Add a bare metal host using CLI

This section describes how to add bare metal hosts using the Container Cloud CLI during a managed cluster creation.

To add a bare metal host:

1. Create a project for MOSK clusters.

2. Configure BIOS on a bare metal host.

3. Log in to the host where your management cluster kubeconfig is located and where kubectl is installed.

4. Describe the unique credentials of the new bare metal host:

   MOSK 22.5 and later

   Create a YAML file that describes the unique credentials of the new bare metal host as a BareMetalHostCredential object.

   apiVersion: kaas.mirantis.com/v1alpha1
   kind: BareMetalHostCredential
   metadata:
     labels:
       kaas.mirantis.com/provider: baremetal
       kaas.mirantis.com/region: region-one
     name: <bare-metal-host-credential-unique-name>
     namespace: <managed-cluster-project-name>
   spec:
     username: <ipmi-user-name>
     password:
       value: <ipmi-user-password>
   

   • In the metadata section, add a unique credentials name and the name of the non-default project (namespace) dedicated for the managed cluster being created.

   • In the spec section, add the IPMI user name and password in plain text to access the Baseboard Management Controller (BMC). The password will not be stored in the BareMetalHostCredential object but will be erased and saved in an underlying Secret object.

   Caution

   Each bare metal host must have a unique BareMetalHostCredential. For details about the BareMetalHostCredential object, refer to Mirantis Container Cloud API Reference: BareMetalHostCredential.

   Note

   The kaas.mirantis.com/region label is removed from all Container Cloud and MOSK objects in 24.1.

   Therefore, do not add the label starting with these releases. On existing clusters updated to these releases, or if added manually, Container Cloud ignores this label.

   MOSK 22.4 and earlier

   Create a secret YAML file that describes the unique credentials of the new bare metal host. Example of the bare metal host secret:

   apiVersion: v1
   data:
     password: <credentials-password>
     username: <credentials-user-name>
   kind: Secret
   metadata:
     labels:
       kaas.mirantis.com/credentials: "true"
       kaas.mirantis.com/provider: baremetal
       kaas.mirantis.com/region: region-one
     name: <credentials-name>
     namespace: <managed-cluster-project-name>
   type: Opaque
   

   • In the data section, add the IPMI user name and password in the base64 encoding to access the BMC. To obtain the base64-encoded credentials, you can use the following command in your Linux console:

     echo -n <username|password> | base64
     

     Caution

     Each bare metal host must have a unique Secret.

   • In the metadata section, add the unique name of credentials and the name of the non-default project (namespace) dedicated for the managed cluster being created.

5. Apply this secret YAML file to your deployment:

   Warning

   The kubectl apply command automatically saves the applied data as plain text into the kubectl.kubernetes.io/last-applied-configuration annotation of the corresponding object. This may result in revealing sensitive data in this annotation when creating or modifying the object.

   Therefore, do not use kubectl apply on this object. Use kubectl create, kubectl patch, or kubectl edit instead.

   If you used kubectl apply on this object, you can remove the kubectl.kubernetes.io/last-applied-configuration annotation from the object using kubectl edit.

   kubectl create -n <managedClusterProjectName> -f ${<bmh-cred-file-name>}.yaml
   

6. Create a YAML file that contains a description of the new bare metal host:

   Since the management cluster update to 16.4.0 (MCC 2.29.0)

   Caution

   While the Cluster release of the management cluster is 16.4.0, BareMetalHostInventory operations are allowed to m:kaas@management-admin only. This limitation is lifted once the management cluster is updated to the Cluster release 16.4.1 or later.

   apiVersion: kaas.mirantis.com/v1alpha1
   kind: BareMetalHostInventory
   metadata:
     annotations:
       inspect.metal3.io/hardwaredetails-storage-sort-term: hctl ASC, wwn ASC, by_id ASC, name ASC
     labels:
       kaas.mirantis.com/baremetalhost-id: <unique-bare-metal-host-hardware-node-id>
       kaas.mirantis.com/provider: baremetal
     name: <bare-metal-host-unique-name>
     namespace: <managed-cluster-project-name>
   spec:
     bmc:
       address: <ip-address-for-bmc-access>
       bmhCredentialsName: <bare-metal-host-credential-unique-name>
     bootMACAddress: <bare-metal-host-boot-mac-address>
     online: true
   

   Note

   If you have a limited amount of free and unused IP addresses for server provisioning, you can add the baremetalhost.metal3.io/detached annotation that pauses automatic host management to manually allocate an IP address for the host. For details, see Manually allocate IP addresses for bare metal hosts.

   Before the management cluster update to 16.4.0 (MCC 2.29.0)

   apiVersion: metal3.io/v1alpha1
   kind: BareMetalHost
   metadata:
     annotations:
       kaas.mirantis.com/baremetalhost-credentials-name: <bare-metal-host-credential-unique-name>
     labels:
       kaas.mirantis.com/baremetalhost-id: <unique-bare-metal-host-hardware-node-id>
       hostlabel.bm.kaas.mirantis.com/worker: "true"
       kaas.mirantis.com/provider: baremetal
       kaas.mirantis.com/region: region-one
     name: <bare-metal-host-unique-name>
     namespace: <managed-cluster-project-name>
   spec:
     bmc:
       address: <ip-address-for-bmc-access>
       credentialsName: ''
     bootMACAddress: <bare-metal-host-boot-mac-address>
     online: true
   

   Note

   The kaas.mirantis.com/region label is removed from all Container Cloud and MOSK objects in 24.1.

   Therefore, do not add the label starting with these releases. On existing clusters updated to these releases, or if added manually, Container Cloud ignores this label.

   Note

   If you have a limited amount of free and unused IP addresses for server provisioning, you can add the baremetalhost.metal3.io/detached annotation that pauses automatic host management to manually allocate an IP address for the host. For details, see Manually allocate IP addresses for bare metal hosts.

   MOSK 22.4 and earlier

   apiVersion: metal3.io/v1alpha1
   kind: BareMetalHost
   metadata:
     labels:
       kaas.mirantis.com/baremetalhost-id: <unique-bare-metal-host-hardware-node-id>
       hostlabel.bm.kaas.mirantis.com/worker: "true"
       kaas.mirantis.com/provider: baremetal
       kaas.mirantis.com/region: region-one
     name: <bare-metal-host-unique-name>
     namespace: <managed-cluster-project-name>
   spec:
     bmc:
       address: <ip-address-for-bmc-access>
       credentialsName: <credentials-name>
     bootMACAddress: <bare-metal-host-boot-mac-address>
     online: true
   

   For a detailed fields description, see Mirantis Container Cloud API Reference: BareMetalHostInventory and BareMetalHost.

7. Apply this configuration YAML file to your deployment:

   kubectl create -n <managedClusterProjectName> -f ${<bare-metal-host-config-file-name>}.yaml
   

   During provisioning, baremetal-operator inspects the bare metal host and moves it to the Preparing state. The host becomes ready to be linked to a bare metal machine.

   Caution

   If changing or adding of DHCP subnets is required to bootstrap new nodes, wait after changing or adding of DHCP subnets until the dnsmasq pod becomes ready, then create bare metal host objects as described above.

   For details about the related issue, refer to Inspection error on bare metal hosts after dnsmasq restart.

8. Verify the new bare metal host object status:

   kubectl -n <managed-cluster-project-name> get bmh -o wide <bare-metal-host-unique-name>
   

   Example of system response:

   NAMESPACE    NAME   STATUS   STATE      CONSUMER  BMC                        BOOTMODE  ONLINE  ERROR  REGION
   my-project   bmh1   OK       preparing            ip-address-for-bmc-access  legacy    true           region-one
   

   During provisioning, the status changes as follows:

   1. registering

   2. inspecting

   3. preparing

9. After the bare metal host object switches to the preparing stage, the inspecting phase finishes and you can verify that hardware information is available in the object status and matches the MOSK cluster hardware requirements. For example:

   • Verify the status of hardware NICs:

     kubectl -n <managed-cluster-project-name> get bmh <bare-metal-host-unique-name> -o json |  jq -r '[.status.hardware.nics]'
     

     Example of system response:

     [
       [
         {
           "ip": "172.18.171.32",
           "mac": "ac:1f:6b:02:81:1a",
           "model": "0x8086 0x1521",
           "name": "eno1",
           "pxe": true
         },
         {
           "ip": "fe80::225:90ff:fe33:d5ac%ens1f0",
           "mac": "00:25:90:33:d5:ac",
           "model": "0x8086 0x10fb",
           "name": "ens1f0"
         },
      ...
     

   • Verify the status of RAM:

     kubectl -n <managed-cluster-project-name> get bmh <bare-metal-host-unique-name> -o json |  jq -r '[.status.hardware.ramMebibytes]'
     

     Example of system response:

     [
       98304
     ]
     

Now, proceed with Create a custom bare metal host profile.