Create a managed identity for Azure storage account
PhoenixAI generates a profile for each query during query execution and stores it for reference. The profile is generated by the virtual machines on which your PhoenixAI cluster is deployed, and is stored in an Azure storage container.
Create Private Endpoint and Private DNS Zone for Private Link to Azure
To enable PhoenixAI's End-to-End Private Link service for your Azure deployments, you need to create a private endpoint and a private DNS zone, link the DNS zone to your virtual network, and add a DNS record pointing to the private IP of the endpoint. If your cluster runs in a private subnet without internet access, you also need to create a private endpoint for your Azure storage account; otherwise the cluster will be unable to read/write Azure Storage.
Create a resource group for PhoenixAI in Azure
A resource group in Azure is a collection of resources related to an Azure solution. Deploying a PhoenixAI cluster requires a variety of Azure resources, including a storage account, a managed identity, a virtual network, a security group, and an SSH key pair. You must manage all these resources in one resource group.
Create a service principal for PhoenixAI on Azure
Applications in Azure require restricted access and non-interactive authentication for automation. This can be achieved by using service principals that allow applications to sign in with specific permissions. While deploying a PhoenixAI cluster, PhoenixAI requires a series of permissions to launch necessary resources in your Azure account. Therefore, you must create a service principal for PhoenixAI to declare the necessary permissions.
Create an SSH key pair for PhoenixAI on Azure
To deploy a PhoenixAI cluster on Azure, you must create an SSH key pair to give PhoenixAI access to your virtual machines for automatic deployment so that PhoenixAI can deploy StarRocks-related service processes on your virtual machine.
Create a storage account and a container for PhoenixAI in Azure
To deploy a PhoenixAI cluster on Azure, you must assign a storage account and a container to store your data.
Create a virtual network, a subnet, and a security group for PhoenixAI on Azure
To deploy a PhoenixAI cluster on Azure, you must specify a virtual network and a subnet for the virtual machines on which the cluster depends, and assign a security group to the subnet to define the inbound and outbound traffic rules that the cluster nodes must adhere to for cross-node communication and external communication.