, the Secure Agent authenticates with the managed identity to store cluster details in the staging location and to create the cluster. The master and worker nodes use the service principal to access cloud resources.
The following image shows the process that the Secure Agent uses to create a cluster:
The following steps describe the process that the Secure Agent uses to create a cluster:
You run a job.
The Secure Agent authenticates with the managed identity to store cluster details in the staging location.
The Secure Agent authenticates with the managed identity to create prerequisite resources that the cluster needs, such as a network security group and load balancer.
The Secure Agent authenticates with the managed identity to get the access keys to the storage accounts.
The Secure Agent authenticates with the managed identity to get the service principal credentials.
The Secure Agent makes the access keys to the storage accounts and the service principal credentials available to the cluster.
The Secure Agent authenticates with the managed identity to create cluster resources for the master node and a Virtual Machine Scale Set for the master node.
The master node uses the service principal to access cloud resources on services on Microsoft Azure like Azure Compute to manage node elasticity and resource optimization.
The master node accesses the initialization script using the storage account key that the Secure Agent fetched through the managed identity.
The Secure Agent authenticates with the managed identity to create cluster resources for the worker nodes and creates a Virtual Machine Scale Set with the minimum number of worker nodes.
The worker nodes use the service principal to access cloud resources on services on Microsoft Azure like Azure Compute to access compute and networking capabilities.
The worker nodes access the initialization script using the storage account key that the Secure Agent fetched through the managed identity.
For more information about how the master and worker roles access cloud resources in an