HyperShift Azure Provider
About
This skill enables developers to deploy HyperShift clusters on Microsoft Azure with automated guidance for identity configuration and resource management. It focuses on self-managed control plane setup, resource group handling, and Azure identity integration. Use it when executing the `/hcp:generate azure` command to streamline the cluster creation process.
Quick Install
Claude Code
Recommended/plugin add https://github.com/openshift-eng/ai-helpersgit clone https://github.com/openshift-eng/ai-helpers.git ~/.claude/skills/HyperShift Azure ProviderCopy and paste this command in Claude Code to install this skill
Documentation
HyperShift Azure Provider
This skill provides implementation guidance for creating HyperShift clusters on Azure, focusing on self-managed control plane configuration, resource group management, and Azure identity integration.
When to Use This Skill
This skill is automatically invoked by the /hcp:generate azure command to guide the Azure provider cluster creation process.
Prerequisites
- Azure CLI configured with appropriate credentials
- Azure subscription with sufficient quotas
- HyperShift operator installed and configured
- Pull secret for accessing OpenShift images
Azure Provider Overview
Azure Provider Peculiarities
- Self-managed control plane only: For ARO HCP use ARO CLI instead
- Resource groups: Auto-created during cluster creation
- Limited region availability: Not all Azure regions support all features
- Azure identity required: Service principal or managed identity configuration
- Virtual network integration: Requires proper VNet configuration
- Control plane runs on Azure VMs: Managed by HyperShift operator
Identity Configuration Options
Choose one of three identity methods:
- Managed + Data Plane Identities: Use
--managed-identities-fileAND--data-plane-identities-file - Workload Identities: Use
--workload-identities-file - OIDC Integration: Use
--oidc-issuer-url
Implementation Steps
Step 1: Parse Environment Requirements
Environment Detection:
- Development: "dev", "testing", "demo" → Standard_D4s_v3, SingleReplica
- Production: "prod", "enterprise" → Standard_D8s_v3+, HighlyAvailable
Step 2: Interactive Parameter Collection
Required Parameters:
-
Cluster Name & Location
🔹 **Cluster Name**: What would you like to name your cluster? 🔹 **Azure Location**: Which Azure region? [default: eastus] -
Identity Configuration Method
🔹 **Identity Method**: Choose Azure identity configuration: 1. Managed + Data Plane Identities (recommended) 2. Workload Identities 3. OIDC Integration -
Resource Group Configuration
🔹 **Resource Group**: Name for the resource group? [default: {cluster-name}-rg]
Step 3: Generate Command
Development Configuration:
hypershift create cluster azure \
--name dev-cluster \
--namespace dev-cluster-ns \
--location eastus \
--pull-secret /path/to/pull-secret.json \
--release-image quay.io/openshift-release-dev/ocp-release:4.18.0-multi \
--resource-group-name dev-cluster-rg \
--base-domain example.com \
--managed-identities-file /path/to/managed-identities.json \
--data-plane-identities-file /path/to/data-plane-identities.json
Production Configuration:
hypershift create cluster azure \
--name production-cluster \
--namespace production-cluster-ns \
--location eastus \
--pull-secret /path/to/pull-secret.json \
--release-image quay.io/openshift-release-dev/ocp-release:4.18.0-multi \
--resource-group-name production-cluster-rg \
--base-domain clusters.company.com \
--managed-identities-file /path/to/managed-identities.json \
--data-plane-identities-file /path/to/data-plane-identities.json \
--control-plane-availability-policy HighlyAvailable
Error Handling
Identity Configuration Issues
Azure identity files not found or invalid.
Required files for managed identity method:
1. managed-identities.json
2. data-plane-identities.json
Generate using Azure CLI:
az identity create --name hypershift-managed-identity
Resource Group Conflicts
Resource group "cluster-rg" already exists.
Options:
1. Use existing resource group (ensure proper permissions)
2. Choose different name
3. Delete existing resource group (if safe)
See Also
GitHub Repository
Related Skills
subagent-driven-development
DevelopmentThis skill executes implementation plans by dispatching a fresh subagent for each independent task, with code review between tasks. It enables fast iteration while maintaining quality gates through this review process. Use it when working on mostly independent tasks within the same session to ensure continuous progress with built-in quality checks.
algorithmic-art
MetaThis Claude Skill creates original algorithmic art using p5.js with seeded randomness and interactive parameters. It generates .md files for algorithmic philosophies, plus .html and .js files for interactive generative art implementations. Use it when developers need to create flow fields, particle systems, or other computational art while avoiding copyright issues.
executing-plans
DesignUse the executing-plans skill when you have a complete implementation plan to execute in controlled batches with review checkpoints. It loads and critically reviews the plan, then executes tasks in small batches (default 3 tasks) while reporting progress between each batch for architect review. This ensures systematic implementation with built-in quality control checkpoints.
cost-optimization
OtherThis Claude Skill helps developers optimize cloud costs through resource rightsizing, tagging strategies, and spending analysis. It provides a framework for reducing cloud expenses and implementing cost governance across AWS, Azure, and GCP. Use it when you need to analyze infrastructure costs, right-size resources, or meet budget constraints.