Daniel's Tech Blog

Cloud Computing, Cloud Native & Kubernetes

Tag: Terraform

  • How to not block Terraform with Azure resource locks

    Azure resource locks are an essential building block protecting Azure resources from accidental deletion or modifications. In today’s blog post, I show you how to use Azure resource locks to protect your Azure resources and how to not block your Terraform infrastructure as code processes. Common setup and the Terraform issue Resources in Azure inherit…

  • Azure Kubernetes Service – Using Kubernetes credential plugin kubelogin with Terraform

    In today’s blog post we have a look at the Kubernetes credential plugin kubelogin for Azure Kubernetes Service and how to use it with Terraform. -> https://github.com/Azure/kubelogin -> https://kubernetes.io/docs/reference/access-authn-authz/authentication/#client-go-credential-plugins The Azure Kubernetes Service cluster I am using for demonstration is an AKS-managed Azure Active Directory one with local accounts disabled. Disabling the local accounts turns…

  • How to change the node size of the default node pool in AKS without downtime?

    Currently, as of writing this blog post, Azure Kubernetes Service does not support changing the node size of the default node pool or additional node pools without recreating the whole AKS cluster or the additional node pool. Having all the configuration in infrastructure as code whether it is Bicep or Terraform seems to be a…

  • Conditions with for_each in Terraform

    Conditions in Terraform are well-known and can provide in combination with the for_each argument a lot of flexibility. In today’s blog post I walk you through an example storage module I have created to showcase the topic. The module consists of three resources a resource group, a lock, and a storage account. As I am…

  • Terraform – Deploy an AKS cluster using managed identity and managed Azure AD integration

    Recently, I updated my Terraform AKS module switching from the AAD service principal to managed identity option as well from the AAD v1 integration to AAD v2 which is also managed. Other changes and improvements are the following ones: Private cluster support Managed control plane SKU tier support Windows node pool support Node labels support…

  • Speaking at Global Azure Bootcamp 2020 Virtual – Cologne

    Unfortunately, the in person event of the Global Azure Bootcamp 2020 Cologne is postponed due to the Corona virus pandemic. But the team worked hard behind the scenes and announced last week that the event will be held virtually. I am happy to be part of the Global Azure Bootcamp 2020 Virtual – Cologne on…

WordPress Cookie Notice by Real Cookie Banner