# Enterprise Deployment Guide for Azure
Deploying RagaAI Prism on your Azure infrastructure ensures that your data remains secure and within your control. Follow these steps to set up RagaAI Prism in your Azure account.
1. [Provision Base Infrastructure](#provision-base-infrastructure)
2. [Installation Execution](#install-raga-prism)
3. [Verify Installation](#access-raga-prism)
## Provision Base Infrastructure
To get started quickly, you can use the Terraform Templates and scripts provided by the Raga team:
### Pre-Requirements
* **Set Up Azure User:** The user running the installation should have Contributor and User Access Administrator roles. Alternatively, create a dedicated [custom role](https://raga-catalyst-aws.s3.ap-south-1.amazonaws.com/azure_user_custome_role.json) with specific permissions.
* **Resource Provider Quotas:** Ensure that you have sufficient quota for the Standard\_D8a\_v4 VMs, each with minimum 24 available vCPUs, in your target region for AKS Node Pools.
* Ensure that your system supports Bash commands
* The following CLI tools should be installed:
* [terraform](https://developer.hashicorp.com/terraform/install)
* [azure cli](https://learn.microsoft.com/en-us/cli/azure/install-azure-cli)
* [python](https://www.python.org/downloads/)
### Azure Login using CLI
Option A: Using az login
```bash
az login
```
This will open a browser window for authentication.
Option B: Using Service Principal
```bash
export AZURE_CLIENT_ID=your-client-id
export AZURE_CLIENT_SECRET=your-client-secret
export AZURE_TENANT_ID=your-tenant-id
export AZURE_SUBSCRIPTION_ID=your-subscription-id
```
**Validate Azure CLI Login:**
```bash
az account show
```
### Execute the following command to Provision the Environment:
Extract the TAR file provided by the RagaAI team:
```bash
tar -zxvf raga-prism-terraform-azure-.tar
```
#### Create Azure Storage Account and Blob Container :
```
az storage account create \
--name \
--resource-group \
--location \
--sku Standard_LRS
az storage container create \
--name \
--account-name
```
Replace placeholders:
* region: Azure deployment region
* resource-group-name: Azure Resource Group name
* storage-account-name: Azure Storage Account name
* container-name: Blob container name (e.g., tfstate)
#### Update Terraform Variables
Update the `terraform.tfvars` with the required values:
* customer\_name: This will be the prefix for all Azure resources
* region: Deployment region
* vnet\_cidr: Your preferred CIDR range
* resource\_group\_name: Azure resource group name
#### Terraform Initialization
Execute the following command for terraform init:
```bash
terraform init \
-backend-config="resource_group_name=" \
-backend-config="storage_account_name=" \
-backend-config="container_name=" \
-backend-config="key=tf/raga/terraform.tfstate" \
-backend-config="region=" \
-var-file=terraform.tfvars
```
#### Terraform Apply
Execute the following command for provision the infra with terraform:
```bash
terraform apply -var-file=terraform.tfvars -auto-approve
```
#### Terraform Output
Get the required details to install Raga Prism in the next step:
```bash
terraform output infrastructure_summary
```
#### List of Azure Resources Provisioned by RagaAI Terraform Infrastructure
> Note: You can also set up your cloud environment using the following requirements as an Alternative to the RagaAI Terraform templates
Storage Account
Create Storage Account with Blob Container and configure CORS with the following settings:
* Allowed Methods: GET, PUT
* Allowed Origins: \* (all origins)
* Allowed Headers: \* (all headers)
* Exposed Headers: none
* Max Age: 3000 seconds
AKS Cluster
* Kubernetes v1.24+ (Recommend containerd runtime)
* Ensure sufficient quota for compute resources
* **Node Pool Configuration:** Minimum of 3 nodes, with each node having the following specifications
* Memory: 32GB
* vCPU: 8
* Disk: 64GB
* Architecture: x86\_64
* **Cluster Add-ons**
* Azure Disk CSI Driver
* **Cluster Autoscaler**
* Enable cluster autoscaler for node pools
Azure Database for MySQL
* SKU: General Purpose
* Compute: 2 vCore
* Memory: 8 GiB RAM
* Storage: 50 GB
* Version: MySQL 8.0
Virtual Machine
* Create a VM in a public subnet to act as a bastion/jump box
* Size: Standard\_B1s (1 vCPU and 1 GB Memory)
* OS Disk: 8 GB
* Network Security Group for bastion host
* Inbound Rules:
* Allow SSH (port 22)
* Outbound Rules:
* Allow all outbound within VNet
* Network Security Group for internal load balancer
* Inbound Rules:
* Allow HTTP (port 80) from VNet
* Allow HTTPS (port 443) from VNet
* Outbound Rules:
* Allow all outbound within VNet
Virtual Network
* Virtual Network with address space
* 2 Public and 2 private subnets
* Route table for private subnets
* NAT Gateway for private subnet outbound
## Install Raga Prism
#### Install Raga Prism:
* SSH into the bastion VM and run the installation command
* [Configure azure cli](#azure-login-using-cli)
* Configure kubectl to interact with your AKS cluster
* Copy the TAR file provided by the RagaAI team into he instance & extract the file
* Update the .env file with the values that you get when you execute the terraform output command
Execute the following command to deploy Prism::
```bash
python3 azure-prism.py
```
Run the Database Migration
```bash
helm install db-migration db-migration -n raga --set release-tag=
```
Install Raga Services
```bash
helm install raga raga -n raga \
--set ReleaseTag=,AzureStorageContainer=,AzureStorageConnectionstring=
```
## Access Raga Prism
Access Prism UI with the private load balancer IP/DNS
* Portal: `http://`
* API: `http:///api`
***
For any issues during the deployment process or additional assistance, please contact our support team at .