Description
How to Perform a Cloudscale Pre-Check for NetBackup on Azure Kubernetes Service (AKS).
This document outlines the set of commands required to validate the configuration of Azure Kubernetes Service (AKS) clusters and their compatibility with Veritas NetBackup before deployment or upgrade.
These checks ensure that all required resources are available and compatible with NetBackup components.
Step 1: Cluster and Client Validation
1. Check the Kubernetes Version
Command: kubectl version
Ensures kubernetes version is compatible with NetBackup.
Refer - https://www.veritas.com/support/en_US/article.100040093
2. List All Nodes
Command: kubectl get nodes
Confirms nodes are in Ready state and suitable for workload deployment.
Step 2: Check helm charts installed on system.
Command: Helm ls -A
NOTE: For version 10.4, the deployment includes cert-manager, trust-manager, operators, and PostgreSQL Helm charts. Starting from version 10.5, fluentbit will also be included alongside the existing charts.
Netbackup 10.4 - https://sort.veritas.com/doc_viewer/#/?docid=160052279-163463474-0&lang=en_us
Netbackup 10.5 - https://sort.veritas.com/doc_viewer/#/?docid=160052279-165959863-0&lang=en_us
Step 3: Namespace and Resource Validation
1. List All Namespaces
Command: kubectl get namespaces
Identifies available namespaces including NetBackup and supporting components.
2. List All Resources in NetBackup Namespace
Command: kubectl get all -n <Netbackup Namespace>
3. List All Resources in NetBackup Operator Namespace
Command: kubectl get all -n <Netbackup Operator Namespace>
4. List All Resources with Node and IP Details
Command: kubectl get all -n <Namespace_Name> -o wide
Provides extended resource info, aiding in node and IP mapping for diagnostics.
After executing the above commands, verify all the namespaces present in the environment.
Additionally, confirm that all NetBackup-related namespaces and the Operator are in a healthy state.
Examples namespaces include: Primary, Media, NSM, cert-manager, trust-manager, system, etc.
Step 4: Supporting Component Validation
1. Cert-Manager Pod and Deployment Validation
Command: kubectl get pods -n cert-manager -o wide
Verify cert-manager is installed and using a compatible image.
Command: kubectl -n cert-manager get deployment cert-manager -o=jsonpath="{.spec.template.spec.containers[0].image}"
NOTE: Cert-manager version 1.13.3 is compatible with all version starting from Netbackup 10.3.0.1 Version
2. Trust-Manager Pod and Deployment Validation
Command: kubectl get pods -n trust-manager -o wide
Ensures trust-manager is running and image version is compatible.
Command: kubectl get deployment trust-manager -n <namespace> -o=jsonpath="{.spec.template.spec.containers[0].image}"
NOTE: trust-manager version 0.7.0 is compatible with all version starting from Netbackup 10.3.0.1 Version
Step 5: ACR (Azure Container Registry) Image Validation
1. List All Repositories in ACR
Command: az acr repository list --name <your-acr-name> --output table
2. List Tags for a Specific Image Repository
Command: az acr repository show-tags --repository <repositoryname> --name <acr-name>
Verify the availability of required NetBackup container images and versions.
Step 6: NetBackup Custom Resources and Secrets
1. Export All Resources in YAML
Command: kubectl get all -n <Namespace_Name> -o yaml > environment_upgrade_check.yaml
Saves current state for review or rollback purposes.
2. Extract Environment Custom Resources and validate them.
Command: Kubectl get environment -n <netbackup-namespace> -o yaml > environment.yaml
While validating the existing configuration, ensure that no restricted keywords are used as per the guidelines. - https://www.veritas.com/support/en_US/article.100074300.html
Additionally, when upgrading from NetBackup 10.4 to a later version, ensure that the environment.yaml file includes the dbsecret name.
3. List Bundle Custom Resources
Command: kubectl get bundle -n <Namespace_Name>
4. List Secrets in NetBackup Namespace
Command: kubectl get secrets -n <Namespace_Name>
Step 7: Validate DBSecret Password:
1. Validates access credentials are correctly configured.
Command: kubectl get secret <DBSecret_Name> -n netbackup -o jsonpath='{.data.dbadminpassword}' | base64 --decode
Step 8: Validate Maximum Pods Allowed per Node in Each Node Pool
The following requirements apply from NetBackup 10.5 onward, as the Primary Server has been decoupled and Fluent Bit has been introduced.
Primary Pool – Needs a minimum of 60 pods per node
Media Pool – Needs a minimum of 20 pods per node
MSDP Pool – Needs a minimum of 20 pods per node
cpdatapool (Snapshot Manager) – Needs a minimum of 45 pods per node
crcontrol Pool (Snapshot Manager) – Needs a minimum of 45 pods per node
Was this content helpful?
Translated Content
Please note that this document is a translation from English, and may have been machine-translated. It is possible that updates have been made to the original version after this document was translated and published. Veritas does not guarantee the accuracy regarding the completeness of the translation. You may also refer to the English Version of this knowledge base article for up-to-date information.