HyperShift Self-Managed Azure (Developer Preview) - Getting Started Guide
Welcome to the HyperShift self-managed Azure onboarding repository. This guide will help you deploy OpenShift hosted control planes on your own Azure infrastructure using HyperShift.
What is HyperShift?
HyperShift enables you to deploy and manage OpenShift hosted control planes on a management cluster. For self-managed Azure deployments, this means:
- Reduced costs: Run multiple OpenShift control planes as pods on a shared management cluster
- Improved density: Host dozens of control planes on the same infrastructure
- Simplified management: Centralize control plane operations while isolating workload data planes
- Increased flexibility: Choose your own management cluster platform and customize networking
Who Is This For?
This guide is designed for:
- OpenShift Administrators looking to deploy hosted clusters on Azure
- Platform Engineers managing multi-tenant OpenShift environments
- SREs responsible for OpenShift infrastructure on Azure
What You'll Build
By the end of this guide, you will have:
- Azure Foundation: The Azure infrastructure needed to successfully setup HyperShift and create clusters (OIDC issuer, managed identities, networking)
- Management Cluster Setup: HyperShift operator installed and configured on your OpenShift management cluster
- Hosted Cluster: A fully functional OpenShift cluster with control plane running on the management cluster and worker nodes running as Azure VMs
- Working Knowledge: Understanding of HyperShift architecture and day-2 operations
Architecture you'll create:
Operator"] ControlPlane["Hosted Cluster
Control Plane
(Pods)"] end subgraph HostedCluster["Hosted Cluster"] direction LR Worker1["Worker Node
(Azure VMs)"] Worker2["Worker Node
(Azure VMs)"] end subgraph Shared["Shared Resources"] SharedItems["• Managed Identities
• OIDC Issuer
• DNS Zones (Optional)"] end ControlPlane -.->|manages| HostedCluster end
Your Learning Path
Follow this structured path to deploy your first hosted cluster:
| Phase | Topic | What You'll Learn |
|---|---|---|
| 1 | Understanding | HyperShift architecture, security model, and resource lifecycle |
| 2 | Azure Planning | Azure-specific requirements, permissions, and decision points |
| 3 | Workflow & Setup | Repository structure, tool installation, and configuration options |
| 4 | Azure Foundation | Create OIDC issuer, managed identities, and persistent resources |
| 5 | Management Cluster | Install HyperShift operator and configure External DNS (optional) |
| 6 | Hosted Cluster | Deploy your first hosted cluster with network infrastructure |
| 7 | Day 2 Operations | Scaling, upgrades, and ongoing cluster management |
| 8 | Troubleshooting | Diagnostic procedures and solutions for common issues |
| 9 | Reference | Command reference, appendices, and quick-reference guides |
About Task
This repository uses Task to automate deployment workflows. Task is a task runner and build tool that makes it easy to define and run commands in a clear, organized way.
Why Task?
Task provides self-contained, descriptive recipes that make complex operations simple:
- Readable commands: Each task has a clear name and description (e.g.,
task azure:oidc- "Create OIDC issuer") - Bundled operations: Related commands are grouped together in logical tasks
- Transparent execution: See exactly what commands are being run under the hood
- Flexible workflows: Run individual tasks step-by-step or orchestrate full deployments
- Reproducible: Same commands work consistently across different environments
All Task commands shown in this guide use standard CLI tools (az, ccoctl, hypershift). The documentation includes "Under the hood" sections showing the actual commands being executed, so you can learn and adapt them for your own workflows.
Deployment Approaches
This repository provides two workflows:
Run each phase individually using Taskfile tasks. This approach helps you:
- Understand what happens at each stage
- Troubleshoot issues more easily
- Learn the underlying Azure and HyperShift concepts
Example:
task prereq:validate # Check prerequisites
task azure:oidc # Create OIDC issuer
task azure:identities # Create managed identities
task cluster:create # Deploy hosted cluster
Run the complete deployment with one command:
task setup # Orchestrates all phases automatically
Best for: Quick deployment, automation, when already familiar with the process
All tasks use the same CLI commands (az, ccoctl, hypershift). The documentation shows the underlying commands in "Under the hood" sections for educational purposes.