Versions Compared

Version Old Version 27 New Version 28
Changes made by

MS

MS

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Info

This page describes how to onboard an Azure CSP and/or an AWS organization account and its customers into the multicloud platform as part of a reseller hierarchy.

1. Create public cloud regions

Create public cloud regions for your public cloud providers.

For more details see Create a public cloud region

2. Prepare Abiquo entities

To use an Azure reseller (CSP) account or an AWS partner account, create a reseller scope for your reseller enterprise. And create a reseller enterprise to manage the reseller credentials for your customersThis is a diagram of a standard reseller hierarchy.

Mermaid
fileNamemermaid_1675759715283
themeneutral
version1312
{"diagramDefinition":"flowchart LR\nA(Reseller<br/>enterprise)\nB(Customer1<br/>key node<br/>enterprise)\nB-->C(Standard<br/>enterprise 1)\nB-->D(Standard<br/>enterprise 2)\nC-.-F(Subscription1)\nD-.-E(Subscription2)\nA-.-P(Reseller<br/>Pricing<br/>credential)\nsubgraph GlobalScope ResellerScope\n    A\n    P\nend\nsubgraph ResellerScopeReseller hierarchy\n    direction LR\n       A  ResellerScope-->Customer1Scope\nend\nsubgraph GlobalScope\nend\nGlobalScope-->ResellerScope\n\nsubgraph Customer1Scope\n    direction LR\n        B\n        C\n        D\n        E\n        F\nend\n        style GlobalScope fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff\n        style A fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff\n        style P fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff,stroke-dasharray: 5 5\n        style B fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff\n        style C fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff\n        style D fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff\n        style F fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff,stroke-dasharray: 5 5\n        style E fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff,stroke-dasharray: 5 5"}

To prepare Abiquo entities for resellers.the reseller in Abiquo:

  1. Create public cloud regions for your public cloud providers. See Create a public cloud region

  2. Create a reseller scope:

    1. For the Name, we recommend that you use the Reseller name + Scope, for example, ResellerScope

    2. For the Parent scope select theGlobal scope or no scope

    3. For Entities, select your public cloud regions.

  3. Create a reseller enterprise :

    1. For the Default scope select the reseller scope, for example, ResellerScope

    2. Select the Reseller checkbox

    3. If the reseller will use a different mail server to the cloud platform, enter the details of the Mail server

    4. For Datacenters, select the datacenters and public cloud regions that the reseller will use

References:

3. Onboard an Azure CSP

For Azure, you can use reseller credentials (CSP credentials) in Abiquo.

...

To an onboard Azure CSP account:

  1. Do the steps to Obtain Azure ARM pricing credentials for CSP

  2. In To add the Azure credentials in Abiquo, edit the reseller enterprise

    1. Go to Credentials → Pricing, and add the Azure CSP pricing credentials as follows

      1. API keycsp#tenantId#clientId#accessToken#refreshToken

      2. API secret key: the password for the application

    2. Go to Properties, and to use Azure billing, enter the billing enterprise properties in the reseller enterprise. The default values are as follows:

      1. azurecompute-arm_discount = 0

      2. azurecompute-arm_currency_code = USD

      3. billing.azure.country_code = US

      4. azurecompute-arm_price_factor = 1 (deprecated in Abiquo 6.1)

  3. For Abiquo 6.1 and above, go to PricingPrice factors and create a price factor for the reseller enterprise. See Manage price factors.

...

To onboard AWS:

  1. Log in to the AWS management account.

  2. Create a user with the security policy for AWS organization pricing

  3. Configure AWS to supply billing data

  4. Edit the Abiquo reseller enterprise:

    1. Go to CredentialsPricing and add the user credentials

    2. Go to Properties and add AWS enterprise properties to the reseller

  5. For Abiquo 6.1 and above, go to PricingPrice factors and create a price factor for the reseller enterprise. See Manage price factors.

5. Prepare Abiquo entities to onboard a customer

You can create a tenant hierarchy with a reseller scope at the top level and the customers below that. To create customers of your reseller, for each customer, create a customer scope and set the reseller scope as the parent scope.

...

  1. .

...

For each customer, for each Azure Plan subscription or AWS ? account, create a standard enterprise (subtenant) to use the subscription for compute features or displaying billing information.

...

fileNamemermaid_1675759715283
themeneutral
version9

...

...

To prepare Abiquo entities to onboard a customer:

  1. Create a customer scope:

    1. Go to UsersScopes and click the + add button or select and edit an existing scope

      1. For the Name, we recommend that youuse the customer name and Scope, for example, Customer1Scope CustomerScope

      2. For the Parent scope, select the reseller scope, for example, ResellerScope.

    2. For the Entities, select the public cloud region/s.

  2. Create a customer enterprise:

    1. Go to Users view and at the bottom of the Enterprises list, click the + add button

    2. For the Default scope, select the customer scope, for example, Customer1Scope CustomerScope

    3. Select the Key node checkbox to support Office365 customers

      , Multiple Azure subscriptions (Plans)

      Other sub-tenants (e.g. AWS partner accounts)

      , and AWS organization accounts

    4. For Properties,add tenant metadata as required. This may include account IDs and discounts. You can also push this metadata to VM variables but do not use confidential data.

  3. For each subscription in an Azure plan, create a standard enterprise (subtenant):

    1. Create a standard enterprise (not a key node)

    2. For the Default scope, select the Customer1Scope

...

    1. CustomerScope

...

To onboard an Azure

...

You can onboard a CSP customer with access to customer, choose compute and billing features or with access to billing only. If your CSP customer is working with Azure plans, then add credentials for each subscription within the Azure plan to a separate Abiquo enterprise.

To give a CSP customer access to compute and billing features:

  1. Create an app in the customer’s Active Directory.

  2. Edit the standard enterprise, and go to CredentialsPublic

  3. Add the credentials for customer in the format Subscription#AppID#TenantID

  4. Go to Properties and add azurecompute-arm_only_bill_subscription and set the value to true

...

  1. Edit the standard enterprise, and go to Credentials → Public

  2. For the Access key ID, enter the customer’s subscription details in this format: Subscription##TenantID

  3. For the Secret access key, enter any value

  4. Select Only for billing

  5. Click Add account to save the credentials. The platform will not validate the account details until it retrieves billing data from the provider

  6. Go to Properties and add azurecompute-arm_only_bill_subscription and set the value to true

  7. Click Save

Now you can configure the MicrosoftProductsService to manage Customer users, office licenses and Azure plan subscriptions!

7. Onboard an account under an AWS organization

...

To onboard an account under an a reseller customer in an AWS organization:

  1. Create a customer scope under the reseller scope 

  2. Create a key node enterprise in the customer scope

  3. Create a standard enterprise in the customer scope

  4. Log in to AWS and in the customer account, create a user

  5. In Abiquo, edit the standard enterprise and add the credentials as public cloud credentials.
    OR Add the account to the standard enterprise as billing only public cloud credentials.

...

...

Onboard an AWS organization into a key node

If your customer has an AWS organization account, you can onboard the organization into a key node hierarchy, by adding the pricing credential and accounts.

Mermaid
fileNamemermaid_1675759715283
themeneutral
version1012
{"diagramDefinition":"flowchart LR\nA(Reseller<br/>enterprise)\nB(Customer1<br/>key node<br/>enterprise)\nB-->D(Standard<br/>enterprise2)\nB-->C(Standard<br/>enterprise1)\nC-.--F(Account1)\nD--.-E(Account2)\nA-.--P(Pricing<br/>credential)\nsubgraph ResellerScope\n    A\n    P\nend\nsubgraph Reseller hierarchy\n    direction LR\n        ResellerScope-->Customer1Scope\nend\nsubgraph GlobalScope\nend\n    B-.--PC(Pricing<br/>credential<br/>Organization2)\nsubgraph Customer1Scope\n    direction LR\n        B\n        C\n        D\n        E\n        F\n        PC\nend\nGlobalScope-->ResellerScope\n\n\n        style P stroke-dasharray: 5 5\n        style B fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff\n        style C fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff\n        style D fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff\n        style F fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff,stroke-dasharray: 5 5\n        style E fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff,stroke-dasharray: 5 5\n        style PC fill:#ec9032,stroke:#666,stroke-width:2px,color:#fff,stroke-dasharray: 5 5"}

To onboard an AWS organization into a key node enterprise

  1. Create a customer scope under the reseller scope

  2. Create a key node enterprise in the customer scope

  3. Do the steps in “Onboard an AWS Organization” section using the new organization, but add the credentials to the key node as pricing credentials (instead of adding the credentials to the reseller as pricing credentials)

...

  1. Create a standard enterprise in the scope of the key node

  2. Log in to AWS and in the customer account, and create a user

  3. In Abiquo, edit the standard enterprise and add the credentials as public cloud credentials.
    OR Add the account to the standard enterprise as billing only public cloud credentials.

...

Run billing

...

You can now run billing for the reseller

...

:

  • Edit the enterprise and go to CredentialsPricing and click the right arrow button

...

  • :

  • Or go to the Billing tab, select the provider, and click Regenerate billing.

You can try to run billing for the last 2 months to display it on the Abiquo dashboard

Or you can wait for the automatic billing process that will run every day. (You can configure it with an Abiquo property).

It is also possible to set currency conversions for the dashboard.

...

Onboard VMs and resources

  1. If the credentials have compute capabilities, and there are VMs for the subscription, you can capture the VMs to manage them with Abiquo by onboarding their virtual network or VPC to create a virtual datacenter in Abiquo. See Onboard from public cloud

...