In this tutorial we learn how to deploy the recording bot sample to a new AKS Cluster. We will also set up a Recording Policy for all users within our Tenant and see the compliance redording banner in our teams client.
- Windows 11
- Powershell 7 as administrator
- Git command line tool
- AZ Azure command line tool
- Helm command line tool
- kubectl command line tool
- This tutorial also shows how to install kubectl with the azure command line tool
- Microsoft Entra Id Tenant with Microsoft Teams users
- Microsoft Azure Subscription
- The subscription in this tutorial is called
recordingbotsubscription, also see variables.
- The subscription in this tutorial is called
- Microsoft Entra Id adminstrator
The Microsoft Entra Id administrator is required to create recording policies and to approve application permissions of the app registration. This tutorial assumes we are a Microsoft Entra Id administrator and always log in as such unless the tutorial requires otherwise.
- Create an AKS cluster
- Create an Azure Container Registry
- Clone and build recording bot sample
- Create and configure Bot Service
- Deploy recording sample to AKS cluster
- Create and assign a Recording Policy
- Verify functionality
- Clean up resources
Throughout this tutorial we will create azure resources. The names we choose in this tutorial are:
| Resource | Name |
|---|---|
| Resource Group | recordingbottutorial |
| AKS Cluster | recordingbotcluster |
| Azure Container Registry | recordingbotregistry |
| App Registration | recordingbotregistration |
| Bot Service | recordingbotservice |
| Azure Subscription | recordingbotsubscription |
| Public IP Address | pppppppp-pppp-pppp-pppp-pppppppppppp |
| Managed Resource Group | MC_recordingbottutorial_recordingbotcluster_westeurope |
Variables that are used in this tutorial are:
| What? | Value |
|---|---|
| Recording Bot Name | Tutorial Bot |
| AKS DNS record | recordingbottutorial.westeurope.cloudapp.azure.com |
| App Registration Id | cccccccc-cccc-cccc-cccc-cccccccccccc |
| App Registration Secret | abcdefghijklmnopqrstuvwxyz |
| Recording Policy Name | TutorialPolicy |
| Recording Policy Application Instance UPN | tutorialbot@lm-ag.de |
| Recording Policy Application Instance Display Name | Tutorial Bot |
| Recording Policy Application Instance Object Id | 11111111-1111-1111-1111-111111111111 |
| Microsoft Entra Id Tenant Id | 99999999-9999-9999-9999-999999999999 |
| Kubernetes Recording Bot Deployment Name | recordingbottutorial |
| Kubernetes Recording Bot Namespace | recordingbottutorial |
| Let's Encrypt Email address | tls-security@lm-ag.de |
| Windows Nodepool | win22 |
| Azure Subscription Id | yyyyyyyy-yyyy-yyyy-yyyy-yyyyyyyyyyyyy |
| Azure Region | westeurope |
| Directory for source code | C:\Users\User\recordingbottutorial\ |
| Recording Application Docker Container Tag | recordingbottutorial/application:latest |
| Public IP of the Public IP Address Resource | 255.255.255.255 |
Tip
Consider to define own variable values before we start. Keep in mind the Azure resources have limitations for naming, read this for reference. Some Values are automatically generated and can't be changed, but needs to be replaced with you're custom values.
If you encounter any problems during the tutorial, please feel free to create an issue. This means that the tutorial can be continuously expanded to include error handling.
Now let us start to create an AKS cluster