Tag Archives: Azure Resource Manager

Assigning RBAC permissions with Azure Resource Manager templates

Recently, I updated my AKS ARM template supporting the latest AKS feature set and important RBAC role assignments for the AKS cluster. After having a hard time, I managed to get the RBAC role assignment working. When you now think what should be so complicated? Check out my tweet on Twitter getting the background information. -> https://twitter.com/neumanndaniel/status/1294272253211947008 It Read more [...]

ARM Template – Deploy an AKS cluster using managed identity and managed Azure AD integration

As I mentioned in my other blog post before I have updated my Azure Resource Manager template as well. Switching from the AAD service principal to managed identity option and from the AAD v1 integration to AAD v2 which is also managed. Other changes and improvements are the following ones: Private cluster support Managed control plane SKU tier support Windows node pool support Node Read more [...]

Using Azure Policy for Kubernetes

In my last blog post I mentioned that the next topic is about Azure Policy in combination with Azure Arc enabled Kubernetes. I decided to write about Azure Policy for Kubernetes instead covering Azure Kubernetes Service and Azure Arc enabled Kubernetes. As Azure Policy for Kubernetes is based on the Open Policy Agent Gatekeeper implementation, I will also highlight the difference between the Read more [...]

Connect KinD with Azure Arc enabled Kubernetes

At this year’s first ever digital Microsoft Build conference, Microsoft announced the public preview of Azure Arc enabled Kubernetes. -> https://azure.microsoft.com/en-us/updates/azure-arc-support-for-azure-kubernetes-service-aks-engine-clusters/ Azure Arc enabled Kubernetes lets you connect Kubernetes clusters running on-premises or at another cloud provider with Azure for a unified management Read more [...]

Working with Windows Server node pools in Azure Kubernetes Service

Back in May Microsoft released the public preview of Windows Server support for Azure Kubernetes Service. -> https://azure.microsoft.com/en-us/blog/announcing-the-preview-of-windows-server-containers-support-in-azure-kubernetes-service/ When you are starting with Windows Server node pools in AKS you should at least be aware of some prerequisites and limitations. Windows Server node pools Read more [...]

Azure Resource Manager templates – Deploy an AKS cluster with multiple node pools

This week the multiple node pool feature for Azure Kubernetes Service went GA. -> https://azure.microsoft.com/en-us/updates/support-for-multiple-node-pools-in-azure-kubernetes-service-is-now-available/ Today we walk through the steps to deploy multiple AKS node pools with Azure Resource Manager templates. Looking at the ARM template reference for AKS, node pools get defined in the managedClusters Read more [...]

Build Azure Kubernetes Service cluster with bring your own Virtual Network on Azure

At Build this year Microsoft announced the Custom VNET with Azure CNI integration for Azure Kubernetes Service. -> https://azure.microsoft.com/en-us/blog/kubernetes-on-azure/ Even this was some month ago I would like to walk you through the necessary planning and deployment steps for the bring your own Virtual Network option here. Before we start a deployment, we must ensure to meet the Read more [...]

Configuring Azure Kubernetes Service via the Terraform OSS Azure Resource Provider to use a custom DNS server for domain specific name resolution

I have already written about on how to use a custom DNS server for domain specific name resolution with AKS a couple of weeks ago. -> https://www.danielstechblog.io/using-custom-dns-server-for-domain-specific-name-resolution-with-azure-kubernetes-service/ Today I am writing about how you can leverage the newly announced Terraform OSS Azure Resource Provider for the same configuration with Read more [...]

Adding value to your DevTest Labs users with additional Azure services

If you are working with Azure DevTest Labs you already know that all the nice things are built around to provide a test environment for Azure IaaS VMs. So far so good, but what can you do to provide your DevTest Labs users with access to PaaS services? Azure DevTest Labs got you covered with a feature called environments. -> https://azure.microsoft.com/en-us/blog/announcing-azure-devtest-labs-support-for-creating-environment-with-arm-templates/ Environments Read more [...]

Enabling Azure Disk Encryption on Windows Server 2016 Server Core in Azure

Beside the Windows Server 2016 Datacenter image, Microsoft also provides an image with Windows Server 2016 Datacenter - Server Core in Azure. If you are using the Server Core image and want to enable Azure Disk Encryption for the VM, you will see the following error message. New-AzureRmResourceGroupDeployment : 14:27:53 - Resource Microsoft.Compute/virtualMachines/extensions 'azst-crp4/BitLocker' Read more [...]