    2. Fill in the Description and select the Read/Write permissions.

    3. Click Add Key.

  5. Change the directory to kaas-bootstrap.

  6. In templates/equinix/equinix-config.yaml.template, modify spec:projectID and spec:apiToken:value using the values obtained in the previous steps. For example:

    spec:
      projectID: g98sd6f8-dc7s-8273-v8s7-d9v7395nd91
      apiToken:
        value: Bi3m9c7qjYBD3UgsnSCSsqs2bYkbK
    
  7. In templates/equinix/cluster.yaml.template, modify the default configuration of the Equinix Metal facility depending on the previously prepared capacity settings:

    providerSpec:
      value:
      ...
        facility: am6
    

    Also, modify other parameters as required.

  8. Optional. In templates/equinix/machines.yaml.template, modify the default configuration of the Equinix Metal machine type. The minimal required type is c3.small.x86.

    providerSpec:
      value:
      ...
        machineType: c3.small.x86
    

    Also, modify other parameters as required.

  9. Export the following parameter:

    export KAAS_EQUINIX_ENABLED=true
    
  10. Re-verify that the selected Equinix Metal facility for the management cluster bootstrap is still available and has enough capacity:

    packet-cli capacity check --facility $EQUINIX_FACILITY --plan $EQUINIX_MACHINE_TYPE --quantity $MACHINES_AMOUNT
    

    In the system response, if the value in the AVAILABILITY section has changed from true to false, find an available facility and update the previously configured facility field in cluster.yaml.template.

    For details about the verification procedure, see Verify the capacity of the Equinix Metal facility.

  11. Optional. If you are going to use your own TLS certificates for Keycloak, set DISABLE_OIDC=true in bootstrap.env.