What is Azure Arc VM management?
Applies to: Azure Local 2311.2 and later
Important
Azure Stack HCI is now part of Azure Local. Learn more.
This article provides a brief overview of the Azure Arc VM management feature on Azure Local including the benefits, its components, and high-level workflow.
Azure Arc VM management lets you provision and manage Windows and Linux VMs hosted in an on-premises Azure Local environment. This feature enables IT admins create, modify, delete, and assign permissions and roles to app owners thereby enabling self-service VM management.
Administrators can manage Arc VMs on their Azure Local instances by using Azure management tools, including Azure portal, Azure CLI, Azure PowerShell, and Azure Resource Manager templates. Using Azure Resource Manager templates, you can also automate VM provisioning in a secure cloud environment.
To find answers to frequently asked questions about Arc VM management on Azure Local, see the FAQ.
While Hyper-V provides capabilities to manage your on-premises VMs, Azure Arc VMs offer many benefits over traditional on-premises tools including:
Role-based access control via builtin Azure Local roles ensures that only authorized users can perform VM management operations thereby enhancing security. For more information, see Azure Local Arc VM management roles.
Arc VM management provides the ability to deploy with Resource Manager templates, Bicep, and Terraform.
The Azure portal acts as a single pane of glass to manage VMs on Azure Local and Azure VMs. With Azure Arc VM management, you can perform various operations from the Azure portal or Azure CLI including:
- Create, manage, update, and delete VMs. For more information, see Create Arc VMs
- Create, manage, and delete VM resources such as virtual disks, logical networks, network interfaces, and VM images.
The self-service capabilities of Arc VM management reduce the administrative overhead.
Consider the following limitations when managing Arc VMs on Azure Local:
- Taking checkpoints on Arc VMs running on Azure Local using on-premises tools, such as Windows Admin Center or Hyper-V Manager, will adversely impact the management of these Arc VMs from Azure.
- Updates to Arc VM configurations, such as vCPU, memory, adding/removing network interface or data disk via on-premises tools won't reflect on the Azure management plane.
- Resource group move isn't supported for Arc VMs on Azure Local and its associated resources (such as network interfaces and disks).
- Creation of Arc VMs using Windows Server 2012 and Windows Server 2012 R2 images isn't supported via the Azure portal and can only be done via the Azure CLI. For more information, see Additional parameters required to provision Arc VMs via the Azure CLI using Windows Server 2012 and Windows Server 2012 R2 images.
Arc VM management comprises several components including the Arc Resource Bridge, Custom Location, and the Kubernetes Extension for the VM operator.
Arc Resource Bridge: This lightweight Kubernetes VM connects your on-premises Azure Local to the Azure Cloud. The Arc Resource Bridge is created automatically when you deploy your Azure Local.
For more information, see the Arc Resource Bridge overview.
Custom Location: Just like the Arc Resource Bridge, a custom location is created automatically when you deploy your Azure Local. You can use this custom location to deploy Azure services. You can also deploy VMs in these user-defined custom locations, integrating your on-premises setup more closely with Azure.
Kubernetes Extension for VM Operator: The VM operator is the on-premises counterpart of the Azure Resource Manager resource provider. It's a Kubernetes controller that uses custom resources to manage your VMs.
By integrating these components, Azure Arc offers a unified and efficient VM management solution, seamlessly bridging the gap between on-premises and cloud infrastructures.
In this release, the Arc VM management workflow is as follows:
- During the deployment of your Azure Local, one Arc Resource Bridge is installed per cluster and a custom location is also created.
- Assign builtin RBAC roles for Arc VM management.
- You can then create VM resources such as:
- Storage paths for VM disks.
- VM images starting with an Image in Azure Marketplace, in Azure Storage account, or in Local share. These images are then used with other VM resources to create VMs.
- Logical networks.
- VM network interfaces.
- Use the VM resources to Create VMs.
To troubleshoot issues with your Arc VMs or to learn about existing known issues and limitations, see Troubleshoot Arc virtual machines.