Daniel's Tech Blog

Cloud Computing, Cloud Native & Kubernetes

Tag: Terraform

  • Configure Microsoft Defender for Cloud continuous export via Terraform

    Microsoft Defender for Cloud supports the continuous export of a variety of data to Azure Event Hubs and Azure Log Analytics workspaces. When you use Azure Event Hubs, you can stream those data also to 3rd-party solutions or Azure Data Explorer. The continuous export is handy for security alerts to maintain them for a longer…

  • How to not block Terraform with Azure resource locks

    Azure resource locks are an essential building block protecting Azure resources from accidental deletion or modifications. In today’s blog post, I show you how to use Azure resource locks to protect your Azure resources and how to not block your Terraform infrastructure as code processes. Common setup and the Terraform issue Resources in Azure inherit…

  • Azure Kubernetes Service – Using Kubernetes credential plugin kubelogin with Terraform

    In today’s blog post we have a look at the Kubernetes credential plugin kubelogin for Azure Kubernetes Service and how to use it with Terraform. -> https://github.com/Azure/kubelogin -> https://kubernetes.io/docs/reference/access-authn-authz/authentication/#client-go-credential-plugins The Azure Kubernetes Service cluster I am using for demonstration is an AKS-managed Azure Active Directory one with local accounts disabled. Disabling the local accounts turns…

  • How to change the node size of the default node pool in AKS without downtime?

    Currently, as of writing this blog post, Azure Kubernetes Service does not support changing the node size of the default node pool or additional node pools without recreating the whole AKS cluster or the additional node pool. Having all the configuration in infrastructure as code whether it is Bicep or Terraform seems to be a…

  • Conditions with for_each in Terraform

    Conditions in Terraform are well-known and can provide in combination with the for_each argument a lot of flexibility. In today’s blog post I walk you through an example storage module I have created to showcase the topic. The module consists of three resources a resource group, a lock, and a storage account. As I am…

  • Terraform – Deploy an AKS cluster using managed identity and managed Azure AD integration

    Recently, I updated my Terraform AKS module switching from the AAD service principal to managed identity option as well from the AAD v1 integration to AAD v2 which is also managed. Other changes and improvements are the following ones: Private cluster support Managed control plane SKU tier support Windows node pool support Node labels support…

WordPress Cookie Notice by Real Cookie Banner