azure-native.containerservice.getManagedCluster

Azure Native v3.13.0, Jan 28 26

This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.

Azure Native v3.13.0 published on Wednesday, Jan 28, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-azure-native

This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.

Azure Native v3.13.0 published on Wednesday, Jan 28, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-azure-native

Other available API versions: 2019-11-01, 2020-01-01, 2020-02-01, 2020-03-01, 2020-04-01, 2020-06-01, 2020-07-01, 2020-09-01, 2020-11-01, 2020-12-01, 2021-02-01, 2021-03-01, 2021-05-01, 2021-07-01, 2021-08-01, 2021-09-01, 2021-10-01, 2021-11-01-preview, 2022-01-01, 2022-01-02-preview, 2022-02-01, 2022-02-02-preview, 2022-03-01, 2022-03-02-preview, 2022-04-01, 2022-04-02-preview, 2022-05-02-preview, 2022-06-01, 2022-06-02-preview, 2022-07-01, 2022-07-02-preview, 2022-08-02-preview, 2022-08-03-preview, 2022-09-01, 2022-09-02-preview, 2022-10-02-preview, 2022-11-01, 2022-11-02-preview, 2023-01-01, 2023-01-02-preview, 2023-02-01, 2023-02-02-preview, 2023-03-01, 2023-03-02-preview, 2023-04-01, 2023-04-02-preview, 2023-05-01, 2023-05-02-preview, 2023-06-01, 2023-06-02-preview, 2023-07-01, 2023-07-02-preview, 2023-08-01, 2023-08-02-preview, 2023-09-01, 2023-09-02-preview, 2023-10-01, 2023-10-02-preview, 2023-11-01, 2023-11-02-preview, 2024-01-01, 2024-01-02-preview, 2024-02-01, 2024-02-02-preview, 2024-03-02-preview, 2024-04-02-preview, 2024-05-01, 2024-05-02-preview, 2024-06-02-preview, 2024-07-01, 2024-07-02-preview, 2024-08-01, 2024-09-01, 2024-09-02-preview, 2024-10-01, 2024-10-02-preview, 2025-01-01, 2025-01-02-preview, 2025-02-01, 2025-02-02-preview, 2025-03-01, 2025-03-02-preview, 2025-04-01, 2025-04-02-preview, 2025-05-01, 2025-05-02-preview, 2025-06-02-preview, 2025-07-01, 2025-07-02-preview, 2025-08-01, 2025-08-02-preview, 2025-09-02-preview, 2025-10-01, 2025-10-02-preview. These can be accessed by generating a local SDK package using the CLI command pulumi package add azure-native containerservice [ApiVersion]. See the version guide for details.

Using getManagedCluster

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getManagedCluster(args: GetManagedClusterArgs, opts?: InvokeOptions): Promise<GetManagedClusterResult>
function getManagedClusterOutput(args: GetManagedClusterOutputArgs, opts?: InvokeOptions): Output<GetManagedClusterResult>

def get_managed_cluster(resource_group_name: Optional[str] = None,
                        resource_name: Optional[str] = None,
                        opts: Optional[InvokeOptions] = None) -> GetManagedClusterResult
def get_managed_cluster_output(resource_group_name: Optional[pulumi.Input[str]] = None,
                        resource_name: Optional[pulumi.Input[str]] = None,
                        opts: Optional[InvokeOptions] = None) -> Output[GetManagedClusterResult]

func LookupManagedCluster(ctx *Context, args *LookupManagedClusterArgs, opts ...InvokeOption) (*LookupManagedClusterResult, error)
func LookupManagedClusterOutput(ctx *Context, args *LookupManagedClusterOutputArgs, opts ...InvokeOption) LookupManagedClusterResultOutput

> Note: This function is named LookupManagedCluster in the Go SDK.

public static class GetManagedCluster 
{
    public static Task<GetManagedClusterResult> InvokeAsync(GetManagedClusterArgs args, InvokeOptions? opts = null)
    public static Output<GetManagedClusterResult> Invoke(GetManagedClusterInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetManagedClusterResult> getManagedCluster(GetManagedClusterArgs args, InvokeOptions options)
public static Output<GetManagedClusterResult> getManagedCluster(GetManagedClusterArgs args, InvokeOptions options)

fn::invoke:
  function: azure-native:containerservice:getManagedCluster
  arguments:
    # arguments dictionary

The following arguments are supported:

ResourceGroupName string: The name of the resource group. The name is case insensitive.
ResourceName string: The name of the managed cluster resource.

ResourceGroupName string: The name of the resource group. The name is case insensitive.
ResourceName string: The name of the managed cluster resource.

resourceGroupName String: The name of the resource group. The name is case insensitive.
resourceName String: The name of the managed cluster resource.

resourceGroupName string: The name of the resource group. The name is case insensitive.
resourceName string: The name of the managed cluster resource.

resource_group_name str: The name of the resource group. The name is case insensitive.
resource_name str: The name of the managed cluster resource.

resourceGroupName String: The name of the resource group. The name is case insensitive.
resourceName String: The name of the managed cluster resource.

getManagedCluster Result

The following output properties are available:

AzureApiVersion string: The Azure API version of the resource.
AzurePortalFQDN string: The special FQDN used by the Azure Portal to access the Managed Cluster. This FQDN is for use only by the Azure Portal and should not be used by other clients. The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
CurrentKubernetesVersion string: The version of Kubernetes the Managed Cluster is running. If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
ETag string: Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
Fqdn string: The FQDN of the master pool.
Id string: Fully qualified resource ID for the resource. E.g. "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}"
Location string: The geo-location where the resource lives
MaxAgentPools int: The max number of agent pools for the managed cluster.
Name string: The name of the resource
PowerState Pulumi.AzureNative.ContainerService.Outputs.PowerStateResponse: The Power State of the cluster.
PrivateFQDN string: The FQDN of private cluster.
ProvisioningState string: The current provisioning state.
ResourceUID string: The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
SystemData Pulumi.AzureNative.ContainerService.Outputs.SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
Type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
AadProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterAADProfileResponse: The Azure Active Directory configuration.
AddonProfiles Dictionary<string, Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterAddonProfileResponse>: The profile of managed cluster add-on.
AgentPoolProfiles List<Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterAgentPoolProfileResponse>: The agent pool properties.
AiToolchainOperatorProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterAIToolchainOperatorProfileResponse: AI toolchain operator settings that apply to the whole cluster.
ApiServerAccessProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterAPIServerAccessProfileResponse: The access profile for managed cluster API server.
AutoScalerProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterPropertiesResponseAutoScalerProfile: Parameters to be applied to the cluster-autoscaler when enabled
AutoUpgradeProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterAutoUpgradeProfileResponse: The auto upgrade configuration.
AzureMonitorProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterAzureMonitorProfileResponse: Azure Monitor addon profiles for monitoring the managed cluster.
BootstrapProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterBootstrapProfileResponse: Profile of the cluster bootstrap configuration.
DisableLocalAccounts bool: If local accounts should be disabled on the Managed Cluster. If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
DiskEncryptionSetID string: The Resource ID of the disk encryption set to use for enabling encryption at rest. This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
DnsPrefix string: The DNS prefix of the Managed Cluster. This cannot be updated once the Managed Cluster has been created.
EnableRBAC bool: Whether to enable Kubernetes Role-Based Access Control.
ExtendedLocation Pulumi.AzureNative.ContainerService.Outputs.ExtendedLocationResponse: The extended location of the Virtual Machine.
FqdnSubdomain string: The FQDN subdomain of the private cluster with custom private dns zone. This cannot be updated once the Managed Cluster has been created.
HttpProxyConfig Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterHTTPProxyConfigResponse: Configurations for provisioning the cluster with HTTP proxy servers.
Identity Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterIdentityResponse: The identity of the managed cluster, if configured.
IdentityProfile Dictionary<string, Pulumi.AzureNative.ContainerService.Outputs.UserAssignedIdentityResponse>: The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
IngressProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterIngressProfileResponse: Ingress profile for the managed cluster.
Kind string: This is primarily used to expose different UI experiences in the portal for different kinds
KubernetesVersion string: The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
LinuxProfile Pulumi.AzureNative.ContainerService.Outputs.ContainerServiceLinuxProfileResponse: The profile for Linux VMs in the Managed Cluster.
MetricsProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterMetricsProfileResponse: Optional cluster metrics configuration.
NetworkProfile Pulumi.AzureNative.ContainerService.Outputs.ContainerServiceNetworkProfileResponse: The network configuration profile.
NodeProvisioningProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterNodeProvisioningProfileResponse: Node provisioning settings that apply to the whole cluster.
NodeResourceGroup string: The name of the resource group containing agent pool nodes.
NodeResourceGroupProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterNodeResourceGroupProfileResponse: Profile of the node resource group configuration.
OidcIssuerProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterOIDCIssuerProfileResponse: The OIDC issuer profile of the Managed Cluster.
PodIdentityProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterPodIdentityProfileResponse: The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on AAD pod identity integration.
PrivateLinkResources List<Pulumi.AzureNative.ContainerService.Outputs.PrivateLinkResourceResponse>: Private link resources associated with the cluster.
PublicNetworkAccess string: PublicNetworkAccess of the managedCluster. Allow or deny public network access for AKS
SecurityProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterSecurityProfileResponse: Security profile for the managed cluster.
ServiceMeshProfile Pulumi.AzureNative.ContainerService.Outputs.ServiceMeshProfileResponse: Service mesh profile for a managed cluster.
ServicePrincipalProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterServicePrincipalProfileResponse: Information about a service principal identity for the cluster to use for manipulating Azure APIs.
Sku Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterSKUResponse: The managed cluster SKU.
Status Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterStatusResponse: Contains read-only information about the Managed Cluster.
StorageProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterStorageProfileResponse: Storage profile for the managed cluster.
SupportPlan string: The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
Tags Dictionary<string, string>: Resource tags.
UpgradeSettings Pulumi.AzureNative.ContainerService.Outputs.ClusterUpgradeSettingsResponse: Settings for upgrading a cluster.
WindowsProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterWindowsProfileResponse: The profile for Windows VMs in the Managed Cluster.
WorkloadAutoScalerProfile Pulumi.AzureNative.ContainerService.Outputs.ManagedClusterWorkloadAutoScalerProfileResponse: Workload Auto-scaler profile for the managed cluster.

AzureApiVersion string: The Azure API version of the resource.
AzurePortalFQDN string: The special FQDN used by the Azure Portal to access the Managed Cluster. This FQDN is for use only by the Azure Portal and should not be used by other clients. The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
CurrentKubernetesVersion string: The version of Kubernetes the Managed Cluster is running. If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
ETag string: Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
Fqdn string: The FQDN of the master pool.
Id string: Fully qualified resource ID for the resource. E.g. "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}"
Location string: The geo-location where the resource lives
MaxAgentPools int: The max number of agent pools for the managed cluster.
Name string: The name of the resource
PowerState PowerStateResponse: The Power State of the cluster.
PrivateFQDN string: The FQDN of private cluster.
ProvisioningState string: The current provisioning state.
ResourceUID string: The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
SystemData SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
Type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
AadProfile ManagedClusterAADProfileResponse: The Azure Active Directory configuration.
AddonProfiles map[string]ManagedClusterAddonProfileResponse: The profile of managed cluster add-on.
AgentPoolProfiles []ManagedClusterAgentPoolProfileResponse: The agent pool properties.
AiToolchainOperatorProfile ManagedClusterAIToolchainOperatorProfileResponse: AI toolchain operator settings that apply to the whole cluster.
ApiServerAccessProfile ManagedClusterAPIServerAccessProfileResponse: The access profile for managed cluster API server.
AutoScalerProfile ManagedClusterPropertiesResponseAutoScalerProfile: Parameters to be applied to the cluster-autoscaler when enabled
AutoUpgradeProfile ManagedClusterAutoUpgradeProfileResponse: The auto upgrade configuration.
AzureMonitorProfile ManagedClusterAzureMonitorProfileResponse: Azure Monitor addon profiles for monitoring the managed cluster.
BootstrapProfile ManagedClusterBootstrapProfileResponse: Profile of the cluster bootstrap configuration.
DisableLocalAccounts bool: If local accounts should be disabled on the Managed Cluster. If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
DiskEncryptionSetID string: The Resource ID of the disk encryption set to use for enabling encryption at rest. This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
DnsPrefix string: The DNS prefix of the Managed Cluster. This cannot be updated once the Managed Cluster has been created.
EnableRBAC bool: Whether to enable Kubernetes Role-Based Access Control.
ExtendedLocation ExtendedLocationResponse: The extended location of the Virtual Machine.
FqdnSubdomain string: The FQDN subdomain of the private cluster with custom private dns zone. This cannot be updated once the Managed Cluster has been created.
HttpProxyConfig ManagedClusterHTTPProxyConfigResponse: Configurations for provisioning the cluster with HTTP proxy servers.
Identity ManagedClusterIdentityResponse: The identity of the managed cluster, if configured.
IdentityProfile map[string]UserAssignedIdentityResponse: The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
IngressProfile ManagedClusterIngressProfileResponse: Ingress profile for the managed cluster.
Kind string: This is primarily used to expose different UI experiences in the portal for different kinds
KubernetesVersion string: The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
LinuxProfile ContainerServiceLinuxProfileResponse: The profile for Linux VMs in the Managed Cluster.
MetricsProfile ManagedClusterMetricsProfileResponse: Optional cluster metrics configuration.
NetworkProfile ContainerServiceNetworkProfileResponse: The network configuration profile.
NodeProvisioningProfile ManagedClusterNodeProvisioningProfileResponse: Node provisioning settings that apply to the whole cluster.
NodeResourceGroup string: The name of the resource group containing agent pool nodes.
NodeResourceGroupProfile ManagedClusterNodeResourceGroupProfileResponse: Profile of the node resource group configuration.
OidcIssuerProfile ManagedClusterOIDCIssuerProfileResponse: The OIDC issuer profile of the Managed Cluster.
PodIdentityProfile ManagedClusterPodIdentityProfileResponse: The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on AAD pod identity integration.
PrivateLinkResources []PrivateLinkResourceResponse: Private link resources associated with the cluster.
PublicNetworkAccess string: PublicNetworkAccess of the managedCluster. Allow or deny public network access for AKS
SecurityProfile ManagedClusterSecurityProfileResponse: Security profile for the managed cluster.
ServiceMeshProfile ServiceMeshProfileResponse: Service mesh profile for a managed cluster.
ServicePrincipalProfile ManagedClusterServicePrincipalProfileResponse: Information about a service principal identity for the cluster to use for manipulating Azure APIs.
Sku ManagedClusterSKUResponse: The managed cluster SKU.
Status ManagedClusterStatusResponse: Contains read-only information about the Managed Cluster.
StorageProfile ManagedClusterStorageProfileResponse: Storage profile for the managed cluster.
SupportPlan string: The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
Tags map[string]string: Resource tags.
UpgradeSettings ClusterUpgradeSettingsResponse: Settings for upgrading a cluster.
WindowsProfile ManagedClusterWindowsProfileResponse: The profile for Windows VMs in the Managed Cluster.
WorkloadAutoScalerProfile ManagedClusterWorkloadAutoScalerProfileResponse: Workload Auto-scaler profile for the managed cluster.

azureApiVersion String: The Azure API version of the resource.
azurePortalFQDN String: The special FQDN used by the Azure Portal to access the Managed Cluster. This FQDN is for use only by the Azure Portal and should not be used by other clients. The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
currentKubernetesVersion String: The version of Kubernetes the Managed Cluster is running. If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
eTag String: Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
fqdn String: The FQDN of the master pool.
id String: Fully qualified resource ID for the resource. E.g. "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}"
location String: The geo-location where the resource lives
maxAgentPools Integer: The max number of agent pools for the managed cluster.
name String: The name of the resource
powerState PowerStateResponse: The Power State of the cluster.
privateFQDN String: The FQDN of private cluster.
provisioningState String: The current provisioning state.
resourceUID String: The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
systemData SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
type String: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
aadProfile ManagedClusterAADProfileResponse: The Azure Active Directory configuration.
addonProfiles Map<String,ManagedClusterAddonProfileResponse>: The profile of managed cluster add-on.
agentPoolProfiles List<ManagedClusterAgentPoolProfileResponse>: The agent pool properties.
aiToolchainOperatorProfile ManagedClusterAIToolchainOperatorProfileResponse: AI toolchain operator settings that apply to the whole cluster.
apiServerAccessProfile ManagedClusterAPIServerAccessProfileResponse: The access profile for managed cluster API server.
autoScalerProfile ManagedClusterPropertiesResponseAutoScalerProfile: Parameters to be applied to the cluster-autoscaler when enabled
autoUpgradeProfile ManagedClusterAutoUpgradeProfileResponse: The auto upgrade configuration.
azureMonitorProfile ManagedClusterAzureMonitorProfileResponse: Azure Monitor addon profiles for monitoring the managed cluster.
bootstrapProfile ManagedClusterBootstrapProfileResponse: Profile of the cluster bootstrap configuration.
disableLocalAccounts Boolean: If local accounts should be disabled on the Managed Cluster. If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
diskEncryptionSetID String: The Resource ID of the disk encryption set to use for enabling encryption at rest. This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
dnsPrefix String: The DNS prefix of the Managed Cluster. This cannot be updated once the Managed Cluster has been created.
enableRBAC Boolean: Whether to enable Kubernetes Role-Based Access Control.
extendedLocation ExtendedLocationResponse: The extended location of the Virtual Machine.
fqdnSubdomain String: The FQDN subdomain of the private cluster with custom private dns zone. This cannot be updated once the Managed Cluster has been created.
httpProxyConfig ManagedClusterHTTPProxyConfigResponse: Configurations for provisioning the cluster with HTTP proxy servers.
identity ManagedClusterIdentityResponse: The identity of the managed cluster, if configured.
identityProfile Map<String,UserAssignedIdentityResponse>: The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
ingressProfile ManagedClusterIngressProfileResponse: Ingress profile for the managed cluster.
kind String: This is primarily used to expose different UI experiences in the portal for different kinds
kubernetesVersion String: The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
linuxProfile ContainerServiceLinuxProfileResponse: The profile for Linux VMs in the Managed Cluster.
metricsProfile ManagedClusterMetricsProfileResponse: Optional cluster metrics configuration.
networkProfile ContainerServiceNetworkProfileResponse: The network configuration profile.
nodeProvisioningProfile ManagedClusterNodeProvisioningProfileResponse: Node provisioning settings that apply to the whole cluster.
nodeResourceGroup String: The name of the resource group containing agent pool nodes.
nodeResourceGroupProfile ManagedClusterNodeResourceGroupProfileResponse: Profile of the node resource group configuration.
oidcIssuerProfile ManagedClusterOIDCIssuerProfileResponse: The OIDC issuer profile of the Managed Cluster.
podIdentityProfile ManagedClusterPodIdentityProfileResponse: The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on AAD pod identity integration.
privateLinkResources List<PrivateLinkResourceResponse>: Private link resources associated with the cluster.
publicNetworkAccess String: PublicNetworkAccess of the managedCluster. Allow or deny public network access for AKS
securityProfile ManagedClusterSecurityProfileResponse: Security profile for the managed cluster.
serviceMeshProfile ServiceMeshProfileResponse: Service mesh profile for a managed cluster.
servicePrincipalProfile ManagedClusterServicePrincipalProfileResponse: Information about a service principal identity for the cluster to use for manipulating Azure APIs.
sku ManagedClusterSKUResponse: The managed cluster SKU.
status ManagedClusterStatusResponse: Contains read-only information about the Managed Cluster.
storageProfile ManagedClusterStorageProfileResponse: Storage profile for the managed cluster.
supportPlan String: The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
tags Map<String,String>: Resource tags.
upgradeSettings ClusterUpgradeSettingsResponse: Settings for upgrading a cluster.
windowsProfile ManagedClusterWindowsProfileResponse: The profile for Windows VMs in the Managed Cluster.
workloadAutoScalerProfile ManagedClusterWorkloadAutoScalerProfileResponse: Workload Auto-scaler profile for the managed cluster.

azureApiVersion string: The Azure API version of the resource.
azurePortalFQDN string: The special FQDN used by the Azure Portal to access the Managed Cluster. This FQDN is for use only by the Azure Portal and should not be used by other clients. The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
currentKubernetesVersion string: The version of Kubernetes the Managed Cluster is running. If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
eTag string: Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
fqdn string: The FQDN of the master pool.
id string: Fully qualified resource ID for the resource. E.g. "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}"
location string: The geo-location where the resource lives
maxAgentPools number: The max number of agent pools for the managed cluster.
name string: The name of the resource
powerState PowerStateResponse: The Power State of the cluster.
privateFQDN string: The FQDN of private cluster.
provisioningState string: The current provisioning state.
resourceUID string: The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
systemData SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
type string: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
aadProfile ManagedClusterAADProfileResponse: The Azure Active Directory configuration.
addonProfiles {[key: string]: ManagedClusterAddonProfileResponse}: The profile of managed cluster add-on.
agentPoolProfiles ManagedClusterAgentPoolProfileResponse[]: The agent pool properties.
aiToolchainOperatorProfile ManagedClusterAIToolchainOperatorProfileResponse: AI toolchain operator settings that apply to the whole cluster.
apiServerAccessProfile ManagedClusterAPIServerAccessProfileResponse: The access profile for managed cluster API server.
autoScalerProfile ManagedClusterPropertiesResponseAutoScalerProfile: Parameters to be applied to the cluster-autoscaler when enabled
autoUpgradeProfile ManagedClusterAutoUpgradeProfileResponse: The auto upgrade configuration.
azureMonitorProfile ManagedClusterAzureMonitorProfileResponse: Azure Monitor addon profiles for monitoring the managed cluster.
bootstrapProfile ManagedClusterBootstrapProfileResponse: Profile of the cluster bootstrap configuration.
disableLocalAccounts boolean: If local accounts should be disabled on the Managed Cluster. If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
diskEncryptionSetID string: The Resource ID of the disk encryption set to use for enabling encryption at rest. This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
dnsPrefix string: The DNS prefix of the Managed Cluster. This cannot be updated once the Managed Cluster has been created.
enableRBAC boolean: Whether to enable Kubernetes Role-Based Access Control.
extendedLocation ExtendedLocationResponse: The extended location of the Virtual Machine.
fqdnSubdomain string: The FQDN subdomain of the private cluster with custom private dns zone. This cannot be updated once the Managed Cluster has been created.
httpProxyConfig ManagedClusterHTTPProxyConfigResponse: Configurations for provisioning the cluster with HTTP proxy servers.
identity ManagedClusterIdentityResponse: The identity of the managed cluster, if configured.
identityProfile {[key: string]: UserAssignedIdentityResponse}: The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
ingressProfile ManagedClusterIngressProfileResponse: Ingress profile for the managed cluster.
kind string: This is primarily used to expose different UI experiences in the portal for different kinds
kubernetesVersion string: The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
linuxProfile ContainerServiceLinuxProfileResponse: The profile for Linux VMs in the Managed Cluster.
metricsProfile ManagedClusterMetricsProfileResponse: Optional cluster metrics configuration.
networkProfile ContainerServiceNetworkProfileResponse: The network configuration profile.
nodeProvisioningProfile ManagedClusterNodeProvisioningProfileResponse: Node provisioning settings that apply to the whole cluster.
nodeResourceGroup string: The name of the resource group containing agent pool nodes.
nodeResourceGroupProfile ManagedClusterNodeResourceGroupProfileResponse: Profile of the node resource group configuration.
oidcIssuerProfile ManagedClusterOIDCIssuerProfileResponse: The OIDC issuer profile of the Managed Cluster.
podIdentityProfile ManagedClusterPodIdentityProfileResponse: The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on AAD pod identity integration.
privateLinkResources PrivateLinkResourceResponse[]: Private link resources associated with the cluster.
publicNetworkAccess string: PublicNetworkAccess of the managedCluster. Allow or deny public network access for AKS
securityProfile ManagedClusterSecurityProfileResponse: Security profile for the managed cluster.
serviceMeshProfile ServiceMeshProfileResponse: Service mesh profile for a managed cluster.
servicePrincipalProfile ManagedClusterServicePrincipalProfileResponse: Information about a service principal identity for the cluster to use for manipulating Azure APIs.
sku ManagedClusterSKUResponse: The managed cluster SKU.
status ManagedClusterStatusResponse: Contains read-only information about the Managed Cluster.
storageProfile ManagedClusterStorageProfileResponse: Storage profile for the managed cluster.
supportPlan string: The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
tags {[key: string]: string}: Resource tags.
upgradeSettings ClusterUpgradeSettingsResponse: Settings for upgrading a cluster.
windowsProfile ManagedClusterWindowsProfileResponse: The profile for Windows VMs in the Managed Cluster.
workloadAutoScalerProfile ManagedClusterWorkloadAutoScalerProfileResponse: Workload Auto-scaler profile for the managed cluster.

azure_api_version str: The Azure API version of the resource.
azure_portal_fqdn str: The special FQDN used by the Azure Portal to access the Managed Cluster. This FQDN is for use only by the Azure Portal and should not be used by other clients. The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
current_kubernetes_version str: The version of Kubernetes the Managed Cluster is running. If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
e_tag str: Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
fqdn str: The FQDN of the master pool.
id str: Fully qualified resource ID for the resource. E.g. "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}"
location str: The geo-location where the resource lives
max_agent_pools int: The max number of agent pools for the managed cluster.
name str: The name of the resource
power_state PowerStateResponse: The Power State of the cluster.
private_fqdn str: The FQDN of private cluster.
provisioning_state str: The current provisioning state.
resource_uid str: The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
system_data SystemDataResponse: Azure Resource Manager metadata containing createdBy and modifiedBy information.
type str: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
aad_profile ManagedClusterAADProfileResponse: The Azure Active Directory configuration.
addon_profiles Mapping[str, ManagedClusterAddonProfileResponse]: The profile of managed cluster add-on.
agent_pool_profiles Sequence[ManagedClusterAgentPoolProfileResponse]: The agent pool properties.
ai_toolchain_operator_profile ManagedClusterAIToolchainOperatorProfileResponse: AI toolchain operator settings that apply to the whole cluster.
api_server_access_profile ManagedClusterAPIServerAccessProfileResponse: The access profile for managed cluster API server.
auto_scaler_profile ManagedClusterPropertiesResponseAutoScalerProfile: Parameters to be applied to the cluster-autoscaler when enabled
auto_upgrade_profile ManagedClusterAutoUpgradeProfileResponse: The auto upgrade configuration.
azure_monitor_profile ManagedClusterAzureMonitorProfileResponse: Azure Monitor addon profiles for monitoring the managed cluster.
bootstrap_profile ManagedClusterBootstrapProfileResponse: Profile of the cluster bootstrap configuration.
disable_local_accounts bool: If local accounts should be disabled on the Managed Cluster. If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
disk_encryption_set_id str: The Resource ID of the disk encryption set to use for enabling encryption at rest. This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
dns_prefix str: The DNS prefix of the Managed Cluster. This cannot be updated once the Managed Cluster has been created.
enable_rbac bool: Whether to enable Kubernetes Role-Based Access Control.
extended_location ExtendedLocationResponse: The extended location of the Virtual Machine.
fqdn_subdomain str: The FQDN subdomain of the private cluster with custom private dns zone. This cannot be updated once the Managed Cluster has been created.
http_proxy_config ManagedClusterHTTPProxyConfigResponse: Configurations for provisioning the cluster with HTTP proxy servers.
identity ManagedClusterIdentityResponse: The identity of the managed cluster, if configured.
identity_profile Mapping[str, UserAssignedIdentityResponse]: The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
ingress_profile ManagedClusterIngressProfileResponse: Ingress profile for the managed cluster.
kind str: This is primarily used to expose different UI experiences in the portal for different kinds
kubernetes_version str: The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
linux_profile ContainerServiceLinuxProfileResponse: The profile for Linux VMs in the Managed Cluster.
metrics_profile ManagedClusterMetricsProfileResponse: Optional cluster metrics configuration.
network_profile ContainerServiceNetworkProfileResponse: The network configuration profile.
node_provisioning_profile ManagedClusterNodeProvisioningProfileResponse: Node provisioning settings that apply to the whole cluster.
node_resource_group str: The name of the resource group containing agent pool nodes.
node_resource_group_profile ManagedClusterNodeResourceGroupProfileResponse: Profile of the node resource group configuration.
oidc_issuer_profile ManagedClusterOIDCIssuerProfileResponse: The OIDC issuer profile of the Managed Cluster.
pod_identity_profile ManagedClusterPodIdentityProfileResponse: The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on AAD pod identity integration.
private_link_resources Sequence[PrivateLinkResourceResponse]: Private link resources associated with the cluster.
public_network_access str: PublicNetworkAccess of the managedCluster. Allow or deny public network access for AKS
security_profile ManagedClusterSecurityProfileResponse: Security profile for the managed cluster.
service_mesh_profile ServiceMeshProfileResponse: Service mesh profile for a managed cluster.
service_principal_profile ManagedClusterServicePrincipalProfileResponse: Information about a service principal identity for the cluster to use for manipulating Azure APIs.
sku ManagedClusterSKUResponse: The managed cluster SKU.
status ManagedClusterStatusResponse: Contains read-only information about the Managed Cluster.
storage_profile ManagedClusterStorageProfileResponse: Storage profile for the managed cluster.
support_plan str: The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
tags Mapping[str, str]: Resource tags.
upgrade_settings ClusterUpgradeSettingsResponse: Settings for upgrading a cluster.
windows_profile ManagedClusterWindowsProfileResponse: The profile for Windows VMs in the Managed Cluster.
workload_auto_scaler_profile ManagedClusterWorkloadAutoScalerProfileResponse: Workload Auto-scaler profile for the managed cluster.

azureApiVersion String: The Azure API version of the resource.
azurePortalFQDN String: The special FQDN used by the Azure Portal to access the Managed Cluster. This FQDN is for use only by the Azure Portal and should not be used by other clients. The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
currentKubernetesVersion String: The version of Kubernetes the Managed Cluster is running. If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
eTag String: Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
fqdn String: The FQDN of the master pool.
id String: Fully qualified resource ID for the resource. E.g. "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}"
location String: The geo-location where the resource lives
maxAgentPools Number: The max number of agent pools for the managed cluster.
name String: The name of the resource
powerState Property Map: The Power State of the cluster.
privateFQDN String: The FQDN of private cluster.
provisioningState String: The current provisioning state.
resourceUID String: The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
systemData Property Map: Azure Resource Manager metadata containing createdBy and modifiedBy information.
type String: The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
aadProfile Property Map: The Azure Active Directory configuration.
addonProfiles Map<Property Map>: The profile of managed cluster add-on.
agentPoolProfiles List<Property Map>: The agent pool properties.
aiToolchainOperatorProfile Property Map: AI toolchain operator settings that apply to the whole cluster.
apiServerAccessProfile Property Map: The access profile for managed cluster API server.
autoScalerProfile Property Map: Parameters to be applied to the cluster-autoscaler when enabled
autoUpgradeProfile Property Map: The auto upgrade configuration.
azureMonitorProfile Property Map: Azure Monitor addon profiles for monitoring the managed cluster.
bootstrapProfile Property Map: Profile of the cluster bootstrap configuration.
disableLocalAccounts Boolean: If local accounts should be disabled on the Managed Cluster. If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
diskEncryptionSetID String: The Resource ID of the disk encryption set to use for enabling encryption at rest. This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
dnsPrefix String: The DNS prefix of the Managed Cluster. This cannot be updated once the Managed Cluster has been created.
enableRBAC Boolean: Whether to enable Kubernetes Role-Based Access Control.
extendedLocation Property Map: The extended location of the Virtual Machine.
fqdnSubdomain String: The FQDN subdomain of the private cluster with custom private dns zone. This cannot be updated once the Managed Cluster has been created.
httpProxyConfig Property Map: Configurations for provisioning the cluster with HTTP proxy servers.
identity Property Map: The identity of the managed cluster, if configured.
identityProfile Map<Property Map>: The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
ingressProfile Property Map: Ingress profile for the managed cluster.
kind String: This is primarily used to expose different UI experiences in the portal for different kinds
kubernetesVersion String: The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
linuxProfile Property Map: The profile for Linux VMs in the Managed Cluster.
metricsProfile Property Map: Optional cluster metrics configuration.
networkProfile Property Map: The network configuration profile.
nodeProvisioningProfile Property Map: Node provisioning settings that apply to the whole cluster.
nodeResourceGroup String: The name of the resource group containing agent pool nodes.
nodeResourceGroupProfile Property Map: Profile of the node resource group configuration.
oidcIssuerProfile Property Map: The OIDC issuer profile of the Managed Cluster.
podIdentityProfile Property Map: The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on AAD pod identity integration.
privateLinkResources List<Property Map>: Private link resources associated with the cluster.
publicNetworkAccess String: PublicNetworkAccess of the managedCluster. Allow or deny public network access for AKS
securityProfile Property Map: Security profile for the managed cluster.
serviceMeshProfile Property Map: Service mesh profile for a managed cluster.
servicePrincipalProfile Property Map: Information about a service principal identity for the cluster to use for manipulating Azure APIs.
sku Property Map: The managed cluster SKU.
status Property Map: Contains read-only information about the Managed Cluster.
storageProfile Property Map: Storage profile for the managed cluster.
supportPlan String: The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
tags Map<String>: Resource tags.
upgradeSettings Property Map: Settings for upgrading a cluster.
windowsProfile Property Map: The profile for Windows VMs in the Managed Cluster.
workloadAutoScalerProfile Property Map: Workload Auto-scaler profile for the managed cluster.

Supporting Types

AdvancedNetworkingObservabilityResponse

Enabled bool: Indicates the enablement of Advanced Networking observability functionalities on clusters.

Enabled bool: Indicates the enablement of Advanced Networking observability functionalities on clusters.

enabled Boolean: Indicates the enablement of Advanced Networking observability functionalities on clusters.

enabled boolean: Indicates the enablement of Advanced Networking observability functionalities on clusters.

enabled bool: Indicates the enablement of Advanced Networking observability functionalities on clusters.

enabled Boolean: Indicates the enablement of Advanced Networking observability functionalities on clusters.

AdvancedNetworkingResponse

Enabled bool: Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
Observability Pulumi.AzureNative.ContainerService.Inputs.AdvancedNetworkingObservabilityResponse: Observability profile to enable advanced network metrics and flow logs with historical contexts.
Security Pulumi.AzureNative.ContainerService.Inputs.AdvancedNetworkingSecurityResponse: Security profile to enable security features on cilium based cluster.

Enabled bool: Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
Observability AdvancedNetworkingObservabilityResponse: Observability profile to enable advanced network metrics and flow logs with historical contexts.
Security AdvancedNetworkingSecurityResponse: Security profile to enable security features on cilium based cluster.

enabled Boolean: Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
observability AdvancedNetworkingObservabilityResponse: Observability profile to enable advanced network metrics and flow logs with historical contexts.
security AdvancedNetworkingSecurityResponse: Security profile to enable security features on cilium based cluster.

enabled boolean: Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
observability AdvancedNetworkingObservabilityResponse: Observability profile to enable advanced network metrics and flow logs with historical contexts.
security AdvancedNetworkingSecurityResponse: Security profile to enable security features on cilium based cluster.

enabled bool: Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
observability AdvancedNetworkingObservabilityResponse: Observability profile to enable advanced network metrics and flow logs with historical contexts.
security AdvancedNetworkingSecurityResponse: Security profile to enable security features on cilium based cluster.

enabled Boolean: Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
observability Property Map: Observability profile to enable advanced network metrics and flow logs with historical contexts.
security Property Map: Security profile to enable security features on cilium based cluster.

AdvancedNetworkingSecurityResponse

AdvancedNetworkPolicies string: Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
Enabled bool: This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.

AdvancedNetworkPolicies string: Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
Enabled bool: This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.

advancedNetworkPolicies String: Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
enabled Boolean: This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.

advancedNetworkPolicies string: Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
enabled boolean: This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.

advanced_network_policies str: Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
enabled bool: This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.

advancedNetworkPolicies String: Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
enabled Boolean: This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.

AgentPoolGatewayProfileResponse

PublicIPPrefixSize int: The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.

PublicIPPrefixSize int: The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.

publicIPPrefixSize Integer: The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.

publicIPPrefixSize number: The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.

public_ip_prefix_size int: The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.

publicIPPrefixSize Number: The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.

AgentPoolNetworkProfileResponse

AllowedHostPorts List<Pulumi.AzureNative.ContainerService.Inputs.PortRangeResponse>: The port ranges that are allowed to access. The specified ranges are allowed to overlap.
ApplicationSecurityGroups List<string>: The IDs of the application security groups which agent pool will associate when created.
NodePublicIPTags List<Pulumi.AzureNative.ContainerService.Inputs.IPTagResponse>: IPTags of instance-level public IPs.

AllowedHostPorts []PortRangeResponse: The port ranges that are allowed to access. The specified ranges are allowed to overlap.
ApplicationSecurityGroups []string: The IDs of the application security groups which agent pool will associate when created.
NodePublicIPTags []IPTagResponse: IPTags of instance-level public IPs.

allowedHostPorts List<PortRangeResponse>: The port ranges that are allowed to access. The specified ranges are allowed to overlap.
applicationSecurityGroups List<String>: The IDs of the application security groups which agent pool will associate when created.
nodePublicIPTags List<IPTagResponse>: IPTags of instance-level public IPs.

allowedHostPorts PortRangeResponse[]: The port ranges that are allowed to access. The specified ranges are allowed to overlap.
applicationSecurityGroups string[]: The IDs of the application security groups which agent pool will associate when created.
nodePublicIPTags IPTagResponse[]: IPTags of instance-level public IPs.

allowed_host_ports Sequence[PortRangeResponse]: The port ranges that are allowed to access. The specified ranges are allowed to overlap.
application_security_groups Sequence[str]: The IDs of the application security groups which agent pool will associate when created.
node_public_ip_tags Sequence[IPTagResponse]: IPTags of instance-level public IPs.

allowedHostPorts List<Property Map>: The port ranges that are allowed to access. The specified ranges are allowed to overlap.
applicationSecurityGroups List<String>: The IDs of the application security groups which agent pool will associate when created.
nodePublicIPTags List<Property Map>: IPTags of instance-level public IPs.

AgentPoolSecurityProfileResponse

EnableSecureBoot bool: Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
EnableVTPM bool: vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
SshAccess string: SSH access method of an agent pool.

EnableSecureBoot bool: Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
EnableVTPM bool: vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
SshAccess string: SSH access method of an agent pool.

enableSecureBoot Boolean: Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
enableVTPM Boolean: vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
sshAccess String: SSH access method of an agent pool.

enableSecureBoot boolean: Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
enableVTPM boolean: vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
sshAccess string: SSH access method of an agent pool.

enable_secure_boot bool: Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
enable_vtpm bool: vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
ssh_access str: SSH access method of an agent pool.

enableSecureBoot Boolean: Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
enableVTPM Boolean: vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
sshAccess String: SSH access method of an agent pool.

AgentPoolStatusResponse

ProvisioningError Pulumi.AzureNative.ContainerService.Inputs.ErrorDetailResponse: The error detail information of the agent pool. Preserves the detailed info of failure. If there was no error, this field is omitted.

ProvisioningError ErrorDetailResponse: The error detail information of the agent pool. Preserves the detailed info of failure. If there was no error, this field is omitted.

provisioningError ErrorDetailResponse: The error detail information of the agent pool. Preserves the detailed info of failure. If there was no error, this field is omitted.

provisioningError ErrorDetailResponse: The error detail information of the agent pool. Preserves the detailed info of failure. If there was no error, this field is omitted.

provisioning_error ErrorDetailResponse: The error detail information of the agent pool. Preserves the detailed info of failure. If there was no error, this field is omitted.

provisioningError Property Map: The error detail information of the agent pool. Preserves the detailed info of failure. If there was no error, this field is omitted.

AgentPoolUpgradeSettingsResponse

DrainTimeoutInMinutes int: The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
MaxSurge string: The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
MaxUnavailable string: The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
NodeSoakDurationInMinutes int: The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
UndrainableNodeBehavior string: Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.

DrainTimeoutInMinutes int: The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
MaxSurge string: The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
MaxUnavailable string: The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
NodeSoakDurationInMinutes int: The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
UndrainableNodeBehavior string: Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.

drainTimeoutInMinutes Integer: The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
maxSurge String: The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
maxUnavailable String: The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
nodeSoakDurationInMinutes Integer: The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
undrainableNodeBehavior String: Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.

drainTimeoutInMinutes number: The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
maxSurge string: The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
maxUnavailable string: The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
nodeSoakDurationInMinutes number: The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
undrainableNodeBehavior string: Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.

drain_timeout_in_minutes int: The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
max_surge str: The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
max_unavailable str: The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
node_soak_duration_in_minutes int: The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
undrainable_node_behavior str: Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.

drainTimeoutInMinutes Number: The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
maxSurge String: The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
maxUnavailable String: The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
nodeSoakDurationInMinutes Number: The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
undrainableNodeBehavior String: Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.

AgentPoolWindowsProfileResponse

DisableOutboundNat bool: Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.

DisableOutboundNat bool: Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.

disableOutboundNat Boolean: Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.

disableOutboundNat boolean: Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.

disable_outbound_nat bool: Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.

disableOutboundNat Boolean: Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.

AzureKeyVaultKmsResponse

Enabled bool: Whether to enable Azure Key Vault key management service. The default is false.
KeyId string: Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
KeyVaultNetworkAccess string: Network access of the key vault. Network access of key vault. The possible values are Public and Private. Public means the key vault allows public access from all networks. Private means the key vault disables public access and enables private link. The default value is Public.
KeyVaultResourceId string: Resource ID of key vault. When keyVaultNetworkAccess is Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess is Public, leave the field empty.

Enabled bool: Whether to enable Azure Key Vault key management service. The default is false.
KeyId string: Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
KeyVaultNetworkAccess string: Network access of the key vault. Network access of key vault. The possible values are Public and Private. Public means the key vault allows public access from all networks. Private means the key vault disables public access and enables private link. The default value is Public.
KeyVaultResourceId string: Resource ID of key vault. When keyVaultNetworkAccess is Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess is Public, leave the field empty.

enabled Boolean: Whether to enable Azure Key Vault key management service. The default is false.
keyId String: Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
keyVaultNetworkAccess String: Network access of the key vault. Network access of key vault. The possible values are Public and Private. Public means the key vault allows public access from all networks. Private means the key vault disables public access and enables private link. The default value is Public.
keyVaultResourceId String: Resource ID of key vault. When keyVaultNetworkAccess is Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess is Public, leave the field empty.

enabled boolean: Whether to enable Azure Key Vault key management service. The default is false.
keyId string: Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
keyVaultNetworkAccess string: Network access of the key vault. Network access of key vault. The possible values are Public and Private. Public means the key vault allows public access from all networks. Private means the key vault disables public access and enables private link. The default value is Public.
keyVaultResourceId string: Resource ID of key vault. When keyVaultNetworkAccess is Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess is Public, leave the field empty.

enabled bool: Whether to enable Azure Key Vault key management service. The default is false.
key_id str: Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
key_vault_network_access str: Network access of the key vault. Network access of key vault. The possible values are Public and Private. Public means the key vault allows public access from all networks. Private means the key vault disables public access and enables private link. The default value is Public.
key_vault_resource_id str: Resource ID of key vault. When keyVaultNetworkAccess is Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess is Public, leave the field empty.

enabled Boolean: Whether to enable Azure Key Vault key management service. The default is false.
keyId String: Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
keyVaultNetworkAccess String: Network access of the key vault. Network access of key vault. The possible values are Public and Private. Public means the key vault allows public access from all networks. Private means the key vault disables public access and enables private link. The default value is Public.
keyVaultResourceId String: Resource ID of key vault. When keyVaultNetworkAccess is Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess is Public, leave the field empty.

ClusterUpgradeSettingsResponse

OverrideSettings Pulumi.AzureNative.ContainerService.Inputs.UpgradeOverrideSettingsResponse: Settings for overrides.

OverrideSettings UpgradeOverrideSettingsResponse: Settings for overrides.

overrideSettings UpgradeOverrideSettingsResponse: Settings for overrides.

overrideSettings UpgradeOverrideSettingsResponse: Settings for overrides.

override_settings UpgradeOverrideSettingsResponse: Settings for overrides.

overrideSettings Property Map: Settings for overrides.

ContainerServiceLinuxProfileResponse

AdminUsername string: The administrator username to use for Linux VMs.
Ssh Pulumi.AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationResponse: The SSH configuration for Linux-based VMs running on Azure.

AdminUsername string: The administrator username to use for Linux VMs.
Ssh ContainerServiceSshConfigurationResponse: The SSH configuration for Linux-based VMs running on Azure.

adminUsername String: The administrator username to use for Linux VMs.
ssh ContainerServiceSshConfigurationResponse: The SSH configuration for Linux-based VMs running on Azure.

adminUsername string: The administrator username to use for Linux VMs.
ssh ContainerServiceSshConfigurationResponse: The SSH configuration for Linux-based VMs running on Azure.

admin_username str: The administrator username to use for Linux VMs.
ssh ContainerServiceSshConfigurationResponse: The SSH configuration for Linux-based VMs running on Azure.

adminUsername String: The administrator username to use for Linux VMs.
ssh Property Map: The SSH configuration for Linux-based VMs running on Azure.

ContainerServiceNetworkProfileResponse

AdvancedNetworking Pulumi.AzureNative.ContainerService.Inputs.AdvancedNetworkingResponse: Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
DnsServiceIP string: An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
IpFamilies List<string>: The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
LoadBalancerProfile Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileResponse: Profile of the cluster load balancer.
LoadBalancerSku string: The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
NatGatewayProfile Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterNATGatewayProfileResponse: Profile of the cluster NAT gateway.
NetworkDataplane string: Network dataplane used in the Kubernetes cluster.
NetworkMode string: The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
NetworkPlugin string: Network plugin used for building the Kubernetes network.
NetworkPluginMode string: The mode the network plugin should use.
NetworkPolicy string: Network policy used for building the Kubernetes network.
OutboundType string: The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
PodCidr string: A CIDR notation IP range from which to assign pod IPs when kubenet is used.
PodCidrs List<string>: The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
ServiceCidr string: A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
ServiceCidrs List<string>: The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
StaticEgressGatewayProfile Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterStaticEgressGatewayProfileResponse: The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.

AdvancedNetworking AdvancedNetworkingResponse: Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
DnsServiceIP string: An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
IpFamilies []string: The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
LoadBalancerProfile ManagedClusterLoadBalancerProfileResponse: Profile of the cluster load balancer.
LoadBalancerSku string: The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
NatGatewayProfile ManagedClusterNATGatewayProfileResponse: Profile of the cluster NAT gateway.
NetworkDataplane string: Network dataplane used in the Kubernetes cluster.
NetworkMode string: The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
NetworkPlugin string: Network plugin used for building the Kubernetes network.
NetworkPluginMode string: The mode the network plugin should use.
NetworkPolicy string: Network policy used for building the Kubernetes network.
OutboundType string: The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
PodCidr string: A CIDR notation IP range from which to assign pod IPs when kubenet is used.
PodCidrs []string: The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
ServiceCidr string: A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
ServiceCidrs []string: The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
StaticEgressGatewayProfile ManagedClusterStaticEgressGatewayProfileResponse: The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.

advancedNetworking AdvancedNetworkingResponse: Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
dnsServiceIP String: An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
ipFamilies List<String>: The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
loadBalancerProfile ManagedClusterLoadBalancerProfileResponse: Profile of the cluster load balancer.
loadBalancerSku String: The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
natGatewayProfile ManagedClusterNATGatewayProfileResponse: Profile of the cluster NAT gateway.
networkDataplane String: Network dataplane used in the Kubernetes cluster.
networkMode String: The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
networkPlugin String: Network plugin used for building the Kubernetes network.
networkPluginMode String: The mode the network plugin should use.
networkPolicy String: Network policy used for building the Kubernetes network.
outboundType String: The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
podCidr String: A CIDR notation IP range from which to assign pod IPs when kubenet is used.
podCidrs List<String>: The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
serviceCidr String: A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
serviceCidrs List<String>: The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
staticEgressGatewayProfile ManagedClusterStaticEgressGatewayProfileResponse: The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.

advancedNetworking AdvancedNetworkingResponse: Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
dnsServiceIP string: An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
ipFamilies string[]: The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
loadBalancerProfile ManagedClusterLoadBalancerProfileResponse: Profile of the cluster load balancer.
loadBalancerSku string: The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
natGatewayProfile ManagedClusterNATGatewayProfileResponse: Profile of the cluster NAT gateway.
networkDataplane string: Network dataplane used in the Kubernetes cluster.
networkMode string: The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
networkPlugin string: Network plugin used for building the Kubernetes network.
networkPluginMode string: The mode the network plugin should use.
networkPolicy string: Network policy used for building the Kubernetes network.
outboundType string: The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
podCidr string: A CIDR notation IP range from which to assign pod IPs when kubenet is used.
podCidrs string[]: The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
serviceCidr string: A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
serviceCidrs string[]: The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
staticEgressGatewayProfile ManagedClusterStaticEgressGatewayProfileResponse: The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.

advanced_networking AdvancedNetworkingResponse: Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
dns_service_ip str: An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
ip_families Sequence[str]: The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
load_balancer_profile ManagedClusterLoadBalancerProfileResponse: Profile of the cluster load balancer.
load_balancer_sku str: The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
nat_gateway_profile ManagedClusterNATGatewayProfileResponse: Profile of the cluster NAT gateway.
network_dataplane str: Network dataplane used in the Kubernetes cluster.
network_mode str: The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
network_plugin str: Network plugin used for building the Kubernetes network.
network_plugin_mode str: The mode the network plugin should use.
network_policy str: Network policy used for building the Kubernetes network.
outbound_type str: The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
pod_cidr str: A CIDR notation IP range from which to assign pod IPs when kubenet is used.
pod_cidrs Sequence[str]: The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
service_cidr str: A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
service_cidrs Sequence[str]: The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
static_egress_gateway_profile ManagedClusterStaticEgressGatewayProfileResponse: The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.

advancedNetworking Property Map: Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
dnsServiceIP String: An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
ipFamilies List<String>: The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
loadBalancerProfile Property Map: Profile of the cluster load balancer.
loadBalancerSku String: The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
natGatewayProfile Property Map: Profile of the cluster NAT gateway.
networkDataplane String: Network dataplane used in the Kubernetes cluster.
networkMode String: The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
networkPlugin String: Network plugin used for building the Kubernetes network.
networkPluginMode String: The mode the network plugin should use.
networkPolicy String: Network policy used for building the Kubernetes network.
outboundType String: The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
podCidr String: A CIDR notation IP range from which to assign pod IPs when kubenet is used.
podCidrs List<String>: The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
serviceCidr String: A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
serviceCidrs List<String>: The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
staticEgressGatewayProfile Property Map: The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.

ContainerServiceSshConfigurationResponse

PublicKeys List<Pulumi.AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyResponse>: The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.

PublicKeys []ContainerServiceSshPublicKeyResponse: The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.

publicKeys List<ContainerServiceSshPublicKeyResponse>: The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.

publicKeys ContainerServiceSshPublicKeyResponse[]: The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.

public_keys Sequence[ContainerServiceSshPublicKeyResponse]: The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.

publicKeys List<Property Map>: The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.

ContainerServiceSshPublicKeyResponse

KeyData string: Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.

KeyData string: Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.

keyData String: Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.

keyData string: Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.

key_data str: Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.

keyData String: Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.

CreationDataResponse

SourceResourceId string: This is the ARM ID of the source object to be used to create the target object.

SourceResourceId string: This is the ARM ID of the source object to be used to create the target object.

sourceResourceId String: This is the ARM ID of the source object to be used to create the target object.

sourceResourceId string: This is the ARM ID of the source object to be used to create the target object.

source_resource_id str: This is the ARM ID of the source object to be used to create the target object.

sourceResourceId String: This is the ARM ID of the source object to be used to create the target object.

DelegatedResourceResponse

Location string: The source resource location - internal use only.
ReferralResource string: The delegation id of the referral delegation (optional) - internal use only.
ResourceId string: The ARM resource id of the delegated resource - internal use only.
TenantId string: The tenant id of the delegated resource - internal use only.

Location string: The source resource location - internal use only.
ReferralResource string: The delegation id of the referral delegation (optional) - internal use only.
ResourceId string: The ARM resource id of the delegated resource - internal use only.
TenantId string: The tenant id of the delegated resource - internal use only.

location String: The source resource location - internal use only.
referralResource String: The delegation id of the referral delegation (optional) - internal use only.
resourceId String: The ARM resource id of the delegated resource - internal use only.
tenantId String: The tenant id of the delegated resource - internal use only.

location string: The source resource location - internal use only.
referralResource string: The delegation id of the referral delegation (optional) - internal use only.
resourceId string: The ARM resource id of the delegated resource - internal use only.
tenantId string: The tenant id of the delegated resource - internal use only.

location str: The source resource location - internal use only.
referral_resource str: The delegation id of the referral delegation (optional) - internal use only.
resource_id str: The ARM resource id of the delegated resource - internal use only.
tenant_id str: The tenant id of the delegated resource - internal use only.

location String: The source resource location - internal use only.
referralResource String: The delegation id of the referral delegation (optional) - internal use only.
resourceId String: The ARM resource id of the delegated resource - internal use only.
tenantId String: The tenant id of the delegated resource - internal use only.

ErrorAdditionalInfoResponse

Info object: The additional info.
Type string: The additional info type.

Info interface{}: The additional info.
Type string: The additional info type.

info Object: The additional info.
type String: The additional info type.

info any: The additional info.
type string: The additional info type.

info Any: The additional info.
type str: The additional info type.

info Any: The additional info.
type String: The additional info type.

ErrorDetailResponse

AdditionalInfo List<Pulumi.AzureNative.ContainerService.Inputs.ErrorAdditionalInfoResponse>: The error additional info.
Code string: The error code.
Details List<Pulumi.AzureNative.ContainerService.Inputs.ErrorDetailResponse>: The error details.
Message string: The error message.
Target string: The error target.

AdditionalInfo []ErrorAdditionalInfoResponse: The error additional info.
Code string: The error code.
Details []ErrorDetailResponse: The error details.
Message string: The error message.
Target string: The error target.

additionalInfo List<ErrorAdditionalInfoResponse>: The error additional info.
code String: The error code.
details List<ErrorDetailResponse>: The error details.
message String: The error message.
target String: The error target.

additionalInfo ErrorAdditionalInfoResponse[]: The error additional info.
code string: The error code.
details ErrorDetailResponse[]: The error details.
message string: The error message.
target string: The error target.

additional_info Sequence[ErrorAdditionalInfoResponse]: The error additional info.
code str: The error code.
details Sequence[ErrorDetailResponse]: The error details.
message str: The error message.
target str: The error target.

additionalInfo List<Property Map>: The error additional info.
code String: The error code.
details List<Property Map>: The error details.
message String: The error message.
target String: The error target.

ExtendedLocationResponse

Name string: The name of the extended location.
Type string: The type of the extended location.

Name string: The name of the extended location.
Type string: The type of the extended location.

name String: The name of the extended location.
type String: The type of the extended location.

name string: The name of the extended location.
type string: The type of the extended location.

name str: The name of the extended location.
type str: The type of the extended location.

name String: The name of the extended location.
type String: The type of the extended location.

GPUProfileResponse

Driver string: Whether to install GPU drivers. When it's not specified, default is Install.

Driver string: Whether to install GPU drivers. When it's not specified, default is Install.

driver String: Whether to install GPU drivers. When it's not specified, default is Install.

driver string: Whether to install GPU drivers. When it's not specified, default is Install.

driver str: Whether to install GPU drivers. When it's not specified, default is Install.

driver String: Whether to install GPU drivers. When it's not specified, default is Install.

IPTagResponse

IpTagType string: The IP tag type. Example: RoutingPreference.
Tag string: The value of the IP tag associated with the public IP. Example: Internet.

IpTagType string: The IP tag type. Example: RoutingPreference.
Tag string: The value of the IP tag associated with the public IP. Example: Internet.

ipTagType String: The IP tag type. Example: RoutingPreference.
tag String: The value of the IP tag associated with the public IP. Example: Internet.

ipTagType string: The IP tag type. Example: RoutingPreference.
tag string: The value of the IP tag associated with the public IP. Example: Internet.

ip_tag_type str: The IP tag type. Example: RoutingPreference.
tag str: The value of the IP tag associated with the public IP. Example: Internet.

ipTagType String: The IP tag type. Example: RoutingPreference.
tag String: The value of the IP tag associated with the public IP. Example: Internet.

IstioCertificateAuthorityResponse

Plugin Pulumi.AzureNative.ContainerService.Inputs.IstioPluginCertificateAuthorityResponse: Plugin certificates information for Service Mesh.

Plugin IstioPluginCertificateAuthorityResponse: Plugin certificates information for Service Mesh.

plugin IstioPluginCertificateAuthorityResponse: Plugin certificates information for Service Mesh.

plugin IstioPluginCertificateAuthorityResponse: Plugin certificates information for Service Mesh.

plugin IstioPluginCertificateAuthorityResponse: Plugin certificates information for Service Mesh.

plugin Property Map: Plugin certificates information for Service Mesh.

IstioComponentsResponse

EgressGateways List<Pulumi.AzureNative.ContainerService.Inputs.IstioEgressGatewayResponse>: Istio egress gateways.
IngressGateways List<Pulumi.AzureNative.ContainerService.Inputs.IstioIngressGatewayResponse>: Istio ingress gateways.

EgressGateways []IstioEgressGatewayResponse: Istio egress gateways.
IngressGateways []IstioIngressGatewayResponse: Istio ingress gateways.

egressGateways List<IstioEgressGatewayResponse>: Istio egress gateways.
ingressGateways List<IstioIngressGatewayResponse>: Istio ingress gateways.

egressGateways IstioEgressGatewayResponse[]: Istio egress gateways.
ingressGateways IstioIngressGatewayResponse[]: Istio ingress gateways.

egress_gateways Sequence[IstioEgressGatewayResponse]: Istio egress gateways.
ingress_gateways Sequence[IstioIngressGatewayResponse]: Istio ingress gateways.

egressGateways List<Property Map>: Istio egress gateways.
ingressGateways List<Property Map>: Istio ingress gateways.

IstioEgressGatewayResponse

Enabled bool: Whether to enable the egress gateway.
Name string: Name of the Istio add-on egress gateway.
GatewayConfigurationName string: Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
Namespace string: Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.

Enabled bool: Whether to enable the egress gateway.
Name string: Name of the Istio add-on egress gateway.
GatewayConfigurationName string: Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
Namespace string: Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.

enabled Boolean: Whether to enable the egress gateway.
name String: Name of the Istio add-on egress gateway.
gatewayConfigurationName String: Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
namespace String: Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.

enabled boolean: Whether to enable the egress gateway.
name string: Name of the Istio add-on egress gateway.
gatewayConfigurationName string: Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
namespace string: Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.

enabled bool: Whether to enable the egress gateway.
name str: Name of the Istio add-on egress gateway.
gateway_configuration_name str: Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
namespace str: Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.

enabled Boolean: Whether to enable the egress gateway.
name String: Name of the Istio add-on egress gateway.
gatewayConfigurationName String: Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
namespace String: Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.

IstioIngressGatewayResponse

Enabled bool: Whether to enable the ingress gateway.
Mode string: Mode of an ingress gateway.

Enabled bool: Whether to enable the ingress gateway.
Mode string: Mode of an ingress gateway.

enabled Boolean: Whether to enable the ingress gateway.
mode String: Mode of an ingress gateway.

enabled boolean: Whether to enable the ingress gateway.
mode string: Mode of an ingress gateway.

enabled bool: Whether to enable the ingress gateway.
mode str: Mode of an ingress gateway.

enabled Boolean: Whether to enable the ingress gateway.
mode String: Mode of an ingress gateway.

IstioPluginCertificateAuthorityResponse

CertChainObjectName string: Certificate chain object name in Azure Key Vault.
CertObjectName string: Intermediate certificate object name in Azure Key Vault.
KeyObjectName string: Intermediate certificate private key object name in Azure Key Vault.
KeyVaultId string: The resource ID of the Key Vault.
RootCertObjectName string: Root certificate object name in Azure Key Vault.

CertChainObjectName string: Certificate chain object name in Azure Key Vault.
CertObjectName string: Intermediate certificate object name in Azure Key Vault.
KeyObjectName string: Intermediate certificate private key object name in Azure Key Vault.
KeyVaultId string: The resource ID of the Key Vault.
RootCertObjectName string: Root certificate object name in Azure Key Vault.

certChainObjectName String: Certificate chain object name in Azure Key Vault.
certObjectName String: Intermediate certificate object name in Azure Key Vault.
keyObjectName String: Intermediate certificate private key object name in Azure Key Vault.
keyVaultId String: The resource ID of the Key Vault.
rootCertObjectName String: Root certificate object name in Azure Key Vault.

certChainObjectName string: Certificate chain object name in Azure Key Vault.
certObjectName string: Intermediate certificate object name in Azure Key Vault.
keyObjectName string: Intermediate certificate private key object name in Azure Key Vault.
keyVaultId string: The resource ID of the Key Vault.
rootCertObjectName string: Root certificate object name in Azure Key Vault.

cert_chain_object_name str: Certificate chain object name in Azure Key Vault.
cert_object_name str: Intermediate certificate object name in Azure Key Vault.
key_object_name str: Intermediate certificate private key object name in Azure Key Vault.
key_vault_id str: The resource ID of the Key Vault.
root_cert_object_name str: Root certificate object name in Azure Key Vault.

certChainObjectName String: Certificate chain object name in Azure Key Vault.
certObjectName String: Intermediate certificate object name in Azure Key Vault.
keyObjectName String: Intermediate certificate private key object name in Azure Key Vault.
keyVaultId String: The resource ID of the Key Vault.
rootCertObjectName String: Root certificate object name in Azure Key Vault.

IstioServiceMeshResponse

CertificateAuthority Pulumi.AzureNative.ContainerService.Inputs.IstioCertificateAuthorityResponse: Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
Components Pulumi.AzureNative.ContainerService.Inputs.IstioComponentsResponse: Istio components configuration.
Revisions List<string>: The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade

CertificateAuthority IstioCertificateAuthorityResponse: Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
Components IstioComponentsResponse: Istio components configuration.
Revisions []string: The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade

certificateAuthority IstioCertificateAuthorityResponse: Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
components IstioComponentsResponse: Istio components configuration.
revisions List<String>: The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade

certificateAuthority IstioCertificateAuthorityResponse: Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
components IstioComponentsResponse: Istio components configuration.
revisions string[]: The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade

certificate_authority IstioCertificateAuthorityResponse: Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
components IstioComponentsResponse: Istio components configuration.
revisions Sequence[str]: The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade

certificateAuthority Property Map: Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
components Property Map: Istio components configuration.
revisions List<String>: The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade

KubeletConfigResponse

AllowedUnsafeSysctls List<string>: Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in *).
ContainerLogMaxFiles int: The maximum number of container log files that can be present for a container. The number must be ≥ 2.
ContainerLogMaxSizeMB int: The maximum size (e.g. 10Mi) of container log file before it is rotated.
CpuCfsQuota bool: If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
CpuCfsQuotaPeriod string: The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
CpuManagerPolicy string: The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
FailSwapOn bool: If set to true it will make the Kubelet fail to start if swap is enabled on the node.
ImageGcHighThreshold int: The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
ImageGcLowThreshold int: The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
PodMaxPids int: The maximum number of processes per pod.
TopologyManagerPolicy string: The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.

AllowedUnsafeSysctls []string: Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in *).
ContainerLogMaxFiles int: The maximum number of container log files that can be present for a container. The number must be ≥ 2.
ContainerLogMaxSizeMB int: The maximum size (e.g. 10Mi) of container log file before it is rotated.
CpuCfsQuota bool: If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
CpuCfsQuotaPeriod string: The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
CpuManagerPolicy string: The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
FailSwapOn bool: If set to true it will make the Kubelet fail to start if swap is enabled on the node.
ImageGcHighThreshold int: The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
ImageGcLowThreshold int: The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
PodMaxPids int: The maximum number of processes per pod.
TopologyManagerPolicy string: The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.

allowedUnsafeSysctls List<String>: Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in *).
containerLogMaxFiles Integer: The maximum number of container log files that can be present for a container. The number must be ≥ 2.
containerLogMaxSizeMB Integer: The maximum size (e.g. 10Mi) of container log file before it is rotated.
cpuCfsQuota Boolean: If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
cpuCfsQuotaPeriod String: The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
cpuManagerPolicy String: The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
failSwapOn Boolean: If set to true it will make the Kubelet fail to start if swap is enabled on the node.
imageGcHighThreshold Integer: The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
imageGcLowThreshold Integer: The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
podMaxPids Integer: The maximum number of processes per pod.
topologyManagerPolicy String: The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.

allowedUnsafeSysctls string[]: Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in *).
containerLogMaxFiles number: The maximum number of container log files that can be present for a container. The number must be ≥ 2.
containerLogMaxSizeMB number: The maximum size (e.g. 10Mi) of container log file before it is rotated.
cpuCfsQuota boolean: If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
cpuCfsQuotaPeriod string: The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
cpuManagerPolicy string: The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
failSwapOn boolean: If set to true it will make the Kubelet fail to start if swap is enabled on the node.
imageGcHighThreshold number: The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
imageGcLowThreshold number: The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
podMaxPids number: The maximum number of processes per pod.
topologyManagerPolicy string: The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.

allowed_unsafe_sysctls Sequence[str]: Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in *).
container_log_max_files int: The maximum number of container log files that can be present for a container. The number must be ≥ 2.
container_log_max_size_mb int: The maximum size (e.g. 10Mi) of container log file before it is rotated.
cpu_cfs_quota bool: If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
cpu_cfs_quota_period str: The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
cpu_manager_policy str: The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
fail_swap_on bool: If set to true it will make the Kubelet fail to start if swap is enabled on the node.
image_gc_high_threshold int: The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
image_gc_low_threshold int: The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
pod_max_pids int: The maximum number of processes per pod.
topology_manager_policy str: The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.

allowedUnsafeSysctls List<String>: Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in *).
containerLogMaxFiles Number: The maximum number of container log files that can be present for a container. The number must be ≥ 2.
containerLogMaxSizeMB Number: The maximum size (e.g. 10Mi) of container log file before it is rotated.
cpuCfsQuota Boolean: If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
cpuCfsQuotaPeriod String: The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
cpuManagerPolicy String: The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
failSwapOn Boolean: If set to true it will make the Kubelet fail to start if swap is enabled on the node.
imageGcHighThreshold Number: The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
imageGcLowThreshold Number: The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
podMaxPids Number: The maximum number of processes per pod.
topologyManagerPolicy String: The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.

LinuxOSConfigResponse

SwapFileSizeMB int: The size in MB of a swap file that will be created on each node.
Sysctls Pulumi.AzureNative.ContainerService.Inputs.SysctlConfigResponse: Sysctl settings for Linux agent nodes.
TransparentHugePageDefrag string: Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
TransparentHugePageEnabled string: Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.

SwapFileSizeMB int: The size in MB of a swap file that will be created on each node.
Sysctls SysctlConfigResponse: Sysctl settings for Linux agent nodes.
TransparentHugePageDefrag string: Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
TransparentHugePageEnabled string: Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.

swapFileSizeMB Integer: The size in MB of a swap file that will be created on each node.
sysctls SysctlConfigResponse: Sysctl settings for Linux agent nodes.
transparentHugePageDefrag String: Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
transparentHugePageEnabled String: Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.

swapFileSizeMB number: The size in MB of a swap file that will be created on each node.
sysctls SysctlConfigResponse: Sysctl settings for Linux agent nodes.
transparentHugePageDefrag string: Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
transparentHugePageEnabled string: Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.

swap_file_size_mb int: The size in MB of a swap file that will be created on each node.
sysctls SysctlConfigResponse: Sysctl settings for Linux agent nodes.
transparent_huge_page_defrag str: Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
transparent_huge_page_enabled str: Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.

swapFileSizeMB Number: The size in MB of a swap file that will be created on each node.
sysctls Property Map: Sysctl settings for Linux agent nodes.
transparentHugePageDefrag String: Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
transparentHugePageEnabled String: Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.

LocalDNSOverrideResponse

CacheDurationInSeconds int: Cache max TTL in seconds. See cache plugin for more information.
ForwardDestination string: Destination server for DNS queries to be forwarded from localDNS.
ForwardPolicy string: Forward policy for selecting upstream DNS server. See forward plugin for more information.
MaxConcurrent int: Maximum number of concurrent queries. See forward plugin for more information.
Protocol string: Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
QueryLogging string: Log level for DNS queries in localDNS.
ServeStale string: Policy for serving stale data. See cache plugin for more information.
ServeStaleDurationInSeconds int: Serve stale duration in seconds. See cache plugin for more information.

CacheDurationInSeconds int: Cache max TTL in seconds. See cache plugin for more information.
ForwardDestination string: Destination server for DNS queries to be forwarded from localDNS.
ForwardPolicy string: Forward policy for selecting upstream DNS server. See forward plugin for more information.
MaxConcurrent int: Maximum number of concurrent queries. See forward plugin for more information.
Protocol string: Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
QueryLogging string: Log level for DNS queries in localDNS.
ServeStale string: Policy for serving stale data. See cache plugin for more information.
ServeStaleDurationInSeconds int: Serve stale duration in seconds. See cache plugin for more information.

cacheDurationInSeconds Integer: Cache max TTL in seconds. See cache plugin for more information.
forwardDestination String: Destination server for DNS queries to be forwarded from localDNS.
forwardPolicy String: Forward policy for selecting upstream DNS server. See forward plugin for more information.
maxConcurrent Integer: Maximum number of concurrent queries. See forward plugin for more information.
protocol String: Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
queryLogging String: Log level for DNS queries in localDNS.
serveStale String: Policy for serving stale data. See cache plugin for more information.
serveStaleDurationInSeconds Integer: Serve stale duration in seconds. See cache plugin for more information.

cacheDurationInSeconds number: Cache max TTL in seconds. See cache plugin for more information.
forwardDestination string: Destination server for DNS queries to be forwarded from localDNS.
forwardPolicy string: Forward policy for selecting upstream DNS server. See forward plugin for more information.
maxConcurrent number: Maximum number of concurrent queries. See forward plugin for more information.
protocol string: Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
queryLogging string: Log level for DNS queries in localDNS.
serveStale string: Policy for serving stale data. See cache plugin for more information.
serveStaleDurationInSeconds number: Serve stale duration in seconds. See cache plugin for more information.

cache_duration_in_seconds int: Cache max TTL in seconds. See cache plugin for more information.
forward_destination str: Destination server for DNS queries to be forwarded from localDNS.
forward_policy str: Forward policy for selecting upstream DNS server. See forward plugin for more information.
max_concurrent int: Maximum number of concurrent queries. See forward plugin for more information.
protocol str: Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
query_logging str: Log level for DNS queries in localDNS.
serve_stale str: Policy for serving stale data. See cache plugin for more information.
serve_stale_duration_in_seconds int: Serve stale duration in seconds. See cache plugin for more information.

cacheDurationInSeconds Number: Cache max TTL in seconds. See cache plugin for more information.
forwardDestination String: Destination server for DNS queries to be forwarded from localDNS.
forwardPolicy String: Forward policy for selecting upstream DNS server. See forward plugin for more information.
maxConcurrent Number: Maximum number of concurrent queries. See forward plugin for more information.
protocol String: Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
queryLogging String: Log level for DNS queries in localDNS.
serveStale String: Policy for serving stale data. See cache plugin for more information.
serveStaleDurationInSeconds Number: Serve stale duration in seconds. See cache plugin for more information.

LocalDNSProfileResponse

State string: System-generated state of localDNS.
KubeDNSOverrides Dictionary<string, Pulumi.AzureNative.ContainerService.Inputs.LocalDNSOverrideResponse>: KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
Mode string: Mode of enablement for localDNS.
VnetDNSOverrides Dictionary<string, Pulumi.AzureNative.ContainerService.Inputs.LocalDNSOverrideResponse>: VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).

State string: System-generated state of localDNS.
KubeDNSOverrides map[string]LocalDNSOverrideResponse: KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
Mode string: Mode of enablement for localDNS.
VnetDNSOverrides map[string]LocalDNSOverrideResponse: VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).

state String: System-generated state of localDNS.
kubeDNSOverrides Map<String,LocalDNSOverrideResponse>: KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
mode String: Mode of enablement for localDNS.
vnetDNSOverrides Map<String,LocalDNSOverrideResponse>: VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).

state string: System-generated state of localDNS.
kubeDNSOverrides {[key: string]: LocalDNSOverrideResponse}: KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
mode string: Mode of enablement for localDNS.
vnetDNSOverrides {[key: string]: LocalDNSOverrideResponse}: VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).

state str: System-generated state of localDNS.
kube_dns_overrides Mapping[str, LocalDNSOverrideResponse]: KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
mode str: Mode of enablement for localDNS.
vnet_dns_overrides Mapping[str, LocalDNSOverrideResponse]: VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).

state String: System-generated state of localDNS.
kubeDNSOverrides Map<Property Map>: KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
mode String: Mode of enablement for localDNS.
vnetDNSOverrides Map<Property Map>: VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).

ManagedClusterAADProfileResponse

AdminGroupObjectIDs List<string>: The list of AAD group object IDs that will have admin role of the cluster.
ClientAppID string: (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
EnableAzureRBAC bool: Whether to enable Azure RBAC for Kubernetes authorization.
Managed bool: Whether to enable managed AAD.
ServerAppID string: (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
ServerAppSecret string: (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
TenantID string: The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.

AdminGroupObjectIDs []string: The list of AAD group object IDs that will have admin role of the cluster.
ClientAppID string: (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
EnableAzureRBAC bool: Whether to enable Azure RBAC for Kubernetes authorization.
Managed bool: Whether to enable managed AAD.
ServerAppID string: (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
ServerAppSecret string: (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
TenantID string: The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.

adminGroupObjectIDs List<String>: The list of AAD group object IDs that will have admin role of the cluster.
clientAppID String: (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
enableAzureRBAC Boolean: Whether to enable Azure RBAC for Kubernetes authorization.
managed Boolean: Whether to enable managed AAD.
serverAppID String: (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
serverAppSecret String: (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
tenantID String: The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.

adminGroupObjectIDs string[]: The list of AAD group object IDs that will have admin role of the cluster.
clientAppID string: (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
enableAzureRBAC boolean: Whether to enable Azure RBAC for Kubernetes authorization.
managed boolean: Whether to enable managed AAD.
serverAppID string: (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
serverAppSecret string: (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
tenantID string: The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.

admin_group_object_ids Sequence[str]: The list of AAD group object IDs that will have admin role of the cluster.
client_app_id str: (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
enable_azure_rbac bool: Whether to enable Azure RBAC for Kubernetes authorization.
managed bool: Whether to enable managed AAD.
server_app_id str: (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
server_app_secret str: (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
tenant_id str: The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.

adminGroupObjectIDs List<String>: The list of AAD group object IDs that will have admin role of the cluster.
clientAppID String: (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
enableAzureRBAC Boolean: Whether to enable Azure RBAC for Kubernetes authorization.
managed Boolean: Whether to enable managed AAD.
serverAppID String: (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
serverAppSecret String: (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
tenantID String: The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.

ManagedClusterAIToolchainOperatorProfileResponse

Enabled bool: Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.

Enabled bool: Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.

enabled Boolean: Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.

enabled boolean: Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.

enabled bool: Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.

enabled Boolean: Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.

ManagedClusterAPIServerAccessProfileResponse

AuthorizedIPRanges List<string>: The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
DisableRunCommand bool: Whether to disable run command for the cluster or not.
EnablePrivateCluster bool: Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
EnablePrivateClusterPublicFQDN bool: Whether to create additional public FQDN for private cluster or not.
EnableVnetIntegration bool: Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
PrivateDNSZone string: The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
SubnetId string: The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.

AuthorizedIPRanges []string: The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
DisableRunCommand bool: Whether to disable run command for the cluster or not.
EnablePrivateCluster bool: Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
EnablePrivateClusterPublicFQDN bool: Whether to create additional public FQDN for private cluster or not.
EnableVnetIntegration bool: Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
PrivateDNSZone string: The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
SubnetId string: The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.

authorizedIPRanges List<String>: The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
disableRunCommand Boolean: Whether to disable run command for the cluster or not.
enablePrivateCluster Boolean: Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
enablePrivateClusterPublicFQDN Boolean: Whether to create additional public FQDN for private cluster or not.
enableVnetIntegration Boolean: Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
privateDNSZone String: The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
subnetId String: The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.

authorizedIPRanges string[]: The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
disableRunCommand boolean: Whether to disable run command for the cluster or not.
enablePrivateCluster boolean: Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
enablePrivateClusterPublicFQDN boolean: Whether to create additional public FQDN for private cluster or not.
enableVnetIntegration boolean: Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
privateDNSZone string: The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
subnetId string: The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.

authorized_ip_ranges Sequence[str]: The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
disable_run_command bool: Whether to disable run command for the cluster or not.
enable_private_cluster bool: Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
enable_private_cluster_public_fqdn bool: Whether to create additional public FQDN for private cluster or not.
enable_vnet_integration bool: Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
private_dns_zone str: The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
subnet_id str: The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.

authorizedIPRanges List<String>: The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
disableRunCommand Boolean: Whether to disable run command for the cluster or not.
enablePrivateCluster Boolean: Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
enablePrivateClusterPublicFQDN Boolean: Whether to create additional public FQDN for private cluster or not.
enableVnetIntegration Boolean: Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
privateDNSZone String: The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
subnetId String: The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.

ManagedClusterAddonProfileResponse

Enabled bool: Whether the add-on is enabled or not.
Identity Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterAddonProfileResponseIdentity: Information of user assigned identity used by this add-on.
Config Dictionary<string, string>: Key-value pairs for configuring an add-on.

Enabled bool: Whether the add-on is enabled or not.
Identity ManagedClusterAddonProfileResponseIdentity: Information of user assigned identity used by this add-on.
Config map[string]string: Key-value pairs for configuring an add-on.

enabled Boolean: Whether the add-on is enabled or not.
identity ManagedClusterAddonProfileResponseIdentity: Information of user assigned identity used by this add-on.
config Map<String,String>: Key-value pairs for configuring an add-on.

enabled boolean: Whether the add-on is enabled or not.
identity ManagedClusterAddonProfileResponseIdentity: Information of user assigned identity used by this add-on.
config {[key: string]: string}: Key-value pairs for configuring an add-on.

enabled bool: Whether the add-on is enabled or not.
identity ManagedClusterAddonProfileResponseIdentity: Information of user assigned identity used by this add-on.
config Mapping[str, str]: Key-value pairs for configuring an add-on.

enabled Boolean: Whether the add-on is enabled or not.
identity Property Map: Information of user assigned identity used by this add-on.
config Map<String>: Key-value pairs for configuring an add-on.

ManagedClusterAddonProfileResponseIdentity

ClientId string: The client ID of the user assigned identity.
ObjectId string: The object ID of the user assigned identity.
ResourceId string: The resource ID of the user assigned identity.

ClientId string: The client ID of the user assigned identity.
ObjectId string: The object ID of the user assigned identity.
ResourceId string: The resource ID of the user assigned identity.

clientId String: The client ID of the user assigned identity.
objectId String: The object ID of the user assigned identity.
resourceId String: The resource ID of the user assigned identity.

clientId string: The client ID of the user assigned identity.
objectId string: The object ID of the user assigned identity.
resourceId string: The resource ID of the user assigned identity.

client_id str: The client ID of the user assigned identity.
object_id str: The object ID of the user assigned identity.
resource_id str: The resource ID of the user assigned identity.

clientId String: The client ID of the user assigned identity.
objectId String: The object ID of the user assigned identity.
resourceId String: The resource ID of the user assigned identity.

ManagedClusterAgentPoolProfileResponse

CurrentOrchestratorVersion string: The version of Kubernetes the Agent Pool is running. If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
ETag string: Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
Name string: Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
NodeImageVersion string: The version of node image
ProvisioningState string: The current deployment or provisioning state.
AvailabilityZones List<string>: The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
CapacityReservationGroupID string: AKS will associate the specified agent pool with the Capacity Reservation Group.
Count int: Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
CreationData Pulumi.AzureNative.ContainerService.Inputs.CreationDataResponse: CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
EnableAutoScaling bool: Whether to enable auto-scaler
EnableEncryptionAtHost bool: Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
EnableFIPS bool: Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
EnableNodePublicIP bool: Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
EnableUltraSSD bool: Whether to enable UltraSSD
GatewayProfile Pulumi.AzureNative.ContainerService.Inputs.AgentPoolGatewayProfileResponse: Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
GpuInstanceProfile string: GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
GpuProfile Pulumi.AzureNative.ContainerService.Inputs.GPUProfileResponse: GPU settings for the Agent Pool.
HostGroupID string: The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
KubeletConfig Pulumi.AzureNative.ContainerService.Inputs.KubeletConfigResponse: The Kubelet configuration on the agent pool nodes.
KubeletDiskType string: Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
LinuxOSConfig Pulumi.AzureNative.ContainerService.Inputs.LinuxOSConfigResponse: The OS configuration of Linux agent nodes.
LocalDNSProfile Pulumi.AzureNative.ContainerService.Inputs.LocalDNSProfileResponse: Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
MaxCount int: The maximum number of nodes for auto-scaling
MaxPods int: The maximum number of pods that can run on a node.
MessageOfTheDay string: Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
MinCount int: The minimum number of nodes for auto-scaling
Mode string: The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
NetworkProfile Pulumi.AzureNative.ContainerService.Inputs.AgentPoolNetworkProfileResponse: Network-related settings of an agent pool.
NodeLabels Dictionary<string, string>: The node labels to be persisted across all nodes in agent pool.
NodePublicIPPrefixID string: The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
NodeTaints List<string>: The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
OrchestratorVersion string: The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
OsDiskSizeGB int: OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
OsDiskType string: The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
OsSKU string: Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
OsType string: The operating system type. The default is Linux.
PodIPAllocationMode string: Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
PodSubnetID string: The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
PowerState Pulumi.AzureNative.ContainerService.Inputs.PowerStateResponse: Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
ProximityPlacementGroupID string: The ID for Proximity Placement Group.
ScaleDownMode string: The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
ScaleSetEvictionPolicy string: The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
ScaleSetPriority string: The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
SecurityProfile Pulumi.AzureNative.ContainerService.Inputs.AgentPoolSecurityProfileResponse: The security settings of an agent pool.
SpotMaxPrice double: The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
Status Pulumi.AzureNative.ContainerService.Inputs.AgentPoolStatusResponse: Contains read-only information about the Agent Pool.
Tags Dictionary<string, string>: The tags to be persisted on the agent pool virtual machine scale set.
Type string: The type of Agent Pool.
UpgradeSettings Pulumi.AzureNative.ContainerService.Inputs.AgentPoolUpgradeSettingsResponse: Settings for upgrading the agentpool
VirtualMachineNodesStatus List<Pulumi.AzureNative.ContainerService.Inputs.VirtualMachineNodesResponse>: The status of nodes in a VirtualMachines agent pool.
VirtualMachinesProfile Pulumi.AzureNative.ContainerService.Inputs.VirtualMachinesProfileResponse: Specifications on VirtualMachines agent pool.
VmSize string: The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
VnetSubnetID string: The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
WindowsProfile Pulumi.AzureNative.ContainerService.Inputs.AgentPoolWindowsProfileResponse: The Windows agent pool's specific profile.
WorkloadRuntime string: Determines the type of workload a node can run.

CurrentOrchestratorVersion string: The version of Kubernetes the Agent Pool is running. If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
ETag string: Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
Name string: Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
NodeImageVersion string: The version of node image
ProvisioningState string: The current deployment or provisioning state.
AvailabilityZones []string: The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
CapacityReservationGroupID string: AKS will associate the specified agent pool with the Capacity Reservation Group.
Count int: Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
CreationData CreationDataResponse: CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
EnableAutoScaling bool: Whether to enable auto-scaler
EnableEncryptionAtHost bool: Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
EnableFIPS bool: Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
EnableNodePublicIP bool: Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
EnableUltraSSD bool: Whether to enable UltraSSD
GatewayProfile AgentPoolGatewayProfileResponse: Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
GpuInstanceProfile string: GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
GpuProfile GPUProfileResponse: GPU settings for the Agent Pool.
HostGroupID string: The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
KubeletConfig KubeletConfigResponse: The Kubelet configuration on the agent pool nodes.
KubeletDiskType string: Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
LinuxOSConfig LinuxOSConfigResponse: The OS configuration of Linux agent nodes.
LocalDNSProfile LocalDNSProfileResponse: Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
MaxCount int: The maximum number of nodes for auto-scaling
MaxPods int: The maximum number of pods that can run on a node.
MessageOfTheDay string: Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
MinCount int: The minimum number of nodes for auto-scaling
Mode string: The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
NetworkProfile AgentPoolNetworkProfileResponse: Network-related settings of an agent pool.
NodeLabels map[string]string: The node labels to be persisted across all nodes in agent pool.
NodePublicIPPrefixID string: The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
NodeTaints []string: The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
OrchestratorVersion string: The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
OsDiskSizeGB int: OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
OsDiskType string: The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
OsSKU string: Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
OsType string: The operating system type. The default is Linux.
PodIPAllocationMode string: Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
PodSubnetID string: The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
PowerState PowerStateResponse: Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
ProximityPlacementGroupID string: The ID for Proximity Placement Group.
ScaleDownMode string: The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
ScaleSetEvictionPolicy string: The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
ScaleSetPriority string: The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
SecurityProfile AgentPoolSecurityProfileResponse: The security settings of an agent pool.
SpotMaxPrice float64: The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
Status AgentPoolStatusResponse: Contains read-only information about the Agent Pool.
Tags map[string]string: The tags to be persisted on the agent pool virtual machine scale set.
Type string: The type of Agent Pool.
UpgradeSettings AgentPoolUpgradeSettingsResponse: Settings for upgrading the agentpool
VirtualMachineNodesStatus []VirtualMachineNodesResponse: The status of nodes in a VirtualMachines agent pool.
VirtualMachinesProfile VirtualMachinesProfileResponse: Specifications on VirtualMachines agent pool.
VmSize string: The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
VnetSubnetID string: The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
WindowsProfile AgentPoolWindowsProfileResponse: The Windows agent pool's specific profile.
WorkloadRuntime string: Determines the type of workload a node can run.

currentOrchestratorVersion String: The version of Kubernetes the Agent Pool is running. If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
eTag String: Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
name String: Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
nodeImageVersion String: The version of node image
provisioningState String: The current deployment or provisioning state.
availabilityZones List<String>: The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
capacityReservationGroupID String: AKS will associate the specified agent pool with the Capacity Reservation Group.
count Integer: Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
creationData CreationDataResponse: CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
enableAutoScaling Boolean: Whether to enable auto-scaler
enableEncryptionAtHost Boolean: Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
enableFIPS Boolean: Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
enableNodePublicIP Boolean: Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
enableUltraSSD Boolean: Whether to enable UltraSSD
gatewayProfile AgentPoolGatewayProfileResponse: Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
gpuInstanceProfile String: GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
gpuProfile GPUProfileResponse: GPU settings for the Agent Pool.
hostGroupID String: The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
kubeletConfig KubeletConfigResponse: The Kubelet configuration on the agent pool nodes.
kubeletDiskType String: Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
linuxOSConfig LinuxOSConfigResponse: The OS configuration of Linux agent nodes.
localDNSProfile LocalDNSProfileResponse: Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
maxCount Integer: The maximum number of nodes for auto-scaling
maxPods Integer: The maximum number of pods that can run on a node.
messageOfTheDay String: Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
minCount Integer: The minimum number of nodes for auto-scaling
mode String: The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
networkProfile AgentPoolNetworkProfileResponse: Network-related settings of an agent pool.
nodeLabels Map<String,String>: The node labels to be persisted across all nodes in agent pool.
nodePublicIPPrefixID String: The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
nodeTaints List<String>: The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
orchestratorVersion String: The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
osDiskSizeGB Integer: OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
osDiskType String: The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
osSKU String: Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
osType String: The operating system type. The default is Linux.
podIPAllocationMode String: Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
podSubnetID String: The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
powerState PowerStateResponse: Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
proximityPlacementGroupID String: The ID for Proximity Placement Group.
scaleDownMode String: The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
scaleSetEvictionPolicy String: The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
scaleSetPriority String: The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
securityProfile AgentPoolSecurityProfileResponse: The security settings of an agent pool.
spotMaxPrice Double: The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
status AgentPoolStatusResponse: Contains read-only information about the Agent Pool.
tags Map<String,String>: The tags to be persisted on the agent pool virtual machine scale set.
type String: The type of Agent Pool.
upgradeSettings AgentPoolUpgradeSettingsResponse: Settings for upgrading the agentpool
virtualMachineNodesStatus List<VirtualMachineNodesResponse>: The status of nodes in a VirtualMachines agent pool.
virtualMachinesProfile VirtualMachinesProfileResponse: Specifications on VirtualMachines agent pool.
vmSize String: The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
vnetSubnetID String: The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
windowsProfile AgentPoolWindowsProfileResponse: The Windows agent pool's specific profile.
workloadRuntime String: Determines the type of workload a node can run.

currentOrchestratorVersion string: The version of Kubernetes the Agent Pool is running. If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
eTag string: Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
name string: Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
nodeImageVersion string: The version of node image
provisioningState string: The current deployment or provisioning state.
availabilityZones string[]: The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
capacityReservationGroupID string: AKS will associate the specified agent pool with the Capacity Reservation Group.
count number: Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
creationData CreationDataResponse: CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
enableAutoScaling boolean: Whether to enable auto-scaler
enableEncryptionAtHost boolean: Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
enableFIPS boolean: Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
enableNodePublicIP boolean: Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
enableUltraSSD boolean: Whether to enable UltraSSD
gatewayProfile AgentPoolGatewayProfileResponse: Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
gpuInstanceProfile string: GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
gpuProfile GPUProfileResponse: GPU settings for the Agent Pool.
hostGroupID string: The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
kubeletConfig KubeletConfigResponse: The Kubelet configuration on the agent pool nodes.
kubeletDiskType string: Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
linuxOSConfig LinuxOSConfigResponse: The OS configuration of Linux agent nodes.
localDNSProfile LocalDNSProfileResponse: Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
maxCount number: The maximum number of nodes for auto-scaling
maxPods number: The maximum number of pods that can run on a node.
messageOfTheDay string: Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
minCount number: The minimum number of nodes for auto-scaling
mode string: The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
networkProfile AgentPoolNetworkProfileResponse: Network-related settings of an agent pool.
nodeLabels {[key: string]: string}: The node labels to be persisted across all nodes in agent pool.
nodePublicIPPrefixID string: The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
nodeTaints string[]: The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
orchestratorVersion string: The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
osDiskSizeGB number: OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
osDiskType string: The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
osSKU string: Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
osType string: The operating system type. The default is Linux.
podIPAllocationMode string: Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
podSubnetID string: The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
powerState PowerStateResponse: Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
proximityPlacementGroupID string: The ID for Proximity Placement Group.
scaleDownMode string: The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
scaleSetEvictionPolicy string: The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
scaleSetPriority string: The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
securityProfile AgentPoolSecurityProfileResponse: The security settings of an agent pool.
spotMaxPrice number: The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
status AgentPoolStatusResponse: Contains read-only information about the Agent Pool.
tags {[key: string]: string}: The tags to be persisted on the agent pool virtual machine scale set.
type string: The type of Agent Pool.
upgradeSettings AgentPoolUpgradeSettingsResponse: Settings for upgrading the agentpool
virtualMachineNodesStatus VirtualMachineNodesResponse[]: The status of nodes in a VirtualMachines agent pool.
virtualMachinesProfile VirtualMachinesProfileResponse: Specifications on VirtualMachines agent pool.
vmSize string: The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
vnetSubnetID string: The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
windowsProfile AgentPoolWindowsProfileResponse: The Windows agent pool's specific profile.
workloadRuntime string: Determines the type of workload a node can run.

current_orchestrator_version str: The version of Kubernetes the Agent Pool is running. If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
e_tag str: Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
name str: Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
node_image_version str: The version of node image
provisioning_state str: The current deployment or provisioning state.
availability_zones Sequence[str]: The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
capacity_reservation_group_id str: AKS will associate the specified agent pool with the Capacity Reservation Group.
count int: Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
creation_data CreationDataResponse: CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
enable_auto_scaling bool: Whether to enable auto-scaler
enable_encryption_at_host bool: Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
enable_fips bool: Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
enable_node_public_ip bool: Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
enable_ultra_ssd bool: Whether to enable UltraSSD
gateway_profile AgentPoolGatewayProfileResponse: Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
gpu_instance_profile str: GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
gpu_profile GPUProfileResponse: GPU settings for the Agent Pool.
host_group_id str: The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
kubelet_config KubeletConfigResponse: The Kubelet configuration on the agent pool nodes.
kubelet_disk_type str: Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
linux_os_config LinuxOSConfigResponse: The OS configuration of Linux agent nodes.
local_dns_profile LocalDNSProfileResponse: Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
max_count int: The maximum number of nodes for auto-scaling
max_pods int: The maximum number of pods that can run on a node.
message_of_the_day str: Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
min_count int: The minimum number of nodes for auto-scaling
mode str: The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
network_profile AgentPoolNetworkProfileResponse: Network-related settings of an agent pool.
node_labels Mapping[str, str]: The node labels to be persisted across all nodes in agent pool.
node_public_ip_prefix_id str: The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
node_taints Sequence[str]: The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
orchestrator_version str: The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
os_disk_size_gb int: OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
os_disk_type str: The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
os_sku str: Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
os_type str: The operating system type. The default is Linux.
pod_ip_allocation_mode str: Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
pod_subnet_id str: The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
power_state PowerStateResponse: Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
proximity_placement_group_id str: The ID for Proximity Placement Group.
scale_down_mode str: The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
scale_set_eviction_policy str: The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
scale_set_priority str: The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
security_profile AgentPoolSecurityProfileResponse: The security settings of an agent pool.
spot_max_price float: The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
status AgentPoolStatusResponse: Contains read-only information about the Agent Pool.
tags Mapping[str, str]: The tags to be persisted on the agent pool virtual machine scale set.
type str: The type of Agent Pool.
upgrade_settings AgentPoolUpgradeSettingsResponse: Settings for upgrading the agentpool
virtual_machine_nodes_status Sequence[VirtualMachineNodesResponse]: The status of nodes in a VirtualMachines agent pool.
virtual_machines_profile VirtualMachinesProfileResponse: Specifications on VirtualMachines agent pool.
vm_size str: The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
vnet_subnet_id str: The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
windows_profile AgentPoolWindowsProfileResponse: The Windows agent pool's specific profile.
workload_runtime str: Determines the type of workload a node can run.

currentOrchestratorVersion String: The version of Kubernetes the Agent Pool is running. If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
eTag String: Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
name String: Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
nodeImageVersion String: The version of node image
provisioningState String: The current deployment or provisioning state.
availabilityZones List<String>: The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
capacityReservationGroupID String: AKS will associate the specified agent pool with the Capacity Reservation Group.
count Number: Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
creationData Property Map: CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
enableAutoScaling Boolean: Whether to enable auto-scaler
enableEncryptionAtHost Boolean: Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
enableFIPS Boolean: Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
enableNodePublicIP Boolean: Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
enableUltraSSD Boolean: Whether to enable UltraSSD
gatewayProfile Property Map: Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
gpuInstanceProfile String: GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
gpuProfile Property Map: GPU settings for the Agent Pool.
hostGroupID String: The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
kubeletConfig Property Map: The Kubelet configuration on the agent pool nodes.
kubeletDiskType String: Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
linuxOSConfig Property Map: The OS configuration of Linux agent nodes.
localDNSProfile Property Map: Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
maxCount Number: The maximum number of nodes for auto-scaling
maxPods Number: The maximum number of pods that can run on a node.
messageOfTheDay String: Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
minCount Number: The minimum number of nodes for auto-scaling
mode String: The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
networkProfile Property Map: Network-related settings of an agent pool.
nodeLabels Map<String>: The node labels to be persisted across all nodes in agent pool.
nodePublicIPPrefixID String: The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
nodeTaints List<String>: The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
orchestratorVersion String: The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
osDiskSizeGB Number: OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
osDiskType String: The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
osSKU String: Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
osType String: The operating system type. The default is Linux.
podIPAllocationMode String: Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
podSubnetID String: The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
powerState Property Map: Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
proximityPlacementGroupID String: The ID for Proximity Placement Group.
scaleDownMode String: The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
scaleSetEvictionPolicy String: The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
scaleSetPriority String: The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
securityProfile Property Map: The security settings of an agent pool.
spotMaxPrice Number: The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
status Property Map: Contains read-only information about the Agent Pool.
tags Map<String>: The tags to be persisted on the agent pool virtual machine scale set.
type String: The type of Agent Pool.
upgradeSettings Property Map: Settings for upgrading the agentpool
virtualMachineNodesStatus List<Property Map>: The status of nodes in a VirtualMachines agent pool.
virtualMachinesProfile Property Map: Specifications on VirtualMachines agent pool.
vmSize String: The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
vnetSubnetID String: The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
windowsProfile Property Map: The Windows agent pool's specific profile.
workloadRuntime String: Determines the type of workload a node can run.

ManagedClusterAutoUpgradeProfileResponse

NodeOSUpgradeChannel string: Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
UpgradeChannel string: The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.

NodeOSUpgradeChannel string: Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
UpgradeChannel string: The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.

nodeOSUpgradeChannel String: Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
upgradeChannel String: The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.

nodeOSUpgradeChannel string: Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
upgradeChannel string: The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.

node_os_upgrade_channel str: Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
upgrade_channel str: The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.

nodeOSUpgradeChannel String: Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
upgradeChannel String: The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.

ManagedClusterAzureMonitorProfileKubeStateMetricsResponse

MetricAnnotationsAllowList string: Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
MetricLabelsAllowlist string: Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.

MetricAnnotationsAllowList string: Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
MetricLabelsAllowlist string: Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.

metricAnnotationsAllowList String: Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
metricLabelsAllowlist String: Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.

metricAnnotationsAllowList string: Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
metricLabelsAllowlist string: Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.

metric_annotations_allow_list str: Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
metric_labels_allowlist str: Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.

metricAnnotationsAllowList String: Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
metricLabelsAllowlist String: Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.

ManagedClusterAzureMonitorProfileMetricsResponse

Enabled bool: Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
KubeStateMetrics Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterAzureMonitorProfileKubeStateMetricsResponse: Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.

Enabled bool: Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
KubeStateMetrics ManagedClusterAzureMonitorProfileKubeStateMetricsResponse: Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.

enabled Boolean: Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
kubeStateMetrics ManagedClusterAzureMonitorProfileKubeStateMetricsResponse: Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.

enabled boolean: Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
kubeStateMetrics ManagedClusterAzureMonitorProfileKubeStateMetricsResponse: Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.

enabled bool: Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
kube_state_metrics ManagedClusterAzureMonitorProfileKubeStateMetricsResponse: Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.

enabled Boolean: Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
kubeStateMetrics Property Map: Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.

ManagedClusterAzureMonitorProfileResponse

Metrics Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterAzureMonitorProfileMetricsResponse: Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.

Metrics ManagedClusterAzureMonitorProfileMetricsResponse: Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.

metrics ManagedClusterAzureMonitorProfileMetricsResponse: Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.

metrics ManagedClusterAzureMonitorProfileMetricsResponse: Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.

metrics ManagedClusterAzureMonitorProfileMetricsResponse: Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.

metrics Property Map: Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.

ManagedClusterBootstrapProfileResponse

ArtifactSource string: The artifact source. The source where the artifacts are downloaded from.
ContainerRegistryId string: The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.

ArtifactSource string: The artifact source. The source where the artifacts are downloaded from.
ContainerRegistryId string: The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.

artifactSource String: The artifact source. The source where the artifacts are downloaded from.
containerRegistryId String: The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.

artifactSource string: The artifact source. The source where the artifacts are downloaded from.
containerRegistryId string: The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.

artifact_source str: The artifact source. The source where the artifacts are downloaded from.
container_registry_id str: The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.

artifactSource String: The artifact source. The source where the artifacts are downloaded from.
containerRegistryId String: The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.

ManagedClusterCostAnalysisResponse

Enabled bool: Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.

Enabled bool: Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.

enabled Boolean: Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.

enabled boolean: Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.

enabled bool: Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.

enabled Boolean: Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.

ManagedClusterHTTPProxyConfigResponse

HttpProxy string: The HTTP proxy server endpoint to use.
HttpsProxy string: The HTTPS proxy server endpoint to use.
NoProxy List<string>: The endpoints that should not go through proxy.
TrustedCa string: Alternative CA cert to use for connecting to proxy servers.

HttpProxy string: The HTTP proxy server endpoint to use.
HttpsProxy string: The HTTPS proxy server endpoint to use.
NoProxy []string: The endpoints that should not go through proxy.
TrustedCa string: Alternative CA cert to use for connecting to proxy servers.

httpProxy String: The HTTP proxy server endpoint to use.
httpsProxy String: The HTTPS proxy server endpoint to use.
noProxy List<String>: The endpoints that should not go through proxy.
trustedCa String: Alternative CA cert to use for connecting to proxy servers.

httpProxy string: The HTTP proxy server endpoint to use.
httpsProxy string: The HTTPS proxy server endpoint to use.
noProxy string[]: The endpoints that should not go through proxy.
trustedCa string: Alternative CA cert to use for connecting to proxy servers.

http_proxy str: The HTTP proxy server endpoint to use.
https_proxy str: The HTTPS proxy server endpoint to use.
no_proxy Sequence[str]: The endpoints that should not go through proxy.
trusted_ca str: Alternative CA cert to use for connecting to proxy servers.

httpProxy String: The HTTP proxy server endpoint to use.
httpsProxy String: The HTTPS proxy server endpoint to use.
noProxy List<String>: The endpoints that should not go through proxy.
trustedCa String: Alternative CA cert to use for connecting to proxy servers.

ManagedClusterIdentityResponse

PrincipalId string: The principal id of the system assigned identity which is used by master components.
TenantId string: The tenant id of the system assigned identity which is used by master components.
DelegatedResources Dictionary<string, Pulumi.AzureNative.ContainerService.Inputs.DelegatedResourceResponse>: The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
Type string: The type of identity used for the managed cluster. For more information see use managed identities in AKS.
UserAssignedIdentities Dictionary<string, Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterIdentityResponseUserAssignedIdentities>: The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.

PrincipalId string: The principal id of the system assigned identity which is used by master components.
TenantId string: The tenant id of the system assigned identity which is used by master components.
DelegatedResources map[string]DelegatedResourceResponse: The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
Type string: The type of identity used for the managed cluster. For more information see use managed identities in AKS.
UserAssignedIdentities map[string]ManagedClusterIdentityResponseUserAssignedIdentities: The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.

principalId String: The principal id of the system assigned identity which is used by master components.
tenantId String: The tenant id of the system assigned identity which is used by master components.
delegatedResources Map<String,DelegatedResourceResponse>: The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
type String: The type of identity used for the managed cluster. For more information see use managed identities in AKS.
userAssignedIdentities Map<String,ManagedClusterIdentityResponseUserAssignedIdentities>: The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.

principalId string: The principal id of the system assigned identity which is used by master components.
tenantId string: The tenant id of the system assigned identity which is used by master components.
delegatedResources {[key: string]: DelegatedResourceResponse}: The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
type string: The type of identity used for the managed cluster. For more information see use managed identities in AKS.
userAssignedIdentities {[key: string]: ManagedClusterIdentityResponseUserAssignedIdentities}: The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.

principal_id str: The principal id of the system assigned identity which is used by master components.
tenant_id str: The tenant id of the system assigned identity which is used by master components.
delegated_resources Mapping[str, DelegatedResourceResponse]: The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
type str: The type of identity used for the managed cluster. For more information see use managed identities in AKS.
user_assigned_identities Mapping[str, ManagedClusterIdentityResponseUserAssignedIdentities]: The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.

principalId String: The principal id of the system assigned identity which is used by master components.
tenantId String: The tenant id of the system assigned identity which is used by master components.
delegatedResources Map<Property Map>: The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
type String: The type of identity used for the managed cluster. For more information see use managed identities in AKS.
userAssignedIdentities Map<Property Map>: The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.

ManagedClusterIdentityResponseUserAssignedIdentities

ClientId string: The client id of user assigned identity.
PrincipalId string: The principal id of user assigned identity.

ClientId string: The client id of user assigned identity.
PrincipalId string: The principal id of user assigned identity.

clientId String: The client id of user assigned identity.
principalId String: The principal id of user assigned identity.

clientId string: The client id of user assigned identity.
principalId string: The principal id of user assigned identity.

client_id str: The client id of user assigned identity.
principal_id str: The principal id of user assigned identity.

clientId String: The client id of user assigned identity.
principalId String: The principal id of user assigned identity.

ManagedClusterIngressProfileNginxResponse

DefaultIngressControllerType string: Ingress type for the default NginxIngressController custom resource

DefaultIngressControllerType string: Ingress type for the default NginxIngressController custom resource

defaultIngressControllerType String: Ingress type for the default NginxIngressController custom resource

defaultIngressControllerType string: Ingress type for the default NginxIngressController custom resource

default_ingress_controller_type str: Ingress type for the default NginxIngressController custom resource

defaultIngressControllerType String: Ingress type for the default NginxIngressController custom resource

ManagedClusterIngressProfileResponse

WebAppRouting Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterIngressProfileWebAppRoutingResponse: App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.

WebAppRouting ManagedClusterIngressProfileWebAppRoutingResponse: App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.

webAppRouting ManagedClusterIngressProfileWebAppRoutingResponse: App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.

webAppRouting ManagedClusterIngressProfileWebAppRoutingResponse: App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.

web_app_routing ManagedClusterIngressProfileWebAppRoutingResponse: App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.

webAppRouting Property Map: App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.

ManagedClusterIngressProfileWebAppRoutingResponse

Identity Pulumi.AzureNative.ContainerService.Inputs.UserAssignedIdentityResponse: Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
DnsZoneResourceIds List<string>: Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
Enabled bool: Whether to enable the Application Routing add-on.
Nginx Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterIngressProfileNginxResponse: Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.

Identity UserAssignedIdentityResponse: Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
DnsZoneResourceIds []string: Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
Enabled bool: Whether to enable the Application Routing add-on.
Nginx ManagedClusterIngressProfileNginxResponse: Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.

identity UserAssignedIdentityResponse: Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
dnsZoneResourceIds List<String>: Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
enabled Boolean: Whether to enable the Application Routing add-on.
nginx ManagedClusterIngressProfileNginxResponse: Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.

identity UserAssignedIdentityResponse: Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
dnsZoneResourceIds string[]: Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
enabled boolean: Whether to enable the Application Routing add-on.
nginx ManagedClusterIngressProfileNginxResponse: Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.

identity UserAssignedIdentityResponse: Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
dns_zone_resource_ids Sequence[str]: Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
enabled bool: Whether to enable the Application Routing add-on.
nginx ManagedClusterIngressProfileNginxResponse: Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.

identity Property Map: Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
dnsZoneResourceIds List<String>: Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
enabled Boolean: Whether to enable the Application Routing add-on.
nginx Property Map: Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.

ManagedClusterLoadBalancerProfileResponse

EffectiveOutboundIPs List<Pulumi.AzureNative.ContainerService.Inputs.ResourceReferenceResponse>: The effective outbound IP resources of the cluster load balancer.
AllocatedOutboundPorts int: The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
BackendPoolType string: The type of the managed inbound Load Balancer BackendPool.
EnableMultipleStandardLoadBalancers bool: Enable multiple standard load balancers per AKS cluster or not.
IdleTimeoutInMinutes int: Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
ManagedOutboundIPs Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileResponseManagedOutboundIPs: Desired managed outbound IPs for the cluster load balancer.
OutboundIPPrefixes Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileResponseOutboundIPPrefixes: Desired outbound IP Prefix resources for the cluster load balancer.
OutboundIPs Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileResponseOutboundIPs: Desired outbound IP resources for the cluster load balancer.

EffectiveOutboundIPs []ResourceReferenceResponse: The effective outbound IP resources of the cluster load balancer.
AllocatedOutboundPorts int: The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
BackendPoolType string: The type of the managed inbound Load Balancer BackendPool.
EnableMultipleStandardLoadBalancers bool: Enable multiple standard load balancers per AKS cluster or not.
IdleTimeoutInMinutes int: Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
ManagedOutboundIPs ManagedClusterLoadBalancerProfileResponseManagedOutboundIPs: Desired managed outbound IPs for the cluster load balancer.
OutboundIPPrefixes ManagedClusterLoadBalancerProfileResponseOutboundIPPrefixes: Desired outbound IP Prefix resources for the cluster load balancer.
OutboundIPs ManagedClusterLoadBalancerProfileResponseOutboundIPs: Desired outbound IP resources for the cluster load balancer.

effectiveOutboundIPs List<ResourceReferenceResponse>: The effective outbound IP resources of the cluster load balancer.
allocatedOutboundPorts Integer: The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
backendPoolType String: The type of the managed inbound Load Balancer BackendPool.
enableMultipleStandardLoadBalancers Boolean: Enable multiple standard load balancers per AKS cluster or not.
idleTimeoutInMinutes Integer: Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
managedOutboundIPs ManagedClusterLoadBalancerProfileResponseManagedOutboundIPs: Desired managed outbound IPs for the cluster load balancer.
outboundIPPrefixes ManagedClusterLoadBalancerProfileResponseOutboundIPPrefixes: Desired outbound IP Prefix resources for the cluster load balancer.
outboundIPs ManagedClusterLoadBalancerProfileResponseOutboundIPs: Desired outbound IP resources for the cluster load balancer.

effectiveOutboundIPs ResourceReferenceResponse[]: The effective outbound IP resources of the cluster load balancer.
allocatedOutboundPorts number: The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
backendPoolType string: The type of the managed inbound Load Balancer BackendPool.
enableMultipleStandardLoadBalancers boolean: Enable multiple standard load balancers per AKS cluster or not.
idleTimeoutInMinutes number: Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
managedOutboundIPs ManagedClusterLoadBalancerProfileResponseManagedOutboundIPs: Desired managed outbound IPs for the cluster load balancer.
outboundIPPrefixes ManagedClusterLoadBalancerProfileResponseOutboundIPPrefixes: Desired outbound IP Prefix resources for the cluster load balancer.
outboundIPs ManagedClusterLoadBalancerProfileResponseOutboundIPs: Desired outbound IP resources for the cluster load balancer.

effective_outbound_ips Sequence[ResourceReferenceResponse]: The effective outbound IP resources of the cluster load balancer.
allocated_outbound_ports int: The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
backend_pool_type str: The type of the managed inbound Load Balancer BackendPool.
enable_multiple_standard_load_balancers bool: Enable multiple standard load balancers per AKS cluster or not.
idle_timeout_in_minutes int: Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
managed_outbound_ips ManagedClusterLoadBalancerProfileResponseManagedOutboundIPs: Desired managed outbound IPs for the cluster load balancer.
outbound_ip_prefixes ManagedClusterLoadBalancerProfileResponseOutboundIPPrefixes: Desired outbound IP Prefix resources for the cluster load balancer.
outbound_ips ManagedClusterLoadBalancerProfileResponseOutboundIPs: Desired outbound IP resources for the cluster load balancer.

effectiveOutboundIPs List<Property Map>: The effective outbound IP resources of the cluster load balancer.
allocatedOutboundPorts Number: The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
backendPoolType String: The type of the managed inbound Load Balancer BackendPool.
enableMultipleStandardLoadBalancers Boolean: Enable multiple standard load balancers per AKS cluster or not.
idleTimeoutInMinutes Number: Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
managedOutboundIPs Property Map: Desired managed outbound IPs for the cluster load balancer.
outboundIPPrefixes Property Map: Desired outbound IP Prefix resources for the cluster load balancer.
outboundIPs Property Map: Desired outbound IP resources for the cluster load balancer.

ManagedClusterLoadBalancerProfileResponseManagedOutboundIPs

Count int: The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
CountIPv6 int: The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.

Count int: The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
CountIPv6 int: The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.

count Integer: The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
countIPv6 Integer: The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.

count number: The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
countIPv6 number: The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.

count int: The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
count_i_pv6 int: The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.

count Number: The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
countIPv6 Number: The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.

ManagedClusterLoadBalancerProfileResponseOutboundIPPrefixes

PublicIPPrefixes List<Pulumi.AzureNative.ContainerService.Inputs.ResourceReferenceResponse>: A list of public IP prefix resources.

PublicIPPrefixes []ResourceReferenceResponse: A list of public IP prefix resources.

publicIPPrefixes List<ResourceReferenceResponse>: A list of public IP prefix resources.

publicIPPrefixes ResourceReferenceResponse[]: A list of public IP prefix resources.

public_ip_prefixes Sequence[ResourceReferenceResponse]: A list of public IP prefix resources.

publicIPPrefixes List<Property Map>: A list of public IP prefix resources.

ManagedClusterLoadBalancerProfileResponseOutboundIPs

PublicIPs List<Pulumi.AzureNative.ContainerService.Inputs.ResourceReferenceResponse>: A list of public IP resources.

PublicIPs []ResourceReferenceResponse: A list of public IP resources.

publicIPs List<ResourceReferenceResponse>: A list of public IP resources.

publicIPs ResourceReferenceResponse[]: A list of public IP resources.

public_ips Sequence[ResourceReferenceResponse]: A list of public IP resources.

publicIPs List<Property Map>: A list of public IP resources.

ManagedClusterManagedOutboundIPProfileResponse

Count int: The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.

Count int: The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.

count Integer: The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.

count number: The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.

count int: The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.

count Number: The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.

ManagedClusterMetricsProfileResponse

CostAnalysis Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterCostAnalysisResponse: The configuration for detailed per-Kubernetes resource cost analysis.

CostAnalysis ManagedClusterCostAnalysisResponse: The configuration for detailed per-Kubernetes resource cost analysis.

costAnalysis ManagedClusterCostAnalysisResponse: The configuration for detailed per-Kubernetes resource cost analysis.

costAnalysis ManagedClusterCostAnalysisResponse: The configuration for detailed per-Kubernetes resource cost analysis.

cost_analysis ManagedClusterCostAnalysisResponse: The configuration for detailed per-Kubernetes resource cost analysis.

costAnalysis Property Map: The configuration for detailed per-Kubernetes resource cost analysis.

ManagedClusterNATGatewayProfileResponse

EffectiveOutboundIPs List<Pulumi.AzureNative.ContainerService.Inputs.ResourceReferenceResponse>: The effective outbound IP resources of the cluster NAT gateway.
IdleTimeoutInMinutes int: Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
ManagedOutboundIPProfile Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterManagedOutboundIPProfileResponse: Profile of the managed outbound IP resources of the cluster NAT gateway.

EffectiveOutboundIPs []ResourceReferenceResponse: The effective outbound IP resources of the cluster NAT gateway.
IdleTimeoutInMinutes int: Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
ManagedOutboundIPProfile ManagedClusterManagedOutboundIPProfileResponse: Profile of the managed outbound IP resources of the cluster NAT gateway.

effectiveOutboundIPs List<ResourceReferenceResponse>: The effective outbound IP resources of the cluster NAT gateway.
idleTimeoutInMinutes Integer: Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
managedOutboundIPProfile ManagedClusterManagedOutboundIPProfileResponse: Profile of the managed outbound IP resources of the cluster NAT gateway.

effectiveOutboundIPs ResourceReferenceResponse[]: The effective outbound IP resources of the cluster NAT gateway.
idleTimeoutInMinutes number: Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
managedOutboundIPProfile ManagedClusterManagedOutboundIPProfileResponse: Profile of the managed outbound IP resources of the cluster NAT gateway.

effective_outbound_ips Sequence[ResourceReferenceResponse]: The effective outbound IP resources of the cluster NAT gateway.
idle_timeout_in_minutes int: Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
managed_outbound_ip_profile ManagedClusterManagedOutboundIPProfileResponse: Profile of the managed outbound IP resources of the cluster NAT gateway.

effectiveOutboundIPs List<Property Map>: The effective outbound IP resources of the cluster NAT gateway.
idleTimeoutInMinutes Number: Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
managedOutboundIPProfile Property Map: Profile of the managed outbound IP resources of the cluster NAT gateway.

ManagedClusterNodeProvisioningProfileResponse

DefaultNodePools string: The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
Mode string: The node provisioning mode. If not specified, the default is Manual.

DefaultNodePools string: The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
Mode string: The node provisioning mode. If not specified, the default is Manual.

defaultNodePools String: The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
mode String: The node provisioning mode. If not specified, the default is Manual.

defaultNodePools string: The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
mode string: The node provisioning mode. If not specified, the default is Manual.

default_node_pools str: The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
mode str: The node provisioning mode. If not specified, the default is Manual.

defaultNodePools String: The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
mode String: The node provisioning mode. If not specified, the default is Manual.

ManagedClusterNodeResourceGroupProfileResponse

RestrictionLevel string: The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'

RestrictionLevel string: The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'

restrictionLevel String: The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'

restrictionLevel string: The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'

restriction_level str: The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'

restrictionLevel String: The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'

ManagedClusterOIDCIssuerProfileResponse

IssuerURL string: The OIDC issuer url of the Managed Cluster.
Enabled bool: Whether the OIDC issuer is enabled.

IssuerURL string: The OIDC issuer url of the Managed Cluster.
Enabled bool: Whether the OIDC issuer is enabled.

issuerURL String: The OIDC issuer url of the Managed Cluster.
enabled Boolean: Whether the OIDC issuer is enabled.

issuerURL string: The OIDC issuer url of the Managed Cluster.
enabled boolean: Whether the OIDC issuer is enabled.

issuer_url str: The OIDC issuer url of the Managed Cluster.
enabled bool: Whether the OIDC issuer is enabled.

issuerURL String: The OIDC issuer url of the Managed Cluster.
enabled Boolean: Whether the OIDC issuer is enabled.

ManagedClusterPodIdentityExceptionResponse

Name string: The name of the pod identity exception.
Namespace string: The namespace of the pod identity exception.
PodLabels Dictionary<string, string>: The pod labels to match.

Name string: The name of the pod identity exception.
Namespace string: The namespace of the pod identity exception.
PodLabels map[string]string: The pod labels to match.

name String: The name of the pod identity exception.
namespace String: The namespace of the pod identity exception.
podLabels Map<String,String>: The pod labels to match.

name string: The name of the pod identity exception.
namespace string: The namespace of the pod identity exception.
podLabels {[key: string]: string}: The pod labels to match.

name str: The name of the pod identity exception.
namespace str: The namespace of the pod identity exception.
pod_labels Mapping[str, str]: The pod labels to match.

name String: The name of the pod identity exception.
namespace String: The namespace of the pod identity exception.
podLabels Map<String>: The pod labels to match.

ManagedClusterPodIdentityProfileResponse

AllowNetworkPluginKubenet bool: Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
Enabled bool: Whether the pod identity addon is enabled.
UserAssignedIdentities List<Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityResponse>: The pod identities to use in the cluster.
UserAssignedIdentityExceptions List<Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityExceptionResponse>: The pod identity exceptions to allow.

AllowNetworkPluginKubenet bool: Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
Enabled bool: Whether the pod identity addon is enabled.
UserAssignedIdentities []ManagedClusterPodIdentityResponse: The pod identities to use in the cluster.
UserAssignedIdentityExceptions []ManagedClusterPodIdentityExceptionResponse: The pod identity exceptions to allow.

allowNetworkPluginKubenet Boolean: Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
enabled Boolean: Whether the pod identity addon is enabled.
userAssignedIdentities List<ManagedClusterPodIdentityResponse>: The pod identities to use in the cluster.
userAssignedIdentityExceptions List<ManagedClusterPodIdentityExceptionResponse>: The pod identity exceptions to allow.

allowNetworkPluginKubenet boolean: Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
enabled boolean: Whether the pod identity addon is enabled.
userAssignedIdentities ManagedClusterPodIdentityResponse[]: The pod identities to use in the cluster.
userAssignedIdentityExceptions ManagedClusterPodIdentityExceptionResponse[]: The pod identity exceptions to allow.

allow_network_plugin_kubenet bool: Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
enabled bool: Whether the pod identity addon is enabled.
user_assigned_identities Sequence[ManagedClusterPodIdentityResponse]: The pod identities to use in the cluster.
user_assigned_identity_exceptions Sequence[ManagedClusterPodIdentityExceptionResponse]: The pod identity exceptions to allow.

allowNetworkPluginKubenet Boolean: Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
enabled Boolean: Whether the pod identity addon is enabled.
userAssignedIdentities List<Property Map>: The pod identities to use in the cluster.
userAssignedIdentityExceptions List<Property Map>: The pod identity exceptions to allow.

ManagedClusterPodIdentityProvisioningErrorBodyResponse

Code string: An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
Details List<Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityProvisioningErrorBodyResponse>: A list of additional details about the error.
Message string: A message describing the error, intended to be suitable for display in a user interface.
Target string: The target of the particular error. For example, the name of the property in error.

Code string: An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
Details []ManagedClusterPodIdentityProvisioningErrorBodyResponse: A list of additional details about the error.
Message string: A message describing the error, intended to be suitable for display in a user interface.
Target string: The target of the particular error. For example, the name of the property in error.

code String: An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
details List<ManagedClusterPodIdentityProvisioningErrorBodyResponse>: A list of additional details about the error.
message String: A message describing the error, intended to be suitable for display in a user interface.
target String: The target of the particular error. For example, the name of the property in error.

code string: An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
details ManagedClusterPodIdentityProvisioningErrorBodyResponse[]: A list of additional details about the error.
message string: A message describing the error, intended to be suitable for display in a user interface.
target string: The target of the particular error. For example, the name of the property in error.

code str: An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
details Sequence[ManagedClusterPodIdentityProvisioningErrorBodyResponse]: A list of additional details about the error.
message str: A message describing the error, intended to be suitable for display in a user interface.
target str: The target of the particular error. For example, the name of the property in error.

code String: An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
details List<Property Map>: A list of additional details about the error.
message String: A message describing the error, intended to be suitable for display in a user interface.
target String: The target of the particular error. For example, the name of the property in error.

ManagedClusterPodIdentityProvisioningErrorResponse

Error Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityProvisioningErrorBodyResponse: Details about the error.

Error ManagedClusterPodIdentityProvisioningErrorBodyResponse: Details about the error.

error ManagedClusterPodIdentityProvisioningErrorBodyResponse: Details about the error.

error ManagedClusterPodIdentityProvisioningErrorBodyResponse: Details about the error.

error ManagedClusterPodIdentityProvisioningErrorBodyResponse: Details about the error.

error Property Map: Details about the error.

ManagedClusterPodIdentityResponse

Identity Pulumi.AzureNative.ContainerService.Inputs.UserAssignedIdentityResponse: The user assigned identity details.
Name string: The name of the pod identity.
Namespace string: The namespace of the pod identity.
ProvisioningInfo Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityResponseProvisioningInfo
ProvisioningState string: The current provisioning state of the pod identity.
BindingSelector string: The binding selector to use for the AzureIdentityBinding resource.

Identity UserAssignedIdentityResponse: The user assigned identity details.
Name string: The name of the pod identity.
Namespace string: The namespace of the pod identity.
ProvisioningInfo ManagedClusterPodIdentityResponseProvisioningInfo
ProvisioningState string: The current provisioning state of the pod identity.
BindingSelector string: The binding selector to use for the AzureIdentityBinding resource.

identity UserAssignedIdentityResponse: The user assigned identity details.
name String: The name of the pod identity.
namespace String: The namespace of the pod identity.
provisioningInfo ManagedClusterPodIdentityResponseProvisioningInfo
provisioningState String: The current provisioning state of the pod identity.
bindingSelector String: The binding selector to use for the AzureIdentityBinding resource.

identity UserAssignedIdentityResponse: The user assigned identity details.
name string: The name of the pod identity.
namespace string: The namespace of the pod identity.
provisioningInfo ManagedClusterPodIdentityResponseProvisioningInfo
provisioningState string: The current provisioning state of the pod identity.
bindingSelector string: The binding selector to use for the AzureIdentityBinding resource.

identity UserAssignedIdentityResponse: The user assigned identity details.
name str: The name of the pod identity.
namespace str: The namespace of the pod identity.
provisioning_info ManagedClusterPodIdentityResponseProvisioningInfo
provisioning_state str: The current provisioning state of the pod identity.
binding_selector str: The binding selector to use for the AzureIdentityBinding resource.

identity Property Map: The user assigned identity details.
name String: The name of the pod identity.
namespace String: The namespace of the pod identity.
provisioningInfo Property Map
provisioningState String: The current provisioning state of the pod identity.
bindingSelector String: The binding selector to use for the AzureIdentityBinding resource.

ManagedClusterPodIdentityResponseProvisioningInfo

Error Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityProvisioningErrorResponse: Pod identity assignment error (if any).

Error ManagedClusterPodIdentityProvisioningErrorResponse: Pod identity assignment error (if any).

error ManagedClusterPodIdentityProvisioningErrorResponse: Pod identity assignment error (if any).

error ManagedClusterPodIdentityProvisioningErrorResponse: Pod identity assignment error (if any).

error ManagedClusterPodIdentityProvisioningErrorResponse: Pod identity assignment error (if any).

error Property Map: Pod identity assignment error (if any).

ManagedClusterPropertiesResponseAutoScalerProfile

BalanceSimilarNodeGroups string: Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
DaemonsetEvictionForEmptyNodes bool: DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
DaemonsetEvictionForOccupiedNodes bool: DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
Expander string: The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
IgnoreDaemonsetsUtilization bool: Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
MaxEmptyBulkDelete string: The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
MaxGracefulTerminationSec string: The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
MaxNodeProvisionTime string: The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
MaxTotalUnreadyPercentage string: The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
NewPodScaleUpDelay string: Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
OkTotalUnreadyCount string: The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
ScaleDownDelayAfterAdd string: How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
ScaleDownDelayAfterDelete string: How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
ScaleDownDelayAfterFailure string: How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
ScaleDownUnneededTime string: How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
ScaleDownUnreadyTime string: How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
ScaleDownUtilizationThreshold string: Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
ScanInterval string: How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
SkipNodesWithLocalStorage string: If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
SkipNodesWithSystemPods string: If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.

BalanceSimilarNodeGroups string: Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
DaemonsetEvictionForEmptyNodes bool: DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
DaemonsetEvictionForOccupiedNodes bool: DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
Expander string: The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
IgnoreDaemonsetsUtilization bool: Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
MaxEmptyBulkDelete string: The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
MaxGracefulTerminationSec string: The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
MaxNodeProvisionTime string: The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
MaxTotalUnreadyPercentage string: The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
NewPodScaleUpDelay string: Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
OkTotalUnreadyCount string: The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
ScaleDownDelayAfterAdd string: How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
ScaleDownDelayAfterDelete string: How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
ScaleDownDelayAfterFailure string: How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
ScaleDownUnneededTime string: How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
ScaleDownUnreadyTime string: How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
ScaleDownUtilizationThreshold string: Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
ScanInterval string: How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
SkipNodesWithLocalStorage string: If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
SkipNodesWithSystemPods string: If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.

balanceSimilarNodeGroups String: Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
daemonsetEvictionForEmptyNodes Boolean: DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
daemonsetEvictionForOccupiedNodes Boolean: DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
expander String: The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
ignoreDaemonsetsUtilization Boolean: Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
maxEmptyBulkDelete String: The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
maxGracefulTerminationSec String: The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
maxNodeProvisionTime String: The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
maxTotalUnreadyPercentage String: The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
newPodScaleUpDelay String: Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
okTotalUnreadyCount String: The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
scaleDownDelayAfterAdd String: How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownDelayAfterDelete String: How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownDelayAfterFailure String: How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownUnneededTime String: How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownUnreadyTime String: How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownUtilizationThreshold String: Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
scanInterval String: How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
skipNodesWithLocalStorage String: If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
skipNodesWithSystemPods String: If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.

balanceSimilarNodeGroups string: Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
daemonsetEvictionForEmptyNodes boolean: DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
daemonsetEvictionForOccupiedNodes boolean: DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
expander string: The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
ignoreDaemonsetsUtilization boolean: Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
maxEmptyBulkDelete string: The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
maxGracefulTerminationSec string: The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
maxNodeProvisionTime string: The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
maxTotalUnreadyPercentage string: The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
newPodScaleUpDelay string: Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
okTotalUnreadyCount string: The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
scaleDownDelayAfterAdd string: How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownDelayAfterDelete string: How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownDelayAfterFailure string: How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownUnneededTime string: How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownUnreadyTime string: How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownUtilizationThreshold string: Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
scanInterval string: How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
skipNodesWithLocalStorage string: If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
skipNodesWithSystemPods string: If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.

balance_similar_node_groups str: Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
daemonset_eviction_for_empty_nodes bool: DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
daemonset_eviction_for_occupied_nodes bool: DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
expander str: The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
ignore_daemonsets_utilization bool: Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
max_empty_bulk_delete str: The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
max_graceful_termination_sec str: The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
max_node_provision_time str: The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
max_total_unready_percentage str: The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
new_pod_scale_up_delay str: Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
ok_total_unready_count str: The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
scale_down_delay_after_add str: How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scale_down_delay_after_delete str: How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scale_down_delay_after_failure str: How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scale_down_unneeded_time str: How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scale_down_unready_time str: How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scale_down_utilization_threshold str: Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
scan_interval str: How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
skip_nodes_with_local_storage str: If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
skip_nodes_with_system_pods str: If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.

balanceSimilarNodeGroups String: Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
daemonsetEvictionForEmptyNodes Boolean: DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
daemonsetEvictionForOccupiedNodes Boolean: DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
expander String: The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
ignoreDaemonsetsUtilization Boolean: Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
maxEmptyBulkDelete String: The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
maxGracefulTerminationSec String: The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
maxNodeProvisionTime String: The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
maxTotalUnreadyPercentage String: The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
newPodScaleUpDelay String: Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
okTotalUnreadyCount String: The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
scaleDownDelayAfterAdd String: How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownDelayAfterDelete String: How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownDelayAfterFailure String: How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownUnneededTime String: How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownUnreadyTime String: How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
scaleDownUtilizationThreshold String: Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
scanInterval String: How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
skipNodesWithLocalStorage String: If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
skipNodesWithSystemPods String: If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.

ManagedClusterSKUResponse

Name string: The name of a managed cluster SKU.
Tier string: If not specified, the default is 'Free'. See AKS Pricing Tier for more details.

Name string: The name of a managed cluster SKU.
Tier string: If not specified, the default is 'Free'. See AKS Pricing Tier for more details.

name String: The name of a managed cluster SKU.
tier String: If not specified, the default is 'Free'. See AKS Pricing Tier for more details.

name string: The name of a managed cluster SKU.
tier string: If not specified, the default is 'Free'. See AKS Pricing Tier for more details.

name str: The name of a managed cluster SKU.
tier str: If not specified, the default is 'Free'. See AKS Pricing Tier for more details.

name String: The name of a managed cluster SKU.
tier String: If not specified, the default is 'Free'. See AKS Pricing Tier for more details.

ManagedClusterSecurityProfileDefenderResponse

LogAnalyticsWorkspaceResourceId string: Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
SecurityMonitoring Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileDefenderSecurityMonitoringResponse: Microsoft Defender threat detection for Cloud settings for the security profile.

LogAnalyticsWorkspaceResourceId string: Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
SecurityMonitoring ManagedClusterSecurityProfileDefenderSecurityMonitoringResponse: Microsoft Defender threat detection for Cloud settings for the security profile.

logAnalyticsWorkspaceResourceId String: Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
securityMonitoring ManagedClusterSecurityProfileDefenderSecurityMonitoringResponse: Microsoft Defender threat detection for Cloud settings for the security profile.

logAnalyticsWorkspaceResourceId string: Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
securityMonitoring ManagedClusterSecurityProfileDefenderSecurityMonitoringResponse: Microsoft Defender threat detection for Cloud settings for the security profile.

log_analytics_workspace_resource_id str: Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
security_monitoring ManagedClusterSecurityProfileDefenderSecurityMonitoringResponse: Microsoft Defender threat detection for Cloud settings for the security profile.

logAnalyticsWorkspaceResourceId String: Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
securityMonitoring Property Map: Microsoft Defender threat detection for Cloud settings for the security profile.

ManagedClusterSecurityProfileDefenderSecurityMonitoringResponse

Enabled bool: Whether to enable Defender threat detection

Enabled bool: Whether to enable Defender threat detection

enabled Boolean: Whether to enable Defender threat detection

enabled boolean: Whether to enable Defender threat detection

enabled bool: Whether to enable Defender threat detection

enabled Boolean: Whether to enable Defender threat detection

ManagedClusterSecurityProfileImageCleanerResponse

Enabled bool: Whether to enable Image Cleaner on AKS cluster.
IntervalHours int: Image Cleaner scanning interval in hours.

Enabled bool: Whether to enable Image Cleaner on AKS cluster.
IntervalHours int: Image Cleaner scanning interval in hours.

enabled Boolean: Whether to enable Image Cleaner on AKS cluster.
intervalHours Integer: Image Cleaner scanning interval in hours.

enabled boolean: Whether to enable Image Cleaner on AKS cluster.
intervalHours number: Image Cleaner scanning interval in hours.

enabled bool: Whether to enable Image Cleaner on AKS cluster.
interval_hours int: Image Cleaner scanning interval in hours.

enabled Boolean: Whether to enable Image Cleaner on AKS cluster.
intervalHours Number: Image Cleaner scanning interval in hours.

ManagedClusterSecurityProfileResponse

AzureKeyVaultKms Pulumi.AzureNative.ContainerService.Inputs.AzureKeyVaultKmsResponse: Azure Key Vault key management service settings for the security profile.
CustomCATrustCertificates List<string>: A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
Defender Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileDefenderResponse: Microsoft Defender settings for the security profile.
ImageCleaner Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileImageCleanerResponse: Image Cleaner settings for the security profile.
WorkloadIdentity Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileWorkloadIdentityResponse: Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.

AzureKeyVaultKms AzureKeyVaultKmsResponse: Azure Key Vault key management service settings for the security profile.
CustomCATrustCertificates []string: A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
Defender ManagedClusterSecurityProfileDefenderResponse: Microsoft Defender settings for the security profile.
ImageCleaner ManagedClusterSecurityProfileImageCleanerResponse: Image Cleaner settings for the security profile.
WorkloadIdentity ManagedClusterSecurityProfileWorkloadIdentityResponse: Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.

azureKeyVaultKms AzureKeyVaultKmsResponse: Azure Key Vault key management service settings for the security profile.
customCATrustCertificates List<String>: A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
defender ManagedClusterSecurityProfileDefenderResponse: Microsoft Defender settings for the security profile.
imageCleaner ManagedClusterSecurityProfileImageCleanerResponse: Image Cleaner settings for the security profile.
workloadIdentity ManagedClusterSecurityProfileWorkloadIdentityResponse: Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.

azureKeyVaultKms AzureKeyVaultKmsResponse: Azure Key Vault key management service settings for the security profile.
customCATrustCertificates string[]: A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
defender ManagedClusterSecurityProfileDefenderResponse: Microsoft Defender settings for the security profile.
imageCleaner ManagedClusterSecurityProfileImageCleanerResponse: Image Cleaner settings for the security profile.
workloadIdentity ManagedClusterSecurityProfileWorkloadIdentityResponse: Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.

azure_key_vault_kms AzureKeyVaultKmsResponse: Azure Key Vault key management service settings for the security profile.
custom_ca_trust_certificates Sequence[str]: A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
defender ManagedClusterSecurityProfileDefenderResponse: Microsoft Defender settings for the security profile.
image_cleaner ManagedClusterSecurityProfileImageCleanerResponse: Image Cleaner settings for the security profile.
workload_identity ManagedClusterSecurityProfileWorkloadIdentityResponse: Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.

azureKeyVaultKms Property Map: Azure Key Vault key management service settings for the security profile.
customCATrustCertificates List<String>: A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
defender Property Map: Microsoft Defender settings for the security profile.
imageCleaner Property Map: Image Cleaner settings for the security profile.
workloadIdentity Property Map: Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.

ManagedClusterSecurityProfileWorkloadIdentityResponse

Enabled bool: Whether to enable workload identity.

Enabled bool: Whether to enable workload identity.

enabled Boolean: Whether to enable workload identity.

enabled boolean: Whether to enable workload identity.

enabled bool: Whether to enable workload identity.

enabled Boolean: Whether to enable workload identity.

ManagedClusterServicePrincipalProfileResponse

ClientId string: The ID for the service principal.
Secret string: The secret password associated with the service principal in plain text.

ClientId string: The ID for the service principal.
Secret string: The secret password associated with the service principal in plain text.

clientId String: The ID for the service principal.
secret String: The secret password associated with the service principal in plain text.

clientId string: The ID for the service principal.
secret string: The secret password associated with the service principal in plain text.

client_id str: The ID for the service principal.
secret str: The secret password associated with the service principal in plain text.

clientId String: The ID for the service principal.
secret String: The secret password associated with the service principal in plain text.

ManagedClusterStaticEgressGatewayProfileResponse

Enabled bool: Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.

Enabled bool: Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.

enabled Boolean: Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.

enabled boolean: Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.

enabled bool: Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.

enabled Boolean: Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.

ManagedClusterStatusResponse

ProvisioningError Pulumi.AzureNative.ContainerService.Inputs.ErrorDetailResponse: The error details information of the managed cluster. Preserves the detailed info of failure. If there was no error, this field is omitted.

ProvisioningError ErrorDetailResponse: The error details information of the managed cluster. Preserves the detailed info of failure. If there was no error, this field is omitted.

provisioningError ErrorDetailResponse: The error details information of the managed cluster. Preserves the detailed info of failure. If there was no error, this field is omitted.

provisioningError ErrorDetailResponse: The error details information of the managed cluster. Preserves the detailed info of failure. If there was no error, this field is omitted.

provisioning_error ErrorDetailResponse: The error details information of the managed cluster. Preserves the detailed info of failure. If there was no error, this field is omitted.

provisioningError Property Map: The error details information of the managed cluster. Preserves the detailed info of failure. If there was no error, this field is omitted.

ManagedClusterStorageProfileBlobCSIDriverResponse

Enabled bool: Whether to enable AzureBlob CSI Driver. The default value is false.

Enabled bool: Whether to enable AzureBlob CSI Driver. The default value is false.

enabled Boolean: Whether to enable AzureBlob CSI Driver. The default value is false.

enabled boolean: Whether to enable AzureBlob CSI Driver. The default value is false.

enabled bool: Whether to enable AzureBlob CSI Driver. The default value is false.

enabled Boolean: Whether to enable AzureBlob CSI Driver. The default value is false.

ManagedClusterStorageProfileDiskCSIDriverResponse

Enabled bool: Whether to enable AzureDisk CSI Driver. The default value is true.

Enabled bool: Whether to enable AzureDisk CSI Driver. The default value is true.

enabled Boolean: Whether to enable AzureDisk CSI Driver. The default value is true.

enabled boolean: Whether to enable AzureDisk CSI Driver. The default value is true.

enabled bool: Whether to enable AzureDisk CSI Driver. The default value is true.

enabled Boolean: Whether to enable AzureDisk CSI Driver. The default value is true.

ManagedClusterStorageProfileFileCSIDriverResponse

Enabled bool: Whether to enable AzureFile CSI Driver. The default value is true.

Enabled bool: Whether to enable AzureFile CSI Driver. The default value is true.

enabled Boolean: Whether to enable AzureFile CSI Driver. The default value is true.

enabled boolean: Whether to enable AzureFile CSI Driver. The default value is true.

enabled bool: Whether to enable AzureFile CSI Driver. The default value is true.

enabled Boolean: Whether to enable AzureFile CSI Driver. The default value is true.

ManagedClusterStorageProfileResponse

BlobCSIDriver Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileBlobCSIDriverResponse: AzureBlob CSI Driver settings for the storage profile.
DiskCSIDriver Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileDiskCSIDriverResponse: AzureDisk CSI Driver settings for the storage profile.
FileCSIDriver Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileFileCSIDriverResponse: AzureFile CSI Driver settings for the storage profile.
SnapshotController Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileSnapshotControllerResponse: Snapshot Controller settings for the storage profile.

BlobCSIDriver ManagedClusterStorageProfileBlobCSIDriverResponse: AzureBlob CSI Driver settings for the storage profile.
DiskCSIDriver ManagedClusterStorageProfileDiskCSIDriverResponse: AzureDisk CSI Driver settings for the storage profile.
FileCSIDriver ManagedClusterStorageProfileFileCSIDriverResponse: AzureFile CSI Driver settings for the storage profile.
SnapshotController ManagedClusterStorageProfileSnapshotControllerResponse: Snapshot Controller settings for the storage profile.

blobCSIDriver ManagedClusterStorageProfileBlobCSIDriverResponse: AzureBlob CSI Driver settings for the storage profile.
diskCSIDriver ManagedClusterStorageProfileDiskCSIDriverResponse: AzureDisk CSI Driver settings for the storage profile.
fileCSIDriver ManagedClusterStorageProfileFileCSIDriverResponse: AzureFile CSI Driver settings for the storage profile.
snapshotController ManagedClusterStorageProfileSnapshotControllerResponse: Snapshot Controller settings for the storage profile.

blobCSIDriver ManagedClusterStorageProfileBlobCSIDriverResponse: AzureBlob CSI Driver settings for the storage profile.
diskCSIDriver ManagedClusterStorageProfileDiskCSIDriverResponse: AzureDisk CSI Driver settings for the storage profile.
fileCSIDriver ManagedClusterStorageProfileFileCSIDriverResponse: AzureFile CSI Driver settings for the storage profile.
snapshotController ManagedClusterStorageProfileSnapshotControllerResponse: Snapshot Controller settings for the storage profile.

blob_csi_driver ManagedClusterStorageProfileBlobCSIDriverResponse: AzureBlob CSI Driver settings for the storage profile.
disk_csi_driver ManagedClusterStorageProfileDiskCSIDriverResponse: AzureDisk CSI Driver settings for the storage profile.
file_csi_driver ManagedClusterStorageProfileFileCSIDriverResponse: AzureFile CSI Driver settings for the storage profile.
snapshot_controller ManagedClusterStorageProfileSnapshotControllerResponse: Snapshot Controller settings for the storage profile.

blobCSIDriver Property Map: AzureBlob CSI Driver settings for the storage profile.
diskCSIDriver Property Map: AzureDisk CSI Driver settings for the storage profile.
fileCSIDriver Property Map: AzureFile CSI Driver settings for the storage profile.
snapshotController Property Map: Snapshot Controller settings for the storage profile.

ManagedClusterStorageProfileSnapshotControllerResponse

Enabled bool: Whether to enable Snapshot Controller. The default value is true.

Enabled bool: Whether to enable Snapshot Controller. The default value is true.

enabled Boolean: Whether to enable Snapshot Controller. The default value is true.

enabled boolean: Whether to enable Snapshot Controller. The default value is true.

enabled bool: Whether to enable Snapshot Controller. The default value is true.

enabled Boolean: Whether to enable Snapshot Controller. The default value is true.

ManagedClusterWindowsProfileResponse

AdminUsername string: Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
AdminPassword string: Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
EnableCSIProxy bool: Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
GmsaProfile Pulumi.AzureNative.ContainerService.Inputs.WindowsGmsaProfileResponse: The Windows gMSA Profile in the Managed Cluster.
LicenseType string: The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.

AdminUsername string: Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
AdminPassword string: Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
EnableCSIProxy bool: Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
GmsaProfile WindowsGmsaProfileResponse: The Windows gMSA Profile in the Managed Cluster.
LicenseType string: The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.

adminUsername String: Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
adminPassword String: Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
enableCSIProxy Boolean: Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
gmsaProfile WindowsGmsaProfileResponse: The Windows gMSA Profile in the Managed Cluster.
licenseType String: The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.

adminUsername string: Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
adminPassword string: Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
enableCSIProxy boolean: Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
gmsaProfile WindowsGmsaProfileResponse: The Windows gMSA Profile in the Managed Cluster.
licenseType string: The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.

admin_username str: Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
admin_password str: Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
enable_csi_proxy bool: Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
gmsa_profile WindowsGmsaProfileResponse: The Windows gMSA Profile in the Managed Cluster.
license_type str: The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.

adminUsername String: Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
adminPassword String: Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
enableCSIProxy Boolean: Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
gmsaProfile Property Map: The Windows gMSA Profile in the Managed Cluster.
licenseType String: The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.

ManagedClusterWorkloadAutoScalerProfileKedaResponse

Enabled bool: Whether to enable KEDA.

Enabled bool: Whether to enable KEDA.

enabled Boolean: Whether to enable KEDA.

enabled boolean: Whether to enable KEDA.

enabled bool: Whether to enable KEDA.

enabled Boolean: Whether to enable KEDA.

ManagedClusterWorkloadAutoScalerProfileResponse

Keda Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterWorkloadAutoScalerProfileKedaResponse: KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
VerticalPodAutoscaler Pulumi.AzureNative.ContainerService.Inputs.ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerResponse: VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.

Keda ManagedClusterWorkloadAutoScalerProfileKedaResponse: KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
VerticalPodAutoscaler ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerResponse: VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.

keda ManagedClusterWorkloadAutoScalerProfileKedaResponse: KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
verticalPodAutoscaler ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerResponse: VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.

keda ManagedClusterWorkloadAutoScalerProfileKedaResponse: KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
verticalPodAutoscaler ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerResponse: VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.

keda ManagedClusterWorkloadAutoScalerProfileKedaResponse: KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
vertical_pod_autoscaler ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerResponse: VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.

keda Property Map: KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
verticalPodAutoscaler Property Map: VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.

ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerResponse

Enabled bool: Whether to enable VPA. Default value is false.

Enabled bool: Whether to enable VPA. Default value is false.

enabled Boolean: Whether to enable VPA. Default value is false.

enabled boolean: Whether to enable VPA. Default value is false.

enabled bool: Whether to enable VPA. Default value is false.

enabled Boolean: Whether to enable VPA. Default value is false.

ManualScaleProfileResponse

Count int: Number of nodes.
Size string: VM size that AKS will use when creating and scaling e.g. 'Standard_E4s_v3', 'Standard_E16s_v3' or 'Standard_D16s_v5'.

Count int: Number of nodes.
Size string: VM size that AKS will use when creating and scaling e.g. 'Standard_E4s_v3', 'Standard_E16s_v3' or 'Standard_D16s_v5'.

count Integer: Number of nodes.
size String: VM size that AKS will use when creating and scaling e.g. 'Standard_E4s_v3', 'Standard_E16s_v3' or 'Standard_D16s_v5'.

count number: Number of nodes.
size string: VM size that AKS will use when creating and scaling e.g. 'Standard_E4s_v3', 'Standard_E16s_v3' or 'Standard_D16s_v5'.

count int: Number of nodes.
size str: VM size that AKS will use when creating and scaling e.g. 'Standard_E4s_v3', 'Standard_E16s_v3' or 'Standard_D16s_v5'.

count Number: Number of nodes.
size String: VM size that AKS will use when creating and scaling e.g. 'Standard_E4s_v3', 'Standard_E16s_v3' or 'Standard_D16s_v5'.

PortRangeResponse

PortEnd int: The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
PortStart int: The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
Protocol string: The network protocol of the port.

PortEnd int: The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
PortStart int: The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
Protocol string: The network protocol of the port.

portEnd Integer: The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
portStart Integer: The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
protocol String: The network protocol of the port.

portEnd number: The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
portStart number: The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
protocol string: The network protocol of the port.

port_end int: The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
port_start int: The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
protocol str: The network protocol of the port.

portEnd Number: The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
portStart Number: The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
protocol String: The network protocol of the port.

PowerStateResponse

Code string: Tells whether the cluster is Running or Stopped

Code string: Tells whether the cluster is Running or Stopped

code String: Tells whether the cluster is Running or Stopped

code string: Tells whether the cluster is Running or Stopped

code str: Tells whether the cluster is Running or Stopped

code String: Tells whether the cluster is Running or Stopped

PrivateLinkResourceResponse

PrivateLinkServiceID string: The private link service ID of the resource, this field is exposed only to NRP internally.
GroupId string: The group ID of the resource.
Id string: The ID of the private link resource.
Name string: The name of the private link resource.
RequiredMembers List<string>: The RequiredMembers of the resource
Type string: The resource type.

PrivateLinkServiceID string: The private link service ID of the resource, this field is exposed only to NRP internally.
GroupId string: The group ID of the resource.
Id string: The ID of the private link resource.
Name string: The name of the private link resource.
RequiredMembers []string: The RequiredMembers of the resource
Type string: The resource type.

privateLinkServiceID String: The private link service ID of the resource, this field is exposed only to NRP internally.
groupId String: The group ID of the resource.
id String: The ID of the private link resource.
name String: The name of the private link resource.
requiredMembers List<String>: The RequiredMembers of the resource
type String: The resource type.

privateLinkServiceID string: The private link service ID of the resource, this field is exposed only to NRP internally.
groupId string: The group ID of the resource.
id string: The ID of the private link resource.
name string: The name of the private link resource.
requiredMembers string[]: The RequiredMembers of the resource
type string: The resource type.

private_link_service_id str: The private link service ID of the resource, this field is exposed only to NRP internally.
group_id str: The group ID of the resource.
id str: The ID of the private link resource.
name str: The name of the private link resource.
required_members Sequence[str]: The RequiredMembers of the resource
type str: The resource type.

privateLinkServiceID String: The private link service ID of the resource, this field is exposed only to NRP internally.
groupId String: The group ID of the resource.
id String: The ID of the private link resource.
name String: The name of the private link resource.
requiredMembers List<String>: The RequiredMembers of the resource
type String: The resource type.

ResourceReferenceResponse

Id string: The fully qualified Azure resource id.

Id string: The fully qualified Azure resource id.

id String: The fully qualified Azure resource id.

id string: The fully qualified Azure resource id.

id str: The fully qualified Azure resource id.

id String: The fully qualified Azure resource id.

ScaleProfileResponse

Manual List<Pulumi.AzureNative.ContainerService.Inputs.ManualScaleProfileResponse>: Specifications on how to scale the VirtualMachines agent pool to a fixed size.

Manual []ManualScaleProfileResponse: Specifications on how to scale the VirtualMachines agent pool to a fixed size.

manual List<ManualScaleProfileResponse>: Specifications on how to scale the VirtualMachines agent pool to a fixed size.

manual ManualScaleProfileResponse[]: Specifications on how to scale the VirtualMachines agent pool to a fixed size.

manual Sequence[ManualScaleProfileResponse]: Specifications on how to scale the VirtualMachines agent pool to a fixed size.

manual List<Property Map>: Specifications on how to scale the VirtualMachines agent pool to a fixed size.

ServiceMeshProfileResponse

Mode string: Mode of the service mesh.
Istio Pulumi.AzureNative.ContainerService.Inputs.IstioServiceMeshResponse: Istio service mesh configuration.

Mode string: Mode of the service mesh.
Istio IstioServiceMeshResponse: Istio service mesh configuration.

mode String: Mode of the service mesh.
istio IstioServiceMeshResponse: Istio service mesh configuration.

mode string: Mode of the service mesh.
istio IstioServiceMeshResponse: Istio service mesh configuration.

mode str: Mode of the service mesh.
istio IstioServiceMeshResponse: Istio service mesh configuration.

mode String: Mode of the service mesh.
istio Property Map: Istio service mesh configuration.

SysctlConfigResponse

FsAioMaxNr int: Sysctl setting fs.aio-max-nr.
FsFileMax int: Sysctl setting fs.file-max.
FsInotifyMaxUserWatches int: Sysctl setting fs.inotify.max_user_watches.
FsNrOpen int: Sysctl setting fs.nr_open.
KernelThreadsMax int: Sysctl setting kernel.threads-max.
NetCoreNetdevMaxBacklog int: Sysctl setting net.core.netdev_max_backlog.
NetCoreOptmemMax int: Sysctl setting net.core.optmem_max.
NetCoreRmemDefault int: Sysctl setting net.core.rmem_default.
NetCoreRmemMax int: Sysctl setting net.core.rmem_max.
NetCoreSomaxconn int: Sysctl setting net.core.somaxconn.
NetCoreWmemDefault int: Sysctl setting net.core.wmem_default.
NetCoreWmemMax int: Sysctl setting net.core.wmem_max.
NetIpv4IpLocalPortRange string: Sysctl setting net.ipv4.ip_local_port_range.
NetIpv4NeighDefaultGcThresh1 int: Sysctl setting net.ipv4.neigh.default.gc_thresh1.
NetIpv4NeighDefaultGcThresh2 int: Sysctl setting net.ipv4.neigh.default.gc_thresh2.
NetIpv4NeighDefaultGcThresh3 int: Sysctl setting net.ipv4.neigh.default.gc_thresh3.
NetIpv4TcpFinTimeout int: Sysctl setting net.ipv4.tcp_fin_timeout.
NetIpv4TcpKeepaliveProbes int: Sysctl setting net.ipv4.tcp_keepalive_probes.
NetIpv4TcpKeepaliveTime int: Sysctl setting net.ipv4.tcp_keepalive_time.
NetIpv4TcpMaxSynBacklog int: Sysctl setting net.ipv4.tcp_max_syn_backlog.
NetIpv4TcpMaxTwBuckets int: Sysctl setting net.ipv4.tcp_max_tw_buckets.
NetIpv4TcpTwReuse bool: Sysctl setting net.ipv4.tcp_tw_reuse.
NetIpv4TcpkeepaliveIntvl int: Sysctl setting net.ipv4.tcp_keepalive_intvl.
NetNetfilterNfConntrackBuckets int: Sysctl setting net.netfilter.nf_conntrack_buckets.
NetNetfilterNfConntrackMax int: Sysctl setting net.netfilter.nf_conntrack_max.
VmMaxMapCount int: Sysctl setting vm.max_map_count.
VmSwappiness int: Sysctl setting vm.swappiness.
VmVfsCachePressure int: Sysctl setting vm.vfs_cache_pressure.

FsAioMaxNr int: Sysctl setting fs.aio-max-nr.
FsFileMax int: Sysctl setting fs.file-max.
FsInotifyMaxUserWatches int: Sysctl setting fs.inotify.max_user_watches.
FsNrOpen int: Sysctl setting fs.nr_open.
KernelThreadsMax int: Sysctl setting kernel.threads-max.
NetCoreNetdevMaxBacklog int: Sysctl setting net.core.netdev_max_backlog.
NetCoreOptmemMax int: Sysctl setting net.core.optmem_max.
NetCoreRmemDefault int: Sysctl setting net.core.rmem_default.
NetCoreRmemMax int: Sysctl setting net.core.rmem_max.
NetCoreSomaxconn int: Sysctl setting net.core.somaxconn.
NetCoreWmemDefault int: Sysctl setting net.core.wmem_default.
NetCoreWmemMax int: Sysctl setting net.core.wmem_max.
NetIpv4IpLocalPortRange string: Sysctl setting net.ipv4.ip_local_port_range.
NetIpv4NeighDefaultGcThresh1 int: Sysctl setting net.ipv4.neigh.default.gc_thresh1.
NetIpv4NeighDefaultGcThresh2 int: Sysctl setting net.ipv4.neigh.default.gc_thresh2.
NetIpv4NeighDefaultGcThresh3 int: Sysctl setting net.ipv4.neigh.default.gc_thresh3.
NetIpv4TcpFinTimeout int: Sysctl setting net.ipv4.tcp_fin_timeout.
NetIpv4TcpKeepaliveProbes int: Sysctl setting net.ipv4.tcp_keepalive_probes.
NetIpv4TcpKeepaliveTime int: Sysctl setting net.ipv4.tcp_keepalive_time.
NetIpv4TcpMaxSynBacklog int: Sysctl setting net.ipv4.tcp_max_syn_backlog.
NetIpv4TcpMaxTwBuckets int: Sysctl setting net.ipv4.tcp_max_tw_buckets.
NetIpv4TcpTwReuse bool: Sysctl setting net.ipv4.tcp_tw_reuse.
NetIpv4TcpkeepaliveIntvl int: Sysctl setting net.ipv4.tcp_keepalive_intvl.
NetNetfilterNfConntrackBuckets int: Sysctl setting net.netfilter.nf_conntrack_buckets.
NetNetfilterNfConntrackMax int: Sysctl setting net.netfilter.nf_conntrack_max.
VmMaxMapCount int: Sysctl setting vm.max_map_count.
VmSwappiness int: Sysctl setting vm.swappiness.
VmVfsCachePressure int: Sysctl setting vm.vfs_cache_pressure.

fsAioMaxNr Integer: Sysctl setting fs.aio-max-nr.
fsFileMax Integer: Sysctl setting fs.file-max.
fsInotifyMaxUserWatches Integer: Sysctl setting fs.inotify.max_user_watches.
fsNrOpen Integer: Sysctl setting fs.nr_open.
kernelThreadsMax Integer: Sysctl setting kernel.threads-max.
netCoreNetdevMaxBacklog Integer: Sysctl setting net.core.netdev_max_backlog.
netCoreOptmemMax Integer: Sysctl setting net.core.optmem_max.
netCoreRmemDefault Integer: Sysctl setting net.core.rmem_default.
netCoreRmemMax Integer: Sysctl setting net.core.rmem_max.
netCoreSomaxconn Integer: Sysctl setting net.core.somaxconn.
netCoreWmemDefault Integer: Sysctl setting net.core.wmem_default.
netCoreWmemMax Integer: Sysctl setting net.core.wmem_max.
netIpv4IpLocalPortRange String: Sysctl setting net.ipv4.ip_local_port_range.
netIpv4NeighDefaultGcThresh1 Integer: Sysctl setting net.ipv4.neigh.default.gc_thresh1.
netIpv4NeighDefaultGcThresh2 Integer: Sysctl setting net.ipv4.neigh.default.gc_thresh2.
netIpv4NeighDefaultGcThresh3 Integer: Sysctl setting net.ipv4.neigh.default.gc_thresh3.
netIpv4TcpFinTimeout Integer: Sysctl setting net.ipv4.tcp_fin_timeout.
netIpv4TcpKeepaliveProbes Integer: Sysctl setting net.ipv4.tcp_keepalive_probes.
netIpv4TcpKeepaliveTime Integer: Sysctl setting net.ipv4.tcp_keepalive_time.
netIpv4TcpMaxSynBacklog Integer: Sysctl setting net.ipv4.tcp_max_syn_backlog.
netIpv4TcpMaxTwBuckets Integer: Sysctl setting net.ipv4.tcp_max_tw_buckets.
netIpv4TcpTwReuse Boolean: Sysctl setting net.ipv4.tcp_tw_reuse.
netIpv4TcpkeepaliveIntvl Integer: Sysctl setting net.ipv4.tcp_keepalive_intvl.
netNetfilterNfConntrackBuckets Integer: Sysctl setting net.netfilter.nf_conntrack_buckets.
netNetfilterNfConntrackMax Integer: Sysctl setting net.netfilter.nf_conntrack_max.
vmMaxMapCount Integer: Sysctl setting vm.max_map_count.
vmSwappiness Integer: Sysctl setting vm.swappiness.
vmVfsCachePressure Integer: Sysctl setting vm.vfs_cache_pressure.

fsAioMaxNr number: Sysctl setting fs.aio-max-nr.
fsFileMax number: Sysctl setting fs.file-max.
fsInotifyMaxUserWatches number: Sysctl setting fs.inotify.max_user_watches.
fsNrOpen number: Sysctl setting fs.nr_open.
kernelThreadsMax number: Sysctl setting kernel.threads-max.
netCoreNetdevMaxBacklog number: Sysctl setting net.core.netdev_max_backlog.
netCoreOptmemMax number: Sysctl setting net.core.optmem_max.
netCoreRmemDefault number: Sysctl setting net.core.rmem_default.
netCoreRmemMax number: Sysctl setting net.core.rmem_max.
netCoreSomaxconn number: Sysctl setting net.core.somaxconn.
netCoreWmemDefault number: Sysctl setting net.core.wmem_default.
netCoreWmemMax number: Sysctl setting net.core.wmem_max.
netIpv4IpLocalPortRange string: Sysctl setting net.ipv4.ip_local_port_range.
netIpv4NeighDefaultGcThresh1 number: Sysctl setting net.ipv4.neigh.default.gc_thresh1.
netIpv4NeighDefaultGcThresh2 number: Sysctl setting net.ipv4.neigh.default.gc_thresh2.
netIpv4NeighDefaultGcThresh3 number: Sysctl setting net.ipv4.neigh.default.gc_thresh3.
netIpv4TcpFinTimeout number: Sysctl setting net.ipv4.tcp_fin_timeout.
netIpv4TcpKeepaliveProbes number: Sysctl setting net.ipv4.tcp_keepalive_probes.
netIpv4TcpKeepaliveTime number: Sysctl setting net.ipv4.tcp_keepalive_time.
netIpv4TcpMaxSynBacklog number: Sysctl setting net.ipv4.tcp_max_syn_backlog.
netIpv4TcpMaxTwBuckets number: Sysctl setting net.ipv4.tcp_max_tw_buckets.
netIpv4TcpTwReuse boolean: Sysctl setting net.ipv4.tcp_tw_reuse.
netIpv4TcpkeepaliveIntvl number: Sysctl setting net.ipv4.tcp_keepalive_intvl.
netNetfilterNfConntrackBuckets number: Sysctl setting net.netfilter.nf_conntrack_buckets.
netNetfilterNfConntrackMax number: Sysctl setting net.netfilter.nf_conntrack_max.
vmMaxMapCount number: Sysctl setting vm.max_map_count.
vmSwappiness number: Sysctl setting vm.swappiness.
vmVfsCachePressure number: Sysctl setting vm.vfs_cache_pressure.

fs_aio_max_nr int: Sysctl setting fs.aio-max-nr.
fs_file_max int: Sysctl setting fs.file-max.
fs_inotify_max_user_watches int: Sysctl setting fs.inotify.max_user_watches.
fs_nr_open int: Sysctl setting fs.nr_open.
kernel_threads_max int: Sysctl setting kernel.threads-max.
net_core_netdev_max_backlog int: Sysctl setting net.core.netdev_max_backlog.
net_core_optmem_max int: Sysctl setting net.core.optmem_max.
net_core_rmem_default int: Sysctl setting net.core.rmem_default.
net_core_rmem_max int: Sysctl setting net.core.rmem_max.
net_core_somaxconn int: Sysctl setting net.core.somaxconn.
net_core_wmem_default int: Sysctl setting net.core.wmem_default.
net_core_wmem_max int: Sysctl setting net.core.wmem_max.
net_ipv4_ip_local_port_range str: Sysctl setting net.ipv4.ip_local_port_range.
net_ipv4_neigh_default_gc_thresh1 int: Sysctl setting net.ipv4.neigh.default.gc_thresh1.
net_ipv4_neigh_default_gc_thresh2 int: Sysctl setting net.ipv4.neigh.default.gc_thresh2.
net_ipv4_neigh_default_gc_thresh3 int: Sysctl setting net.ipv4.neigh.default.gc_thresh3.
net_ipv4_tcp_fin_timeout int: Sysctl setting net.ipv4.tcp_fin_timeout.
net_ipv4_tcp_keepalive_probes int: Sysctl setting net.ipv4.tcp_keepalive_probes.
net_ipv4_tcp_keepalive_time int: Sysctl setting net.ipv4.tcp_keepalive_time.
net_ipv4_tcp_max_syn_backlog int: Sysctl setting net.ipv4.tcp_max_syn_backlog.
net_ipv4_tcp_max_tw_buckets int: Sysctl setting net.ipv4.tcp_max_tw_buckets.
net_ipv4_tcp_tw_reuse bool: Sysctl setting net.ipv4.tcp_tw_reuse.
net_ipv4_tcpkeepalive_intvl int: Sysctl setting net.ipv4.tcp_keepalive_intvl.
net_netfilter_nf_conntrack_buckets int: Sysctl setting net.netfilter.nf_conntrack_buckets.
net_netfilter_nf_conntrack_max int: Sysctl setting net.netfilter.nf_conntrack_max.
vm_max_map_count int: Sysctl setting vm.max_map_count.
vm_swappiness int: Sysctl setting vm.swappiness.
vm_vfs_cache_pressure int: Sysctl setting vm.vfs_cache_pressure.

fsAioMaxNr Number: Sysctl setting fs.aio-max-nr.
fsFileMax Number: Sysctl setting fs.file-max.
fsInotifyMaxUserWatches Number: Sysctl setting fs.inotify.max_user_watches.
fsNrOpen Number: Sysctl setting fs.nr_open.
kernelThreadsMax Number: Sysctl setting kernel.threads-max.
netCoreNetdevMaxBacklog Number: Sysctl setting net.core.netdev_max_backlog.
netCoreOptmemMax Number: Sysctl setting net.core.optmem_max.
netCoreRmemDefault Number: Sysctl setting net.core.rmem_default.
netCoreRmemMax Number: Sysctl setting net.core.rmem_max.
netCoreSomaxconn Number: Sysctl setting net.core.somaxconn.
netCoreWmemDefault Number: Sysctl setting net.core.wmem_default.
netCoreWmemMax Number: Sysctl setting net.core.wmem_max.
netIpv4IpLocalPortRange String: Sysctl setting net.ipv4.ip_local_port_range.
netIpv4NeighDefaultGcThresh1 Number: Sysctl setting net.ipv4.neigh.default.gc_thresh1.
netIpv4NeighDefaultGcThresh2 Number: Sysctl setting net.ipv4.neigh.default.gc_thresh2.
netIpv4NeighDefaultGcThresh3 Number: Sysctl setting net.ipv4.neigh.default.gc_thresh3.
netIpv4TcpFinTimeout Number: Sysctl setting net.ipv4.tcp_fin_timeout.
netIpv4TcpKeepaliveProbes Number: Sysctl setting net.ipv4.tcp_keepalive_probes.
netIpv4TcpKeepaliveTime Number: Sysctl setting net.ipv4.tcp_keepalive_time.
netIpv4TcpMaxSynBacklog Number: Sysctl setting net.ipv4.tcp_max_syn_backlog.
netIpv4TcpMaxTwBuckets Number: Sysctl setting net.ipv4.tcp_max_tw_buckets.
netIpv4TcpTwReuse Boolean: Sysctl setting net.ipv4.tcp_tw_reuse.
netIpv4TcpkeepaliveIntvl Number: Sysctl setting net.ipv4.tcp_keepalive_intvl.
netNetfilterNfConntrackBuckets Number: Sysctl setting net.netfilter.nf_conntrack_buckets.
netNetfilterNfConntrackMax Number: Sysctl setting net.netfilter.nf_conntrack_max.
vmMaxMapCount Number: Sysctl setting vm.max_map_count.
vmSwappiness Number: Sysctl setting vm.swappiness.
vmVfsCachePressure Number: Sysctl setting vm.vfs_cache_pressure.

SystemDataResponse

CreatedAt string: The timestamp of resource creation (UTC).
CreatedBy string: The identity that created the resource.
CreatedByType string: The type of identity that created the resource.
LastModifiedAt string: The timestamp of resource last modification (UTC)
LastModifiedBy string: The identity that last modified the resource.
LastModifiedByType string: The type of identity that last modified the resource.

CreatedAt string: The timestamp of resource creation (UTC).
CreatedBy string: The identity that created the resource.
CreatedByType string: The type of identity that created the resource.
LastModifiedAt string: The timestamp of resource last modification (UTC)
LastModifiedBy string: The identity that last modified the resource.
LastModifiedByType string: The type of identity that last modified the resource.

createdAt String: The timestamp of resource creation (UTC).
createdBy String: The identity that created the resource.
createdByType String: The type of identity that created the resource.
lastModifiedAt String: The timestamp of resource last modification (UTC)
lastModifiedBy String: The identity that last modified the resource.
lastModifiedByType String: The type of identity that last modified the resource.

createdAt string: The timestamp of resource creation (UTC).
createdBy string: The identity that created the resource.
createdByType string: The type of identity that created the resource.
lastModifiedAt string: The timestamp of resource last modification (UTC)
lastModifiedBy string: The identity that last modified the resource.
lastModifiedByType string: The type of identity that last modified the resource.

created_at str: The timestamp of resource creation (UTC).
created_by str: The identity that created the resource.
created_by_type str: The type of identity that created the resource.
last_modified_at str: The timestamp of resource last modification (UTC)
last_modified_by str: The identity that last modified the resource.
last_modified_by_type str: The type of identity that last modified the resource.

createdAt String: The timestamp of resource creation (UTC).
createdBy String: The identity that created the resource.
createdByType String: The type of identity that created the resource.
lastModifiedAt String: The timestamp of resource last modification (UTC)
lastModifiedBy String: The identity that last modified the resource.
lastModifiedByType String: The type of identity that last modified the resource.

UpgradeOverrideSettingsResponse

ForceUpgrade bool: Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
Until string: Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the until expires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.

ForceUpgrade bool: Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
Until string: Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the until expires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.

forceUpgrade Boolean: Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
until String: Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the until expires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.

forceUpgrade boolean: Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
until string: Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the until expires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.

force_upgrade bool: Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
until str: Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the until expires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.

forceUpgrade Boolean: Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
until String: Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the until expires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.

UserAssignedIdentityResponse

ClientId string: The client ID of the assigned identity.
PrincipalId string: The principal ID of the assigned identity.
ObjectId string: The object ID of the user assigned identity.
ResourceId string: The resource ID of the user assigned identity.

ClientId string: The client ID of the assigned identity.
PrincipalId string: The principal ID of the assigned identity.
ObjectId string: The object ID of the user assigned identity.
ResourceId string: The resource ID of the user assigned identity.

clientId String: The client ID of the assigned identity.
principalId String: The principal ID of the assigned identity.
objectId String: The object ID of the user assigned identity.
resourceId String: The resource ID of the user assigned identity.

clientId string: The client ID of the assigned identity.
principalId string: The principal ID of the assigned identity.
objectId string: The object ID of the user assigned identity.
resourceId string: The resource ID of the user assigned identity.

client_id str: The client ID of the assigned identity.
principal_id str: The principal ID of the assigned identity.
object_id str: The object ID of the user assigned identity.
resource_id str: The resource ID of the user assigned identity.

clientId String: The client ID of the assigned identity.
principalId String: The principal ID of the assigned identity.
objectId String: The object ID of the user assigned identity.
resourceId String: The resource ID of the user assigned identity.

VirtualMachineNodesResponse

Count int: Number of nodes.
Size string: The VM size of the agents used to host this group of nodes.

Count int: Number of nodes.
Size string: The VM size of the agents used to host this group of nodes.

count Integer: Number of nodes.
size String: The VM size of the agents used to host this group of nodes.

count number: Number of nodes.
size string: The VM size of the agents used to host this group of nodes.

count int: Number of nodes.
size str: The VM size of the agents used to host this group of nodes.

count Number: Number of nodes.
size String: The VM size of the agents used to host this group of nodes.

VirtualMachinesProfileResponse

Scale Pulumi.AzureNative.ContainerService.Inputs.ScaleProfileResponse: Specifications on how to scale a VirtualMachines agent pool.

Scale ScaleProfileResponse: Specifications on how to scale a VirtualMachines agent pool.

scale ScaleProfileResponse: Specifications on how to scale a VirtualMachines agent pool.

scale ScaleProfileResponse: Specifications on how to scale a VirtualMachines agent pool.

scale ScaleProfileResponse: Specifications on how to scale a VirtualMachines agent pool.

scale Property Map: Specifications on how to scale a VirtualMachines agent pool.

WindowsGmsaProfileResponse

DnsServer string: Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
Enabled bool: Whether to enable Windows gMSA. Specifies whether to enable Windows gMSA in the managed cluster.
RootDomainName string: Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.

DnsServer string: Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
Enabled bool: Whether to enable Windows gMSA. Specifies whether to enable Windows gMSA in the managed cluster.
RootDomainName string: Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.

dnsServer String: Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
enabled Boolean: Whether to enable Windows gMSA. Specifies whether to enable Windows gMSA in the managed cluster.
rootDomainName String: Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.

dnsServer string: Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
enabled boolean: Whether to enable Windows gMSA. Specifies whether to enable Windows gMSA in the managed cluster.
rootDomainName string: Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.

dns_server str: Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
enabled bool: Whether to enable Windows gMSA. Specifies whether to enable Windows gMSA in the managed cluster.
root_domain_name str: Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.

dnsServer String: Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
enabled Boolean: Whether to enable Windows gMSA. Specifies whether to enable Windows gMSA in the managed cluster.
rootDomainName String: Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.

Package Details

Repository: Azure Native pulumi/pulumi-azure-native
License: Apache-2.0

This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.

Azure Native v3.13.0 published on Wednesday, Jan 28, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-azure-native

azure-native.containerservice.getManagedCluster

On this page

On this page

Using getManagedCluster

getManagedCluster Result

Supporting Types

AdvancedNetworkingObservabilityResponse

AdvancedNetworkingResponse

AdvancedNetworkingSecurityResponse

AgentPoolGatewayProfileResponse

AgentPoolNetworkProfileResponse

AgentPoolSecurityProfileResponse

AgentPoolStatusResponse

AgentPoolUpgradeSettingsResponse

AgentPoolWindowsProfileResponse

AzureKeyVaultKmsResponse

ClusterUpgradeSettingsResponse

ContainerServiceLinuxProfileResponse

ContainerServiceNetworkProfileResponse

ContainerServiceSshConfigurationResponse

ContainerServiceSshPublicKeyResponse

CreationDataResponse

DelegatedResourceResponse

ErrorAdditionalInfoResponse

ErrorDetailResponse

ExtendedLocationResponse

GPUProfileResponse

IPTagResponse

IstioCertificateAuthorityResponse

IstioComponentsResponse

IstioEgressGatewayResponse

IstioIngressGatewayResponse

IstioPluginCertificateAuthorityResponse

IstioServiceMeshResponse

KubeletConfigResponse

LinuxOSConfigResponse

LocalDNSOverrideResponse

LocalDNSProfileResponse

ManagedClusterAADProfileResponse

ManagedClusterAIToolchainOperatorProfileResponse

ManagedClusterAPIServerAccessProfileResponse

ManagedClusterAddonProfileResponse

ManagedClusterAddonProfileResponseIdentity

ManagedClusterAgentPoolProfileResponse

ManagedClusterAutoUpgradeProfileResponse

ManagedClusterAzureMonitorProfileKubeStateMetricsResponse

ManagedClusterAzureMonitorProfileMetricsResponse

ManagedClusterAzureMonitorProfileResponse

ManagedClusterBootstrapProfileResponse

ManagedClusterCostAnalysisResponse

ManagedClusterHTTPProxyConfigResponse

ManagedClusterIdentityResponse

ManagedClusterIdentityResponseUserAssignedIdentities

ManagedClusterIngressProfileNginxResponse

ManagedClusterIngressProfileResponse

ManagedClusterIngressProfileWebAppRoutingResponse

ManagedClusterLoadBalancerProfileResponse

ManagedClusterLoadBalancerProfileResponseManagedOutboundIPs

ManagedClusterLoadBalancerProfileResponseOutboundIPPrefixes

ManagedClusterLoadBalancerProfileResponseOutboundIPs

ManagedClusterManagedOutboundIPProfileResponse

ManagedClusterMetricsProfileResponse

ManagedClusterNATGatewayProfileResponse

ManagedClusterNodeProvisioningProfileResponse

ManagedClusterNodeResourceGroupProfileResponse

ManagedClusterOIDCIssuerProfileResponse

ManagedClusterPodIdentityExceptionResponse

ManagedClusterPodIdentityProfileResponse

ManagedClusterPodIdentityProvisioningErrorBodyResponse

ManagedClusterPodIdentityProvisioningErrorResponse

ManagedClusterPodIdentityResponse

ManagedClusterPodIdentityResponseProvisioningInfo

ManagedClusterPropertiesResponseAutoScalerProfile

ManagedClusterSKUResponse

ManagedClusterSecurityProfileDefenderResponse

ManagedClusterSecurityProfileDefenderSecurityMonitoringResponse

ManagedClusterSecurityProfileImageCleanerResponse

ManagedClusterSecurityProfileResponse

ManagedClusterSecurityProfileWorkloadIdentityResponse

ManagedClusterServicePrincipalProfileResponse