{"id":390,"date":"2026-04-13T21:42:42","date_gmt":"2026-04-13T21:42:42","guid":{"rendered":"https:\/\/www.devopsschool.com\/tutorials\/azure-cyclecloud-tutorial-architecture-pricing-use-cases-and-hands-on-guide-for-compute\/"},"modified":"2026-04-13T21:42:42","modified_gmt":"2026-04-13T21:42:42","slug":"azure-cyclecloud-tutorial-architecture-pricing-use-cases-and-hands-on-guide-for-compute","status":"publish","type":"post","link":"https:\/\/www.devopsschool.com\/tutorials\/azure-cyclecloud-tutorial-architecture-pricing-use-cases-and-hands-on-guide-for-compute\/","title":{"rendered":"Azure CycleCloud Tutorial: Architecture, Pricing, Use Cases, and Hands-On Guide for Compute"},"content":{"rendered":"\n

Category<\/h2>\n\n\n\n

Compute<\/p>\n\n\n\n

1. Introduction<\/h2>\n\n\n\n

Azure CycleCloud is Azure\u2019s cluster orchestration and lifecycle management solution for running high-performance computing (HPC) and other scale-out, scheduler-driven workloads on Azure infrastructure.<\/p>\n\n\n\n

In simple terms: Azure CycleCloud helps you stand up an HPC cluster (like Slurm or PBS), scale it up and down automatically, and manage it consistently<\/strong>\u2014without manually creating, configuring, and tearing down large fleets of virtual machines (VMs).<\/p>\n\n\n\n

In more technical terms: Azure CycleCloud is software you deploy in your own Azure subscription<\/strong> (typically as a VM from Azure Marketplace). It uses Azure APIs to provision and configure cluster nodes, integrates with common schedulers, supports autoscaling based on queued jobs, and provides a UI\/CLI for cluster operations. It is not the same thing as Azure Batch; instead, it focuses on IaaS-based HPC clusters<\/strong> with familiar schedulers and control over VM images, networking, and storage.<\/p>\n\n\n\n

The problem it solves:<\/strong> teams that need traditional HPC schedulers, tightly controlled VM images, specialized VM SKUs (including HPC SKUs), and predictable cluster architecture often struggle with \u201chand-built\u201d VM farms. Azure CycleCloud addresses this by providing repeatable cluster templates, automated scaling, and operational tooling that fits HPC and engineering workloads.<\/p>\n\n\n\n

\n

Service status note: \u201cAzure CycleCloud\u201d is the current Microsoft name used in Azure documentation.<\/strong> Always verify the latest deployment methods and supported schedulers in the official documentation because HPC integrations evolve over time. Official docs: https:\/\/learn.microsoft.com\/azure\/cyclecloud\/<\/p>\n<\/blockquote>\n\n\n\n

\n\n\n\n

2. What is Azure CycleCloud?<\/h2>\n\n\n\n

Official purpose<\/h3>\n\n\n\n

Azure CycleCloud\u2019s purpose is to create, manage, operate, and optimize HPC and other compute clusters on Azure<\/strong>. It helps you deploy scheduler-based clusters, manage node lifecycle, and scale compute resources to match workload demand.<\/p>\n\n\n\n

Core capabilities (high level)<\/h3>\n\n\n\n
    \n
  • Cluster provisioning from templates<\/strong> (repeatable cluster definitions).<\/li>\n
  • Scheduler integration<\/strong> (commonly used HPC schedulers; exact list varies by release\u2014verify in docs).<\/li>\n
  • Autoscaling<\/strong> based on scheduler\/job queue state.<\/li>\n
  • Image and configuration management<\/strong> for consistent node builds.<\/li>\n
  • Operational management<\/strong> (start\/stop, add\/remove nodes, monitor cluster state).<\/li>\n
  • Integration with Azure infrastructure<\/strong> (VNets, subnets, NSGs, managed disks, Azure Files\/NFS options depending on design).<\/li>\n<\/ul>\n\n\n\n

    Major components<\/h3>\n\n\n\n

    While implementations vary by cluster type and scheduler, most deployments include:<\/p>\n\n\n\n

      \n
    1. \n

      CycleCloud Server<\/strong>\n – A VM you deploy in your subscription (often from Azure Marketplace).\n – Provides the web UI<\/strong> and CycleCloud CLI<\/strong> endpoint.\n – Holds cluster definitions, state, and configuration.<\/p>\n<\/li>\n

    2. \n

      Cluster Nodes<\/strong>\n – Head\/login node<\/strong> (scheduler controller, login gateway, or management node depending on template).\n – Compute nodes<\/strong> (scale-out worker nodes; often in VM Scale Sets or managed as a node array\u2014implementation depends on template and Azure CycleCloud version).\n – Optional visualization<\/strong>, broker<\/strong>, gateway<\/strong>, or storage<\/strong> nodes depending on workload.<\/p>\n<\/li>\n

    3. \n

      Scheduler<\/strong>\n – Deployed and configured as part of the cluster template (for supported schedulers).\n – Controls job queueing, placement, priorities, and execution.<\/p>\n<\/li>\n

    4. \n

      Azure Infrastructure Resources<\/strong>\n – Virtual network\/subnets, network security groups, public IPs (optional), storage (managed disks, Azure Files, or partner NFS offerings), and identity resources.<\/p>\n<\/li>\n<\/ol>\n\n\n\n

      Service type<\/h3>\n\n\n\n
        \n
      • Not a fully managed Azure control-plane service<\/strong> like Azure Batch.<\/li>\n
      • Software-managed orchestration<\/strong> you run inside your subscription (IaaS-hosted management server + Azure API-driven provisioning).<\/li>\n<\/ul>\n\n\n\n

        Scope: subscription and resource-group centric<\/h3>\n\n\n\n

        Azure CycleCloud is typically:\n– Deployed into a specific Azure subscription<\/strong> and one or more resource groups.\n– Operates within the boundaries of your Azure RBAC permissions and quotas.\n– Cluster resources are created in your subscription, so governance, policy, and cost management apply normally.<\/p>\n\n\n\n

        Regional \/ zonal considerations<\/h3>\n\n\n\n
          \n
        • The CycleCloud Server VM is deployed into a specific Azure region<\/strong>.<\/li>\n
        • Clusters are usually deployed into the same region for latency and simplicity, though multi-region patterns are possible but add complexity and should be validated in official guidance.<\/li>\n
        • Availability Zones may be used depending on selected VM SKUs and region support (verify per region\/SKU).<\/li>\n<\/ul>\n\n\n\n

          How it fits into the Azure ecosystem<\/h3>\n\n\n\n

          Azure CycleCloud sits \u201cabove\u201d Azure Compute and Networking services:\n– Uses Azure Virtual Machines<\/strong> (including HPC VM families where appropriate).\n– Uses Azure Virtual Network<\/strong> for cluster networking.\n– Uses storage options (e.g., managed disks<\/strong>, Azure Files<\/strong>, and HPC-oriented NFS approaches). The right storage depends on throughput\/IOPS and POSIX requirements.\n– Works alongside governance tools like Azure Policy<\/strong>, Azure Monitor<\/strong>, and Cost Management<\/strong>.<\/p>\n\n\n\n

          \n\n\n\n

          3. Why use Azure CycleCloud?<\/h2>\n\n\n\n

          Business reasons<\/h3>\n\n\n\n
            \n
          • Faster time-to-results for HPC adoption on Azure:<\/strong> templates reduce the time to build a scheduler-based cluster from weeks to hours.<\/li>\n
          • Elastic cost model:<\/strong> autoscaling reduces paying for idle compute.<\/li>\n
          • Repeatability:<\/strong> standard cluster blueprints reduce errors and rework.<\/li>\n
          • Migration path:<\/strong> supports \u201clift-and-shift\u201d patterns for teams already using schedulers like Slurm\/PBS on-prem (validate exact scheduler support).<\/li>\n<\/ul>\n\n\n\n

            Technical reasons<\/h3>\n\n\n\n
              \n
            • Scheduler-first design:<\/strong> ideal for workloads that require job queues, reservations, node features, partitions\/queues, and MPI-friendly placement.<\/li>\n
            • Control over infrastructure:<\/strong> choose VM sizes, images, networks, and storage architecture.<\/li>\n
            • Custom images and bootstrap:<\/strong> standardize OS packages, MPI stacks, drivers, and app dependencies.<\/li>\n
            • Integration with Azure primitives:<\/strong> use your existing VNets, subnets, NSGs, and identity patterns.<\/li>\n<\/ul>\n\n\n\n

              Operational reasons<\/h3>\n\n\n\n
                \n
              • Automated node lifecycle:<\/strong> provision, configure, and remove nodes based on demand.<\/li>\n
              • Central management UI + CLI:<\/strong> consistent operations for multiple clusters.<\/li>\n
              • Scaling policies:<\/strong> align compute growth with actual queued work.<\/li>\n<\/ul>\n\n\n\n

                Security\/compliance reasons<\/h3>\n\n\n\n
                  \n
                • Runs inside your subscription:<\/strong> you control network isolation, encryption, and logging.<\/li>\n
                • Works with Azure RBAC and enterprise governance<\/strong> (deployment permissions, tagging, policy).<\/li>\n
                • Enables architectures that keep clusters private (no public IPs), using bastion\/jumpbox patterns.<\/li>\n<\/ul>\n\n\n\n

                  Scalability\/performance reasons<\/h3>\n\n\n\n
                    \n
                  • Scale-out compute<\/strong> with large node counts (subject to quotas and SKU availability).<\/li>\n
                  • Designed for HPC-style scaling patterns: bursts, backfill, and queue-driven elasticity.<\/li>\n
                  • Can be paired with HPC-oriented VM SKUs and storage designs (where appropriate).<\/li>\n<\/ul>\n\n\n\n

                    When teams should choose Azure CycleCloud<\/h3>\n\n\n\n

                    Choose Azure CycleCloud when you:\n– Need a traditional HPC scheduler<\/strong> experience on Azure.\n– Want elastic clusters<\/strong> that scale based on queued jobs.\n– Need to control OS images, drivers, and system-level tuning<\/strong>.\n– Want repeatable cluster deployments via templates and infrastructure-as-code-like patterns.<\/p>\n\n\n\n

                    When teams should not choose it<\/h3>\n\n\n\n

                    Azure CycleCloud may not be the best fit when you:\n– Prefer fully managed batch processing<\/strong> without managing a scheduler VM (consider Azure Batch).\n– Want container-native<\/strong> orchestration and CI\/CD patterns (consider AKS).\n– Only need a small fixed-size VM pool; CycleCloud may be unnecessary overhead.\n– Lack HPC admin skills (scheduler configuration, Linux tuning, MPI, shared filesystems).<\/p>\n\n\n\n

                    \n\n\n\n

                    4. Where is Azure CycleCloud used?<\/h2>\n\n\n\n

                    Industries<\/h3>\n\n\n\n
                      \n
                    • Engineering and manufacturing (CAE\/CFD\/FEA, EDA)<\/li>\n
                    • Life sciences (genomics pipelines, molecular dynamics\u2014scheduler-based)<\/li>\n
                    • Financial services (risk simulations, Monte Carlo)<\/li>\n
                    • Media and rendering (frame rendering with queue-based scheduling)<\/li>\n
                    • Research and academia (MPI\/HTC clusters)<\/li>\n
                    • Energy (reservoir simulations, seismic processing)<\/li>\n<\/ul>\n\n\n\n

                      Team types<\/h3>\n\n\n\n
                        \n
                      • HPC platform teams<\/li>\n
                      • DevOps\/SRE teams supporting research compute<\/li>\n
                      • Computational science teams<\/li>\n
                      • Enterprise infrastructure teams modernizing on-prem HPC<\/li>\n<\/ul>\n\n\n\n

                        Workloads<\/h3>\n\n\n\n
                          \n
                        • MPI-based simulations<\/li>\n
                        • Parameter sweeps (HTC)<\/li>\n
                        • EDA toolchains<\/li>\n
                        • Rendering and transcoding farms<\/li>\n
                        • Large-scale data preprocessing where a scheduler is preferred<\/li>\n<\/ul>\n\n\n\n

                          Architectures<\/h3>\n\n\n\n
                            \n
                          • Private VNet HPC clusters with a login node<\/li>\n
                          • Hub-and-spoke networks (shared services in hub, clusters in spokes)<\/li>\n
                          • Hybrid identity + private DNS patterns<\/li>\n
                          • Burst-to-cloud extensions of on-prem schedulers (complex; validate integration approach)<\/li>\n<\/ul>\n\n\n\n

                            Real-world deployment contexts<\/h3>\n\n\n\n
                              \n
                            • Production:<\/strong> regulated environments, controlled images, private endpoints, strict network rules, logging\/monitoring, change management.<\/li>\n
                            • Dev\/test:<\/strong> smaller clusters for workflow validation; spot\/low-priority patterns where allowed; ephemeral clusters per project.<\/li>\n<\/ul>\n\n\n\n
                              \n\n\n\n

                              5. Top Use Cases and Scenarios<\/h2>\n\n\n\n

                              Below are realistic scenarios where Azure CycleCloud commonly fits. Exact scheduler\/templates and deployment steps vary\u2014verify supported templates and schedulers in the official docs: https:\/\/learn.microsoft.com\/azure\/cyclecloud\/<\/p>\n\n\n\n

                              1) Elastic Slurm cluster for engineering simulations<\/h3>\n\n\n\n
                                \n
                              • Problem:<\/strong> Simulation jobs arrive in bursts; fixed clusters waste money.<\/li>\n
                              • Why Azure CycleCloud fits:<\/strong> Autoscaling based on queued jobs; repeatable Slurm cluster deployment.<\/li>\n
                              • Example:<\/strong> A mechanical engineering team runs nightly CFD jobs; cluster scales from 0 to 200 nodes at night and back to minimal footprint by morning.<\/li>\n<\/ul>\n\n\n\n

                                2) PBS-based cluster for legacy HPC workloads<\/h3>\n\n\n\n
                                  \n
                                • Problem:<\/strong> Applications are certified on PBS workflows and job scripts.<\/li>\n
                                • Why it fits:<\/strong> CycleCloud supports scheduler-driven IaaS clusters and can standardize node images.<\/li>\n
                                • Example:<\/strong> A research lab migrates PBS scripts to Azure with minimal changes, keeping user workflows consistent.<\/li>\n<\/ul>\n\n\n\n

                                  3) On-demand rendering farm with queue-driven scaling<\/h3>\n\n\n\n
                                    \n
                                  • Problem:<\/strong> Rendering jobs spike around deadlines; artists need predictable turnaround.<\/li>\n
                                  • Why it fits:<\/strong> Queue length drives node count; compute nodes can be transient.<\/li>\n
                                  • Example:<\/strong> A studio spins up 500 CPU nodes for a weekend render, then deallocates them.<\/li>\n<\/ul>\n\n\n\n

                                    4) Parameter sweep \/ HTC cluster for model calibration<\/h3>\n\n\n\n
                                      \n
                                    • Problem:<\/strong> Thousands of independent jobs; needs fast provisioning and teardown.<\/li>\n
                                    • Why it fits:<\/strong> HPC schedulers + autoscale handle large job counts; scaling policies reduce idle.<\/li>\n
                                    • Example:<\/strong> A quant team runs Monte Carlo sweeps with job arrays and scales worker nodes as the queue grows.<\/li>\n<\/ul>\n\n\n\n

                                      5) Secure, private HPC cluster for regulated workloads<\/h3>\n\n\n\n
                                        \n
                                      • Problem:<\/strong> Compliance requires no public exposure and strict egress control.<\/li>\n
                                      • Why it fits:<\/strong> CycleCloud can operate in private VNets; you control NSGs, routing, and private access patterns.<\/li>\n
                                      • Example:<\/strong> A healthcare organization processes sensitive datasets on a private cluster accessible only via VPN\/ExpressRoute and bastion.<\/li>\n<\/ul>\n\n\n\n

                                        6) Standardized \u201ccluster as a product\u201d for internal teams<\/h3>\n\n\n\n
                                          \n
                                        • Problem:<\/strong> Multiple departments request clusters; ad hoc setups cause drift and outages.<\/li>\n
                                        • Why it fits:<\/strong> Templates + governance make deployments consistent.<\/li>\n
                                        • Example:<\/strong> Central IT offers approved templates (small\/medium\/large) with standard tagging and logging.<\/li>\n<\/ul>\n\n\n\n

                                          7) Preemptible\/spot-friendly burst compute (where supported)<\/h3>\n\n\n\n
                                            \n
                                          • Problem:<\/strong> Need cheaper compute for interruptible workloads.<\/li>\n
                                          • Why it fits:<\/strong> Cluster policies can incorporate VM priority options where appropriate (verify current support and best practices).<\/li>\n
                                          • Example:<\/strong> A research group runs interruptible parameter sweeps on spot VMs; failed tasks automatically resubmit.<\/li>\n<\/ul>\n\n\n\n

                                            8) Multi-queue cluster with different VM types<\/h3>\n\n\n\n
                                              \n
                                            • Problem:<\/strong> Workloads need different CPU\/memory ratios and sometimes GPUs.<\/li>\n
                                            • Why it fits:<\/strong> Scheduler partitions\/queues map well to different node arrays and VM sizes.<\/li>\n
                                            • Example:<\/strong> One partition uses memory-optimized VMs; another uses GPU VMs for acceleration.<\/li>\n<\/ul>\n\n\n\n

                                              9) Temporary training clusters for classes or workshops<\/h3>\n\n\n\n
                                                \n
                                              • Problem:<\/strong> Need consistent clusters for labs; must be easy to reset.<\/li>\n
                                              • Why it fits:<\/strong> Templates make \u201cknown good\u201d environments reproducible.<\/li>\n
                                              • Example:<\/strong> A university deploys a Slurm cluster per class section, then deletes after the course.<\/li>\n<\/ul>\n\n\n\n

                                                10) \u201cBurst to Azure\u201d for peak periods<\/h3>\n\n\n\n
                                                  \n
                                                • Problem:<\/strong> On-prem cluster is full during peak; jobs wait too long.<\/li>\n
                                                • Why it fits:<\/strong> Azure CycleCloud enables rapid scale-out in Azure using similar scheduling patterns (hybrid bursting designs require careful DNS\/identity\/network planning).<\/li>\n
                                                • Example:<\/strong> End-of-quarter risk runs overflow to Azure to meet deadlines.<\/li>\n<\/ul>\n\n\n\n
                                                  \n\n\n\n

                                                  6. Core Features<\/h2>\n\n\n\n
                                                  \n

                                                  Feature availability and supported schedulers can change. Validate in the official documentation: https:\/\/learn.microsoft.com\/azure\/cyclecloud\/<\/p>\n<\/blockquote>\n\n\n\n

                                                  1) Cluster templates (repeatable deployments)<\/h3>\n\n\n\n
                                                    \n
                                                  • What it does:<\/strong> Defines cluster topology (head node, compute node arrays, networking, storage mounts, scheduler config).<\/li>\n
                                                  • Why it matters:<\/strong> Reduces manual configuration and drift.<\/li>\n
                                                  • Practical benefit:<\/strong> You can redeploy identical clusters for dev\/test\/prod or different projects.<\/li>\n
                                                  • Caveats:<\/strong> Templates must be versioned and tested; changes can break bootstrapping or scheduler configuration.<\/li>\n<\/ul>\n\n\n\n

                                                    2) Scheduler-based autoscaling<\/h3>\n\n\n\n
                                                      \n
                                                    • What it does:<\/strong> Scales compute nodes based on scheduler demand (queued jobs, resource requests).<\/li>\n
                                                    • Why it matters:<\/strong> Avoid paying for idle nodes while keeping queue wait times low.<\/li>\n
                                                    • Practical benefit:<\/strong> Elastic clusters that respond to real workload demand.<\/li>\n
                                                    • Caveats:<\/strong> Autoscaling depends on correct scheduler configuration and accurate resource requests in job submissions.<\/li>\n<\/ul>\n\n\n\n

                                                      3) Integrated cluster lifecycle operations<\/h3>\n\n\n\n
                                                        \n
                                                      • What it does:<\/strong> Start\/stop clusters, add\/remove node arrays, and manage node states from a central interface.<\/li>\n
                                                      • Why it matters:<\/strong> Day-2 operations are where HPC platforms often struggle.<\/li>\n
                                                      • Practical benefit:<\/strong> Standard operational workflow across teams.<\/li>\n
                                                      • Caveats:<\/strong> Operational runbooks still matter\u2014especially around patching, image updates, and scheduler upgrades.<\/li>\n<\/ul>\n\n\n\n

                                                        4) Node provisioning and configuration (bootstrap)<\/h3>\n\n\n\n
                                                          \n
                                                        • What it does:<\/strong> Installs packages, configures mounts, joins nodes to the scheduler, sets up users\/SSH access (pattern depends on template).<\/li>\n
                                                        • Why it matters:<\/strong> Repeatable and automated node bring-up is essential for scale.<\/li>\n
                                                        • Practical benefit:<\/strong> New nodes become ready quickly and consistently.<\/li>\n
                                                        • Caveats:<\/strong> Bootstrap scripts must be idempotent; avoid long-running steps that slow scale-out.<\/li>\n<\/ul>\n\n\n\n

                                                          5) Support for custom VM images<\/h3>\n\n\n\n
                                                            \n
                                                          • What it does:<\/strong> Lets you use custom images for head\/compute nodes to preinstall HPC libraries, drivers, security agents, etc.<\/li>\n
                                                          • Why it matters:<\/strong> Faster provisioning and better consistency.<\/li>\n
                                                          • Practical benefit:<\/strong> Reduced \u201ctime to ready\u201d per node and fewer runtime downloads.<\/li>\n
                                                          • Caveats:<\/strong> Image pipelines must be maintained; GPU\/HPC drivers must match kernel versions and SKU requirements.<\/li>\n<\/ul>\n\n\n\n

                                                            6) Azure infrastructure integration<\/h3>\n\n\n\n
                                                              \n
                                                            • What it does:<\/strong> Works with VNets\/subnets, NSGs, route tables, managed disks, and Azure identity constructs.<\/li>\n
                                                            • Why it matters:<\/strong> HPC clusters must fit enterprise network and governance patterns.<\/li>\n
                                                            • Practical benefit:<\/strong> Deploy into existing landing zones and shared services.<\/li>\n
                                                            • Caveats:<\/strong> Network restrictions (no outbound internet, forced tunneling) can break package installs unless mirrored repositories are used.<\/li>\n<\/ul>\n\n\n\n

                                                              7) Multi-cluster management (single CycleCloud server)<\/h3>\n\n\n\n
                                                                \n
                                                              • What it does:<\/strong> A single CycleCloud Server can manage multiple clusters (subject to sizing and design).<\/li>\n
                                                              • Why it matters:<\/strong> Centralized operations.<\/li>\n
                                                              • Practical benefit:<\/strong> Shared templates, common policy, consolidated audit\/ops.<\/li>\n
                                                              • Caveats:<\/strong> Treat the server as critical infrastructure; implement backups and HA strategies as appropriate (verify supported patterns).<\/li>\n<\/ul>\n\n\n\n

                                                                8) CLI automation<\/h3>\n\n\n\n
                                                                  \n
                                                                • What it does:<\/strong> Supports scripting cluster actions (create, start\/stop, scale) using CLI tooling.<\/li>\n
                                                                • Why it matters:<\/strong> Enables CI\/CD-like workflows for infrastructure and cluster management.<\/li>\n
                                                                • Practical benefit:<\/strong> Repeatable operations and GitOps-style automation.<\/li>\n
                                                                • Caveats:<\/strong> Manage credentials securely; use least privilege for automation identities.<\/li>\n<\/ul>\n\n\n\n

                                                                  9) Tagging and governance alignment<\/h3>\n\n\n\n
                                                                    \n
                                                                  • What it does:<\/strong> Enables tagging of cluster resources for cost allocation and policy compliance (implementation varies).<\/li>\n
                                                                  • Why it matters:<\/strong> HPC spend can be significant; tagging is critical for chargeback\/showback.<\/li>\n
                                                                  • Practical benefit:<\/strong> Better cost reporting and governance.<\/li>\n
                                                                  • Caveats:<\/strong> Enforce tags with Azure Policy; otherwise drift is common.<\/li>\n<\/ul>\n\n\n\n
                                                                    \n\n\n\n

                                                                    7. Architecture and How It Works<\/h2>\n\n\n\n

                                                                    High-level architecture<\/h3>\n\n\n\n
                                                                      \n
                                                                    1. You deploy CycleCloud Server<\/strong> (typically a VM) into your Azure subscription.<\/li>\n
                                                                    2. You define\/import cluster templates<\/strong> (e.g., Slurm-based).<\/li>\n
                                                                    3. From the CycleCloud UI\/CLI, you create a cluster.<\/li>\n
                                                                    4. CycleCloud calls Azure APIs to provision:\n – Head node(s)\n – Compute node arrays (scale sets or VM instances depending on template\/version)\n – Networking components (if not precreated)\n – Storage attachments\/mounts<\/li>\n
                                                                    5. The scheduler runs on the head node and manages jobs.<\/li>\n
                                                                    6. Autoscaling monitors demand and requests more nodes; nodes join the scheduler, run jobs, and are deallocated\/removed when idle (based on policy).<\/li>\n<\/ol>\n\n\n\n

                                                                      Request\/data\/control flow<\/h3>\n\n\n\n
                                                                        \n
                                                                      • Control plane flow:<\/strong> Admin \u2192 CycleCloud UI\/CLI \u2192 CycleCloud Server \u2192 Azure Resource Manager \/ Compute APIs \u2192 VM provisioning.<\/li>\n
                                                                      • Job flow:<\/strong> User \u2192 login\/head node \u2192 scheduler queue \u2192 compute node executes \u2192 writes results to shared storage \u2192 user retrieves results.<\/li>\n
                                                                      • Telemetry flow:<\/strong> Nodes\/OS logs \u2192 Azure Monitor \/ Log Analytics agent (optional) \u2192 central monitoring workspace.<\/li>\n<\/ul>\n\n\n\n

                                                                        Integrations with related services (common patterns)<\/h3>\n\n\n\n
                                                                          \n
                                                                        • Azure Virtual Machines<\/strong> for head\/compute nodes.<\/li>\n
                                                                        • Azure Virtual Network<\/strong> for private cluster communication.<\/li>\n
                                                                        • Azure DNS \/ Private DNS<\/strong> for internal name resolution (optional but recommended in enterprise networks).<\/li>\n
                                                                        • Azure Monitor<\/strong> for metrics\/logs (agent-based or extensions).<\/li>\n
                                                                        • Azure Bastion<\/strong> or jumpbox for secure SSH\/RDP access without public IPs.<\/li>\n
                                                                        • Azure Key Vault<\/strong> for secrets (e.g., retrieving tokens\/keys in bootstrap scripts\u2014design carefully).<\/li>\n
                                                                        • Azure Files \/ NFS solutions<\/strong> or third-party NFS for shared home\/work directories (choose based on performance\/semantics).<\/li>\n<\/ul>\n\n\n\n

                                                                          Dependency services<\/h3>\n\n\n\n

                                                                          At minimum, a working CycleCloud deployment depends on:\n– Azure subscription with adequate compute quota<\/strong> for chosen VM SKUs.\n– Networking (VNet\/subnet) with correct routing\/DNS.\n– Identity configured so CycleCloud can provision resources (RBAC\/credentials).\n– Storage choices for shared directories (depending on workload).<\/p>\n\n\n\n

                                                                          Security\/authentication model (conceptual)<\/h3>\n\n\n\n
                                                                            \n
                                                                          • Azure RBAC:<\/strong> governs who can create CycleCloud server and clusters, and what resources can be provisioned.<\/li>\n
                                                                          • CycleCloud application access:<\/strong> users authenticate to the CycleCloud UI (mechanism depends on configuration; verify exact auth options in docs).<\/li>\n
                                                                          • Node access:<\/strong> typically SSH keys for Linux-based clusters; restrict inbound access with NSGs.<\/li>\n<\/ul>\n\n\n\n

                                                                            Networking model<\/h3>\n\n\n\n

                                                                            Most HPC deployments use:\n– One VNet with subnets for:\n – CycleCloud Server (management)\n – Head\/login node\n – Compute nodes\n– NSGs to restrict inbound to:\n – HTTPS to CycleCloud UI (from admin network only)\n – SSH to head\/login (from admin network only)\n – East-west traffic within subnets as required by scheduler\/MPI\n– Optional NAT Gateway or controlled egress for package repositories and licensing servers.<\/p>\n\n\n\n

                                                                            Monitoring\/logging\/governance considerations<\/h3>\n\n\n\n
                                                                              \n
                                                                            • Azure Monitor metrics:<\/strong> VM CPU, memory (guest-based), disk, network.<\/li>\n
                                                                            • Log Analytics:<\/strong> OS logs, scheduler logs (forward via agent), audit trails.<\/li>\n
                                                                            • Azure Activity Log:<\/strong> records ARM operations (cluster creation triggers lots of operations).<\/li>\n
                                                                            • Tagging:<\/strong> cost allocation and lifecycle management.<\/li>\n
                                                                            • Backups:<\/strong> backup CycleCloud server state and cluster templates (verify recommended backup method in docs).<\/li>\n<\/ul>\n\n\n\n

                                                                              Simple architecture diagram (conceptual)<\/h3>\n\n\n\n
                                                                              flowchart LR\n  Admin[Admin\/Engineer] -->|HTTPS| CC[Azure CycleCloud Server (VM)]\n  CC -->|ARM\/Compute API| Azure[Azure Resource Manager]\n  Azure --> Head[Head\/Login Node (Scheduler)]\n  Azure --> Compute[Compute Nodes (Scale-out)]\n  Head -->|Jobs| Compute\n  Head <--> Storage[Shared Storage (e.g., NFS\/Azure Files depending on design)]\n  Compute <--> Storage\n<\/code><\/pre>\n\n\n\n
                                                                              Production-style architecture diagram (reference pattern)<\/h3>\n\n\n\n
                                                                              flowchart TB\n  subgraph Hub[Hub VNet \/ Shared Services]\n    Bastion[Azure Bastion or Jumpbox]\n    DNS[Private DNS]\n    Monitor[Azure Monitor + Log Analytics]\n    KV[Azure Key Vault]\n  end\n\n  subgraph Spoke[Spoke VNet: HPC]\n    CC[CycleCloud Server VM]\n    Head[HPC Head\/Login Node + Scheduler]\n    subgraph Scale[Compute Subnet]\n      CN1[Compute Nodes]\n      CN2[Compute Nodes]\n      CNn[Compute Nodes...]\n    end\n    Storage[Shared Storage Endpoint]\n  end\n\n  Admin[Admins\/Users] -->|VPN\/ER| Bastion\n  Bastion -->|SSH\/HTTPS| CC\n  Bastion -->|SSH| Head\n\n  CC -->|Provision\/Scale| Scale\n  Head -->|Dispatch jobs| Scale\n  Head <--> Storage\n  Scale <--> Storage\n\n  CC --> Monitor\n  Head --> Monitor\n  Scale --> Monitor\n\n  CC --> KV\n  Head --> DNS\n  Scale --> DNS\n<\/code><\/pre>\n\n\n\n
                                                                              \n\n\n\n
                                                                              8. Prerequisites<\/h2>\n\n\n\n
                                                                              Azure account\/subscription requirements<\/h3>\n\n\n\n
                                                                                \n
                                                                              • An Azure subscription where you can deploy Marketplace images and create compute\/network\/storage resources.<\/li>\n
                                                                              • Ability to register required resource providers if not already registered (commonly Microsoft.Compute<\/code>, Microsoft.Network<\/code>, Microsoft.Storage<\/code>).<\/li>\n<\/ul>\n\n\n\n
                                                                                Permissions \/ IAM roles<\/h3>\n\n\n\n
                                                                                Minimum for a lab (typical):\n– Contributor<\/strong> on a resource group (or subscription) to create VNets, VMs, NSGs, and storage resources.\n– Permissions to create and assign managed identities<\/strong> (if your chosen setup uses them).\n– For enterprise: separate roles for networking and compute may be used; coordinate with your platform team.<\/p>\n\n\n\n
                                                                                Billing requirements<\/h3>\n\n\n\n
                                                                                  \n
                                                                                • A billing-enabled subscription with quota for your chosen VM SKUs.<\/li>\n
                                                                                • HPC-sized SKUs may require quota requests and regional availability checks.<\/li>\n<\/ul>\n\n\n\n
                                                                                  Tools needed<\/h3>\n\n\n\n
                                                                                    \n
                                                                                  • Azure Portal access.<\/li>\n
                                                                                  • Azure CLI (recommended) for cleanup and verification: https:\/\/learn.microsoft.com\/cli\/azure\/install-azure-cli<\/li>\n
                                                                                  • SSH client (e.g., OpenSSH).<\/li>\n
                                                                                  • Optional: Git for managing templates\/scripts.<\/li>\n<\/ul>\n\n\n\n
                                                                                    Region availability<\/h3>\n\n\n\n
                                                                                      \n
                                                                                    • Azure CycleCloud Server can be deployed where the Marketplace offer is available and where required VM sizes are available.<\/li>\n
                                                                                    • Choose a region that supports:<\/li>\n
                                                                                    • Your desired VM families (Dv5\/Ev5\/HB\/HC\/ND etc.)<\/li>\n
                                                                                    • Availability Zones if needed<\/li>\n
                                                                                    • Always verify region + SKU availability before committing.<\/li>\n<\/ul>\n\n\n\n
                                                                                      Quotas\/limits<\/h3>\n\n\n\n
                                                                                        \n
                                                                                      • vCPU quotas<\/strong> per VM family and per region can block cluster scaling.<\/li>\n
                                                                                      • Public IP, NIC, and storage limits can also matter at scale.<\/li>\n
                                                                                      • Check quotas: Azure Portal \u2192 Subscriptions \u2192 Usage + quotas.<\/li>\n<\/ul>\n\n\n\n
                                                                                        Prerequisite services and design decisions<\/h3>\n\n\n\n
                                                                                        Before hands-on work, decide:\n– Networking: new VNet for lab, or use existing.\n– Access model: public IP for quick lab (less secure) vs Bastion\/private (recommended for production).\n– Storage: for a small lab, you can often start without a complex shared filesystem, but many HPC workflows require shared home\/work directories.<\/p>\n\n\n\n
                                                                                        \n\n\n\n
                                                                                        9. Pricing \/ Cost<\/h2>\n\n\n\n
                                                                                        Pricing model (accurate and practical)<\/h3>\n\n\n\n
                                                                                        Azure CycleCloud is typically not billed as a standalone metered Azure service<\/strong> in the way many PaaS services are. In most deployments, you pay for the underlying Azure resources<\/strong> you deploy to run CycleCloud and the clusters it orchestrates:<\/p>\n\n\n\n
                                                                                        Primary cost dimensions:\n1. CycleCloud Server VM<\/strong>\n   – VM compute (hours), OS disk, and associated networking (public IP if used).\n2. Head\/login node VM<\/strong>\n   – Compute hours + disk + networking.\n3. Compute nodes<\/strong>\n   – The main cost driver: VM hours across all scaled nodes.\n4. Storage<\/strong>\n   – Managed disks (OS and data disks)\n   – Shared filesystem service (varies by design)\n   – Backup storage (if configured)\n5. Networking<\/strong>\n   – Outbound data transfer (egress) from Azure\n   – NAT Gateway, load balancers (if used)\n   – Inter-region traffic if multi-region\n6. Monitoring<\/strong>\n   – Log Analytics ingestion and retention\n   – Azure Monitor features you enable\n7. Optional software licensing<\/strong>\n   – Some HPC applications and some scheduler components may have separate licensing (BYOL). This is workload-specific.<\/p>\n\n\n\n
                                                                                        \n
                                                                                        Verify current billing specifics for the CycleCloud Marketplace image\/offer you select (if any charges apply) in the Azure Marketplace listing and official docs:\n– Official documentation: https:\/\/learn.microsoft.com\/azure\/cyclecloud\/\n– Azure Pricing Calculator: https:\/\/azure.microsoft.com\/pricing\/calculator\/\n– VM pricing: https:\/\/azure.microsoft.com\/pricing\/details\/virtual-machines\/\n– Storage pricing: https:\/\/azure.microsoft.com\/pricing\/details\/storage\/<\/p>\n<\/blockquote>\n\n\n\n
                                                                                        Free tier<\/h3>\n\n\n\n
                                                                                          \n
                                                                                        • There is no universal \u201cfree tier\u201d for HPC clusters; even a tiny lab uses billable VMs and disks.<\/li>\n
                                                                                        • Some Azure accounts include credits (e.g., Visual Studio subscriptions). That\u2019s account-dependent.<\/li>\n<\/ul>\n\n\n\n
                                                                                          Cost drivers (what makes bills spike)<\/h3>\n\n\n\n
                                                                                            \n
                                                                                          • Compute node hours<\/strong>: the number of nodes * hours running.<\/li>\n
                                                                                          • Idle nodes<\/strong>: misconfigured autoscale or scheduler settings can keep nodes running.<\/li>\n
                                                                                          • Large or premium storage<\/strong>: high-performance storage can cost more than compute in some cases.<\/li>\n
                                                                                          • Egress<\/strong>: moving data out of Azure can be expensive.<\/li>\n
                                                                                          • Over-provisioned head nodes<\/strong>: head nodes often run 24\/7; size them appropriately.<\/li>\n<\/ul>\n\n\n\n
                                                                                            Hidden\/indirect costs to plan for<\/h3>\n\n\n\n
                                                                                              \n
                                                                                            • Public IPs<\/strong> (small cost but often overlooked).<\/li>\n
                                                                                            • Log ingestion<\/strong> when forwarding verbose scheduler logs.<\/li>\n
                                                                                            • Image build pipelines<\/strong> (compute time for Packer\/VM image builds).<\/li>\n
                                                                                            • Data staging<\/strong>: repeated downloads of application datasets if you don\u2019t centralize storage.<\/li>\n<\/ul>\n\n\n\n
                                                                                              How to optimize cost (practical tactics)<\/h3>\n\n\n\n
                                                                                                \n
                                                                                              • Use autoscaling with conservative idle timeout<\/strong> settings.<\/li>\n
                                                                                              • Prefer ephemeral clusters<\/strong> for short projects: create, run, delete.<\/li>\n
                                                                                              • Right-size the head node<\/strong>; it rarely needs HPC-scale compute.<\/li>\n
                                                                                              • Use reserved instances<\/strong> or savings plans for steady baseline nodes (head\/login, long-running partitions).<\/li>\n
                                                                                              • Consider spot VMs<\/strong> for interruptible workloads (verify suitability and template support).<\/li>\n
                                                                                              • Minimize egress by keeping post-processing in Azure or using the same region for dependent services.<\/li>\n<\/ul>\n\n\n\n
                                                                                                Example low-cost starter estimate (model, not numbers)<\/h3>\n\n\n\n
                                                                                                For a small lab you can estimate using the pricing calculator:\n– 1 small VM for CycleCloud Server (runs while you\u2019re using the lab)\n– 1 small VM for head node\n– 0\u20132 small compute nodes for brief testing\n– Standard SSD OS disks\n– Minimal logging retention<\/p>\n\n\n\n
                                                                                                Because prices vary by region and VM family, use the calculator to plug in:\n– VM size\n– Hours per month (or per day)\n– Disk size and type\n– Expected outbound data<\/p>\n\n\n\n
                                                                                                Example production cost considerations<\/h3>\n\n\n\n
                                                                                                For production HPC:\n– Compute nodes may scale into hundreds or thousands of vCPUs.\n– Storage and data throughput (IOPS\/GB\/s) can become the dominant cost driver.\n– Monitoring and security tooling (SIEM integration, long retention) adds cost.\n– If you run multi-tenant clusters, include chargeback tagging and budget alerts.<\/p>\n\n\n\n
                                                                                                \n\n\n\n
                                                                                                10. Step-by-Step Hands-On Tutorial<\/h2>\n\n\n\n
                                                                                                This lab builds a small, low-cost Azure CycleCloud environment<\/strong> and deploys a minimal scheduler-based cluster<\/strong>. The exact template names and steps can differ by Azure CycleCloud version and the templates available in your environment. Where UI text or template catalogs vary, this lab tells you what to look for and where to verify in official docs.<\/p>\n\n\n\n
                                                                                                Official docs start here: https:\/\/learn.microsoft.com\/azure\/cyclecloud\/<\/p>\n\n\n\n
                                                                                                Objective<\/h3>\n\n\n\n
                                                                                                Deploy Azure CycleCloud Server in Azure, create a small cluster (e.g., Slurm-based), run a simple job, validate autoscaling basics, and then clean up to avoid ongoing charges.<\/p>\n\n\n\n
                                                                                                Lab Overview<\/h3>\n\n\n\n
                                                                                                You will:\n1. Create a resource group and networking.\n2. Deploy the Azure CycleCloud Server VM (Marketplace).\n3. Perform initial CycleCloud setup and configure Azure credentials for provisioning.\n4. Import\/select an HPC cluster template (commonly Slurm) and deploy a small cluster.\n5. SSH to the head node and submit a simple job.\n6. Validate nodes and job execution.\n7. Delete resources.<\/p>\n\n\n\n
                                                                                                Step 1: Create a resource group and basic network (Azure CLI)<\/h3>\n\n\n\n
                                                                                                Why this matters:<\/strong> keeping everything in one resource group makes cleanup easy and reduces the chance of orphaned resources.<\/p>\n\n\n\n
                                                                                                1) Sign in and set your subscription:<\/p>\n\n\n\n
                                                                                                az login\naz account set --subscription \"<YOUR_SUBSCRIPTION_ID_OR_NAME>\"\n<\/code><\/pre>\n\n\n\n
                                                                                                2) Create a resource group:<\/p>\n\n\n\n
                                                                                                export LOCATION=\"eastus\"\nexport RG=\"rg-cyclecloud-lab\"\n\naz group create \\\n  --name \"$RG\" \\\n  --location \"$LOCATION\"\n<\/code><\/pre>\n\n\n\n
                                                                                                3) Create a VNet and subnet:<\/p>\n\n\n\n
                                                                                                export VNET=\"vnet-cyclecloud-lab\"\nexport SUBNET=\"subnet-hpc\"\n\naz network vnet create \\\n  --resource-group \"$RG\" \\\n  --name \"$VNET\" \\\n  --address-prefixes 10.10.0.0\/16 \\\n  --subnet-name \"$SUBNET\" \\\n  --subnet-prefixes 10.10.1.0\/24\n<\/code><\/pre>\n\n\n\n
                                                                                                Expected outcome:<\/strong> a resource group with a VNet and subnet that can host the CycleCloud Server and cluster nodes.<\/p>\n\n\n\n
                                                                                                \n\n\n\n
                                                                                                Step 2: Deploy the Azure CycleCloud Server VM (Azure Portal)<\/h3>\n\n\n\n
                                                                                                Why portal here:<\/strong> Marketplace deployments often require accepting terms and selecting plan details that are easiest to confirm in the Portal.<\/p>\n\n\n\n
                                                                                                1) Go to Azure Portal: https:\/\/portal.azure.com\n2) Search for Azure CycleCloud<\/strong> in Marketplace<\/strong>.\n3) Choose the official Azure CycleCloud<\/strong> offer (publisher should be Microsoft\/Azure-related; verify in listing).\n4) Click Create<\/strong>.<\/p>\n\n\n\n
                                                                                                During creation, choose:\n– Resource group:<\/strong> rg-cyclecloud-lab<\/code>\n– Region:<\/strong> same as your VNet (e.g., East US)\n– Virtual network:<\/strong> vnet-cyclecloud-lab<\/code>\n– Subnet:<\/strong> subnet-hpc<\/code>\n– Authentication:<\/strong> SSH public key (recommended) or password (not recommended)\n– Inbound ports:<\/strong> For a lab, you may allow HTTPS to the CycleCloud UI from your IP.\n  – Prefer: restrict source to your public IP\n  – Production: do not expose publicly; use Bastion\/VPN\/Private access<\/p>\n\n\n\n
                                                                                                5) Review + create.<\/p>\n\n\n\n
                                                                                                Expected outcome:<\/strong> a running VM acting as the CycleCloud Server, visible in the resource group.<\/p>\n\n\n\n
                                                                                                Verification:<\/strong>\n– Azure Portal \u2192 Resource group \u2192 Virtual machines \u2192 CycleCloud VM is Running<\/strong>\n– Note the VM\u2019s private IP and (if used) public IP or DNS name.<\/p>\n\n\n\n
                                                                                                \n\n\n\n
                                                                                                Step 3: Access the CycleCloud UI and complete initial setup<\/h3>\n\n\n\n
                                                                                                1) From your workstation, browse to the CycleCloud UI endpoint:\n– If public IP was assigned: https:\/\/<PUBLIC_IP_OR_DNS><\/code>\n– If private-only: connect via Bastion\/jumpbox first, or use port forwarding.<\/p>\n\n\n\n
                                                                                                2) Complete the initial wizard:\n– Create the first admin user (store credentials securely).\n– Review any license\/terms prompts shown in the UI.<\/p>\n\n\n\n
                                                                                                Expected outcome:<\/strong> you can log in to Azure CycleCloud and reach the dashboard.<\/p>\n\n\n\n
                                                                                                Verification:<\/strong>\n– You can log out\/in successfully.\n– You can see a page for clusters\/templates\/projects (UI varies by version).<\/p>\n\n\n\n
                                                                                                \n\n\n\n
                                                                                                Step 4: Grant Azure permissions for cluster provisioning (identity setup)<\/h3>\n\n\n\n
                                                                                                CycleCloud needs Azure permissions to create VMs, NICs, disks, and related resources. The exact configuration can be done using:\n– A service principal<\/strong> (app registration) with a client secret\/cert, or\n– A managed identity<\/strong> (in some architectures), or\n– Another supported credential method documented by Microsoft.<\/p>\n\n\n\n
                                                                                                Because identity setup details are environment-specific, follow the official instructions for \u201cconfigure Azure credentials\u201d in CycleCloud docs:\n– https:\/\/learn.microsoft.com\/azure\/cyclecloud\/ (navigate to configuration\/credentials sections)<\/p>\n\n\n\n
                                                                                                A common approach (service principal) looks like this conceptually:<\/p>\n\n\n\n
                                                                                                1) Create a service principal scoped to your lab resource group:<\/p>\n\n\n\n
                                                                                                export SP_NAME=\"sp-cyclecloud-lab\"\naz ad sp create-for-rbac \\\n  --name \"$SP_NAME\" \\\n  --role \"Contributor\" \\\n  --scopes \"\/subscriptions\/$(az account show --query id -o tsv)\/resourceGroups\/$RG\"\n<\/code><\/pre>\n\n\n\n
                                                                                                2) Capture:\n– appId (client ID)\n– password (client secret)\n– tenant<\/p>\n\n\n\n
                                                                                                3) In CycleCloud UI, add an Azure \u201ccloud account\u201d \/ credentials entry using those values.<\/p>\n\n\n\n
                                                                                                Expected outcome:<\/strong> CycleCloud can successfully validate Azure credentials and list\/create resources.<\/p>\n\n\n\n
                                                                                                Verification:<\/strong>\n– In the CycleCloud UI, the Azure account\/credentials show as valid<\/strong> or connected<\/strong>.\n– If the UI provides a \u201ctest\u201d action, run it.<\/p>\n\n\n\n
                                                                                                Common error & fix:<\/strong>\n– Error:<\/strong> Authorization failed \/ insufficient privileges\nFix:<\/strong> ensure the service principal has Contributor on the RG (or necessary granular roles) and that the subscription\/tenant values match.<\/p>\n\n\n\n
                                                                                                \n\n\n\n
                                                                                                Step 5: Import or select a scheduler cluster template (e.g., Slurm)<\/h3>\n\n\n\n
                                                                                                CycleCloud typically uses templates for schedulers and reference clusters. The exact process varies:\n– Some environments include built-in templates.\n– Others require importing templates (sometimes from official repositories).<\/p>\n\n\n\n
                                                                                                Do this in the CycleCloud UI:\n1) Navigate to Templates<\/strong> (or equivalent section).\n2) Find the template for your target scheduler (commonly Slurm<\/strong> in many HPC environments).\n3) If templates must be imported, follow the official template guidance for your CycleCloud version (verify in docs).<\/p>\n\n\n\n
                                                                                                Expected outcome:<\/strong> the scheduler template is available and selectable when creating a cluster.<\/p>\n\n\n\n
                                                                                                Verification:<\/strong>\n– You can see a template entry with parameters for head node, compute nodes, VM types, and scaling.<\/p>\n\n\n\n
                                                                                                \n\n\n\n
                                                                                                Step 6: Create a small cluster (minimize cost)<\/h3>\n\n\n\n
                                                                                                Create a cluster with conservative sizing:\n– Head node VM size: small general-purpose VM (e.g., D-series)\n– Compute nodes: start with 0<\/strong> minimum, small maximum (e.g., 1\u20132 nodes)\n– Networking: use your lab VNet\/subnet\n– Public IPs: prefer none for compute nodes; for head node, use private and SSH via bastion\/jumpbox where possible<\/p>\n\n\n\n
                                                                                                In CycleCloud UI:\n1) Click Create Cluster<\/strong>.\n2) Choose your scheduler template.\n3) Set:\n   – Cluster name: slurm-lab<\/code> (example)\n   – Resource group: rg-cyclecloud-lab<\/code> (or a separate RG if your governance requires it)\n   – VM sizes: choose low-cost sizes supported in your region\n   – Max nodes: 1 or 2 for this lab\n   – Idle timeout: short (to scale down quickly)<\/p>\n\n\n\n
                                                                                                4) Click Start<\/strong> (or Create and Start<\/strong>, depending on UI).<\/p>\n\n\n\n
                                                                                                Expected outcome:<\/strong> CycleCloud provisions the head node and the cluster reaches a \u201crunning\u201d state.<\/p>\n\n\n\n
                                                                                                Verification:<\/strong>\n– In CycleCloud UI, cluster shows Running<\/strong> or Started<\/strong>.\n– Head node appears healthy.<\/p>\n\n\n\n
                                                                                                Common error & fix:<\/strong>\n– Error:<\/strong> Quota exceeded\nFix:<\/strong> choose a smaller VM size or request quota increase for the VM family\/region.<\/p>\n\n\n\n
                                                                                                \n\n\n\n
                                                                                                Step 7: SSH to the head node and run a test job<\/h3>\n\n\n\n
                                                                                                1) Get the head node IP:\n– From CycleCloud UI cluster view, locate the head node details.\n– Or in Azure Portal, find the head node VM and check private IP (or public if used).<\/p>\n\n\n\n
                                                                                                2) SSH to head node:<\/p>\n\n\n\n
                                                                                                ssh <USERNAME>@<HEAD_NODE_IP>\n<\/code><\/pre>\n\n\n\n
                                                                                                3) Verify scheduler commands exist (example for Slurm):<\/p>\n\n\n\n
                                                                                                which sbatch || true\nwhich srun || true\nwhich sinfo || true\n<\/code><\/pre>\n\n\n\n
                                                                                                4) Submit a simple job (Slurm example):<\/p>\n\n\n\n
                                                                                                cat > hello.sbatch <<'EOF'\n#!\/bin\/bash\n#SBATCH --job-name=hello\n#SBATCH --output=hello-%j.out\n#SBATCH --time=00:02:00\n#SBATCH --ntasks=1\n\nhostname\ndate\necho \"Hello from Slurm on Azure CycleCloud\"\nEOF\n\nsbatch hello.sbatch\nsqueue\n<\/code><\/pre>\n\n\n\n
                                                                                                Expected outcome:<\/strong>\n– Job is accepted.\n– If compute nodes are at 0, autoscaling should add a compute node and then run the job (timing varies).<\/p>\n\n\n\n
                                                                                                5) After the job completes:<\/p>\n\n\n\n
                                                                                                squeue\nls -l hello-*.out\ncat hello-*.out\n<\/code><\/pre>\n\n\n\n
                                                                                                Verification:<\/strong>\n– Output file exists and includes hostname\/date and the hello message.<\/p>\n\n\n\n
                                                                                                \n\n\n\n
                                                                                                Validation<\/h3>\n\n\n\n
                                                                                                Use these checks:<\/p>\n\n\n\n
                                                                                                1) CycleCloud UI:\n– Cluster status is healthy.\n– Compute nodes scale up when job is queued (if autoscaling is configured).<\/p>\n\n\n\n
                                                                                                2) Head node:\n– Scheduler reports nodes:\n  – Slurm example:\n    bash\n    sinfo\n    scontrol show nodes | head<\/code><\/p>\n\n\n\n
                                                                                                3) Azure Portal:\n– You can see compute VMs created when work is queued.\n– After idle timeout, compute nodes deallocate\/terminate according to policy.<\/p>\n\n\n\n
                                                                                                \n\n\n\n
                                                                                                Troubleshooting<\/h3>\n\n\n\n
                                                                                                Common issues and practical fixes:<\/p>\n\n\n\n
                                                                                                1) Cannot reach CycleCloud UI<\/strong>\n– Check NSG rules: allow HTTPS (443) from your IP (lab) or only from Bastion\/jump network (production).\n– Confirm the CycleCloud Server VM is running.\n– If using private access: ensure you are connected via VPN\/ExpressRoute\/Bastion.<\/p>\n\n\n\n
                                                                                                2) Cluster creation fails immediately<\/strong>\n– Check CycleCloud \u201cevents\u201d or logs in the UI.\n– Verify credentials (service principal\/managed identity).\n– Confirm the target subnet has enough IP space.<\/p>\n\n\n\n
                                                                                                3) Nodes provision but never join scheduler<\/strong>\n– DNS or outbound connectivity issues can break bootstrap installs.\n– Verify head node can resolve names and reach package repositories (or configure internal mirrors).\n– Check bootstrap logs on the node (location depends on OS\/template\u2014verify in template docs).<\/p>\n\n\n\n
                                                                                                4) Autoscaling doesn\u2019t add compute nodes<\/strong>\n– Job requests may not match node configuration (e.g., requesting GPU when no GPU nodes exist).\n– Partition\/queue mismatch.\n– Idle settings or max node limits set too low.\n– Verify the template\u2019s autoscale configuration and scheduler integration.<\/p>\n\n\n\n
                                                                                                5) Quota exceeded \/ SKU not available<\/strong>\n– Switch to a more available VM size.\n– Change region.\n– Request quota increases early for production.<\/p>\n\n\n\n
                                                                                                \n\n\n\n
                                                                                                Cleanup<\/h3>\n\n\n\n
                                                                                                To avoid ongoing charges, delete the lab resource group. This removes the CycleCloud Server VM, head\/compute nodes, disks, and most dependent resources created inside the RG.<\/p>\n\n\n\n
                                                                                                az group delete --name \"$RG\" --yes --no-wait\n<\/code><\/pre>\n\n\n\n
                                                                                                If you created a service principal for the lab<\/strong>, delete it too:<\/p>\n\n\n\n
                                                                                                # Find the appId first if you didn\u2019t save it\naz ad sp list --display-name \"$SP_NAME\" --query \"[0].appId\" -o tsv\n\n# Then delete by appId\naz ad sp delete --id \"<APP_ID>\"\n<\/code><\/pre>\n\n\n\n
                                                                                                Expected outcome:<\/strong> Resource group deletion completes and no CycleCloud-related resources remain in that RG.<\/p>\n\n\n\n
                                                                                                \n\n\n\n
                                                                                                11. Best Practices<\/h2>\n\n\n\n
                                                                                                Architecture best practices<\/h3>\n\n\n\n
                                                                                                  \n
                                                                                                • Separate management from compute:<\/strong> place CycleCloud Server and head node in a management subnet; compute nodes in a dedicated compute subnet.<\/li>\n
                                                                                                • Use hub-and-spoke networking<\/strong> for enterprise: shared DNS, security tooling, and egress control in hub; clusters in spokes.<\/li>\n
                                                                                                • Plan shared storage early:<\/strong> many HPC workloads need POSIX-like semantics; validate performance and locking requirements before choosing storage.<\/li>\n<\/ul>\n\n\n\n
                                                                                                  IAM\/security best practices<\/h3>\n\n\n\n
                                                                                                    \n
                                                                                                  • Use least privilege<\/strong> for the identity CycleCloud uses to create resources:<\/li>\n
                                                                                                  • Prefer scoped permissions (resource group) for dev\/test.<\/li>\n
                                                                                                  • For production, consider custom roles with only required actions (verify required actions in docs).<\/li>\n
                                                                                                  • Restrict UI and SSH access:<\/li>\n
                                                                                                  • No public IPs for compute nodes.<\/li>\n
                                                                                                  • Limit head\/login node exposure.<\/li>\n
                                                                                                  • Use Bastion\/VPN and NSGs with source IP restrictions.<\/li>\n
                                                                                                  • Rotate secrets (service principal secrets, SSH keys) and store them securely.<\/li>\n<\/ul>\n\n\n\n
                                                                                                    Cost best practices<\/h3>\n\n\n\n
                                                                                                      \n
                                                                                                    • Set conservative min nodes<\/strong> (often 0) and sensible max nodes<\/strong>.<\/li>\n
                                                                                                    • Use autoscale policies with idle timeout<\/strong> and graceful drain<\/strong> behavior (scheduler-specific).<\/li>\n
                                                                                                    • Enforce tagging<\/strong> (owner, cost center, environment, project) with Azure Policy.<\/li>\n
                                                                                                    • Add budgets and alerts<\/strong> in Azure Cost Management for HPC subscriptions\/resource groups.<\/li>\n<\/ul>\n\n\n\n
                                                                                                      Performance best practices<\/h3>\n\n\n\n
                                                                                                        \n
                                                                                                      • Select VM SKUs appropriate to workload:<\/li>\n
                                                                                                      • CPU-bound vs memory-bound vs network\/MPI-bound.<\/li>\n
                                                                                                      • For MPI-heavy workloads, ensure:<\/li>\n
                                                                                                      • VM SKUs with suitable network performance<\/li>\n
                                                                                                      • Placement and topology considerations (verify Azure HPC guidance)<\/li>\n
                                                                                                      • Minimize bootstrap time:<\/li>\n
                                                                                                      • Use custom images<\/li>\n
                                                                                                      • Cache packages<\/li>\n
                                                                                                      • Avoid large downloads at scale-out time<\/li>\n<\/ul>\n\n\n\n
                                                                                                        Reliability best practices<\/h3>\n\n\n\n
                                                                                                          \n
                                                                                                        • Treat head node and CycleCloud Server as critical:<\/li>\n
                                                                                                        • Backup configurations\/templates<\/li>\n
                                                                                                        • Use disciplined change management<\/li>\n
                                                                                                        • Use Availability Sets\/Zones where appropriate and supported (verify patterns and tradeoffs).<\/li>\n
                                                                                                        • Validate failure modes: what happens to running jobs if head node reboots?<\/li>\n<\/ul>\n\n\n\n
                                                                                                          Operations best practices<\/h3>\n\n\n\n
                                                                                                            \n
                                                                                                          • Centralize logs: scheduler logs, system logs, and provisioning events into Log Analytics.<\/li>\n
                                                                                                          • Create runbooks for:<\/li>\n
                                                                                                          • Cluster start\/stop<\/li>\n
                                                                                                          • Node drain\/replace<\/li>\n
                                                                                                          • Scheduler upgrades<\/li>\n
                                                                                                          • Image updates and rollback<\/li>\n
                                                                                                          • Implement patch strategy for OS and critical packages.<\/li>\n<\/ul>\n\n\n\n
                                                                                                            Governance\/tagging\/naming best practices<\/h3>\n\n\n\n
                                                                                                              \n
                                                                                                            • Naming convention example:<\/li>\n
                                                                                                            • cc-<env>-<region>-<team><\/code> for CycleCloud server<\/li>\n
                                                                                                            • hpc-<project>-<env>-head<\/code><\/li>\n
                                                                                                            • hpc-<project>-<env>-compute<\/code><\/li>\n
                                                                                                            • Tags:<\/li>\n
                                                                                                            • Owner<\/code>, CostCenter<\/code>, Project<\/code>, Environment<\/code>, DataSensitivity<\/code>, ExpirationDate<\/code><\/li>\n<\/ul>\n\n\n\n
                                                                                                              \n\n\n\n
                                                                                                              12. Security Considerations<\/h2>\n\n\n\n
                                                                                                              Identity and access model<\/h3>\n\n\n\n
                                                                                                                \n
                                                                                                              • Azure RBAC<\/strong> controls resource creation and changes.<\/li>\n
                                                                                                              • CycleCloud UI<\/strong> has its own access control model (verify exact auth and RBAC options in the version you deploy).<\/li>\n
                                                                                                              • For automation, use:<\/li>\n
                                                                                                              • Service principals with scoped permissions, or<\/li>\n
                                                                                                              • Managed identities where supported and appropriate.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                Encryption<\/h3>\n\n\n\n
                                                                                                                  \n
                                                                                                                • At rest:<\/strong> Azure managed disks are encrypted by default (platform-managed keys); CMK options exist depending on disk\/storage type.<\/li>\n
                                                                                                                • In transit:<\/strong> use HTTPS for UI and SSH for node access.<\/li>\n
                                                                                                                • For shared storage, ensure encryption in transit is enabled where supported.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                  Network exposure<\/h3>\n\n\n\n
                                                                                                                    \n
                                                                                                                  • Avoid public IPs for compute nodes.<\/li>\n
                                                                                                                  • Prefer private IP access and controlled admin entry points (Bastion\/VPN).<\/li>\n
                                                                                                                  • Use NSGs to restrict:<\/li>\n
                                                                                                                  • HTTPS (443) to CycleCloud UI from admin networks only<\/li>\n
                                                                                                                  • SSH (22) to head\/login from admin networks only<\/li>\n
                                                                                                                  • Control outbound egress (NAT Gateway, firewall) to reduce exfiltration risk and improve auditability.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                    Secrets handling<\/h3>\n\n\n\n
                                                                                                                      \n
                                                                                                                    • Don\u2019t hardcode secrets in templates or bootstrap scripts.<\/li>\n
                                                                                                                    • Use Azure Key Vault<\/strong> for storing secrets where possible, but design carefully:<\/li>\n
                                                                                                                    • Ensure cluster nodes can reach Key Vault endpoints (private endpoints if required).<\/li>\n
                                                                                                                    • Use managed identity on nodes if your design supports it (verify).<\/li>\n
                                                                                                                    • Rotate and audit credentials.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                      Audit\/logging<\/h3>\n\n\n\n
                                                                                                                        \n
                                                                                                                      • Enable:<\/li>\n
                                                                                                                      • Azure Activity Log forwarding (resource operations)<\/li>\n
                                                                                                                      • Log Analytics for OS and scheduler logs<\/li>\n
                                                                                                                      • NSG flow logs (if required)<\/li>\n
                                                                                                                      • Ensure logs are retained per policy and protected from tampering (e.g., centralized workspace with RBAC).<\/li>\n<\/ul>\n\n\n\n
                                                                                                                        Compliance considerations<\/h3>\n\n\n\n
                                                                                                                          \n
                                                                                                                        • Data residency: keep cluster, storage, and dependent services in approved regions.<\/li>\n
                                                                                                                        • Access controls: enforce MFA and privileged access workflows for admins.<\/li>\n
                                                                                                                        • Vulnerability management: patch OS images and track CVEs affecting scheduler stack.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                          Common security mistakes<\/h3>\n\n\n\n
                                                                                                                            \n
                                                                                                                          • Exposing CycleCloud UI to the internet with weak authentication.<\/li>\n
                                                                                                                          • Leaving SSH open to 0.0.0.0\/0<\/code>.<\/li>\n
                                                                                                                          • Using a high-privilege service principal at subscription scope for convenience.<\/li>\n
                                                                                                                          • Allowing unrestricted outbound internet without logging\/controls.<\/li>\n
                                                                                                                          • Not tagging resources, leading to unknown ownership and abandoned clusters.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                            Secure deployment recommendations<\/h3>\n\n\n\n
                                                                                                                              \n
                                                                                                                            • Private cluster design (no public IPs), access via Bastion\/VPN.<\/li>\n
                                                                                                                            • Separate resource groups for management vs compute if governance requires.<\/li>\n
                                                                                                                            • Use Azure Policy to enforce:<\/li>\n
                                                                                                                            • Required tags<\/li>\n
                                                                                                                            • Allowed VM SKUs\/regions<\/li>\n
                                                                                                                            • Deny public IP creation except approved cases<\/li>\n<\/ul>\n\n\n\n
                                                                                                                              \n\n\n\n
                                                                                                                              13. Limitations and Gotchas<\/h2>\n\n\n\n
                                                                                                                              \n
                                                                                                                              These are common real-world issues. For authoritative limits, always verify in official docs and Azure service quotas.<\/p>\n<\/blockquote>\n\n\n\n
                                                                                                                                \n
                                                                                                                              • Not a fully managed service:<\/strong> you manage the CycleCloud Server VM, OS patching, and scheduler components.<\/li>\n
                                                                                                                              • Quota constraints:<\/strong> HPC scaling is often blocked by vCPU quotas per VM family\/region.<\/li>\n
                                                                                                                              • SKU availability:<\/strong> desired HPC SKUs may be unavailable in some regions or may require capacity planning.<\/li>\n
                                                                                                                              • Bootstrap fragility:<\/strong> scale-out relies on successful bootstrapping; locked-down networks often break package installs.<\/li>\n
                                                                                                                              • Shared storage complexity:<\/strong> HPC workflows often assume POSIX semantics; choosing storage that meets performance and locking needs is critical.<\/li>\n
                                                                                                                              • Autoscaling tuning:<\/strong> misconfigured policies can cause:<\/li>\n
                                                                                                                              • Too many nodes (cost spike)<\/li>\n
                                                                                                                              • Too few nodes (long queue wait)<\/li>\n
                                                                                                                              • Thrashing (scale up\/down too often)<\/li>\n
                                                                                                                              • Head node as SPOF:<\/strong> unless you implement HA patterns supported by your scheduler and architecture, head node issues can disrupt scheduling.<\/li>\n
                                                                                                                              • Logging volume:<\/strong> scheduler and provisioning logs can be large; Log Analytics ingestion costs can surprise teams.<\/li>\n
                                                                                                                              • Template drift:<\/strong> unversioned template changes can break reproducibility; treat templates like code.<\/li>\n
                                                                                                                              • Networking for MPI:<\/strong> some workloads need specific network performance and topology; test at scale.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                \n\n\n\n
                                                                                                                                14. Comparison with Alternatives<\/h2>\n\n\n\n
                                                                                                                                Azure CycleCloud is one option in Azure\u2019s Compute ecosystem for large-scale workloads. Alternatives vary depending on whether you want scheduler-managed VMs, managed batch, containers, or a DIY approach.<\/p>\n\n\n\n
                                                                                                                                Comparison table<\/h3>\n\n\n\n
                                                                                                                                \n\n\n\n\n\n\n\n\n\n\n
                                                                                                                                Option<\/th>\nBest For<\/th>\nStrengths<\/th>\nWeaknesses<\/th>\nWhen to Choose<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                Azure CycleCloud<\/strong><\/td>\nHPC clusters with schedulers (e.g., Slurm\/PBS), IaaS control<\/td>\nTemplate-driven clusters, scheduler integration, autoscaling, Azure integration<\/td>\nYou manage server + scheduler; storage\/network complexity<\/td>\nYou need HPC scheduler workflows and elastic VM clusters<\/td>\n<\/tr>\n
                                                                                                                                Azure Batch<\/strong><\/td>\nManaged batch\/HTC workloads without managing scheduler VMs<\/td>\nManaged service, job\/task model, simplified operations<\/td>\nDifferent programming model than traditional HPC schedulers; less \u201cHPC admin\u201d feel<\/td>\nYou want managed orchestration and can adapt to Batch model<\/td>\n<\/tr>\n
                                                                                                                                Azure Virtual Machine Scale Sets (DIY)<\/strong><\/td>\nCustom VM fleets without HPC scheduler integration<\/td>\nFull control, simple scaling mechanics<\/td>\nYou must build orchestration, scheduling, node config, and autoscale logic<\/td>\nYou have custom orchestration needs and strong automation capability<\/td>\n<\/tr>\n
                                                                                                                                Azure Kubernetes Service (AKS)<\/strong><\/td>\nContainer-native compute platforms<\/td>\nStrong ecosystem, GitOps, autoscaling<\/td>\nNot a drop-in replacement for HPC schedulers; MPI and high-perf storage require expertise<\/td>\nYour workloads are containerized and platform team runs Kubernetes<\/td>\n<\/tr>\n
                                                                                                                                AWS ParallelCluster<\/strong> (other cloud)<\/td>\nHPC clusters on AWS<\/td>\nHPC templates and scheduler integration<\/td>\nCloud-specific; migration effort<\/td>\nYou are standardized on AWS or need AWS-native integrations<\/td>\n<\/tr>\n
                                                                                                                                Google Cloud Cluster Toolkit \/ HPC solutions<\/strong> (other cloud)<\/td>\nHPC clusters on GCP<\/td>\nInfrastructure blueprints for HPC<\/td>\nCloud-specific; migration effort<\/td>\nYou are standardized on GCP<\/td>\n<\/tr>\n
                                                                                                                                Self-managed Slurm\/PBS on VMs<\/strong><\/td>\nFull DIY HPC<\/td>\nMaximum control<\/td>\nHighest ops burden; scaling\/templating is on you<\/td>\nYou need bespoke architecture and accept operational load<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                \n\n\n\n
                                                                                                                                15. Real-World Example<\/h2>\n\n\n\n
                                                                                                                                Enterprise example: regulated engineering simulation platform<\/h3>\n\n\n\n
                                                                                                                                  \n
                                                                                                                                • Problem:<\/strong> An automotive supplier runs CAE simulations that spike during design milestones. On-prem HPC is saturated at quarter-end; workloads must stay private and compliant.<\/li>\n
                                                                                                                                • Proposed architecture:<\/strong><\/li>\n
                                                                                                                                • Hub-and-spoke network with private DNS, centralized logging, and controlled egress.<\/li>\n
                                                                                                                                • Azure CycleCloud Server in a management subnet (private access only).<\/li>\n
                                                                                                                                • Scheduler head\/login nodes in a secure subnet with restricted SSH.<\/li>\n
                                                                                                                                • Compute nodes in a compute subnet, no public IPs, autoscaling from 0 to N.<\/li>\n
                                                                                                                                • Shared storage designed for throughput and POSIX semantics (choose solution appropriate to workload; verify with HPC storage guidance).<\/li>\n
                                                                                                                                • Azure Monitor + Log Analytics for OS\/scheduler logs; Activity Log forwarded to SIEM.<\/li>\n
                                                                                                                                • Why Azure CycleCloud was chosen:<\/strong><\/li>\n
                                                                                                                                • Preserves scheduler-based workflow familiar to HPC users.<\/li>\n
                                                                                                                                • Enables elastic scaling while keeping strict network controls.<\/li>\n
                                                                                                                                • Template-driven deployments support governance and standardization.<\/li>\n
                                                                                                                                • Expected outcomes:<\/strong><\/li>\n
                                                                                                                                • Reduced queue time during peaks by bursting to Azure.<\/li>\n
                                                                                                                                • Improved cost control via autoscaling and chargeback tags.<\/li>\n
                                                                                                                                • More consistent cluster deployments across teams.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                  Startup\/small-team example: elastic compute for parameter sweeps<\/h3>\n\n\n\n
                                                                                                                                    \n
                                                                                                                                  • Problem:<\/strong> A small biotech startup runs thousands of independent parameter sweep jobs weekly. They need low ops overhead but still want scheduler-style job submission and autoscaling.<\/li>\n
                                                                                                                                  • Proposed architecture:<\/strong><\/li>\n
                                                                                                                                  • Single Azure CycleCloud Server VM (small size).<\/li>\n
                                                                                                                                  • One scheduler cluster template with max 20 nodes; min 0.<\/li>\n
                                                                                                                                  • Basic shared working directory; outputs stored in Azure storage.<\/li>\n
                                                                                                                                  • Budget alerts and forced TTL tags to delete stale resources.<\/li>\n
                                                                                                                                  • Why Azure CycleCloud was chosen:<\/strong><\/li>\n
                                                                                                                                  • Faster than hand-rolling VM orchestration.<\/li>\n
                                                                                                                                  • Autoscaling reduces idle compute costs.<\/li>\n
                                                                                                                                  • Works well with Linux-based HPC tooling and scripts.<\/li>\n
                                                                                                                                  • Expected outcomes:<\/strong><\/li>\n
                                                                                                                                  • Repeatable environment for pipelines.<\/li>\n
                                                                                                                                  • Lower compute spend due to scaling down between runs.<\/li>\n
                                                                                                                                  • Ability to increase capacity quickly when experiments expand.<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                    \n\n\n\n
                                                                                                                                    16. FAQ<\/h2>\n\n\n\n
                                                                                                                                    1) Is Azure CycleCloud a fully managed Azure service?<\/strong>\nNo. Azure CycleCloud is typically deployed as software (often a VM from Marketplace) in your subscription. You manage the server VM, patching, and scheduler components.<\/p>\n\n\n\n
                                                                                                                                    2) What is the difference between Azure CycleCloud and Azure Batch?<\/strong>\nAzure CycleCloud focuses on deploying and operating scheduler-based VM clusters<\/strong> (common in HPC). Azure Batch is a managed batch processing service<\/strong> with a different job\/task model.<\/p>\n\n\n\n
                                                                                                                                    3) Do I pay separately for Azure CycleCloud?<\/strong>\nIn many cases, costs are primarily for the underlying Azure resources (VMs, disks, networking, monitoring). Verify the Marketplace offer details you deploy to confirm any additional charges.<\/p>\n\n\n\n
                                                                                                                                    4) Which schedulers are supported?<\/strong>\nAzure CycleCloud commonly supports popular HPC schedulers (often including Slurm and others). The supported list can change\u2014verify in the official docs for your version.<\/p>\n\n\n\n
                                                                                                                                    5) Can I run GPU workloads with Azure CycleCloud?<\/strong>\nYes, if your template supports GPU node arrays and you select GPU-capable VM sizes. Ensure drivers and images are compatible with your chosen SKU and region.<\/p>\n\n\n\n
                                                                                                                                    6) Can clusters be fully private (no public IPs)?<\/strong>\nYes. A recommended production approach is private networking with access via Bastion\/VPN\/ExpressRoute and restrictive NSGs.<\/p>\n\n\n\n
                                                                                                                                    7) How does autoscaling work?<\/strong>\nAutoscaling typically reacts to scheduler demand (queued jobs and requested resources) and provisions compute nodes accordingly, then deallocates\/removes nodes after idle timeouts (scheduler\/template-dependent).<\/p>\n\n\n\n
                                                                                                                                    8) What are the most common reasons cluster creation fails?<\/strong>\nInsufficient Azure permissions, quota limits, wrong VM SKU availability, blocked outbound connectivity during bootstrap, or misconfigured networking (DNS\/routing\/NSGs).<\/p>\n\n\n\n
                                                                                                                                    9) What storage should I use for shared home and scratch?<\/strong>\nIt depends on performance and POSIX requirements. Many HPC workloads require NFS-like semantics and high throughput. Validate options with Azure HPC storage guidance and your application requirements.<\/p>\n\n\n\n
                                                                                                                                    10) Can I use custom images?<\/strong>\nYes. Custom images are often recommended to reduce bootstrap time and ensure consistent libraries\/drivers\/security agents\u2014maintain an image pipeline and rollback strategy.<\/p>\n\n\n\n
                                                                                                                                    11) How do I control costs?<\/strong>\nAutoscale with min=0 where possible, use short idle timeouts, enforce max node counts, right-size head nodes, use tagging and budgets, and avoid unnecessary logging\/egress.<\/p>\n\n\n\n
                                                                                                                                    12) Is Azure CycleCloud suitable for containerized workloads?<\/strong>\nIt can be used, but if your primary model is containers and Kubernetes, AKS may be a better fit. CycleCloud is typically chosen for scheduler-based HPC VM clusters.<\/p>\n\n\n\n
                                                                                                                                    13) How do I monitor clusters?<\/strong>\nUse Azure Monitor for VM metrics, Log Analytics for OS and scheduler logs, and Azure Activity Log for provisioning operations. Decide what to ingest to control cost.<\/p>\n\n\n\n
                                                                                                                                    14) Can I manage multiple clusters with one CycleCloud Server?<\/strong>\nOften yes. Capacity depends on server sizing and operational practices. Treat the server as critical shared infrastructure.<\/p>\n\n\n\n
                                                                                                                                    15) What is the recommended way to learn Azure CycleCloud?<\/strong>\nStart with Microsoft\u2019s official documentation and a small lab cluster, then learn scheduler fundamentals (Slurm\/PBS), Azure networking for private clusters, and storage design for HPC.<\/p>\n\n\n\n
                                                                                                                                    \n\n\n\n
                                                                                                                                    17. Top Online Resources to Learn Azure CycleCloud<\/h2>\n\n\n\n
                                                                                                                                    \n\n\n\n\n\n\n\n\n\n\n\n\n\n
                                                                                                                                    Resource Type<\/th>\nName<\/th>\nWhy It Is Useful<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                    Official Documentation<\/td>\nAzure CycleCloud documentation \u2014 https:\/\/learn.microsoft.com\/azure\/cyclecloud\/<\/td>\nAuthoritative guidance on installation, configuration, templates, and operations<\/td>\n<\/tr>\n
                                                                                                                                    Marketplace Listing<\/td>\nAzure Marketplace (search \u201cAzure CycleCloud\u201d) \u2014 https:\/\/azuremarketplace.microsoft.com\/<\/td>\nShows deployment options, plan details, and any offer-specific terms<\/td>\n<\/tr>\n
                                                                                                                                    Pricing Calculator<\/td>\nAzure Pricing Calculator \u2014 https:\/\/azure.microsoft.com\/pricing\/calculator\/<\/td>\nBuild realistic estimates for VM, storage, and networking costs<\/td>\n<\/tr>\n
                                                                                                                                    VM Pricing<\/td>\nVirtual Machines pricing \u2014 https:\/\/azure.microsoft.com\/pricing\/details\/virtual-machines\/<\/td>\nUnderstand compute cost drivers by VM family and region<\/td>\n<\/tr>\n
                                                                                                                                    Storage Pricing<\/td>\nAzure Storage pricing \u2014 https:\/\/azure.microsoft.com\/pricing\/details\/storage\/<\/td>\nPlan shared storage and data costs<\/td>\n<\/tr>\n
                                                                                                                                    Monitoring Docs<\/td>\nAzure Monitor documentation \u2014 https:\/\/learn.microsoft.com\/azure\/azure-monitor\/<\/td>\nImplement metrics\/logging for clusters and nodes<\/td>\n<\/tr>\n
                                                                                                                                    Governance<\/td>\nAzure Policy documentation \u2014 https:\/\/learn.microsoft.com\/azure\/governance\/policy\/<\/td>\nEnforce tags, allowed SKUs, and security guardrails for HPC environments<\/td>\n<\/tr>\n
                                                                                                                                    Identity<\/td>\nAzure RBAC documentation \u2014 https:\/\/learn.microsoft.com\/azure\/role-based-access-control\/<\/td>\nApply least privilege and secure automation identities<\/td>\n<\/tr>\n
                                                                                                                                    Architecture Guidance<\/td>\nAzure Architecture Center \u2014 https:\/\/learn.microsoft.com\/azure\/architecture\/<\/td>\nReference architectures and design principles (useful for landing zones and governance)<\/td>\n<\/tr>\n
                                                                                                                                    HPC Overview<\/td>\nAzure high performance computing (HPC) resources (verify current entry points) \u2014 https:\/\/learn.microsoft.com\/azure\/<\/td>\nHelps with VM selection, networking, and storage considerations for HPC on Azure<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                    \n\n\n\n
                                                                                                                                    18. Training and Certification Providers<\/h2>\n\n\n\n
                                                                                                                                    \n\n\n\n\n\n\n\n\n
                                                                                                                                    Institute<\/th>\nSuitable Audience<\/th>\nLikely Learning Focus<\/th>\nMode<\/th>\nWebsite URL<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                    DevOpsSchool.com<\/td>\nDevOps engineers, SREs, platform teams<\/td>\nDevOps practices, cloud operations, automation fundamentals relevant to running HPC platforms<\/td>\nCheck website<\/td>\nhttps:\/\/www.devopsschool.com\/<\/td>\n<\/tr>\n
                                                                                                                                    ScmGalaxy.com<\/td>\nBeginners to intermediate engineers<\/td>\nDevOps\/SCM learning paths that support infrastructure automation skills<\/td>\nCheck website<\/td>\nhttps:\/\/www.scmgalaxy.com\/<\/td>\n<\/tr>\n
                                                                                                                                    CLoudOpsNow.in<\/td>\nCloud operations teams<\/td>\nCloud operations practices, monitoring, governance, cost control<\/td>\nCheck website<\/td>\nhttps:\/\/www.cloudopsnow.in\/<\/td>\n<\/tr>\n
                                                                                                                                    SreSchool.com<\/td>\nSREs, operations engineers<\/td>\nReliability engineering practices applicable to HPC platforms<\/td>\nCheck website<\/td>\nhttps:\/\/www.sreschool.com\/<\/td>\n<\/tr>\n
                                                                                                                                    AiOpsSchool.com<\/td>\nOps teams exploring AIOps<\/td>\nMonitoring, automation, and operational analytics concepts<\/td>\nCheck website<\/td>\nhttps:\/\/www.aiopsschool.com\/<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                    \n\n\n\n
                                                                                                                                    19. Top Trainers<\/h2>\n\n\n\n
                                                                                                                                    \n\n\n\n\n\n\n\n
                                                                                                                                    Platform\/Site<\/th>\nLikely Specialization<\/th>\nSuitable Audience<\/th>\nWebsite URL<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                    RajeshKumar.xyz<\/td>\nDevOps\/cloud training content (verify exact offerings)<\/td>\nBeginners to intermediate engineers<\/td>\nhttps:\/\/www.rajeshkumar.xyz\/<\/td>\n<\/tr>\n
                                                                                                                                    devopstrainer.in<\/td>\nDevOps training (tools and practices)<\/td>\nDevOps engineers, admins<\/td>\nhttps:\/\/www.devopstrainer.in\/<\/td>\n<\/tr>\n
                                                                                                                                    devopsfreelancer.com<\/td>\nDevOps consulting\/training marketplace style resource (verify)<\/td>\nTeams needing hands-on guidance<\/td>\nhttps:\/\/www.devopsfreelancer.com\/<\/td>\n<\/tr>\n
                                                                                                                                    devopssupport.in<\/td>\nDevOps support\/training resource (verify)<\/td>\nOperations teams and engineers<\/td>\nhttps:\/\/www.devopssupport.in\/<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                    \n\n\n\n
                                                                                                                                    20. Top Consulting Companies<\/h2>\n\n\n\n
                                                                                                                                    \n\n\n\n\n\n\n
                                                                                                                                    Company Name<\/th>\nLikely Service Area<\/th>\nWhere They May Help<\/th>\nConsulting Use Case Examples<\/th>\nWebsite URL<\/th>\n<\/tr>\n<\/thead>\n
                                                                                                                                    cotocus.com<\/td>\nCloud\/DevOps consulting (verify service catalog)<\/td>\nArchitecture, implementation support, operations processes<\/td>\nLanding zone alignment, network design review, automation pipelines for cluster templates<\/td>\nhttps:\/\/cotocus.com\/<\/td>\n<\/tr>\n
                                                                                                                                    DevOpsSchool.com<\/td>\nDevOps and cloud consulting\/training services<\/td>\nSkills enablement and implementation guidance<\/td>\nOperational runbooks, monitoring\/logging strategy, IaC adoption around cluster deployments<\/td>\nhttps:\/\/www.devopsschool.com\/<\/td>\n<\/tr>\n
                                                                                                                                    DEVOPSCONSULTING.IN<\/td>\nDevOps consulting (verify service catalog)<\/td>\nCI\/CD, automation, operational best practices<\/td>\nCost governance setup, RBAC hardening, deployment automation for Azure HPC environments<\/td>\nhttps:\/\/www.devopsconsulting.in\/<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/figure>\n\n\n\n
                                                                                                                                    \n\n\n\n
                                                                                                                                    21. Career and Learning Roadmap<\/h2>\n\n\n\n
                                                                                                                                    What to learn before Azure CycleCloud<\/h3>\n\n\n\n
                                                                                                                                      \n
                                                                                                                                    1. Azure fundamentals<\/strong>\n   – Resource groups, VNets\/subnets, NSGs, managed disks\n   – Azure RBAC, managed identities, service principals<\/li>\n
                                                                                                                                    2. Linux administration<\/strong>\n   – SSH, systemd, package management, logs, network troubleshooting<\/li>\n
                                                                                                                                    3. HPC basics<\/strong>\n   – Scheduler concepts: queues\/partitions, nodes, job submission, backfill\n   – MPI fundamentals if running tightly coupled workloads<\/li>\n
                                                                                                                                    4. Infrastructure as Code and automation<\/strong>\n   – Azure CLI, scripting\n   – (Optional) Terraform\/Bicep for repeatable deployments<\/li>\n<\/ol>\n\n\n\n
                                                                                                                                      What to learn after Azure CycleCloud<\/h3>\n\n\n\n
                                                                                                                                        \n
                                                                                                                                      • Advanced scheduler administration (fairshare, reservations, accounting)<\/li>\n
                                                                                                                                      • Image pipelines for HPC nodes (Packer, Azure Image Builder)<\/li>\n
                                                                                                                                      • Storage performance engineering (IO patterns, throughput vs IOPS, caching)<\/li>\n
                                                                                                                                      • Observability at scale (Log Analytics cost control, dashboards, alerting)<\/li>\n
                                                                                                                                      • Network performance tuning for MPI-capable workloads<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                        Job roles that use it<\/h3>\n\n\n\n
                                                                                                                                          \n
                                                                                                                                        • HPC Cloud Architect<\/li>\n
                                                                                                                                        • Cloud Platform Engineer (HPC)<\/li>\n
                                                                                                                                        • DevOps Engineer supporting compute platforms<\/li>\n
                                                                                                                                        • SRE\/Operations Engineer for research compute<\/li>\n
                                                                                                                                        • Computational infrastructure engineer<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                          Certification path (Azure)<\/h3>\n\n\n\n
                                                                                                                                          There is not a CycleCloud-specific certification commonly referenced as a standalone credential. A practical path is:\n– Start with Azure fundamentals<\/strong> certifications\/learning paths\n– Then focus on Azure Administrator<\/strong> \/ Azure Solutions Architect<\/strong> skills\n– Add Linux + HPC scheduler expertise as a specialization\n(Verify current Microsoft certification offerings: https:\/\/learn.microsoft.com\/credentials\/)<\/p>\n\n\n\n
                                                                                                                                          Project ideas for practice<\/h3>\n\n\n\n
                                                                                                                                            \n
                                                                                                                                          1. Build a private CycleCloud environment with Bastion-only access.<\/li>\n
                                                                                                                                          2. Implement autoscaling policies and measure queue time vs cost.<\/li>\n
                                                                                                                                          3. Create a custom VM image with preinstalled libraries and compare node \u201ctime to ready.\u201d<\/li>\n
                                                                                                                                          4. Build a tagging + budget + alerting framework for HPC resource groups.<\/li>\n
                                                                                                                                          5. Centralize scheduler logs into Log Analytics and create operational dashboards.<\/li>\n<\/ol>\n\n\n\n
                                                                                                                                            \n\n\n\n
                                                                                                                                            22. Glossary<\/h2>\n\n\n\n
                                                                                                                                              \n
                                                                                                                                            • HPC (High-Performance Computing):<\/strong> Compute workloads requiring parallelism, high throughput, or low-latency interconnect considerations.<\/li>\n
                                                                                                                                            • Scheduler:<\/strong> Software that queues and assigns jobs to compute resources (e.g., Slurm, PBS).<\/li>\n
                                                                                                                                            • Head node \/ Login node:<\/strong> The node users connect to for submitting jobs and where scheduler control services typically run.<\/li>\n
                                                                                                                                            • Compute node:<\/strong> Worker node that executes jobs.<\/li>\n
                                                                                                                                            • Autoscaling:<\/strong> Automatically adding\/removing compute nodes based on demand\/policy.<\/li>\n
                                                                                                                                            • Template:<\/strong> A repeatable cluster definition used to deploy consistent infrastructure and configuration.<\/li>\n
                                                                                                                                            • VM SKU:<\/strong> The VM size\/family defining CPU, memory, disk, and network capabilities.<\/li>\n
                                                                                                                                            • NSG (Network Security Group):<\/strong> Azure firewall rules for subnet\/NIC traffic control.<\/li>\n
                                                                                                                                            • VNet:<\/strong> Azure virtual network.<\/li>\n
                                                                                                                                            • Egress:<\/strong> Outbound network traffic leaving Azure (often billed).<\/li>\n
                                                                                                                                            • Quota:<\/strong> Azure limits on resources (e.g., vCPU per VM family per region).<\/li>\n
                                                                                                                                            • Bootstrap:<\/strong> Initialization scripts\/tasks that configure a node at first boot.<\/li>\n
                                                                                                                                            • Log Analytics:<\/strong> Azure service for log collection, querying, and retention (cost based on ingestion\/retention).<\/li>\n<\/ul>\n\n\n\n
                                                                                                                                              \n\n\n\n
                                                                                                                                              23. Summary<\/h2>\n\n\n\n
                                                                                                                                              Azure CycleCloud is an Azure Compute-focused solution for deploying and operating scheduler-based HPC clusters<\/strong> on Azure infrastructure. It matters because it gives teams a practical path to run familiar HPC schedulers with repeatable templates<\/strong> and queue-driven autoscaling<\/strong>, while keeping control over VM images, networking, and storage.<\/p>\n\n\n\n
                                                                                                                                              Cost-wise, the main drivers are compute node hours<\/strong>, storage performance choices, monitoring ingestion, and data egress. Security-wise, treat the CycleCloud Server and head node as critical assets: keep them private, enforce least privilege, and centralize audit and operational logs.<\/p>\n\n\n\n
                                                                                                                                              Use Azure CycleCloud when you need HPC scheduler workflows and elastic VM clusters; consider Azure Batch or AKS when you want managed batch or container-native orchestration instead. The best next step is to complete the hands-on lab, then deepen your scheduler, storage, and Azure networking knowledge using the official documentation: https:\/\/learn.microsoft.com\/azure\/cyclecloud\/<\/p>\n","protected":false},"excerpt":{"rendered":"
                                                                                                                                              Compute<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[40,26],"tags":[],"class_list":["post-390","post","type-post","status-publish","format-standard","hentry","category-azure","category-compute"],"_links":{"self":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/posts\/390","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/comments?post=390"}],"version-history":[{"count":0,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/posts\/390\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/media?parent=390"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/categories?post=390"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.devopsschool.com\/tutorials\/wp-json\/wp\/v2\/tags?post=390"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}