Set Initial Machine Labels Using Omnictl or Image Factory

This guide demonstrates how to set initial machine labels when generating an boot media / URL using the omnictl CLI tool or using directly.

Both methods allow you to programmatically label your machines, which can be useful for various automation scenarios, such as integrating with your CI pipeline.

Machine labels can be useful for organizing and selecting machines in your Omni environment. For example, you might use them to distinguish between different environments (production, staging, development) or geographical locations (regions, zones).

Using omnictl

When generating Talos installation media or a PXE boot URL using omnictl, you can set initial machine labels using the --initial-labels flag. This allows you to assign key-value pairs as labels to the machines that will boot from that media or the PXE boot URL.

Here's the basic syntax for adding initial labels:

omnictl download <image-name> \
  --initial-labels <key1>=<value1>,<key2>=<value2> \
  [--pxe]

Let's say you want to download an amd64 ISO image and set two labels: environment=production and region=us-west. Here's how you would do that:

omnictl download iso --arch amd64 \
  --initial-labels environment=production,region=us-west

Running this command will prepare a schematic under the hood and submit it in a request to the Image Factory. The generated schematic will look like the following:

customization:
  extraKernelArgs:
    - siderolink.api=grpc://YOUR_INSTANCE.siderolink.omni.siderolabs.io?grpc_tunnel=true&jointoken=YOUR_JOIN_TOKEN
    - talos.events.sink=[fdae:41e4:649b:9303::1]:8090
    - talos.logging.kernel=tcp://[fdae:41e4:649b:9303::1]:8092
  meta:
    - key: 12
      value: |
        machineLabels:
            environment: production
            region: us-west

The schematic will also get a unique ID, such as d2f4229b6157ba7e1dba8c3b4de42263e4baa35111e960b6a18841332d0f2035.

Using Image Factory Directly

Instead of using your Omni instance to generate labeled boot media or PXE URLs, you can use the image factory directly.

To do this, you need to craft an HTTP POST request with the schematic YAML in its body.

First, you need to find the Kernel arguments for your Omni instance.

You can do it:

• Either by clicking "Copy Kernel Parameters" on your Omni overview page, which will copy them to your clipboard

• Or by running omnictl get connectionparams -oyaml , which will print them under .spec.args field.

Note that this is a one-time operation - these kernel arguments will stay the same for all the machines you would boot.

After getting the Kernel arguments, split them by white spaces, and put them into your request body. Your CURL command should look like the following:

curl -X POST https://factory.talos.dev/schematics \
  -H "Content-Type: application/yaml" \
  -d '
customization:
  extraKernelArgs:
    - siderolink.api=grpc://YOUR_INSTANCE.siderolink.omni.siderolabs.io?grpc_tunnel=true&jointoken=YOUR_JOIN_TOKEN
    - talos.events.sink=[fdae:41e4:649b:9303::1]:8090
    - talos.logging.kernel=tcp://[fdae:41e4:649b:9303::1]:8092
  meta:
    - key: 12
      value: |
        machineLabels:
            environment: production
            region: us-west
'

This command will produce output similar to:

{"id":"d2f4229b6157ba7e1dba8c3b4de42263e4baa35111e960b6a18841332d0f2035"}

Then you can use this ID in your PXE boot URL or download an installation media, for example:

curl -O https://factory.talos.dev/image/d2f4229b6157ba7e1dba8c3b4de42263e4baa35111e960b6a18841332d0f2035/v1.7.6/metal-amd64.iso

Verifying Labels

After a machine boots from the labeled media/PXE URL and registers with Omni, you can verify the labels using the Omni web interface or the omnictl CLI tool.

To check labels using omnictl, you can use either of these commands (replace <machine-id> with the actual machine ID):

omnictl get machinelabels -oyaml <machine-id>

or

omnictl get machinestatus -oyaml <machine-id>

These commands will display information about the labels on the machine.