-
Using Kata Containers on Azure Kubernetes Service for sandboxing containers
Last year I wrote a blog post about running gVisor on Azure Kubernetes for sandboxing containers. -> https://www.danielstechblog.io/running-gvisor-on-azure-kubernetes-service-for-sandboxing-containers/ Back then, the only managed Kubernetes service that supported sandboxing containers in dedicated node pools was Google Kubernetes Engine via gVisor. A few weeks back, Microsoft announced the public preview of Kata Containers for Azure Kubernetes Service.…
-
Learnings from the field – Running Fluent Bit on Azure Kubernetes Service – Part 3
This is the second part of a three-part series about “Learnings from the field – Running Fluent Bit on Azure Kubernetes Service”. -> https://www.danielstechblog.io/learnings-from-the-field-running-fluent-bit-on-azure-kubernetes-service-part-1/ -> https://www.danielstechblog.io/learnings-from-the-field-running-fluent-bit-on-azure-kubernetes-service-part-2/ Logging is one of the central aspects when operating Kubernetes. The easiest way to get started with it is by using the solution your cloud provider provides. On Azure, this…
-
Change the replication type of an Azure storage account
Last year I wrote a blog post about migrating an Azure storage account from LRS to ZRS replication. -> https://www.danielstechblog.io/migrate-an-azure-storage-account-from-lrs-to-zrs-replication-without-downtime/ Back then, this procedure required the involvement of Azure support via a support ticket. Things have changed since then, and now you can initiate the migration yourself. Select the storage account you want to migrate…
-
Learnings from the field – Running Fluent Bit on Azure Kubernetes Service – Part 2
This is the second part of a three-part series about “Learnings from the field – Running Fluent Bit on Azure Kubernetes Service”. -> https://www.danielstechblog.io/learnings-from-the-field-running-fluent-bit-on-azure-kubernetes-service-part-1/ Logging is one of the central aspects when operating Kubernetes. The easiest way to get started with it is by using the solution your cloud provider provides. On Azure, this is…
-
Learnings from the field – Running Fluent Bit on Azure Kubernetes Service – Part 1
This is the first part of a three-part series about “Learnings from the field – Running Fluent Bit on Azure Kubernetes Service”. Logging is one of the central aspects when operating Kubernetes. The easiest way to get started with it is by using the solution your cloud provider provides. On Azure, this is Azure Monitor…
-
Azure Kubernetes Service – Using Kubernetes credential plugin kubelogin with Terraform
In today’s blog post we have a look at the Kubernetes credential plugin kubelogin for Azure Kubernetes Service and how to use it with Terraform. -> https://github.com/Azure/kubelogin -> https://kubernetes.io/docs/reference/access-authn-authz/authentication/#client-go-credential-plugins The Azure Kubernetes Service cluster I am using for demonstration is an AKS-managed Azure Active Directory one with local accounts disabled. Disabling the local accounts turns…