Docs Home
This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.
Azure Native v3.4.0 published on Wednesday, May 7, 2025 by Pulumi
azure-native.containerservice.ManagedCluster
Explore with Pulumi AI
This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.
Azure Native v3.4.0 published on Wednesday, May 7, 2025 by Pulumi
Managed cluster.
Uses Azure REST API version 2024-10-01. In version 2.x of the Azure Native provider, it used API version 2023-04-01.
Other available API versions: 2019-11-01, 2020-01-01, 2020-02-01, 2020-03-01, 2020-04-01, 2020-06-01, 2020-07-01, 2020-09-01, 2020-11-01, 2020-12-01, 2021-02-01, 2021-03-01, 2021-05-01, 2021-07-01, 2021-08-01, 2021-09-01, 2021-10-01, 2021-11-01-preview, 2022-01-01, 2022-01-02-preview, 2022-02-01, 2022-02-02-preview, 2022-03-01, 2022-03-02-preview, 2022-04-01, 2022-04-02-preview, 2022-05-02-preview, 2022-06-01, 2022-06-02-preview, 2022-07-01, 2022-07-02-preview, 2022-08-02-preview, 2022-08-03-preview, 2022-09-01, 2022-09-02-preview, 2022-10-02-preview, 2022-11-01, 2022-11-02-preview, 2023-01-01, 2023-01-02-preview, 2023-02-01, 2023-02-02-preview, 2023-03-01, 2023-03-02-preview, 2023-04-01, 2023-04-02-preview, 2023-05-01, 2023-05-02-preview, 2023-06-01, 2023-06-02-preview, 2023-07-01, 2023-07-02-preview, 2023-08-01, 2023-08-02-preview, 2023-09-01, 2023-09-02-preview, 2023-10-01, 2023-10-02-preview, 2023-11-01, 2023-11-02-preview, 2024-01-01, 2024-01-02-preview, 2024-02-01, 2024-02-02-preview, 2024-03-02-preview, 2024-04-02-preview, 2024-05-01, 2024-05-02-preview, 2024-06-02-preview, 2024-07-01, 2024-07-02-preview, 2024-08-01, 2024-09-01, 2024-09-02-preview, 2024-10-02-preview, 2025-01-01, 2025-01-02-preview, 2025-02-01, 2025-02-02-preview. These can be accessed by generating a local SDK package using the CLI command pulumi package add azure-native containerservice [ApiVersion]. See the version guide for details.
When creating a managed cluster you must define at least one agent pool inline via the agentPoolProfiles property. The Azure API does not currently allow this property to be updated directly. Instead, additional agent pools can be defined via the AgentPool resource. If needing to change the initial agent pool profile property, you can either trigger the whole cluster to be re-created by using the replaceOnChanges resource option, or make the change directly in Azure then use pulumi refresh to update the stack’s stack to match.
Example Usage
Create Managed Cluster using an agent pool snapshot
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
CreationData = new AzureNative.ContainerService.Inputs.CreationDataArgs
{
SourceResourceId = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.ContainerService/snapshots/snapshot1",
},
EnableFIPS = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = false,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
CreationData: &containerservice.CreationDataArgs{
SourceResourceId: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.ContainerService/snapshots/snapshot1"),
},
EnableFIPS: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(false),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.CreationDataArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.creationData(CreationDataArgs.builder()
.sourceResourceId("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.ContainerService/snapshots/snapshot1")
.build())
.enableFIPS(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(false)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
creationData: {
sourceResourceId: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.ContainerService/snapshots/snapshot1",
},
enableFIPS: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: false,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"creation_data": {
"source_resource_id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.ContainerService/snapshots/snapshot1",
},
"enable_fips": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=False,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
creationData:
sourceResourceId: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.ContainerService/snapshots/snapshot1
enableFIPS: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: false
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with AKS-managed NAT gateway as outbound type
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = false,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
NatGatewayProfile = new AzureNative.ContainerService.Inputs.ManagedClusterNATGatewayProfileArgs
{
ManagedOutboundIPProfile = new AzureNative.ContainerService.Inputs.ManagedClusterManagedOutboundIPProfileArgs
{
Count = 2,
},
},
OutboundType = AzureNative.ContainerService.OutboundType.ManagedNATGateway,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(false),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
NatGatewayProfile: &containerservice.ManagedClusterNATGatewayProfileArgs{
ManagedOutboundIPProfile: &containerservice.ManagedClusterManagedOutboundIPProfileArgs{
Count: pulumi.Int(2),
},
},
OutboundType: pulumi.String(containerservice.OutboundTypeManagedNATGateway),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterNATGatewayProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterManagedOutboundIPProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(false)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerSku("standard")
.natGatewayProfile(ManagedClusterNATGatewayProfileArgs.builder()
.managedOutboundIPProfile(ManagedClusterManagedOutboundIPProfileArgs.builder()
.count(2)
.build())
.build())
.outboundType("managedNATGateway")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: false,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
natGatewayProfile: {
managedOutboundIPProfile: {
count: 2,
},
},
outboundType: azure_native.containerservice.OutboundType.ManagedNATGateway,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": False,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"nat_gateway_profile": {
"managed_outbound_ip_profile": {
"count": 2,
},
},
"outbound_type": azure_native.containerservice.OutboundType.MANAGED_NAT_GATEWAY,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: false
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerSku: standard
natGatewayProfile:
managedOutboundIPProfile:
count: 2
outboundType: managedNATGateway
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with Azure KeyVault Secrets Provider Addon
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles =
{
{ "azureKeyvaultSecretsProvider", new AzureNative.ContainerService.Inputs.ManagedClusterAddonProfileArgs
{
Config =
{
{ "enableSecretRotation", "true" },
{ "rotationPollInterval", "2m" },
},
Enabled = true,
} },
},
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{
"azureKeyvaultSecretsProvider": &containerservice.ManagedClusterAddonProfileArgs{
Config: pulumi.StringMap{
"enableSecretRotation": pulumi.String("true"),
"rotationPollInterval": pulumi.String("2m"),
},
Enabled: pulumi.Bool(true),
},
},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.of("azureKeyvaultSecretsProvider", ManagedClusterAddonProfileArgs.builder()
.config(Map.ofEntries(
Map.entry("enableSecretRotation", "true"),
Map.entry("rotationPollInterval", "2m")
))
.enabled(true)
.build()))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {
azureKeyvaultSecretsProvider: {
config: {
enableSecretRotation: "true",
rotationPollInterval: "2m",
},
enabled: true,
},
},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={
"azureKeyvaultSecretsProvider": {
"config": {
"enableSecretRotation": "true",
"rotationPollInterval": "2m",
},
"enabled": True,
},
},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles:
azureKeyvaultSecretsProvider:
config:
enableSecretRotation: 'true'
rotationPollInterval: 2m
enabled: true
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with Capacity Reservation Group
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
CapacityReservationGroupID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/capacityReservationGroups/crg1",
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
CapacityReservationGroupID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/capacityReservationGroups/crg1"),
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.capacityReservationGroupID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/capacityReservationGroups/crg1")
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
capacityReservationGroupID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/capacityReservationGroups/crg1",
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"capacity_reservation_group_id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/capacityReservationGroups/crg1",
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- capacityReservationGroupID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/capacityReservationGroups/crg1
count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with Dedicated Host Group
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
HostGroupID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg/providers/Microsoft.Compute/hostGroups/hostgroup1",
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = false,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
HostGroupID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg/providers/Microsoft.Compute/hostGroups/hostgroup1"),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(false),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.hostGroupID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg/providers/Microsoft.Compute/hostGroups/hostgroup1")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(false)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
hostGroupID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg/providers/Microsoft.Compute/hostGroups/hostgroup1",
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: false,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"host_group_id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg/providers/Microsoft.Compute/hostGroups/hostgroup1",
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=False,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
hostGroupID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg/providers/Microsoft.Compute/hostGroups/hostgroup1
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: false
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with EncryptionAtHost enabled
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableEncryptionAtHost = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableEncryptionAtHost: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableEncryptionAtHost(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableEncryptionAtHost: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_encryption_at_host": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableEncryptionAtHost: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with FIPS enabled OS
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableFIPS = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = false,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableFIPS: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(false),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableFIPS(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(false)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableFIPS: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: false,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_fips": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=False,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableFIPS: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: false
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with GPUMIG
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
GpuInstanceProfile = AzureNative.ContainerService.GPUInstanceProfile.MIG3g,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_ND96asr_v4",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
HttpProxyConfig = new AzureNative.ContainerService.Inputs.ManagedClusterHTTPProxyConfigArgs
{
HttpProxy = "http://myproxy.server.com:8080",
HttpsProxy = "https://myproxy.server.com:8080",
NoProxy = new[]
{
"localhost",
"127.0.0.1",
},
TrustedCa = "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
GpuInstanceProfile: pulumi.String(containerservice.GPUInstanceProfileMIG3g),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_ND96asr_v4"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
HttpProxyConfig: &containerservice.ManagedClusterHTTPProxyConfigArgs{
HttpProxy: pulumi.String("http://myproxy.server.com:8080"),
HttpsProxy: pulumi.String("https://myproxy.server.com:8080"),
NoProxy: pulumi.StringArray{
pulumi.String("localhost"),
pulumi.String("127.0.0.1"),
},
TrustedCa: pulumi.String("Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U="),
},
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterHTTPProxyConfigArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.gpuInstanceProfile("MIG3g")
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_ND96asr_v4")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.httpProxyConfig(ManagedClusterHTTPProxyConfigArgs.builder()
.httpProxy("http://myproxy.server.com:8080")
.httpsProxy("https://myproxy.server.com:8080")
.noProxy(
"localhost",
"127.0.0.1")
.trustedCa("Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=")
.build())
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
gpuInstanceProfile: azure_native.containerservice.GPUInstanceProfile.MIG3g,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_ND96asr_v4",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
httpProxyConfig: {
httpProxy: "http://myproxy.server.com:8080",
httpsProxy: "https://myproxy.server.com:8080",
noProxy: [
"localhost",
"127.0.0.1",
],
trustedCa: "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"gpu_instance_profile": azure_native.containerservice.GPUInstanceProfile.MIG3G,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_ND96asr_v4",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
http_proxy_config={
"http_proxy": "http://myproxy.server.com:8080",
"https_proxy": "https://myproxy.server.com:8080",
"no_proxy": [
"localhost",
"127.0.0.1",
],
"trusted_ca": "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
gpuInstanceProfile: MIG3g
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_ND96asr_v4
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
httpProxyConfig:
httpProxy: http://myproxy.server.com:8080
httpsProxy: https://myproxy.server.com:8080
noProxy:
- localhost
- 127.0.0.1
trustedCa: Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with HTTP proxy configured
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
HttpProxyConfig = new AzureNative.ContainerService.Inputs.ManagedClusterHTTPProxyConfigArgs
{
HttpProxy = "http://myproxy.server.com:8080",
HttpsProxy = "https://myproxy.server.com:8080",
NoProxy = new[]
{
"localhost",
"127.0.0.1",
},
TrustedCa = "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
HttpProxyConfig: &containerservice.ManagedClusterHTTPProxyConfigArgs{
HttpProxy: pulumi.String("http://myproxy.server.com:8080"),
HttpsProxy: pulumi.String("https://myproxy.server.com:8080"),
NoProxy: pulumi.StringArray{
pulumi.String("localhost"),
pulumi.String("127.0.0.1"),
},
TrustedCa: pulumi.String("Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U="),
},
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterHTTPProxyConfigArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.httpProxyConfig(ManagedClusterHTTPProxyConfigArgs.builder()
.httpProxy("http://myproxy.server.com:8080")
.httpsProxy("https://myproxy.server.com:8080")
.noProxy(
"localhost",
"127.0.0.1")
.trustedCa("Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=")
.build())
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
httpProxyConfig: {
httpProxy: "http://myproxy.server.com:8080",
httpsProxy: "https://myproxy.server.com:8080",
noProxy: [
"localhost",
"127.0.0.1",
],
trustedCa: "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
http_proxy_config={
"http_proxy": "http://myproxy.server.com:8080",
"https_proxy": "https://myproxy.server.com:8080",
"no_proxy": [
"localhost",
"127.0.0.1",
],
"trusted_ca": "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
httpProxyConfig:
httpProxy: http://myproxy.server.com:8080
httpsProxy: https://myproxy.server.com:8080
noProxy:
- localhost
- 127.0.0.1
trustedCa: Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with LongTermSupport
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableEncryptionAtHost = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
ApiServerAccessProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAPIServerAccessProfileArgs
{
DisableRunCommand = true,
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = AzureNative.ContainerService.ManagedClusterSKUName.Base,
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Premium,
},
SupportPlan = AzureNative.ContainerService.KubernetesSupportPlan.AKSLongTermSupport,
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableEncryptionAtHost: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
ApiServerAccessProfile: &containerservice.ManagedClusterAPIServerAccessProfileArgs{
DisableRunCommand: pulumi.Bool(true),
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String(containerservice.ManagedClusterSKUNameBase),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierPremium),
},
SupportPlan: pulumi.String(containerservice.KubernetesSupportPlanAKSLongTermSupport),
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAPIServerAccessProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableEncryptionAtHost(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.apiServerAccessProfile(ManagedClusterAPIServerAccessProfileArgs.builder()
.disableRunCommand(true)
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Base")
.tier("Premium")
.build())
.supportPlan("AKSLongTermSupport")
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableEncryptionAtHost: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
apiServerAccessProfile: {
disableRunCommand: true,
},
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: azure_native.containerservice.ManagedClusterSKUName.Base,
tier: azure_native.containerservice.ManagedClusterSKUTier.Premium,
},
supportPlan: azure_native.containerservice.KubernetesSupportPlan.AKSLongTermSupport,
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_encryption_at_host": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
api_server_access_profile={
"disable_run_command": True,
},
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": azure_native.containerservice.ManagedClusterSKUName.BASE,
"tier": azure_native.containerservice.ManagedClusterSKUTier.PREMIUM,
},
support_plan=azure_native.containerservice.KubernetesSupportPlan.AKS_LONG_TERM_SUPPORT,
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableEncryptionAtHost: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
apiServerAccessProfile:
disableRunCommand: true
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Base
tier: Premium
supportPlan: AKSLongTermSupport
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with Node Public IP Prefix
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
NodePublicIPPrefixID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/publicIPPrefixes/public-ip-prefix",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
NodePublicIPPrefixID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/publicIPPrefixes/public-ip-prefix"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.nodePublicIPPrefixID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/publicIPPrefixes/public-ip-prefix")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
nodePublicIPPrefixID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/publicIPPrefixes/public-ip-prefix",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"node_public_ip_prefix_id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/publicIPPrefixes/public-ip-prefix",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
nodePublicIPPrefixID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/publicIPPrefixes/public-ip-prefix
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with OSSKU
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsSKU = AzureNative.ContainerService.OSSKU.AzureLinux,
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
HttpProxyConfig = new AzureNative.ContainerService.Inputs.ManagedClusterHTTPProxyConfigArgs
{
HttpProxy = "http://myproxy.server.com:8080",
HttpsProxy = "https://myproxy.server.com:8080",
NoProxy = new[]
{
"localhost",
"127.0.0.1",
},
TrustedCa = "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsSKU: pulumi.String(containerservice.OSSKUAzureLinux),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
HttpProxyConfig: &containerservice.ManagedClusterHTTPProxyConfigArgs{
HttpProxy: pulumi.String("http://myproxy.server.com:8080"),
HttpsProxy: pulumi.String("https://myproxy.server.com:8080"),
NoProxy: pulumi.StringArray{
pulumi.String("localhost"),
pulumi.String("127.0.0.1"),
},
TrustedCa: pulumi.String("Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U="),
},
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterHTTPProxyConfigArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osSKU("AzureLinux")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.httpProxyConfig(ManagedClusterHTTPProxyConfigArgs.builder()
.httpProxy("http://myproxy.server.com:8080")
.httpsProxy("https://myproxy.server.com:8080")
.noProxy(
"localhost",
"127.0.0.1")
.trustedCa("Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=")
.build())
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osSKU: azure_native.containerservice.OSSKU.AzureLinux,
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
httpProxyConfig: {
httpProxy: "http://myproxy.server.com:8080",
httpsProxy: "https://myproxy.server.com:8080",
noProxy: [
"localhost",
"127.0.0.1",
],
trustedCa: "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_sku": azure_native.containerservice.OSSKU.AZURE_LINUX,
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
http_proxy_config={
"http_proxy": "http://myproxy.server.com:8080",
"https_proxy": "https://myproxy.server.com:8080",
"no_proxy": [
"localhost",
"127.0.0.1",
],
"trusted_ca": "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osSKU: AzureLinux
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
httpProxyConfig:
httpProxy: http://myproxy.server.com:8080
httpsProxy: https://myproxy.server.com:8080
noProxy:
- localhost
- 127.0.0.1
trustedCa: Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with PPG
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
ProximityPlacementGroupID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/proximityPlacementGroups/ppg1",
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
ProximityPlacementGroupID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/proximityPlacementGroups/ppg1"),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.proximityPlacementGroupID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/proximityPlacementGroups/ppg1")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
proximityPlacementGroupID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/proximityPlacementGroups/ppg1",
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"proximity_placement_group_id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/proximityPlacementGroups/ppg1",
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
proximityPlacementGroupID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/proximityPlacementGroups/ppg1
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with PodIdentity enabled
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
PodIdentityProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityProfileArgs
{
AllowNetworkPluginKubenet = true,
Enabled = true,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
PodIdentityProfile: &containerservice.ManagedClusterPodIdentityProfileArgs{
AllowNetworkPluginKubenet: pulumi.Bool(true),
Enabled: pulumi.Bool(true),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPodIdentityProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.podIdentityProfile(ManagedClusterPodIdentityProfileArgs.builder()
.allowNetworkPluginKubenet(true)
.enabled(true)
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
podIdentityProfile: {
allowNetworkPluginKubenet: true,
enabled: true,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
pod_identity_profile={
"allow_network_plugin_kubenet": True,
"enabled": True,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
podIdentityProfile:
allowNetworkPluginKubenet: true
enabled: true
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with RunCommand disabled
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableEncryptionAtHost = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
ApiServerAccessProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAPIServerAccessProfileArgs
{
DisableRunCommand = true,
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableEncryptionAtHost: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
ApiServerAccessProfile: &containerservice.ManagedClusterAPIServerAccessProfileArgs{
DisableRunCommand: pulumi.Bool(true),
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAPIServerAccessProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableEncryptionAtHost(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.apiServerAccessProfile(ManagedClusterAPIServerAccessProfileArgs.builder()
.disableRunCommand(true)
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableEncryptionAtHost: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
apiServerAccessProfile: {
disableRunCommand: true,
},
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_encryption_at_host": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
api_server_access_profile={
"disable_run_command": True,
},
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableEncryptionAtHost: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
apiServerAccessProfile:
disableRunCommand: true
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with Security Profile configured
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
DnsPrefix = "dnsprefix1",
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
SecurityProfile = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileArgs
{
Defender = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileDefenderArgs
{
LogAnalyticsWorkspaceResourceId = "/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME",
SecurityMonitoring = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs
{
Enabled = true,
},
},
WorkloadIdentity = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileWorkloadIdentityArgs
{
Enabled = true,
},
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
DnsPrefix: pulumi.String("dnsprefix1"),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
SecurityProfile: &containerservice.ManagedClusterSecurityProfileArgs{
Defender: &containerservice.ManagedClusterSecurityProfileDefenderArgs{
LogAnalyticsWorkspaceResourceId: pulumi.String("/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME"),
SecurityMonitoring: &containerservice.ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs{
Enabled: pulumi.Bool(true),
},
},
WorkloadIdentity: &containerservice.ManagedClusterSecurityProfileWorkloadIdentityArgs{
Enabled: pulumi.Bool(true),
},
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSecurityProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSecurityProfileDefenderArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSecurityProfileWorkloadIdentityArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.dnsPrefix("dnsprefix1")
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.securityProfile(ManagedClusterSecurityProfileArgs.builder()
.defender(ManagedClusterSecurityProfileDefenderArgs.builder()
.logAnalyticsWorkspaceResourceId("/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME")
.securityMonitoring(ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs.builder()
.enabled(true)
.build())
.build())
.workloadIdentity(ManagedClusterSecurityProfileWorkloadIdentityArgs.builder()
.enabled(true)
.build())
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
dnsPrefix: "dnsprefix1",
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
securityProfile: {
defender: {
logAnalyticsWorkspaceResourceId: "/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME",
securityMonitoring: {
enabled: true,
},
},
workloadIdentity: {
enabled: true,
},
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
dns_prefix="dnsprefix1",
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
security_profile={
"defender": {
"log_analytics_workspace_resource_id": "/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME",
"security_monitoring": {
"enabled": True,
},
},
"workload_identity": {
"enabled": True,
},
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
dnsPrefix: dnsprefix1
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
securityProfile:
defender:
logAnalyticsWorkspaceResourceId: /subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME
securityMonitoring:
enabled: true
workloadIdentity:
enabled: true
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
Create Managed Cluster with UltraSSD enabled
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
EnableUltraSSD = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
EnableUltraSSD: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.enableUltraSSD(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
enableUltraSSD: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"enable_ultra_ssd": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
enableUltraSSD: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with Web App Routing Ingress Profile configured
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
DnsPrefix = "dnsprefix1",
IngressProfile = new AzureNative.ContainerService.Inputs.ManagedClusterIngressProfileArgs
{
WebAppRouting = new AzureNative.ContainerService.Inputs.ManagedClusterIngressProfileWebAppRoutingArgs
{
DnsZoneResourceIds = new[]
{
"/subscriptions/SUB_ID/resourceGroups/RG_NAME/providers/Microsoft.Network/dnszones/DNS_ZONE_NAME",
},
Enabled = true,
},
},
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
DnsPrefix: pulumi.String("dnsprefix1"),
IngressProfile: &containerservice.ManagedClusterIngressProfileArgs{
WebAppRouting: &containerservice.ManagedClusterIngressProfileWebAppRoutingArgs{
DnsZoneResourceIds: pulumi.StringArray{
pulumi.String("/subscriptions/SUB_ID/resourceGroups/RG_NAME/providers/Microsoft.Network/dnszones/DNS_ZONE_NAME"),
},
Enabled: pulumi.Bool(true),
},
},
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterIngressProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterIngressProfileWebAppRoutingArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.dnsPrefix("dnsprefix1")
.ingressProfile(ManagedClusterIngressProfileArgs.builder()
.webAppRouting(ManagedClusterIngressProfileWebAppRoutingArgs.builder()
.dnsZoneResourceIds("/subscriptions/SUB_ID/resourceGroups/RG_NAME/providers/Microsoft.Network/dnszones/DNS_ZONE_NAME")
.enabled(true)
.build())
.build())
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
dnsPrefix: "dnsprefix1",
ingressProfile: {
webAppRouting: {
dnsZoneResourceIds: ["/subscriptions/SUB_ID/resourceGroups/RG_NAME/providers/Microsoft.Network/dnszones/DNS_ZONE_NAME"],
enabled: true,
},
},
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
dns_prefix="dnsprefix1",
ingress_profile={
"web_app_routing": {
"dns_zone_resource_ids": ["/subscriptions/SUB_ID/resourceGroups/RG_NAME/providers/Microsoft.Network/dnszones/DNS_ZONE_NAME"],
"enabled": True,
},
},
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
dnsPrefix: dnsprefix1
ingressProfile:
webAppRouting:
dnsZoneResourceIds:
- /subscriptions/SUB_ID/resourceGroups/RG_NAME/providers/Microsoft.Network/dnszones/DNS_ZONE_NAME
enabled: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
Create Managed Cluster with user-assigned NAT gateway as outbound type
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = false,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.UserAssignedNATGateway,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(false),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeUserAssignedNATGateway),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(false)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerSku("standard")
.outboundType("userAssignedNATGateway")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: false,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.UserAssignedNATGateway,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": False,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.USER_ASSIGNED_NAT_GATEWAY,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: false
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerSku: standard
outboundType: userAssignedNATGateway
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Private Cluster with Public FQDN specified
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableEncryptionAtHost = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
ApiServerAccessProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAPIServerAccessProfileArgs
{
EnablePrivateCluster = true,
EnablePrivateClusterPublicFQDN = true,
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableEncryptionAtHost: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
ApiServerAccessProfile: &containerservice.ManagedClusterAPIServerAccessProfileArgs{
EnablePrivateCluster: pulumi.Bool(true),
EnablePrivateClusterPublicFQDN: pulumi.Bool(true),
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAPIServerAccessProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableEncryptionAtHost(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.apiServerAccessProfile(ManagedClusterAPIServerAccessProfileArgs.builder()
.enablePrivateCluster(true)
.enablePrivateClusterPublicFQDN(true)
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableEncryptionAtHost: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
apiServerAccessProfile: {
enablePrivateCluster: true,
enablePrivateClusterPublicFQDN: true,
},
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_encryption_at_host": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
api_server_access_profile={
"enable_private_cluster": True,
"enable_private_cluster_public_fqdn": True,
},
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableEncryptionAtHost: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
apiServerAccessProfile:
enablePrivateCluster: true
enablePrivateClusterPublicFQDN: true
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Private Cluster with fqdn subdomain specified
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableEncryptionAtHost = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
ApiServerAccessProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAPIServerAccessProfileArgs
{
EnablePrivateCluster = true,
PrivateDNSZone = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/privateDnsZones/privatelink.location1.azmk8s.io",
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
EnablePodSecurityPolicy = true,
EnableRBAC = true,
FqdnSubdomain = "domain1",
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableEncryptionAtHost: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
ApiServerAccessProfile: &containerservice.ManagedClusterAPIServerAccessProfileArgs{
EnablePrivateCluster: pulumi.Bool(true),
PrivateDNSZone: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/privateDnsZones/privatelink.location1.azmk8s.io"),
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
FqdnSubdomain: pulumi.String("domain1"),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAPIServerAccessProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableEncryptionAtHost(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.apiServerAccessProfile(ManagedClusterAPIServerAccessProfileArgs.builder()
.enablePrivateCluster(true)
.privateDNSZone("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/privateDnsZones/privatelink.location1.azmk8s.io")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.fqdnSubdomain("domain1")
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableEncryptionAtHost: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
apiServerAccessProfile: {
enablePrivateCluster: true,
privateDNSZone: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/privateDnsZones/privatelink.location1.azmk8s.io",
},
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
enablePodSecurityPolicy: true,
enableRBAC: true,
fqdnSubdomain: "domain1",
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_encryption_at_host": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
api_server_access_profile={
"enable_private_cluster": True,
"private_dns_zone": "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/privateDnsZones/privatelink.location1.azmk8s.io",
},
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
enable_pod_security_policy=True,
enable_rbac=True,
fqdn_subdomain="domain1",
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableEncryptionAtHost: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
apiServerAccessProfile:
enablePrivateCluster: true
privateDNSZone: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/privateDnsZones/privatelink.location1.azmk8s.io
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
enablePodSecurityPolicy: true
enableRBAC: true
fqdnSubdomain: domain1
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create/Update AAD Managed Cluster with EnableAzureRBAC
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AadProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAADProfileArgs
{
EnableAzureRBAC = true,
Managed = true,
},
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
AvailabilityZones = new[]
{
"1",
"2",
"3",
},
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS1_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AadProfile: &containerservice.ManagedClusterAADProfileArgs{
EnableAzureRBAC: pulumi.Bool(true),
Managed: pulumi.Bool(true),
},
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
AvailabilityZones: pulumi.StringArray{
pulumi.String("1"),
pulumi.String("2"),
pulumi.String("3"),
},
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS1_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAADProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.aadProfile(ManagedClusterAADProfileArgs.builder()
.enableAzureRBAC(true)
.managed(true)
.build())
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.availabilityZones(
"1",
"2",
"3")
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS1_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
aadProfile: {
enableAzureRBAC: true,
managed: true,
},
addonProfiles: {},
agentPoolProfiles: [{
availabilityZones: [
"1",
"2",
"3",
],
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS1_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
aad_profile={
"enable_azure_rbac": True,
"managed": True,
},
addon_profiles={},
agent_pool_profiles=[{
"availability_zones": [
"1",
"2",
"3",
],
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS1_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
aadProfile:
enableAzureRBAC: true
managed: true
addonProfiles: {}
agentPoolProfiles:
- availabilityZones:
- '1'
- '2'
- '3'
count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS1_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create/Update Managed Cluster with Azure Service Mesh
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles =
{
{ "azureKeyvaultSecretsProvider", new AzureNative.ContainerService.Inputs.ManagedClusterAddonProfileArgs
{
Config =
{
{ "enableSecretRotation", "true" },
{ "rotationPollInterval", "2m" },
},
Enabled = true,
} },
},
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnablePodSecurityPolicy = true,
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServiceMeshProfile = new AzureNative.ContainerService.Inputs.ServiceMeshProfileArgs
{
Istio = new AzureNative.ContainerService.Inputs.IstioServiceMeshArgs
{
CertificateAuthority = new AzureNative.ContainerService.Inputs.IstioCertificateAuthorityArgs
{
Plugin = new AzureNative.ContainerService.Inputs.IstioPluginCertificateAuthorityArgs
{
CertChainObjectName = "cert-chain",
CertObjectName = "ca-cert",
KeyObjectName = "ca-key",
KeyVaultId = "/subscriptions/854c9ddb-fe9e-4aea-8d58-99ed88282881/resourceGroups/ddama-test/providers/Microsoft.KeyVault/vaults/my-akv",
RootCertObjectName = "root-cert",
},
},
Components = new AzureNative.ContainerService.Inputs.IstioComponentsArgs
{
EgressGateways = new[]
{
new AzureNative.ContainerService.Inputs.IstioEgressGatewayArgs
{
Enabled = true,
},
},
IngressGateways = new[]
{
new AzureNative.ContainerService.Inputs.IstioIngressGatewayArgs
{
Enabled = true,
Mode = AzureNative.ContainerService.IstioIngressGatewayMode.Internal,
},
},
},
},
Mode = AzureNative.ContainerService.ServiceMeshMode.Istio,
},
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{
"azureKeyvaultSecretsProvider": &containerservice.ManagedClusterAddonProfileArgs{
Config: pulumi.StringMap{
"enableSecretRotation": pulumi.String("true"),
"rotationPollInterval": pulumi.String("2m"),
},
Enabled: pulumi.Bool(true),
},
},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnablePodSecurityPolicy: pulumi.Bool(true),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServiceMeshProfile: &containerservice.ServiceMeshProfileArgs{
Istio: &containerservice.IstioServiceMeshArgs{
CertificateAuthority: &containerservice.IstioCertificateAuthorityArgs{
Plugin: &containerservice.IstioPluginCertificateAuthorityArgs{
CertChainObjectName: pulumi.String("cert-chain"),
CertObjectName: pulumi.String("ca-cert"),
KeyObjectName: pulumi.String("ca-key"),
KeyVaultId: pulumi.String("/subscriptions/854c9ddb-fe9e-4aea-8d58-99ed88282881/resourceGroups/ddama-test/providers/Microsoft.KeyVault/vaults/my-akv"),
RootCertObjectName: pulumi.String("root-cert"),
},
},
Components: &containerservice.IstioComponentsArgs{
EgressGateways: containerservice.IstioEgressGatewayArray{
&containerservice.IstioEgressGatewayArgs{
Enabled: pulumi.Bool(true),
},
},
IngressGateways: containerservice.IstioIngressGatewayArray{
&containerservice.IstioIngressGatewayArgs{
Enabled: pulumi.Bool(true),
Mode: pulumi.String(containerservice.IstioIngressGatewayModeInternal),
},
},
},
},
Mode: pulumi.String(containerservice.ServiceMeshModeIstio),
},
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ServiceMeshProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.IstioServiceMeshArgs;
import com.pulumi.azurenative.containerservice.inputs.IstioCertificateAuthorityArgs;
import com.pulumi.azurenative.containerservice.inputs.IstioPluginCertificateAuthorityArgs;
import com.pulumi.azurenative.containerservice.inputs.IstioComponentsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.of("azureKeyvaultSecretsProvider", ManagedClusterAddonProfileArgs.builder()
.config(Map.ofEntries(
Map.entry("enableSecretRotation", "true"),
Map.entry("rotationPollInterval", "2m")
))
.enabled(true)
.build()))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enablePodSecurityPolicy(true)
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.serviceMeshProfile(ServiceMeshProfileArgs.builder()
.istio(IstioServiceMeshArgs.builder()
.certificateAuthority(IstioCertificateAuthorityArgs.builder()
.plugin(IstioPluginCertificateAuthorityArgs.builder()
.certChainObjectName("cert-chain")
.certObjectName("ca-cert")
.keyObjectName("ca-key")
.keyVaultId("/subscriptions/854c9ddb-fe9e-4aea-8d58-99ed88282881/resourceGroups/ddama-test/providers/Microsoft.KeyVault/vaults/my-akv")
.rootCertObjectName("root-cert")
.build())
.build())
.components(IstioComponentsArgs.builder()
.egressGateways(IstioEgressGatewayArgs.builder()
.enabled(true)
.build())
.ingressGateways(IstioIngressGatewayArgs.builder()
.enabled(true)
.mode("Internal")
.build())
.build())
.build())
.mode("Istio")
.build())
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {
azureKeyvaultSecretsProvider: {
config: {
enableSecretRotation: "true",
rotationPollInterval: "2m",
},
enabled: true,
},
},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enablePodSecurityPolicy: true,
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
serviceMeshProfile: {
istio: {
certificateAuthority: {
plugin: {
certChainObjectName: "cert-chain",
certObjectName: "ca-cert",
keyObjectName: "ca-key",
keyVaultId: "/subscriptions/854c9ddb-fe9e-4aea-8d58-99ed88282881/resourceGroups/ddama-test/providers/Microsoft.KeyVault/vaults/my-akv",
rootCertObjectName: "root-cert",
},
},
components: {
egressGateways: [{
enabled: true,
}],
ingressGateways: [{
enabled: true,
mode: azure_native.containerservice.IstioIngressGatewayMode.Internal,
}],
},
},
mode: azure_native.containerservice.ServiceMeshMode.Istio,
},
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={
"azureKeyvaultSecretsProvider": {
"config": {
"enableSecretRotation": "true",
"rotationPollInterval": "2m",
},
"enabled": True,
},
},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_pod_security_policy=True,
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_mesh_profile={
"istio": {
"certificate_authority": {
"plugin": {
"cert_chain_object_name": "cert-chain",
"cert_object_name": "ca-cert",
"key_object_name": "ca-key",
"key_vault_id": "/subscriptions/854c9ddb-fe9e-4aea-8d58-99ed88282881/resourceGroups/ddama-test/providers/Microsoft.KeyVault/vaults/my-akv",
"root_cert_object_name": "root-cert",
},
},
"components": {
"egress_gateways": [{
"enabled": True,
}],
"ingress_gateways": [{
"enabled": True,
"mode": azure_native.containerservice.IstioIngressGatewayMode.INTERNAL,
}],
},
},
"mode": azure_native.containerservice.ServiceMeshMode.ISTIO,
},
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles:
azureKeyvaultSecretsProvider:
config:
enableSecretRotation: 'true'
rotationPollInterval: 2m
enabled: true
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enablePodSecurityPolicy: true
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
serviceMeshProfile:
istio:
certificateAuthority:
plugin:
certChainObjectName: cert-chain
certObjectName: ca-cert
keyObjectName: ca-key
keyVaultId: /subscriptions/854c9ddb-fe9e-4aea-8d58-99ed88282881/resourceGroups/ddama-test/providers/Microsoft.KeyVault/vaults/my-akv
rootCertObjectName: root-cert
components:
egressGateways:
- enabled: true
ingressGateways:
- enabled: true
mode: Internal
mode: Istio
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create ManagedCluster Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new ManagedCluster(name: string, args: ManagedClusterArgs, opts?: CustomResourceOptions);@overload
def ManagedCluster(resource_name: str,
args: ManagedClusterArgs,
opts: Optional[ResourceOptions] = None)
@overload
def ManagedCluster(resource_name: str,
opts: Optional[ResourceOptions] = None,
resource_group_name: Optional[str] = None,
location: Optional[str] = None,
identity: Optional[ManagedClusterIdentityArgs] = None,
api_server_access_profile: Optional[ManagedClusterAPIServerAccessProfileArgs] = None,
auto_scaler_profile: Optional[ManagedClusterPropertiesAutoScalerProfileArgs] = None,
auto_upgrade_profile: Optional[ManagedClusterAutoUpgradeProfileArgs] = None,
azure_monitor_profile: Optional[ManagedClusterAzureMonitorProfileArgs] = None,
disable_local_accounts: Optional[bool] = None,
disk_encryption_set_id: Optional[str] = None,
dns_prefix: Optional[str] = None,
enable_pod_security_policy: Optional[bool] = None,
enable_rbac: Optional[bool] = None,
extended_location: Optional[ExtendedLocationArgs] = None,
fqdn_subdomain: Optional[str] = None,
http_proxy_config: Optional[ManagedClusterHTTPProxyConfigArgs] = None,
aad_profile: Optional[ManagedClusterAADProfileArgs] = None,
identity_profile: Optional[Mapping[str, UserAssignedIdentityArgs]] = None,
ingress_profile: Optional[ManagedClusterIngressProfileArgs] = None,
kubernetes_version: Optional[str] = None,
agent_pool_profiles: Optional[Sequence[ManagedClusterAgentPoolProfileArgs]] = None,
linux_profile: Optional[ContainerServiceLinuxProfileArgs] = None,
pod_identity_profile: Optional[ManagedClusterPodIdentityProfileArgs] = None,
network_profile: Optional[ContainerServiceNetworkProfileArgs] = None,
node_resource_group: Optional[str] = None,
node_resource_group_profile: Optional[ManagedClusterNodeResourceGroupProfileArgs] = None,
oidc_issuer_profile: Optional[ManagedClusterOIDCIssuerProfileArgs] = None,
metrics_profile: Optional[ManagedClusterMetricsProfileArgs] = None,
private_link_resources: Optional[Sequence[PrivateLinkResourceArgs]] = None,
public_network_access: Optional[Union[str, PublicNetworkAccess]] = None,
addon_profiles: Optional[Mapping[str, ManagedClusterAddonProfileArgs]] = None,
resource_name_: Optional[str] = None,
security_profile: Optional[ManagedClusterSecurityProfileArgs] = None,
service_mesh_profile: Optional[ServiceMeshProfileArgs] = None,
service_principal_profile: Optional[ManagedClusterServicePrincipalProfileArgs] = None,
sku: Optional[ManagedClusterSKUArgs] = None,
storage_profile: Optional[ManagedClusterStorageProfileArgs] = None,
support_plan: Optional[Union[str, KubernetesSupportPlan]] = None,
tags: Optional[Mapping[str, str]] = None,
upgrade_settings: Optional[ClusterUpgradeSettingsArgs] = None,
windows_profile: Optional[ManagedClusterWindowsProfileArgs] = None,
workload_auto_scaler_profile: Optional[ManagedClusterWorkloadAutoScalerProfileArgs] = None)func NewManagedCluster(ctx *Context, name string, args ManagedClusterArgs, opts ...ResourceOption) (*ManagedCluster, error)public ManagedCluster(string name, ManagedClusterArgs args, CustomResourceOptions? opts = null)
public ManagedCluster(String name, ManagedClusterArgs args)
public ManagedCluster(String name, ManagedClusterArgs args, CustomResourceOptions options)
type: azure-native:containerservice:ManagedCluster
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ManagedClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ManagedClusterArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ManagedClusterArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ManagedClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ManagedClusterArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var managedClusterResource = new AzureNative.ContainerService.ManagedCluster("managedClusterResource", new()
{
ResourceGroupName = "string",
Location = "string",
Identity = new AzureNative.ContainerService.Inputs.ManagedClusterIdentityArgs
{
DelegatedResources =
{
{ "string", new AzureNative.ContainerService.Inputs.DelegatedResourceArgs
{
Location = "string",
ReferralResource = "string",
ResourceId = "string",
TenantId = "string",
} },
},
Type = AzureNative.ContainerService.ResourceIdentityType.SystemAssigned,
UserAssignedIdentities = new[]
{
"string",
},
},
ApiServerAccessProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAPIServerAccessProfileArgs
{
AuthorizedIPRanges = new[]
{
"string",
},
DisableRunCommand = false,
EnablePrivateCluster = false,
EnablePrivateClusterPublicFQDN = false,
PrivateDNSZone = "string",
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
BalanceSimilarNodeGroups = "string",
DaemonsetEvictionForEmptyNodes = false,
DaemonsetEvictionForOccupiedNodes = false,
Expander = "string",
IgnoreDaemonsetsUtilization = false,
MaxEmptyBulkDelete = "string",
MaxGracefulTerminationSec = "string",
MaxNodeProvisionTime = "string",
MaxTotalUnreadyPercentage = "string",
NewPodScaleUpDelay = "string",
OkTotalUnreadyCount = "string",
ScaleDownDelayAfterAdd = "string",
ScaleDownDelayAfterDelete = "string",
ScaleDownDelayAfterFailure = "string",
ScaleDownUnneededTime = "string",
ScaleDownUnreadyTime = "string",
ScaleDownUtilizationThreshold = "string",
ScanInterval = "string",
SkipNodesWithLocalStorage = "string",
SkipNodesWithSystemPods = "string",
},
AutoUpgradeProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAutoUpgradeProfileArgs
{
NodeOSUpgradeChannel = "string",
UpgradeChannel = "string",
},
AzureMonitorProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAzureMonitorProfileArgs
{
Metrics = new AzureNative.ContainerService.Inputs.ManagedClusterAzureMonitorProfileMetricsArgs
{
Enabled = false,
KubeStateMetrics = new AzureNative.ContainerService.Inputs.ManagedClusterAzureMonitorProfileKubeStateMetricsArgs
{
MetricAnnotationsAllowList = "string",
MetricLabelsAllowlist = "string",
},
},
},
DisableLocalAccounts = false,
DiskEncryptionSetID = "string",
DnsPrefix = "string",
EnablePodSecurityPolicy = false,
EnableRBAC = false,
ExtendedLocation = new AzureNative.ContainerService.Inputs.ExtendedLocationArgs
{
Name = "string",
Type = "string",
},
FqdnSubdomain = "string",
HttpProxyConfig = new AzureNative.ContainerService.Inputs.ManagedClusterHTTPProxyConfigArgs
{
HttpProxy = "string",
HttpsProxy = "string",
NoProxy = new[]
{
"string",
},
TrustedCa = "string",
},
AadProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAADProfileArgs
{
AdminGroupObjectIDs = new[]
{
"string",
},
ClientAppID = "string",
EnableAzureRBAC = false,
Managed = false,
ServerAppID = "string",
ServerAppSecret = "string",
TenantID = "string",
},
IdentityProfile =
{
{ "string", new AzureNative.ContainerService.Inputs.UserAssignedIdentityArgs
{
ClientId = "string",
ObjectId = "string",
ResourceId = "string",
} },
},
IngressProfile = new AzureNative.ContainerService.Inputs.ManagedClusterIngressProfileArgs
{
WebAppRouting = new AzureNative.ContainerService.Inputs.ManagedClusterIngressProfileWebAppRoutingArgs
{
DnsZoneResourceIds = new[]
{
"string",
},
Enabled = false,
},
},
KubernetesVersion = "string",
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Name = "string",
NodePublicIPPrefixID = "string",
NodeTaints = new[]
{
"string",
},
CreationData = new AzureNative.ContainerService.Inputs.CreationDataArgs
{
SourceResourceId = "string",
},
EnableAutoScaling = false,
EnableEncryptionAtHost = false,
EnableFIPS = false,
EnableNodePublicIP = false,
EnableUltraSSD = false,
GpuInstanceProfile = "string",
HostGroupID = "string",
KubeletConfig = new AzureNative.ContainerService.Inputs.KubeletConfigArgs
{
AllowedUnsafeSysctls = new[]
{
"string",
},
ContainerLogMaxFiles = 0,
ContainerLogMaxSizeMB = 0,
CpuCfsQuota = false,
CpuCfsQuotaPeriod = "string",
CpuManagerPolicy = "string",
FailSwapOn = false,
ImageGcHighThreshold = 0,
ImageGcLowThreshold = 0,
PodMaxPids = 0,
TopologyManagerPolicy = "string",
},
KubeletDiskType = "string",
LinuxOSConfig = new AzureNative.ContainerService.Inputs.LinuxOSConfigArgs
{
SwapFileSizeMB = 0,
Sysctls = new AzureNative.ContainerService.Inputs.SysctlConfigArgs
{
FsAioMaxNr = 0,
FsFileMax = 0,
FsInotifyMaxUserWatches = 0,
FsNrOpen = 0,
KernelThreadsMax = 0,
NetCoreNetdevMaxBacklog = 0,
NetCoreOptmemMax = 0,
NetCoreRmemDefault = 0,
NetCoreRmemMax = 0,
NetCoreSomaxconn = 0,
NetCoreWmemDefault = 0,
NetCoreWmemMax = 0,
NetIpv4IpLocalPortRange = "string",
NetIpv4NeighDefaultGcThresh1 = 0,
NetIpv4NeighDefaultGcThresh2 = 0,
NetIpv4NeighDefaultGcThresh3 = 0,
NetIpv4TcpFinTimeout = 0,
NetIpv4TcpKeepaliveProbes = 0,
NetIpv4TcpKeepaliveTime = 0,
NetIpv4TcpMaxSynBacklog = 0,
NetIpv4TcpMaxTwBuckets = 0,
NetIpv4TcpTwReuse = false,
NetIpv4TcpkeepaliveIntvl = 0,
NetNetfilterNfConntrackBuckets = 0,
NetNetfilterNfConntrackMax = 0,
VmMaxMapCount = 0,
VmSwappiness = 0,
VmVfsCachePressure = 0,
},
TransparentHugePageDefrag = "string",
TransparentHugePageEnabled = "string",
},
MaxCount = 0,
MaxPods = 0,
MessageOfTheDay = "string",
MinCount = 0,
AvailabilityZones = new[]
{
"string",
},
CapacityReservationGroupID = "string",
NetworkProfile = new AzureNative.ContainerService.Inputs.AgentPoolNetworkProfileArgs
{
AllowedHostPorts = new[]
{
new AzureNative.ContainerService.Inputs.PortRangeArgs
{
PortEnd = 0,
PortStart = 0,
Protocol = "string",
},
},
ApplicationSecurityGroups = new[]
{
"string",
},
NodePublicIPTags = new[]
{
new AzureNative.ContainerService.Inputs.IPTagArgs
{
IpTagType = "string",
Tag = "string",
},
},
},
Count = 0,
NodeLabels =
{
{ "string", "string" },
},
Mode = "string",
OrchestratorVersion = "string",
OsDiskSizeGB = 0,
OsDiskType = "string",
OsSKU = "string",
OsType = "string",
PodSubnetID = "string",
PowerState = new AzureNative.ContainerService.Inputs.PowerStateArgs
{
Code = "string",
},
ProximityPlacementGroupID = "string",
ScaleDownMode = "string",
ScaleSetEvictionPolicy = "string",
ScaleSetPriority = "string",
SecurityProfile = new AzureNative.ContainerService.Inputs.AgentPoolSecurityProfileArgs
{
EnableSecureBoot = false,
EnableVTPM = false,
},
SpotMaxPrice = 0,
Tags =
{
{ "string", "string" },
},
Type = "string",
UpgradeSettings = new AzureNative.ContainerService.Inputs.AgentPoolUpgradeSettingsArgs
{
DrainTimeoutInMinutes = 0,
MaxSurge = "string",
NodeSoakDurationInMinutes = 0,
},
VmSize = "string",
VnetSubnetID = "string",
WindowsProfile = new AzureNative.ContainerService.Inputs.AgentPoolWindowsProfileArgs
{
DisableOutboundNat = false,
},
WorkloadRuntime = "string",
},
},
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "string",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "string",
},
},
},
},
PodIdentityProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityProfileArgs
{
AllowNetworkPluginKubenet = false,
Enabled = false,
UserAssignedIdentities = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityArgs
{
Identity = new AzureNative.ContainerService.Inputs.UserAssignedIdentityArgs
{
ClientId = "string",
ObjectId = "string",
ResourceId = "string",
},
Name = "string",
Namespace = "string",
BindingSelector = "string",
},
},
UserAssignedIdentityExceptions = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityExceptionArgs
{
Name = "string",
Namespace = "string",
PodLabels =
{
{ "string", "string" },
},
},
},
},
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
AdvancedNetworking = new AzureNative.ContainerService.Inputs.AdvancedNetworkingArgs
{
Enabled = false,
Observability = new AzureNative.ContainerService.Inputs.AdvancedNetworkingObservabilityArgs
{
Enabled = false,
},
Security = new AzureNative.ContainerService.Inputs.AdvancedNetworkingSecurityArgs
{
Enabled = false,
},
},
DnsServiceIP = "string",
IpFamilies = new[]
{
"string",
},
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
AllocatedOutboundPorts = 0,
BackendPoolType = "string",
EffectiveOutboundIPs = new[]
{
new AzureNative.ContainerService.Inputs.ResourceReferenceArgs
{
Id = "string",
},
},
EnableMultipleStandardLoadBalancers = false,
IdleTimeoutInMinutes = 0,
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 0,
CountIPv6 = 0,
},
OutboundIPPrefixes = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileOutboundIPPrefixesArgs
{
PublicIPPrefixes = new[]
{
new AzureNative.ContainerService.Inputs.ResourceReferenceArgs
{
Id = "string",
},
},
},
OutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileOutboundIPsArgs
{
PublicIPs = new[]
{
new AzureNative.ContainerService.Inputs.ResourceReferenceArgs
{
Id = "string",
},
},
},
},
LoadBalancerSku = "string",
NatGatewayProfile = new AzureNative.ContainerService.Inputs.ManagedClusterNATGatewayProfileArgs
{
EffectiveOutboundIPs = new[]
{
new AzureNative.ContainerService.Inputs.ResourceReferenceArgs
{
Id = "string",
},
},
IdleTimeoutInMinutes = 0,
ManagedOutboundIPProfile = new AzureNative.ContainerService.Inputs.ManagedClusterManagedOutboundIPProfileArgs
{
Count = 0,
},
},
NetworkDataplane = "string",
NetworkMode = "string",
NetworkPlugin = "string",
NetworkPluginMode = "string",
NetworkPolicy = "string",
OutboundType = "string",
PodCidr = "string",
PodCidrs = new[]
{
"string",
},
ServiceCidr = "string",
ServiceCidrs = new[]
{
"string",
},
},
NodeResourceGroup = "string",
NodeResourceGroupProfile = new AzureNative.ContainerService.Inputs.ManagedClusterNodeResourceGroupProfileArgs
{
RestrictionLevel = "string",
},
OidcIssuerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterOIDCIssuerProfileArgs
{
Enabled = false,
},
MetricsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterMetricsProfileArgs
{
CostAnalysis = new AzureNative.ContainerService.Inputs.ManagedClusterCostAnalysisArgs
{
Enabled = false,
},
},
PrivateLinkResources = new[]
{
new AzureNative.ContainerService.Inputs.PrivateLinkResourceArgs
{
GroupId = "string",
Id = "string",
Name = "string",
RequiredMembers = new[]
{
"string",
},
Type = "string",
},
},
PublicNetworkAccess = "string",
AddonProfiles =
{
{ "string", new AzureNative.ContainerService.Inputs.ManagedClusterAddonProfileArgs
{
Enabled = false,
Config =
{
{ "string", "string" },
},
} },
},
ResourceName = "string",
SecurityProfile = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileArgs
{
AzureKeyVaultKms = new AzureNative.ContainerService.Inputs.AzureKeyVaultKmsArgs
{
Enabled = false,
KeyId = "string",
KeyVaultNetworkAccess = "string",
KeyVaultResourceId = "string",
},
Defender = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileDefenderArgs
{
LogAnalyticsWorkspaceResourceId = "string",
SecurityMonitoring = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs
{
Enabled = false,
},
},
ImageCleaner = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileImageCleanerArgs
{
Enabled = false,
IntervalHours = 0,
},
WorkloadIdentity = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileWorkloadIdentityArgs
{
Enabled = false,
},
},
ServiceMeshProfile = new AzureNative.ContainerService.Inputs.ServiceMeshProfileArgs
{
Mode = "string",
Istio = new AzureNative.ContainerService.Inputs.IstioServiceMeshArgs
{
CertificateAuthority = new AzureNative.ContainerService.Inputs.IstioCertificateAuthorityArgs
{
Plugin = new AzureNative.ContainerService.Inputs.IstioPluginCertificateAuthorityArgs
{
CertChainObjectName = "string",
CertObjectName = "string",
KeyObjectName = "string",
KeyVaultId = "string",
RootCertObjectName = "string",
},
},
Components = new AzureNative.ContainerService.Inputs.IstioComponentsArgs
{
EgressGateways = new[]
{
new AzureNative.ContainerService.Inputs.IstioEgressGatewayArgs
{
Enabled = false,
},
},
IngressGateways = new[]
{
new AzureNative.ContainerService.Inputs.IstioIngressGatewayArgs
{
Enabled = false,
Mode = "string",
},
},
},
Revisions = new[]
{
"string",
},
},
},
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "string",
Secret = "string",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "string",
Tier = "string",
},
StorageProfile = new AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileArgs
{
BlobCSIDriver = new AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileBlobCSIDriverArgs
{
Enabled = false,
},
DiskCSIDriver = new AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileDiskCSIDriverArgs
{
Enabled = false,
},
FileCSIDriver = new AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileFileCSIDriverArgs
{
Enabled = false,
},
SnapshotController = new AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileSnapshotControllerArgs
{
Enabled = false,
},
},
SupportPlan = "string",
Tags =
{
{ "string", "string" },
},
UpgradeSettings = new AzureNative.ContainerService.Inputs.ClusterUpgradeSettingsArgs
{
OverrideSettings = new AzureNative.ContainerService.Inputs.UpgradeOverrideSettingsArgs
{
ForceUpgrade = false,
Until = "string",
},
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminUsername = "string",
AdminPassword = "string",
EnableCSIProxy = false,
GmsaProfile = new AzureNative.ContainerService.Inputs.WindowsGmsaProfileArgs
{
DnsServer = "string",
Enabled = false,
RootDomainName = "string",
},
LicenseType = "string",
},
WorkloadAutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWorkloadAutoScalerProfileArgs
{
Keda = new AzureNative.ContainerService.Inputs.ManagedClusterWorkloadAutoScalerProfileKedaArgs
{
Enabled = false,
},
VerticalPodAutoscaler = new AzureNative.ContainerService.Inputs.ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerArgs
{
Enabled = false,
},
},
});
example, err := containerservice.NewManagedCluster(ctx, "managedClusterResource", &containerservice.ManagedClusterArgs{
ResourceGroupName: pulumi.String("string"),
Location: pulumi.String("string"),
Identity: &containerservice.ManagedClusterIdentityArgs{
DelegatedResources: containerservice.DelegatedResourceMap{
"string": &containerservice.DelegatedResourceArgs{
Location: pulumi.String("string"),
ReferralResource: pulumi.String("string"),
ResourceId: pulumi.String("string"),
TenantId: pulumi.String("string"),
},
},
Type: containerservice.ResourceIdentityTypeSystemAssigned,
UserAssignedIdentities: pulumi.StringArray{
pulumi.String("string"),
},
},
ApiServerAccessProfile: &containerservice.ManagedClusterAPIServerAccessProfileArgs{
AuthorizedIPRanges: pulumi.StringArray{
pulumi.String("string"),
},
DisableRunCommand: pulumi.Bool(false),
EnablePrivateCluster: pulumi.Bool(false),
EnablePrivateClusterPublicFQDN: pulumi.Bool(false),
PrivateDNSZone: pulumi.String("string"),
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
BalanceSimilarNodeGroups: pulumi.String("string"),
DaemonsetEvictionForEmptyNodes: pulumi.Bool(false),
DaemonsetEvictionForOccupiedNodes: pulumi.Bool(false),
Expander: pulumi.String("string"),
IgnoreDaemonsetsUtilization: pulumi.Bool(false),
MaxEmptyBulkDelete: pulumi.String("string"),
MaxGracefulTerminationSec: pulumi.String("string"),
MaxNodeProvisionTime: pulumi.String("string"),
MaxTotalUnreadyPercentage: pulumi.String("string"),
NewPodScaleUpDelay: pulumi.String("string"),
OkTotalUnreadyCount: pulumi.String("string"),
ScaleDownDelayAfterAdd: pulumi.String("string"),
ScaleDownDelayAfterDelete: pulumi.String("string"),
ScaleDownDelayAfterFailure: pulumi.String("string"),
ScaleDownUnneededTime: pulumi.String("string"),
ScaleDownUnreadyTime: pulumi.String("string"),
ScaleDownUtilizationThreshold: pulumi.String("string"),
ScanInterval: pulumi.String("string"),
SkipNodesWithLocalStorage: pulumi.String("string"),
SkipNodesWithSystemPods: pulumi.String("string"),
},
AutoUpgradeProfile: &containerservice.ManagedClusterAutoUpgradeProfileArgs{
NodeOSUpgradeChannel: pulumi.String("string"),
UpgradeChannel: pulumi.String("string"),
},
AzureMonitorProfile: &containerservice.ManagedClusterAzureMonitorProfileArgs{
Metrics: &containerservice.ManagedClusterAzureMonitorProfileMetricsArgs{
Enabled: pulumi.Bool(false),
KubeStateMetrics: &containerservice.ManagedClusterAzureMonitorProfileKubeStateMetricsArgs{
MetricAnnotationsAllowList: pulumi.String("string"),
MetricLabelsAllowlist: pulumi.String("string"),
},
},
},
DisableLocalAccounts: pulumi.Bool(false),
DiskEncryptionSetID: pulumi.String("string"),
DnsPrefix: pulumi.String("string"),
EnablePodSecurityPolicy: pulumi.Bool(false),
EnableRBAC: pulumi.Bool(false),
ExtendedLocation: &containerservice.ExtendedLocationArgs{
Name: pulumi.String("string"),
Type: pulumi.String("string"),
},
FqdnSubdomain: pulumi.String("string"),
HttpProxyConfig: &containerservice.ManagedClusterHTTPProxyConfigArgs{
HttpProxy: pulumi.String("string"),
HttpsProxy: pulumi.String("string"),
NoProxy: pulumi.StringArray{
pulumi.String("string"),
},
TrustedCa: pulumi.String("string"),
},
AadProfile: &containerservice.ManagedClusterAADProfileArgs{
AdminGroupObjectIDs: pulumi.StringArray{
pulumi.String("string"),
},
ClientAppID: pulumi.String("string"),
EnableAzureRBAC: pulumi.Bool(false),
Managed: pulumi.Bool(false),
ServerAppID: pulumi.String("string"),
ServerAppSecret: pulumi.String("string"),
TenantID: pulumi.String("string"),
},
IdentityProfile: containerservice.UserAssignedIdentityMap{
"string": &containerservice.UserAssignedIdentityArgs{
ClientId: pulumi.String("string"),
ObjectId: pulumi.String("string"),
ResourceId: pulumi.String("string"),
},
},
IngressProfile: &containerservice.ManagedClusterIngressProfileArgs{
WebAppRouting: &containerservice.ManagedClusterIngressProfileWebAppRoutingArgs{
DnsZoneResourceIds: pulumi.StringArray{
pulumi.String("string"),
},
Enabled: pulumi.Bool(false),
},
},
KubernetesVersion: pulumi.String("string"),
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Name: pulumi.String("string"),
NodePublicIPPrefixID: pulumi.String("string"),
NodeTaints: pulumi.StringArray{
pulumi.String("string"),
},
CreationData: &containerservice.CreationDataArgs{
SourceResourceId: pulumi.String("string"),
},
EnableAutoScaling: pulumi.Bool(false),
EnableEncryptionAtHost: pulumi.Bool(false),
EnableFIPS: pulumi.Bool(false),
EnableNodePublicIP: pulumi.Bool(false),
EnableUltraSSD: pulumi.Bool(false),
GpuInstanceProfile: pulumi.String("string"),
HostGroupID: pulumi.String("string"),
KubeletConfig: &containerservice.KubeletConfigArgs{
AllowedUnsafeSysctls: pulumi.StringArray{
pulumi.String("string"),
},
ContainerLogMaxFiles: pulumi.Int(0),
ContainerLogMaxSizeMB: pulumi.Int(0),
CpuCfsQuota: pulumi.Bool(false),
CpuCfsQuotaPeriod: pulumi.String("string"),
CpuManagerPolicy: pulumi.String("string"),
FailSwapOn: pulumi.Bool(false),
ImageGcHighThreshold: pulumi.Int(0),
ImageGcLowThreshold: pulumi.Int(0),
PodMaxPids: pulumi.Int(0),
TopologyManagerPolicy: pulumi.String("string"),
},
KubeletDiskType: pulumi.String("string"),
LinuxOSConfig: &containerservice.LinuxOSConfigArgs{
SwapFileSizeMB: pulumi.Int(0),
Sysctls: &containerservice.SysctlConfigArgs{
FsAioMaxNr: pulumi.Int(0),
FsFileMax: pulumi.Int(0),
FsInotifyMaxUserWatches: pulumi.Int(0),
FsNrOpen: pulumi.Int(0),
KernelThreadsMax: pulumi.Int(0),
NetCoreNetdevMaxBacklog: pulumi.Int(0),
NetCoreOptmemMax: pulumi.Int(0),
NetCoreRmemDefault: pulumi.Int(0),
NetCoreRmemMax: pulumi.Int(0),
NetCoreSomaxconn: pulumi.Int(0),
NetCoreWmemDefault: pulumi.Int(0),
NetCoreWmemMax: pulumi.Int(0),
NetIpv4IpLocalPortRange: pulumi.String("string"),
NetIpv4NeighDefaultGcThresh1: pulumi.Int(0),
NetIpv4NeighDefaultGcThresh2: pulumi.Int(0),
NetIpv4NeighDefaultGcThresh3: pulumi.Int(0),
NetIpv4TcpFinTimeout: pulumi.Int(0),
NetIpv4TcpKeepaliveProbes: pulumi.Int(0),
NetIpv4TcpKeepaliveTime: pulumi.Int(0),
NetIpv4TcpMaxSynBacklog: pulumi.Int(0),
NetIpv4TcpMaxTwBuckets: pulumi.Int(0),
NetIpv4TcpTwReuse: pulumi.Bool(false),
NetIpv4TcpkeepaliveIntvl: pulumi.Int(0),
NetNetfilterNfConntrackBuckets: pulumi.Int(0),
NetNetfilterNfConntrackMax: pulumi.Int(0),
VmMaxMapCount: pulumi.Int(0),
VmSwappiness: pulumi.Int(0),
VmVfsCachePressure: pulumi.Int(0),
},
TransparentHugePageDefrag: pulumi.String("string"),
TransparentHugePageEnabled: pulumi.String("string"),
},
MaxCount: pulumi.Int(0),
MaxPods: pulumi.Int(0),
MessageOfTheDay: pulumi.String("string"),
MinCount: pulumi.Int(0),
AvailabilityZones: pulumi.StringArray{
pulumi.String("string"),
},
CapacityReservationGroupID: pulumi.String("string"),
NetworkProfile: &containerservice.AgentPoolNetworkProfileArgs{
AllowedHostPorts: containerservice.PortRangeArray{
&containerservice.PortRangeArgs{
PortEnd: pulumi.Int(0),
PortStart: pulumi.Int(0),
Protocol: pulumi.String("string"),
},
},
ApplicationSecurityGroups: pulumi.StringArray{
pulumi.String("string"),
},
NodePublicIPTags: containerservice.IPTagArray{
&containerservice.IPTagArgs{
IpTagType: pulumi.String("string"),
Tag: pulumi.String("string"),
},
},
},
Count: pulumi.Int(0),
NodeLabels: pulumi.StringMap{
"string": pulumi.String("string"),
},
Mode: pulumi.String("string"),
OrchestratorVersion: pulumi.String("string"),
OsDiskSizeGB: pulumi.Int(0),
OsDiskType: pulumi.String("string"),
OsSKU: pulumi.String("string"),
OsType: pulumi.String("string"),
PodSubnetID: pulumi.String("string"),
PowerState: &containerservice.PowerStateArgs{
Code: pulumi.String("string"),
},
ProximityPlacementGroupID: pulumi.String("string"),
ScaleDownMode: pulumi.String("string"),
ScaleSetEvictionPolicy: pulumi.String("string"),
ScaleSetPriority: pulumi.String("string"),
SecurityProfile: &containerservice.AgentPoolSecurityProfileArgs{
EnableSecureBoot: pulumi.Bool(false),
EnableVTPM: pulumi.Bool(false),
},
SpotMaxPrice: pulumi.Float64(0),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
Type: pulumi.String("string"),
UpgradeSettings: &containerservice.AgentPoolUpgradeSettingsArgs{
DrainTimeoutInMinutes: pulumi.Int(0),
MaxSurge: pulumi.String("string"),
NodeSoakDurationInMinutes: pulumi.Int(0),
},
VmSize: pulumi.String("string"),
VnetSubnetID: pulumi.String("string"),
WindowsProfile: &containerservice.AgentPoolWindowsProfileArgs{
DisableOutboundNat: pulumi.Bool(false),
},
WorkloadRuntime: pulumi.String("string"),
},
},
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("string"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("string"),
},
},
},
},
PodIdentityProfile: &containerservice.ManagedClusterPodIdentityProfileArgs{
AllowNetworkPluginKubenet: pulumi.Bool(false),
Enabled: pulumi.Bool(false),
UserAssignedIdentities: containerservice.ManagedClusterPodIdentityArray{
&containerservice.ManagedClusterPodIdentityArgs{
Identity: &containerservice.UserAssignedIdentityArgs{
ClientId: pulumi.String("string"),
ObjectId: pulumi.String("string"),
ResourceId: pulumi.String("string"),
},
Name: pulumi.String("string"),
Namespace: pulumi.String("string"),
BindingSelector: pulumi.String("string"),
},
},
UserAssignedIdentityExceptions: containerservice.ManagedClusterPodIdentityExceptionArray{
&containerservice.ManagedClusterPodIdentityExceptionArgs{
Name: pulumi.String("string"),
Namespace: pulumi.String("string"),
PodLabels: pulumi.StringMap{
"string": pulumi.String("string"),
},
},
},
},
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
AdvancedNetworking: &containerservice.AdvancedNetworkingArgs{
Enabled: pulumi.Bool(false),
Observability: &containerservice.AdvancedNetworkingObservabilityArgs{
Enabled: pulumi.Bool(false),
},
Security: &containerservice.AdvancedNetworkingSecurityArgs{
Enabled: pulumi.Bool(false),
},
},
DnsServiceIP: pulumi.String("string"),
IpFamilies: pulumi.StringArray{
pulumi.String("string"),
},
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
AllocatedOutboundPorts: pulumi.Int(0),
BackendPoolType: pulumi.String("string"),
EffectiveOutboundIPs: containerservice.ResourceReferenceArray{
&containerservice.ResourceReferenceArgs{
Id: pulumi.String("string"),
},
},
EnableMultipleStandardLoadBalancers: pulumi.Bool(false),
IdleTimeoutInMinutes: pulumi.Int(0),
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(0),
CountIPv6: pulumi.Int(0),
},
OutboundIPPrefixes: &containerservice.ManagedClusterLoadBalancerProfileOutboundIPPrefixesArgs{
PublicIPPrefixes: containerservice.ResourceReferenceArray{
&containerservice.ResourceReferenceArgs{
Id: pulumi.String("string"),
},
},
},
OutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileOutboundIPsArgs{
PublicIPs: containerservice.ResourceReferenceArray{
&containerservice.ResourceReferenceArgs{
Id: pulumi.String("string"),
},
},
},
},
LoadBalancerSku: pulumi.String("string"),
NatGatewayProfile: &containerservice.ManagedClusterNATGatewayProfileArgs{
EffectiveOutboundIPs: containerservice.ResourceReferenceArray{
&containerservice.ResourceReferenceArgs{
Id: pulumi.String("string"),
},
},
IdleTimeoutInMinutes: pulumi.Int(0),
ManagedOutboundIPProfile: &containerservice.ManagedClusterManagedOutboundIPProfileArgs{
Count: pulumi.Int(0),
},
},
NetworkDataplane: pulumi.String("string"),
NetworkMode: pulumi.String("string"),
NetworkPlugin: pulumi.String("string"),
NetworkPluginMode: pulumi.String("string"),
NetworkPolicy: pulumi.String("string"),
OutboundType: pulumi.String("string"),
PodCidr: pulumi.String("string"),
PodCidrs: pulumi.StringArray{
pulumi.String("string"),
},
ServiceCidr: pulumi.String("string"),
ServiceCidrs: pulumi.StringArray{
pulumi.String("string"),
},
},
NodeResourceGroup: pulumi.String("string"),
NodeResourceGroupProfile: &containerservice.ManagedClusterNodeResourceGroupProfileArgs{
RestrictionLevel: pulumi.String("string"),
},
OidcIssuerProfile: &containerservice.ManagedClusterOIDCIssuerProfileArgs{
Enabled: pulumi.Bool(false),
},
MetricsProfile: &containerservice.ManagedClusterMetricsProfileArgs{
CostAnalysis: &containerservice.ManagedClusterCostAnalysisArgs{
Enabled: pulumi.Bool(false),
},
},
PrivateLinkResources: containerservice.PrivateLinkResourceArray{
&containerservice.PrivateLinkResourceArgs{
GroupId: pulumi.String("string"),
Id: pulumi.String("string"),
Name: pulumi.String("string"),
RequiredMembers: pulumi.StringArray{
pulumi.String("string"),
},
Type: pulumi.String("string"),
},
},
PublicNetworkAccess: pulumi.String("string"),
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{
"string": &containerservice.ManagedClusterAddonProfileArgs{
Enabled: pulumi.Bool(false),
Config: pulumi.StringMap{
"string": pulumi.String("string"),
},
},
},
ResourceName: pulumi.String("string"),
SecurityProfile: &containerservice.ManagedClusterSecurityProfileArgs{
AzureKeyVaultKms: &containerservice.AzureKeyVaultKmsArgs{
Enabled: pulumi.Bool(false),
KeyId: pulumi.String("string"),
KeyVaultNetworkAccess: pulumi.String("string"),
KeyVaultResourceId: pulumi.String("string"),
},
Defender: &containerservice.ManagedClusterSecurityProfileDefenderArgs{
LogAnalyticsWorkspaceResourceId: pulumi.String("string"),
SecurityMonitoring: &containerservice.ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs{
Enabled: pulumi.Bool(false),
},
},
ImageCleaner: &containerservice.ManagedClusterSecurityProfileImageCleanerArgs{
Enabled: pulumi.Bool(false),
IntervalHours: pulumi.Int(0),
},
WorkloadIdentity: &containerservice.ManagedClusterSecurityProfileWorkloadIdentityArgs{
Enabled: pulumi.Bool(false),
},
},
ServiceMeshProfile: &containerservice.ServiceMeshProfileArgs{
Mode: pulumi.String("string"),
Istio: &containerservice.IstioServiceMeshArgs{
CertificateAuthority: &containerservice.IstioCertificateAuthorityArgs{
Plugin: &containerservice.IstioPluginCertificateAuthorityArgs{
CertChainObjectName: pulumi.String("string"),
CertObjectName: pulumi.String("string"),
KeyObjectName: pulumi.String("string"),
KeyVaultId: pulumi.String("string"),
RootCertObjectName: pulumi.String("string"),
},
},
Components: &containerservice.IstioComponentsArgs{
EgressGateways: containerservice.IstioEgressGatewayArray{
&containerservice.IstioEgressGatewayArgs{
Enabled: pulumi.Bool(false),
},
},
IngressGateways: containerservice.IstioIngressGatewayArray{
&containerservice.IstioIngressGatewayArgs{
Enabled: pulumi.Bool(false),
Mode: pulumi.String("string"),
},
},
},
Revisions: pulumi.StringArray{
pulumi.String("string"),
},
},
},
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("string"),
Secret: pulumi.String("string"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("string"),
Tier: pulumi.String("string"),
},
StorageProfile: &containerservice.ManagedClusterStorageProfileArgs{
BlobCSIDriver: &containerservice.ManagedClusterStorageProfileBlobCSIDriverArgs{
Enabled: pulumi.Bool(false),
},
DiskCSIDriver: &containerservice.ManagedClusterStorageProfileDiskCSIDriverArgs{
Enabled: pulumi.Bool(false),
},
FileCSIDriver: &containerservice.ManagedClusterStorageProfileFileCSIDriverArgs{
Enabled: pulumi.Bool(false),
},
SnapshotController: &containerservice.ManagedClusterStorageProfileSnapshotControllerArgs{
Enabled: pulumi.Bool(false),
},
},
SupportPlan: pulumi.String("string"),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
UpgradeSettings: &containerservice.ClusterUpgradeSettingsArgs{
OverrideSettings: &containerservice.UpgradeOverrideSettingsArgs{
ForceUpgrade: pulumi.Bool(false),
Until: pulumi.String("string"),
},
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminUsername: pulumi.String("string"),
AdminPassword: pulumi.String("string"),
EnableCSIProxy: pulumi.Bool(false),
GmsaProfile: &containerservice.WindowsGmsaProfileArgs{
DnsServer: pulumi.String("string"),
Enabled: pulumi.Bool(false),
RootDomainName: pulumi.String("string"),
},
LicenseType: pulumi.String("string"),
},
WorkloadAutoScalerProfile: &containerservice.ManagedClusterWorkloadAutoScalerProfileArgs{
Keda: &containerservice.ManagedClusterWorkloadAutoScalerProfileKedaArgs{
Enabled: pulumi.Bool(false),
},
VerticalPodAutoscaler: &containerservice.ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerArgs{
Enabled: pulumi.Bool(false),
},
},
})
var managedClusterResource = new com.pulumi.azurenative.containerservice.ManagedCluster("managedClusterResource", com.pulumi.azurenative.containerservice.ManagedClusterArgs.builder()
.resourceGroupName("string")
.location("string")
.identity(ManagedClusterIdentityArgs.builder()
.delegatedResources(Map.of("string", DelegatedResourceArgs.builder()
.location("string")
.referralResource("string")
.resourceId("string")
.tenantId("string")
.build()))
.type("SystemAssigned")
.userAssignedIdentities("string")
.build())
.apiServerAccessProfile(ManagedClusterAPIServerAccessProfileArgs.builder()
.authorizedIPRanges("string")
.disableRunCommand(false)
.enablePrivateCluster(false)
.enablePrivateClusterPublicFQDN(false)
.privateDNSZone("string")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.balanceSimilarNodeGroups("string")
.daemonsetEvictionForEmptyNodes(false)
.daemonsetEvictionForOccupiedNodes(false)
.expander("string")
.ignoreDaemonsetsUtilization(false)
.maxEmptyBulkDelete("string")
.maxGracefulTerminationSec("string")
.maxNodeProvisionTime("string")
.maxTotalUnreadyPercentage("string")
.newPodScaleUpDelay("string")
.okTotalUnreadyCount("string")
.scaleDownDelayAfterAdd("string")
.scaleDownDelayAfterDelete("string")
.scaleDownDelayAfterFailure("string")
.scaleDownUnneededTime("string")
.scaleDownUnreadyTime("string")
.scaleDownUtilizationThreshold("string")
.scanInterval("string")
.skipNodesWithLocalStorage("string")
.skipNodesWithSystemPods("string")
.build())
.autoUpgradeProfile(ManagedClusterAutoUpgradeProfileArgs.builder()
.nodeOSUpgradeChannel("string")
.upgradeChannel("string")
.build())
.azureMonitorProfile(ManagedClusterAzureMonitorProfileArgs.builder()
.metrics(ManagedClusterAzureMonitorProfileMetricsArgs.builder()
.enabled(false)
.kubeStateMetrics(ManagedClusterAzureMonitorProfileKubeStateMetricsArgs.builder()
.metricAnnotationsAllowList("string")
.metricLabelsAllowlist("string")
.build())
.build())
.build())
.disableLocalAccounts(false)
.diskEncryptionSetID("string")
.dnsPrefix("string")
.enablePodSecurityPolicy(false)
.enableRBAC(false)
.extendedLocation(ExtendedLocationArgs.builder()
.name("string")
.type("string")
.build())
.fqdnSubdomain("string")
.httpProxyConfig(ManagedClusterHTTPProxyConfigArgs.builder()
.httpProxy("string")
.httpsProxy("string")
.noProxy("string")
.trustedCa("string")
.build())
.aadProfile(ManagedClusterAADProfileArgs.builder()
.adminGroupObjectIDs("string")
.clientAppID("string")
.enableAzureRBAC(false)
.managed(false)
.serverAppID("string")
.serverAppSecret("string")
.tenantID("string")
.build())
.identityProfile(Map.of("string", UserAssignedIdentityArgs.builder()
.clientId("string")
.objectId("string")
.resourceId("string")
.build()))
.ingressProfile(ManagedClusterIngressProfileArgs.builder()
.webAppRouting(ManagedClusterIngressProfileWebAppRoutingArgs.builder()
.dnsZoneResourceIds("string")
.enabled(false)
.build())
.build())
.kubernetesVersion("string")
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.name("string")
.nodePublicIPPrefixID("string")
.nodeTaints("string")
.creationData(CreationDataArgs.builder()
.sourceResourceId("string")
.build())
.enableAutoScaling(false)
.enableEncryptionAtHost(false)
.enableFIPS(false)
.enableNodePublicIP(false)
.enableUltraSSD(false)
.gpuInstanceProfile("string")
.hostGroupID("string")
.kubeletConfig(KubeletConfigArgs.builder()
.allowedUnsafeSysctls("string")
.containerLogMaxFiles(0)
.containerLogMaxSizeMB(0)
.cpuCfsQuota(false)
.cpuCfsQuotaPeriod("string")
.cpuManagerPolicy("string")
.failSwapOn(false)
.imageGcHighThreshold(0)
.imageGcLowThreshold(0)
.podMaxPids(0)
.topologyManagerPolicy("string")
.build())
.kubeletDiskType("string")
.linuxOSConfig(LinuxOSConfigArgs.builder()
.swapFileSizeMB(0)
.sysctls(SysctlConfigArgs.builder()
.fsAioMaxNr(0)
.fsFileMax(0)
.fsInotifyMaxUserWatches(0)
.fsNrOpen(0)
.kernelThreadsMax(0)
.netCoreNetdevMaxBacklog(0)
.netCoreOptmemMax(0)
.netCoreRmemDefault(0)
.netCoreRmemMax(0)
.netCoreSomaxconn(0)
.netCoreWmemDefault(0)
.netCoreWmemMax(0)
.netIpv4IpLocalPortRange("string")
.netIpv4NeighDefaultGcThresh1(0)
.netIpv4NeighDefaultGcThresh2(0)
.netIpv4NeighDefaultGcThresh3(0)
.netIpv4TcpFinTimeout(0)
.netIpv4TcpKeepaliveProbes(0)
.netIpv4TcpKeepaliveTime(0)
.netIpv4TcpMaxSynBacklog(0)
.netIpv4TcpMaxTwBuckets(0)
.netIpv4TcpTwReuse(false)
.netIpv4TcpkeepaliveIntvl(0)
.netNetfilterNfConntrackBuckets(0)
.netNetfilterNfConntrackMax(0)
.vmMaxMapCount(0)
.vmSwappiness(0)
.vmVfsCachePressure(0)
.build())
.transparentHugePageDefrag("string")
.transparentHugePageEnabled("string")
.build())
.maxCount(0)
.maxPods(0)
.messageOfTheDay("string")
.minCount(0)
.availabilityZones("string")
.capacityReservationGroupID("string")
.networkProfile(AgentPoolNetworkProfileArgs.builder()
.allowedHostPorts(PortRangeArgs.builder()
.portEnd(0)
.portStart(0)
.protocol("string")
.build())
.applicationSecurityGroups("string")
.nodePublicIPTags(IPTagArgs.builder()
.ipTagType("string")
.tag("string")
.build())
.build())
.count(0)
.nodeLabels(Map.of("string", "string"))
.mode("string")
.orchestratorVersion("string")
.osDiskSizeGB(0)
.osDiskType("string")
.osSKU("string")
.osType("string")
.podSubnetID("string")
.powerState(PowerStateArgs.builder()
.code("string")
.build())
.proximityPlacementGroupID("string")
.scaleDownMode("string")
.scaleSetEvictionPolicy("string")
.scaleSetPriority("string")
.securityProfile(AgentPoolSecurityProfileArgs.builder()
.enableSecureBoot(false)
.enableVTPM(false)
.build())
.spotMaxPrice(0.0)
.tags(Map.of("string", "string"))
.type("string")
.upgradeSettings(AgentPoolUpgradeSettingsArgs.builder()
.drainTimeoutInMinutes(0)
.maxSurge("string")
.nodeSoakDurationInMinutes(0)
.build())
.vmSize("string")
.vnetSubnetID("string")
.windowsProfile(AgentPoolWindowsProfileArgs.builder()
.disableOutboundNat(false)
.build())
.workloadRuntime("string")
.build())
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("string")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("string")
.build())
.build())
.build())
.podIdentityProfile(ManagedClusterPodIdentityProfileArgs.builder()
.allowNetworkPluginKubenet(false)
.enabled(false)
.userAssignedIdentities(ManagedClusterPodIdentityArgs.builder()
.identity(UserAssignedIdentityArgs.builder()
.clientId("string")
.objectId("string")
.resourceId("string")
.build())
.name("string")
.namespace("string")
.bindingSelector("string")
.build())
.userAssignedIdentityExceptions(ManagedClusterPodIdentityExceptionArgs.builder()
.name("string")
.namespace("string")
.podLabels(Map.of("string", "string"))
.build())
.build())
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.advancedNetworking(AdvancedNetworkingArgs.builder()
.enabled(false)
.observability(AdvancedNetworkingObservabilityArgs.builder()
.enabled(false)
.build())
.security(AdvancedNetworkingSecurityArgs.builder()
.enabled(false)
.build())
.build())
.dnsServiceIP("string")
.ipFamilies("string")
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.allocatedOutboundPorts(0)
.backendPoolType("string")
.effectiveOutboundIPs(ResourceReferenceArgs.builder()
.id("string")
.build())
.enableMultipleStandardLoadBalancers(false)
.idleTimeoutInMinutes(0)
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(0)
.countIPv6(0)
.build())
.outboundIPPrefixes(ManagedClusterLoadBalancerProfileOutboundIPPrefixesArgs.builder()
.publicIPPrefixes(ResourceReferenceArgs.builder()
.id("string")
.build())
.build())
.outboundIPs(ManagedClusterLoadBalancerProfileOutboundIPsArgs.builder()
.publicIPs(ResourceReferenceArgs.builder()
.id("string")
.build())
.build())
.build())
.loadBalancerSku("string")
.natGatewayProfile(ManagedClusterNATGatewayProfileArgs.builder()
.effectiveOutboundIPs(ResourceReferenceArgs.builder()
.id("string")
.build())
.idleTimeoutInMinutes(0)
.managedOutboundIPProfile(ManagedClusterManagedOutboundIPProfileArgs.builder()
.count(0)
.build())
.build())
.networkDataplane("string")
.networkMode("string")
.networkPlugin("string")
.networkPluginMode("string")
.networkPolicy("string")
.outboundType("string")
.podCidr("string")
.podCidrs("string")
.serviceCidr("string")
.serviceCidrs("string")
.build())
.nodeResourceGroup("string")
.nodeResourceGroupProfile(ManagedClusterNodeResourceGroupProfileArgs.builder()
.restrictionLevel("string")
.build())
.oidcIssuerProfile(ManagedClusterOIDCIssuerProfileArgs.builder()
.enabled(false)
.build())
.metricsProfile(ManagedClusterMetricsProfileArgs.builder()
.costAnalysis(ManagedClusterCostAnalysisArgs.builder()
.enabled(false)
.build())
.build())
.privateLinkResources(PrivateLinkResourceArgs.builder()
.groupId("string")
.id("string")
.name("string")
.requiredMembers("string")
.type("string")
.build())
.publicNetworkAccess("string")
.addonProfiles(Map.of("string", ManagedClusterAddonProfileArgs.builder()
.enabled(false)
.config(Map.of("string", "string"))
.build()))
.resourceName("string")
.securityProfile(ManagedClusterSecurityProfileArgs.builder()
.azureKeyVaultKms(AzureKeyVaultKmsArgs.builder()
.enabled(false)
.keyId("string")
.keyVaultNetworkAccess("string")
.keyVaultResourceId("string")
.build())
.defender(ManagedClusterSecurityProfileDefenderArgs.builder()
.logAnalyticsWorkspaceResourceId("string")
.securityMonitoring(ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs.builder()
.enabled(false)
.build())
.build())
.imageCleaner(ManagedClusterSecurityProfileImageCleanerArgs.builder()
.enabled(false)
.intervalHours(0)
.build())
.workloadIdentity(ManagedClusterSecurityProfileWorkloadIdentityArgs.builder()
.enabled(false)
.build())
.build())
.serviceMeshProfile(ServiceMeshProfileArgs.builder()
.mode("string")
.istio(IstioServiceMeshArgs.builder()
.certificateAuthority(IstioCertificateAuthorityArgs.builder()
.plugin(IstioPluginCertificateAuthorityArgs.builder()
.certChainObjectName("string")
.certObjectName("string")
.keyObjectName("string")
.keyVaultId("string")
.rootCertObjectName("string")
.build())
.build())
.components(IstioComponentsArgs.builder()
.egressGateways(IstioEgressGatewayArgs.builder()
.enabled(false)
.build())
.ingressGateways(IstioIngressGatewayArgs.builder()
.enabled(false)
.mode("string")
.build())
.build())
.revisions("string")
.build())
.build())
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("string")
.secret("string")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("string")
.tier("string")
.build())
.storageProfile(ManagedClusterStorageProfileArgs.builder()
.blobCSIDriver(ManagedClusterStorageProfileBlobCSIDriverArgs.builder()
.enabled(false)
.build())
.diskCSIDriver(ManagedClusterStorageProfileDiskCSIDriverArgs.builder()
.enabled(false)
.build())
.fileCSIDriver(ManagedClusterStorageProfileFileCSIDriverArgs.builder()
.enabled(false)
.build())
.snapshotController(ManagedClusterStorageProfileSnapshotControllerArgs.builder()
.enabled(false)
.build())
.build())
.supportPlan("string")
.tags(Map.of("string", "string"))
.upgradeSettings(ClusterUpgradeSettingsArgs.builder()
.overrideSettings(UpgradeOverrideSettingsArgs.builder()
.forceUpgrade(false)
.until("string")
.build())
.build())
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminUsername("string")
.adminPassword("string")
.enableCSIProxy(false)
.gmsaProfile(WindowsGmsaProfileArgs.builder()
.dnsServer("string")
.enabled(false)
.rootDomainName("string")
.build())
.licenseType("string")
.build())
.workloadAutoScalerProfile(ManagedClusterWorkloadAutoScalerProfileArgs.builder()
.keda(ManagedClusterWorkloadAutoScalerProfileKedaArgs.builder()
.enabled(false)
.build())
.verticalPodAutoscaler(ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerArgs.builder()
.enabled(false)
.build())
.build())
.build());
managed_cluster_resource = azure_native.containerservice.ManagedCluster("managedClusterResource",
resource_group_name="string",
location="string",
identity={
"delegated_resources": {
"string": {
"location": "string",
"referral_resource": "string",
"resource_id": "string",
"tenant_id": "string",
},
},
"type": azure_native.containerservice.ResourceIdentityType.SYSTEM_ASSIGNED,
"user_assigned_identities": ["string"],
},
api_server_access_profile={
"authorized_ip_ranges": ["string"],
"disable_run_command": False,
"enable_private_cluster": False,
"enable_private_cluster_public_fqdn": False,
"private_dns_zone": "string",
},
auto_scaler_profile={
"balance_similar_node_groups": "string",
"daemonset_eviction_for_empty_nodes": False,
"daemonset_eviction_for_occupied_nodes": False,
"expander": "string",
"ignore_daemonsets_utilization": False,
"max_empty_bulk_delete": "string",
"max_graceful_termination_sec": "string",
"max_node_provision_time": "string",
"max_total_unready_percentage": "string",
"new_pod_scale_up_delay": "string",
"ok_total_unready_count": "string",
"scale_down_delay_after_add": "string",
"scale_down_delay_after_delete": "string",
"scale_down_delay_after_failure": "string",
"scale_down_unneeded_time": "string",
"scale_down_unready_time": "string",
"scale_down_utilization_threshold": "string",
"scan_interval": "string",
"skip_nodes_with_local_storage": "string",
"skip_nodes_with_system_pods": "string",
},
auto_upgrade_profile={
"node_os_upgrade_channel": "string",
"upgrade_channel": "string",
},
azure_monitor_profile={
"metrics": {
"enabled": False,
"kube_state_metrics": {
"metric_annotations_allow_list": "string",
"metric_labels_allowlist": "string",
},
},
},
disable_local_accounts=False,
disk_encryption_set_id="string",
dns_prefix="string",
enable_pod_security_policy=False,
enable_rbac=False,
extended_location={
"name": "string",
"type": "string",
},
fqdn_subdomain="string",
http_proxy_config={
"http_proxy": "string",
"https_proxy": "string",
"no_proxy": ["string"],
"trusted_ca": "string",
},
aad_profile={
"admin_group_object_ids": ["string"],
"client_app_id": "string",
"enable_azure_rbac": False,
"managed": False,
"server_app_id": "string",
"server_app_secret": "string",
"tenant_id": "string",
},
identity_profile={
"string": {
"client_id": "string",
"object_id": "string",
"resource_id": "string",
},
},
ingress_profile={
"web_app_routing": {
"dns_zone_resource_ids": ["string"],
"enabled": False,
},
},
kubernetes_version="string",
agent_pool_profiles=[{
"name": "string",
"node_public_ip_prefix_id": "string",
"node_taints": ["string"],
"creation_data": {
"source_resource_id": "string",
},
"enable_auto_scaling": False,
"enable_encryption_at_host": False,
"enable_fips": False,
"enable_node_public_ip": False,
"enable_ultra_ssd": False,
"gpu_instance_profile": "string",
"host_group_id": "string",
"kubelet_config": {
"allowed_unsafe_sysctls": ["string"],
"container_log_max_files": 0,
"container_log_max_size_mb": 0,
"cpu_cfs_quota": False,
"cpu_cfs_quota_period": "string",
"cpu_manager_policy": "string",
"fail_swap_on": False,
"image_gc_high_threshold": 0,
"image_gc_low_threshold": 0,
"pod_max_pids": 0,
"topology_manager_policy": "string",
},
"kubelet_disk_type": "string",
"linux_os_config": {
"swap_file_size_mb": 0,
"sysctls": {
"fs_aio_max_nr": 0,
"fs_file_max": 0,
"fs_inotify_max_user_watches": 0,
"fs_nr_open": 0,
"kernel_threads_max": 0,
"net_core_netdev_max_backlog": 0,
"net_core_optmem_max": 0,
"net_core_rmem_default": 0,
"net_core_rmem_max": 0,
"net_core_somaxconn": 0,
"net_core_wmem_default": 0,
"net_core_wmem_max": 0,
"net_ipv4_ip_local_port_range": "string",
"net_ipv4_neigh_default_gc_thresh1": 0,
"net_ipv4_neigh_default_gc_thresh2": 0,
"net_ipv4_neigh_default_gc_thresh3": 0,
"net_ipv4_tcp_fin_timeout": 0,
"net_ipv4_tcp_keepalive_probes": 0,
"net_ipv4_tcp_keepalive_time": 0,
"net_ipv4_tcp_max_syn_backlog": 0,
"net_ipv4_tcp_max_tw_buckets": 0,
"net_ipv4_tcp_tw_reuse": False,
"net_ipv4_tcpkeepalive_intvl": 0,
"net_netfilter_nf_conntrack_buckets": 0,
"net_netfilter_nf_conntrack_max": 0,
"vm_max_map_count": 0,
"vm_swappiness": 0,
"vm_vfs_cache_pressure": 0,
},
"transparent_huge_page_defrag": "string",
"transparent_huge_page_enabled": "string",
},
"max_count": 0,
"max_pods": 0,
"message_of_the_day": "string",
"min_count": 0,
"availability_zones": ["string"],
"capacity_reservation_group_id": "string",
"network_profile": {
"allowed_host_ports": [{
"port_end": 0,
"port_start": 0,
"protocol": "string",
}],
"application_security_groups": ["string"],
"node_public_ip_tags": [{
"ip_tag_type": "string",
"tag": "string",
}],
},
"count": 0,
"node_labels": {
"string": "string",
},
"mode": "string",
"orchestrator_version": "string",
"os_disk_size_gb": 0,
"os_disk_type": "string",
"os_sku": "string",
"os_type": "string",
"pod_subnet_id": "string",
"power_state": {
"code": "string",
},
"proximity_placement_group_id": "string",
"scale_down_mode": "string",
"scale_set_eviction_policy": "string",
"scale_set_priority": "string",
"security_profile": {
"enable_secure_boot": False,
"enable_vtpm": False,
},
"spot_max_price": 0,
"tags": {
"string": "string",
},
"type": "string",
"upgrade_settings": {
"drain_timeout_in_minutes": 0,
"max_surge": "string",
"node_soak_duration_in_minutes": 0,
},
"vm_size": "string",
"vnet_subnet_id": "string",
"windows_profile": {
"disable_outbound_nat": False,
},
"workload_runtime": "string",
}],
linux_profile={
"admin_username": "string",
"ssh": {
"public_keys": [{
"key_data": "string",
}],
},
},
pod_identity_profile={
"allow_network_plugin_kubenet": False,
"enabled": False,
"user_assigned_identities": [{
"identity": {
"client_id": "string",
"object_id": "string",
"resource_id": "string",
},
"name": "string",
"namespace": "string",
"binding_selector": "string",
}],
"user_assigned_identity_exceptions": [{
"name": "string",
"namespace": "string",
"pod_labels": {
"string": "string",
},
}],
},
network_profile={
"advanced_networking": {
"enabled": False,
"observability": {
"enabled": False,
},
"security": {
"enabled": False,
},
},
"dns_service_ip": "string",
"ip_families": ["string"],
"load_balancer_profile": {
"allocated_outbound_ports": 0,
"backend_pool_type": "string",
"effective_outbound_ips": [{
"id": "string",
}],
"enable_multiple_standard_load_balancers": False,
"idle_timeout_in_minutes": 0,
"managed_outbound_ips": {
"count": 0,
"count_i_pv6": 0,
},
"outbound_ip_prefixes": {
"public_ip_prefixes": [{
"id": "string",
}],
},
"outbound_ips": {
"public_ips": [{
"id": "string",
}],
},
},
"load_balancer_sku": "string",
"nat_gateway_profile": {
"effective_outbound_ips": [{
"id": "string",
}],
"idle_timeout_in_minutes": 0,
"managed_outbound_ip_profile": {
"count": 0,
},
},
"network_dataplane": "string",
"network_mode": "string",
"network_plugin": "string",
"network_plugin_mode": "string",
"network_policy": "string",
"outbound_type": "string",
"pod_cidr": "string",
"pod_cidrs": ["string"],
"service_cidr": "string",
"service_cidrs": ["string"],
},
node_resource_group="string",
node_resource_group_profile={
"restriction_level": "string",
},
oidc_issuer_profile={
"enabled": False,
},
metrics_profile={
"cost_analysis": {
"enabled": False,
},
},
private_link_resources=[{
"group_id": "string",
"id": "string",
"name": "string",
"required_members": ["string"],
"type": "string",
}],
public_network_access="string",
addon_profiles={
"string": {
"enabled": False,
"config": {
"string": "string",
},
},
},
resource_name_="string",
security_profile={
"azure_key_vault_kms": {
"enabled": False,
"key_id": "string",
"key_vault_network_access": "string",
"key_vault_resource_id": "string",
},
"defender": {
"log_analytics_workspace_resource_id": "string",
"security_monitoring": {
"enabled": False,
},
},
"image_cleaner": {
"enabled": False,
"interval_hours": 0,
},
"workload_identity": {
"enabled": False,
},
},
service_mesh_profile={
"mode": "string",
"istio": {
"certificate_authority": {
"plugin": {
"cert_chain_object_name": "string",
"cert_object_name": "string",
"key_object_name": "string",
"key_vault_id": "string",
"root_cert_object_name": "string",
},
},
"components": {
"egress_gateways": [{
"enabled": False,
}],
"ingress_gateways": [{
"enabled": False,
"mode": "string",
}],
},
"revisions": ["string"],
},
},
service_principal_profile={
"client_id": "string",
"secret": "string",
},
sku={
"name": "string",
"tier": "string",
},
storage_profile={
"blob_csi_driver": {
"enabled": False,
},
"disk_csi_driver": {
"enabled": False,
},
"file_csi_driver": {
"enabled": False,
},
"snapshot_controller": {
"enabled": False,
},
},
support_plan="string",
tags={
"string": "string",
},
upgrade_settings={
"override_settings": {
"force_upgrade": False,
"until": "string",
},
},
windows_profile={
"admin_username": "string",
"admin_password": "string",
"enable_csi_proxy": False,
"gmsa_profile": {
"dns_server": "string",
"enabled": False,
"root_domain_name": "string",
},
"license_type": "string",
},
workload_auto_scaler_profile={
"keda": {
"enabled": False,
},
"vertical_pod_autoscaler": {
"enabled": False,
},
})
const managedClusterResource = new azure_native.containerservice.ManagedCluster("managedClusterResource", {
resourceGroupName: "string",
location: "string",
identity: {
delegatedResources: {
string: {
location: "string",
referralResource: "string",
resourceId: "string",
tenantId: "string",
},
},
type: azure_native.containerservice.ResourceIdentityType.SystemAssigned,
userAssignedIdentities: ["string"],
},
apiServerAccessProfile: {
authorizedIPRanges: ["string"],
disableRunCommand: false,
enablePrivateCluster: false,
enablePrivateClusterPublicFQDN: false,
privateDNSZone: "string",
},
autoScalerProfile: {
balanceSimilarNodeGroups: "string",
daemonsetEvictionForEmptyNodes: false,
daemonsetEvictionForOccupiedNodes: false,
expander: "string",
ignoreDaemonsetsUtilization: false,
maxEmptyBulkDelete: "string",
maxGracefulTerminationSec: "string",
maxNodeProvisionTime: "string",
maxTotalUnreadyPercentage: "string",
newPodScaleUpDelay: "string",
okTotalUnreadyCount: "string",
scaleDownDelayAfterAdd: "string",
scaleDownDelayAfterDelete: "string",
scaleDownDelayAfterFailure: "string",
scaleDownUnneededTime: "string",
scaleDownUnreadyTime: "string",
scaleDownUtilizationThreshold: "string",
scanInterval: "string",
skipNodesWithLocalStorage: "string",
skipNodesWithSystemPods: "string",
},
autoUpgradeProfile: {
nodeOSUpgradeChannel: "string",
upgradeChannel: "string",
},
azureMonitorProfile: {
metrics: {
enabled: false,
kubeStateMetrics: {
metricAnnotationsAllowList: "string",
metricLabelsAllowlist: "string",
},
},
},
disableLocalAccounts: false,
diskEncryptionSetID: "string",
dnsPrefix: "string",
enablePodSecurityPolicy: false,
enableRBAC: false,
extendedLocation: {
name: "string",
type: "string",
},
fqdnSubdomain: "string",
httpProxyConfig: {
httpProxy: "string",
httpsProxy: "string",
noProxy: ["string"],
trustedCa: "string",
},
aadProfile: {
adminGroupObjectIDs: ["string"],
clientAppID: "string",
enableAzureRBAC: false,
managed: false,
serverAppID: "string",
serverAppSecret: "string",
tenantID: "string",
},
identityProfile: {
string: {
clientId: "string",
objectId: "string",
resourceId: "string",
},
},
ingressProfile: {
webAppRouting: {
dnsZoneResourceIds: ["string"],
enabled: false,
},
},
kubernetesVersion: "string",
agentPoolProfiles: [{
name: "string",
nodePublicIPPrefixID: "string",
nodeTaints: ["string"],
creationData: {
sourceResourceId: "string",
},
enableAutoScaling: false,
enableEncryptionAtHost: false,
enableFIPS: false,
enableNodePublicIP: false,
enableUltraSSD: false,
gpuInstanceProfile: "string",
hostGroupID: "string",
kubeletConfig: {
allowedUnsafeSysctls: ["string"],
containerLogMaxFiles: 0,
containerLogMaxSizeMB: 0,
cpuCfsQuota: false,
cpuCfsQuotaPeriod: "string",
cpuManagerPolicy: "string",
failSwapOn: false,
imageGcHighThreshold: 0,
imageGcLowThreshold: 0,
podMaxPids: 0,
topologyManagerPolicy: "string",
},
kubeletDiskType: "string",
linuxOSConfig: {
swapFileSizeMB: 0,
sysctls: {
fsAioMaxNr: 0,
fsFileMax: 0,
fsInotifyMaxUserWatches: 0,
fsNrOpen: 0,
kernelThreadsMax: 0,
netCoreNetdevMaxBacklog: 0,
netCoreOptmemMax: 0,
netCoreRmemDefault: 0,
netCoreRmemMax: 0,
netCoreSomaxconn: 0,
netCoreWmemDefault: 0,
netCoreWmemMax: 0,
netIpv4IpLocalPortRange: "string",
netIpv4NeighDefaultGcThresh1: 0,
netIpv4NeighDefaultGcThresh2: 0,
netIpv4NeighDefaultGcThresh3: 0,
netIpv4TcpFinTimeout: 0,
netIpv4TcpKeepaliveProbes: 0,
netIpv4TcpKeepaliveTime: 0,
netIpv4TcpMaxSynBacklog: 0,
netIpv4TcpMaxTwBuckets: 0,
netIpv4TcpTwReuse: false,
netIpv4TcpkeepaliveIntvl: 0,
netNetfilterNfConntrackBuckets: 0,
netNetfilterNfConntrackMax: 0,
vmMaxMapCount: 0,
vmSwappiness: 0,
vmVfsCachePressure: 0,
},
transparentHugePageDefrag: "string",
transparentHugePageEnabled: "string",
},
maxCount: 0,
maxPods: 0,
messageOfTheDay: "string",
minCount: 0,
availabilityZones: ["string"],
capacityReservationGroupID: "string",
networkProfile: {
allowedHostPorts: [{
portEnd: 0,
portStart: 0,
protocol: "string",
}],
applicationSecurityGroups: ["string"],
nodePublicIPTags: [{
ipTagType: "string",
tag: "string",
}],
},
count: 0,
nodeLabels: {
string: "string",
},
mode: "string",
orchestratorVersion: "string",
osDiskSizeGB: 0,
osDiskType: "string",
osSKU: "string",
osType: "string",
podSubnetID: "string",
powerState: {
code: "string",
},
proximityPlacementGroupID: "string",
scaleDownMode: "string",
scaleSetEvictionPolicy: "string",
scaleSetPriority: "string",
securityProfile: {
enableSecureBoot: false,
enableVTPM: false,
},
spotMaxPrice: 0,
tags: {
string: "string",
},
type: "string",
upgradeSettings: {
drainTimeoutInMinutes: 0,
maxSurge: "string",
nodeSoakDurationInMinutes: 0,
},
vmSize: "string",
vnetSubnetID: "string",
windowsProfile: {
disableOutboundNat: false,
},
workloadRuntime: "string",
}],
linuxProfile: {
adminUsername: "string",
ssh: {
publicKeys: [{
keyData: "string",
}],
},
},
podIdentityProfile: {
allowNetworkPluginKubenet: false,
enabled: false,
userAssignedIdentities: [{
identity: {
clientId: "string",
objectId: "string",
resourceId: "string",
},
name: "string",
namespace: "string",
bindingSelector: "string",
}],
userAssignedIdentityExceptions: [{
name: "string",
namespace: "string",
podLabels: {
string: "string",
},
}],
},
networkProfile: {
advancedNetworking: {
enabled: false,
observability: {
enabled: false,
},
security: {
enabled: false,
},
},
dnsServiceIP: "string",
ipFamilies: ["string"],
loadBalancerProfile: {
allocatedOutboundPorts: 0,
backendPoolType: "string",
effectiveOutboundIPs: [{
id: "string",
}],
enableMultipleStandardLoadBalancers: false,
idleTimeoutInMinutes: 0,
managedOutboundIPs: {
count: 0,
countIPv6: 0,
},
outboundIPPrefixes: {
publicIPPrefixes: [{
id: "string",
}],
},
outboundIPs: {
publicIPs: [{
id: "string",
}],
},
},
loadBalancerSku: "string",
natGatewayProfile: {
effectiveOutboundIPs: [{
id: "string",
}],
idleTimeoutInMinutes: 0,
managedOutboundIPProfile: {
count: 0,
},
},
networkDataplane: "string",
networkMode: "string",
networkPlugin: "string",
networkPluginMode: "string",
networkPolicy: "string",
outboundType: "string",
podCidr: "string",
podCidrs: ["string"],
serviceCidr: "string",
serviceCidrs: ["string"],
},
nodeResourceGroup: "string",
nodeResourceGroupProfile: {
restrictionLevel: "string",
},
oidcIssuerProfile: {
enabled: false,
},
metricsProfile: {
costAnalysis: {
enabled: false,
},
},
privateLinkResources: [{
groupId: "string",
id: "string",
name: "string",
requiredMembers: ["string"],
type: "string",
}],
publicNetworkAccess: "string",
addonProfiles: {
string: {
enabled: false,
config: {
string: "string",
},
},
},
resourceName: "string",
securityProfile: {
azureKeyVaultKms: {
enabled: false,
keyId: "string",
keyVaultNetworkAccess: "string",
keyVaultResourceId: "string",
},
defender: {
logAnalyticsWorkspaceResourceId: "string",
securityMonitoring: {
enabled: false,
},
},
imageCleaner: {
enabled: false,
intervalHours: 0,
},
workloadIdentity: {
enabled: false,
},
},
serviceMeshProfile: {
mode: "string",
istio: {
certificateAuthority: {
plugin: {
certChainObjectName: "string",
certObjectName: "string",
keyObjectName: "string",
keyVaultId: "string",
rootCertObjectName: "string",
},
},
components: {
egressGateways: [{
enabled: false,
}],
ingressGateways: [{
enabled: false,
mode: "string",
}],
},
revisions: ["string"],
},
},
servicePrincipalProfile: {
clientId: "string",
secret: "string",
},
sku: {
name: "string",
tier: "string",
},
storageProfile: {
blobCSIDriver: {
enabled: false,
},
diskCSIDriver: {
enabled: false,
},
fileCSIDriver: {
enabled: false,
},
snapshotController: {
enabled: false,
},
},
supportPlan: "string",
tags: {
string: "string",
},
upgradeSettings: {
overrideSettings: {
forceUpgrade: false,
until: "string",
},
},
windowsProfile: {
adminUsername: "string",
adminPassword: "string",
enableCSIProxy: false,
gmsaProfile: {
dnsServer: "string",
enabled: false,
rootDomainName: "string",
},
licenseType: "string",
},
workloadAutoScalerProfile: {
keda: {
enabled: false,
},
verticalPodAutoscaler: {
enabled: false,
},
},
});
type: azure-native:containerservice:ManagedCluster
properties:
aadProfile:
adminGroupObjectIDs:
- string
clientAppID: string
enableAzureRBAC: false
managed: false
serverAppID: string
serverAppSecret: string
tenantID: string
addonProfiles:
string:
config:
string: string
enabled: false
agentPoolProfiles:
- availabilityZones:
- string
capacityReservationGroupID: string
count: 0
creationData:
sourceResourceId: string
enableAutoScaling: false
enableEncryptionAtHost: false
enableFIPS: false
enableNodePublicIP: false
enableUltraSSD: false
gpuInstanceProfile: string
hostGroupID: string
kubeletConfig:
allowedUnsafeSysctls:
- string
containerLogMaxFiles: 0
containerLogMaxSizeMB: 0
cpuCfsQuota: false
cpuCfsQuotaPeriod: string
cpuManagerPolicy: string
failSwapOn: false
imageGcHighThreshold: 0
imageGcLowThreshold: 0
podMaxPids: 0
topologyManagerPolicy: string
kubeletDiskType: string
linuxOSConfig:
swapFileSizeMB: 0
sysctls:
fsAioMaxNr: 0
fsFileMax: 0
fsInotifyMaxUserWatches: 0
fsNrOpen: 0
kernelThreadsMax: 0
netCoreNetdevMaxBacklog: 0
netCoreOptmemMax: 0
netCoreRmemDefault: 0
netCoreRmemMax: 0
netCoreSomaxconn: 0
netCoreWmemDefault: 0
netCoreWmemMax: 0
netIpv4IpLocalPortRange: string
netIpv4NeighDefaultGcThresh1: 0
netIpv4NeighDefaultGcThresh2: 0
netIpv4NeighDefaultGcThresh3: 0
netIpv4TcpFinTimeout: 0
netIpv4TcpKeepaliveProbes: 0
netIpv4TcpKeepaliveTime: 0
netIpv4TcpMaxSynBacklog: 0
netIpv4TcpMaxTwBuckets: 0
netIpv4TcpTwReuse: false
netIpv4TcpkeepaliveIntvl: 0
netNetfilterNfConntrackBuckets: 0
netNetfilterNfConntrackMax: 0
vmMaxMapCount: 0
vmSwappiness: 0
vmVfsCachePressure: 0
transparentHugePageDefrag: string
transparentHugePageEnabled: string
maxCount: 0
maxPods: 0
messageOfTheDay: string
minCount: 0
mode: string
name: string
networkProfile:
allowedHostPorts:
- portEnd: 0
portStart: 0
protocol: string
applicationSecurityGroups:
- string
nodePublicIPTags:
- ipTagType: string
tag: string
nodeLabels:
string: string
nodePublicIPPrefixID: string
nodeTaints:
- string
orchestratorVersion: string
osDiskSizeGB: 0
osDiskType: string
osSKU: string
osType: string
podSubnetID: string
powerState:
code: string
proximityPlacementGroupID: string
scaleDownMode: string
scaleSetEvictionPolicy: string
scaleSetPriority: string
securityProfile:
enableSecureBoot: false
enableVTPM: false
spotMaxPrice: 0
tags:
string: string
type: string
upgradeSettings:
drainTimeoutInMinutes: 0
maxSurge: string
nodeSoakDurationInMinutes: 0
vmSize: string
vnetSubnetID: string
windowsProfile:
disableOutboundNat: false
workloadRuntime: string
apiServerAccessProfile:
authorizedIPRanges:
- string
disableRunCommand: false
enablePrivateCluster: false
enablePrivateClusterPublicFQDN: false
privateDNSZone: string
autoScalerProfile:
balanceSimilarNodeGroups: string
daemonsetEvictionForEmptyNodes: false
daemonsetEvictionForOccupiedNodes: false
expander: string
ignoreDaemonsetsUtilization: false
maxEmptyBulkDelete: string
maxGracefulTerminationSec: string
maxNodeProvisionTime: string
maxTotalUnreadyPercentage: string
newPodScaleUpDelay: string
okTotalUnreadyCount: string
scaleDownDelayAfterAdd: string
scaleDownDelayAfterDelete: string
scaleDownDelayAfterFailure: string
scaleDownUnneededTime: string
scaleDownUnreadyTime: string
scaleDownUtilizationThreshold: string
scanInterval: string
skipNodesWithLocalStorage: string
skipNodesWithSystemPods: string
autoUpgradeProfile:
nodeOSUpgradeChannel: string
upgradeChannel: string
azureMonitorProfile:
metrics:
enabled: false
kubeStateMetrics:
metricAnnotationsAllowList: string
metricLabelsAllowlist: string
disableLocalAccounts: false
diskEncryptionSetID: string
dnsPrefix: string
enablePodSecurityPolicy: false
enableRBAC: false
extendedLocation:
name: string
type: string
fqdnSubdomain: string
httpProxyConfig:
httpProxy: string
httpsProxy: string
noProxy:
- string
trustedCa: string
identity:
delegatedResources:
string:
location: string
referralResource: string
resourceId: string
tenantId: string
type: SystemAssigned
userAssignedIdentities:
- string
identityProfile:
string:
clientId: string
objectId: string
resourceId: string
ingressProfile:
webAppRouting:
dnsZoneResourceIds:
- string
enabled: false
kubernetesVersion: string
linuxProfile:
adminUsername: string
ssh:
publicKeys:
- keyData: string
location: string
metricsProfile:
costAnalysis:
enabled: false
networkProfile:
advancedNetworking:
enabled: false
observability:
enabled: false
security:
enabled: false
dnsServiceIP: string
ipFamilies:
- string
loadBalancerProfile:
allocatedOutboundPorts: 0
backendPoolType: string
effectiveOutboundIPs:
- id: string
enableMultipleStandardLoadBalancers: false
idleTimeoutInMinutes: 0
managedOutboundIPs:
count: 0
countIPv6: 0
outboundIPPrefixes:
publicIPPrefixes:
- id: string
outboundIPs:
publicIPs:
- id: string
loadBalancerSku: string
natGatewayProfile:
effectiveOutboundIPs:
- id: string
idleTimeoutInMinutes: 0
managedOutboundIPProfile:
count: 0
networkDataplane: string
networkMode: string
networkPlugin: string
networkPluginMode: string
networkPolicy: string
outboundType: string
podCidr: string
podCidrs:
- string
serviceCidr: string
serviceCidrs:
- string
nodeResourceGroup: string
nodeResourceGroupProfile:
restrictionLevel: string
oidcIssuerProfile:
enabled: false
podIdentityProfile:
allowNetworkPluginKubenet: false
enabled: false
userAssignedIdentities:
- bindingSelector: string
identity:
clientId: string
objectId: string
resourceId: string
name: string
namespace: string
userAssignedIdentityExceptions:
- name: string
namespace: string
podLabels:
string: string
privateLinkResources:
- groupId: string
id: string
name: string
requiredMembers:
- string
type: string
publicNetworkAccess: string
resourceGroupName: string
resourceName: string
securityProfile:
azureKeyVaultKms:
enabled: false
keyId: string
keyVaultNetworkAccess: string
keyVaultResourceId: string
defender:
logAnalyticsWorkspaceResourceId: string
securityMonitoring:
enabled: false
imageCleaner:
enabled: false
intervalHours: 0
workloadIdentity:
enabled: false
serviceMeshProfile:
istio:
certificateAuthority:
plugin:
certChainObjectName: string
certObjectName: string
keyObjectName: string
keyVaultId: string
rootCertObjectName: string
components:
egressGateways:
- enabled: false
ingressGateways:
- enabled: false
mode: string
revisions:
- string
mode: string
servicePrincipalProfile:
clientId: string
secret: string
sku:
name: string
tier: string
storageProfile:
blobCSIDriver:
enabled: false
diskCSIDriver:
enabled: false
fileCSIDriver:
enabled: false
snapshotController:
enabled: false
supportPlan: string
tags:
string: string
upgradeSettings:
overrideSettings:
forceUpgrade: false
until: string
windowsProfile:
adminPassword: string
adminUsername: string
enableCSIProxy: false
gmsaProfile:
dnsServer: string
enabled: false
rootDomainName: string
licenseType: string
workloadAutoScalerProfile:
keda:
enabled: false
verticalPodAutoscaler:
enabled: false
ManagedCluster Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The ManagedCluster resource accepts the following input properties:
- Resource
Group stringName - The name of the resource group. The name is case insensitive.
- Aad
Profile Pulumi.Azure Native. Container Service. Inputs. Managed Cluster AADProfile - The Azure Active Directory configuration.
- Addon
Profiles Dictionary<string, Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Addon Profile Args> - The profile of managed cluster add-on.
- Agent
Pool List<Pulumi.Profiles Azure Native. Container Service. Inputs. Managed Cluster Agent Pool Profile> - The agent pool properties.
- Api
Server Pulumi.Access Profile Azure Native. Container Service. Inputs. Managed Cluster APIServer Access Profile - The access profile for managed cluster API server.
- Auto
Scaler Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Properties Auto Scaler Profile - Parameters to be applied to the cluster-autoscaler when enabled
- Auto
Upgrade Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Auto Upgrade Profile - The auto upgrade configuration.
- Azure
Monitor Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Azure Monitor Profile - Azure Monitor addon profiles for monitoring the managed cluster.
- Disable
Local boolAccounts - If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
- Disk
Encryption stringSet ID - This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
- Dns
Prefix string - This cannot be updated once the Managed Cluster has been created.
- Enable
Pod boolSecurity Policy - (DEPRECATED) Whether to enable Kubernetes pod security policy (preview). PodSecurityPolicy was deprecated in Kubernetes v1.21, and removed from Kubernetes in v1.25. Learn more at https://aka.ms/k8s/psp and https://aka.ms/aks/psp.
- Enable
RBAC bool - Whether to enable Kubernetes Role-Based Access Control.
- Extended
Location Pulumi.Azure Native. Container Service. Inputs. Extended Location - The extended location of the Virtual Machine.
- Fqdn
Subdomain string - This cannot be updated once the Managed Cluster has been created.
- Http
Proxy Pulumi.Config Azure Native. Container Service. Inputs. Managed Cluster HTTPProxy Config - Configurations for provisioning the cluster with HTTP proxy servers.
- Identity
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Identity - The identity of the managed cluster, if configured.
- Identity
Profile Dictionary<string, Pulumi.Azure Native. Container Service. Inputs. User Assigned Identity Args> - The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
- Ingress
Profile Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Ingress Profile - Ingress profile for the managed cluster.
- Kubernetes
Version string - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
- Linux
Profile Pulumi.Azure Native. Container Service. Inputs. Container Service Linux Profile - The profile for Linux VMs in the Managed Cluster.
- Location string
- The geo-location where the resource lives
- Metrics
Profile Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Metrics Profile - Optional cluster metrics configuration.
- Network
Profile Pulumi.Azure Native. Container Service. Inputs. Container Service Network Profile - The network configuration profile.
- Node
Resource stringGroup - The name of the resource group containing agent pool nodes.
- Node
Resource Pulumi.Group Profile Azure Native. Container Service. Inputs. Managed Cluster Node Resource Group Profile - Profile of the node resource group configuration.
- Oidc
Issuer Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster OIDCIssuer Profile - The OIDC issuer profile of the Managed Cluster.
- Pod
Identity Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Profile - See use AAD pod identity for more details on AAD pod identity integration.
- Private
Link List<Pulumi.Resources Azure Native. Container Service. Inputs. Private Link Resource> - Private link resources associated with the cluster.
- Public
Network string | Pulumi.Access Azure Native. Container Service. Public Network Access - Allow or deny public network access for AKS
- Resource
Name string - The name of the managed cluster resource.
- Security
Profile Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile - Security profile for the managed cluster.
- Service
Mesh Pulumi.Profile Azure Native. Container Service. Inputs. Service Mesh Profile - Service mesh profile for a managed cluster.
- Service
Principal Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Service Principal Profile - Information about a service principal identity for the cluster to use for manipulating Azure APIs.
- Sku
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster SKU - The managed cluster SKU.
- Storage
Profile Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile - Storage profile for the managed cluster.
- Support
Plan string | Pulumi.Azure Native. Container Service. Kubernetes Support Plan - The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
- Dictionary<string, string>
- Resource tags.
- Upgrade
Settings Pulumi.Azure Native. Container Service. Inputs. Cluster Upgrade Settings - Settings for upgrading a cluster.
- Windows
Profile Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Windows Profile - The profile for Windows VMs in the Managed Cluster.
- Workload
Auto Pulumi.Scaler Profile Azure Native. Container Service. Inputs. Managed Cluster Workload Auto Scaler Profile - Workload Auto-scaler profile for the managed cluster.
- Resource
Group stringName - The name of the resource group. The name is case insensitive.
- Aad
Profile ManagedCluster AADProfile Args - The Azure Active Directory configuration.
- Addon
Profiles map[string]ManagedCluster Addon Profile Args - The profile of managed cluster add-on.
- Agent
Pool []ManagedProfiles Cluster Agent Pool Profile Args - The agent pool properties.
- Api
Server ManagedAccess Profile Cluster APIServer Access Profile Args - The access profile for managed cluster API server.
- Auto
Scaler ManagedProfile Cluster Properties Auto Scaler Profile Args - Parameters to be applied to the cluster-autoscaler when enabled
- Auto
Upgrade ManagedProfile Cluster Auto Upgrade Profile Args - The auto upgrade configuration.
- Azure
Monitor ManagedProfile Cluster Azure Monitor Profile Args - Azure Monitor addon profiles for monitoring the managed cluster.
- Disable
Local boolAccounts - If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
- Disk
Encryption stringSet ID - This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
- Dns
Prefix string - This cannot be updated once the Managed Cluster has been created.
- Enable
Pod boolSecurity Policy - (DEPRECATED) Whether to enable Kubernetes pod security policy (preview). PodSecurityPolicy was deprecated in Kubernetes v1.21, and removed from Kubernetes in v1.25. Learn more at https://aka.ms/k8s/psp and https://aka.ms/aks/psp.
- Enable
RBAC bool - Whether to enable Kubernetes Role-Based Access Control.
- Extended
Location ExtendedLocation Args - The extended location of the Virtual Machine.
- Fqdn
Subdomain string - This cannot be updated once the Managed Cluster has been created.
- Http
Proxy ManagedConfig Cluster HTTPProxy Config Args - Configurations for provisioning the cluster with HTTP proxy servers.
- Identity
Managed
Cluster Identity Args - The identity of the managed cluster, if configured.
- Identity
Profile map[string]UserAssigned Identity Args - The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
- Ingress
Profile ManagedCluster Ingress Profile Args - Ingress profile for the managed cluster.
- Kubernetes
Version string - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
- Linux
Profile ContainerService Linux Profile Args - The profile for Linux VMs in the Managed Cluster.
- Location string
- The geo-location where the resource lives
- Metrics
Profile ManagedCluster Metrics Profile Args - Optional cluster metrics configuration.
- Network
Profile ContainerService Network Profile Args - The network configuration profile.
- Node
Resource stringGroup - The name of the resource group containing agent pool nodes.
- Node
Resource ManagedGroup Profile Cluster Node Resource Group Profile Args - Profile of the node resource group configuration.
- Oidc
Issuer ManagedProfile Cluster OIDCIssuer Profile Args - The OIDC issuer profile of the Managed Cluster.
- Pod
Identity ManagedProfile Cluster Pod Identity Profile Args - See use AAD pod identity for more details on AAD pod identity integration.
- Private
Link []PrivateResources Link Resource Args - Private link resources associated with the cluster.
- Public
Network string | PublicAccess Network Access - Allow or deny public network access for AKS
- Resource
Name string - The name of the managed cluster resource.
- Security
Profile ManagedCluster Security Profile Args - Security profile for the managed cluster.
- Service
Mesh ServiceProfile Mesh Profile Args - Service mesh profile for a managed cluster.
- Service
Principal ManagedProfile Cluster Service Principal Profile Args - Information about a service principal identity for the cluster to use for manipulating Azure APIs.
- Sku
Managed
Cluster SKUArgs - The managed cluster SKU.
- Storage
Profile ManagedCluster Storage Profile Args - Storage profile for the managed cluster.
- Support
Plan string | KubernetesSupport Plan - The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
- map[string]string
- Resource tags.
- Upgrade
Settings ClusterUpgrade Settings Args - Settings for upgrading a cluster.
- Windows
Profile ManagedCluster Windows Profile Args - The profile for Windows VMs in the Managed Cluster.
- Workload
Auto ManagedScaler Profile Cluster Workload Auto Scaler Profile Args - Workload Auto-scaler profile for the managed cluster.
- resource
Group StringName - The name of the resource group. The name is case insensitive.
- aad
Profile ManagedCluster AADProfile - The Azure Active Directory configuration.
- addon
Profiles Map<String,ManagedCluster Addon Profile Args> - The profile of managed cluster add-on.
- agent
Pool List<ManagedProfiles Cluster Agent Pool Profile> - The agent pool properties.
- api
Server ManagedAccess Profile Cluster APIServer Access Profile - The access profile for managed cluster API server.
- auto
Scaler ManagedProfile Cluster Properties Auto Scaler Profile - Parameters to be applied to the cluster-autoscaler when enabled
- auto
Upgrade ManagedProfile Cluster Auto Upgrade Profile - The auto upgrade configuration.
- azure
Monitor ManagedProfile Cluster Azure Monitor Profile - Azure Monitor addon profiles for monitoring the managed cluster.
- disable
Local BooleanAccounts - If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
- disk
Encryption StringSet ID - This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
- dns
Prefix String - This cannot be updated once the Managed Cluster has been created.
- enable
Pod BooleanSecurity Policy - (DEPRECATED) Whether to enable Kubernetes pod security policy (preview). PodSecurityPolicy was deprecated in Kubernetes v1.21, and removed from Kubernetes in v1.25. Learn more at https://aka.ms/k8s/psp and https://aka.ms/aks/psp.
- enable
RBAC Boolean - Whether to enable Kubernetes Role-Based Access Control.
- extended
Location ExtendedLocation - The extended location of the Virtual Machine.
- fqdn
Subdomain String - This cannot be updated once the Managed Cluster has been created.
- http
Proxy ManagedConfig Cluster HTTPProxy Config - Configurations for provisioning the cluster with HTTP proxy servers.
- identity
Managed
Cluster Identity - The identity of the managed cluster, if configured.
- identity
Profile Map<String,UserAssigned Identity Args> - The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
- ingress
Profile ManagedCluster Ingress Profile - Ingress profile for the managed cluster.
- kubernetes
Version String - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
- linux
Profile ContainerService Linux Profile - The profile for Linux VMs in the Managed Cluster.
- location String
- The geo-location where the resource lives
- metrics
Profile ManagedCluster Metrics Profile - Optional cluster metrics configuration.
- network
Profile ContainerService Network Profile - The network configuration profile.
- node
Resource StringGroup - The name of the resource group containing agent pool nodes.
- node
Resource ManagedGroup Profile Cluster Node Resource Group Profile - Profile of the node resource group configuration.
- oidc
Issuer ManagedProfile Cluster OIDCIssuer Profile - The OIDC issuer profile of the Managed Cluster.
- pod
Identity ManagedProfile Cluster Pod Identity Profile - See use AAD pod identity for more details on AAD pod identity integration.
- private
Link List<PrivateResources Link Resource> - Private link resources associated with the cluster.
- public
Network String | PublicAccess Network Access - Allow or deny public network access for AKS
- resource
Name String - The name of the managed cluster resource.
- security
Profile ManagedCluster Security Profile - Security profile for the managed cluster.
- service
Mesh ServiceProfile Mesh Profile - Service mesh profile for a managed cluster.
- service
Principal ManagedProfile Cluster Service Principal Profile - Information about a service principal identity for the cluster to use for manipulating Azure APIs.
- sku
Managed
Cluster SKU - The managed cluster SKU.
- storage
Profile ManagedCluster Storage Profile - Storage profile for the managed cluster.
- support
Plan String | KubernetesSupport Plan - The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
- Map<String,String>
- Resource tags.
- upgrade
Settings ClusterUpgrade Settings - Settings for upgrading a cluster.
- windows
Profile ManagedCluster Windows Profile - The profile for Windows VMs in the Managed Cluster.
- workload
Auto ManagedScaler Profile Cluster Workload Auto Scaler Profile - Workload Auto-scaler profile for the managed cluster.
- resource
Group stringName - The name of the resource group. The name is case insensitive.
- aad
Profile ManagedCluster AADProfile - The Azure Active Directory configuration.
- addon
Profiles {[key: string]: ManagedCluster Addon Profile Args} - The profile of managed cluster add-on.
- agent
Pool ManagedProfiles Cluster Agent Pool Profile[] - The agent pool properties.
- api
Server ManagedAccess Profile Cluster APIServer Access Profile - The access profile for managed cluster API server.
- auto
Scaler ManagedProfile Cluster Properties Auto Scaler Profile - Parameters to be applied to the cluster-autoscaler when enabled
- auto
Upgrade ManagedProfile Cluster Auto Upgrade Profile - The auto upgrade configuration.
- azure
Monitor ManagedProfile Cluster Azure Monitor Profile - Azure Monitor addon profiles for monitoring the managed cluster.
- disable
Local booleanAccounts - If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
- disk
Encryption stringSet ID - This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
- dns
Prefix string - This cannot be updated once the Managed Cluster has been created.
- enable
Pod booleanSecurity Policy - (DEPRECATED) Whether to enable Kubernetes pod security policy (preview). PodSecurityPolicy was deprecated in Kubernetes v1.21, and removed from Kubernetes in v1.25. Learn more at https://aka.ms/k8s/psp and https://aka.ms/aks/psp.
- enable
RBAC boolean - Whether to enable Kubernetes Role-Based Access Control.
- extended
Location ExtendedLocation - The extended location of the Virtual Machine.
- fqdn
Subdomain string - This cannot be updated once the Managed Cluster has been created.
- http
Proxy ManagedConfig Cluster HTTPProxy Config - Configurations for provisioning the cluster with HTTP proxy servers.
- identity
Managed
Cluster Identity - The identity of the managed cluster, if configured.
- identity
Profile {[key: string]: UserAssigned Identity Args} - The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
- ingress
Profile ManagedCluster Ingress Profile - Ingress profile for the managed cluster.
- kubernetes
Version string - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
- linux
Profile ContainerService Linux Profile - The profile for Linux VMs in the Managed Cluster.
- location string
- The geo-location where the resource lives
- metrics
Profile ManagedCluster Metrics Profile - Optional cluster metrics configuration.
- network
Profile ContainerService Network Profile - The network configuration profile.
- node
Resource stringGroup - The name of the resource group containing agent pool nodes.
- node
Resource ManagedGroup Profile Cluster Node Resource Group Profile - Profile of the node resource group configuration.
- oidc
Issuer ManagedProfile Cluster OIDCIssuer Profile - The OIDC issuer profile of the Managed Cluster.
- pod
Identity ManagedProfile Cluster Pod Identity Profile - See use AAD pod identity for more details on AAD pod identity integration.
- private
Link PrivateResources Link Resource[] - Private link resources associated with the cluster.
- public
Network string | PublicAccess Network Access - Allow or deny public network access for AKS
- resource
Name string - The name of the managed cluster resource.
- security
Profile ManagedCluster Security Profile - Security profile for the managed cluster.
- service
Mesh ServiceProfile Mesh Profile - Service mesh profile for a managed cluster.
- service
Principal ManagedProfile Cluster Service Principal Profile - Information about a service principal identity for the cluster to use for manipulating Azure APIs.
- sku
Managed
Cluster SKU - The managed cluster SKU.
- storage
Profile ManagedCluster Storage Profile - Storage profile for the managed cluster.
- support
Plan string | KubernetesSupport Plan - The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
- {[key: string]: string}
- Resource tags.
- upgrade
Settings ClusterUpgrade Settings - Settings for upgrading a cluster.
- windows
Profile ManagedCluster Windows Profile - The profile for Windows VMs in the Managed Cluster.
- workload
Auto ManagedScaler Profile Cluster Workload Auto Scaler Profile - Workload Auto-scaler profile for the managed cluster.
- resource_
group_ strname - The name of the resource group. The name is case insensitive.
- aad_
profile ManagedCluster AADProfile Args - The Azure Active Directory configuration.
- addon_
profiles Mapping[str, ManagedCluster Addon Profile Args] - The profile of managed cluster add-on.
- agent_
pool_ Sequence[Managedprofiles Cluster Agent Pool Profile Args] - The agent pool properties.
- api_
server_ Managedaccess_ profile Cluster APIServer Access Profile Args - The access profile for managed cluster API server.
- auto_
scaler_ Managedprofile Cluster Properties Auto Scaler Profile Args - Parameters to be applied to the cluster-autoscaler when enabled
- auto_
upgrade_ Managedprofile Cluster Auto Upgrade Profile Args - The auto upgrade configuration.
- azure_
monitor_ Managedprofile Cluster Azure Monitor Profile Args - Azure Monitor addon profiles for monitoring the managed cluster.
- disable_
local_ boolaccounts - If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
- disk_
encryption_ strset_ id - This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
- dns_
prefix str - This cannot be updated once the Managed Cluster has been created.
- enable_
pod_ boolsecurity_ policy - (DEPRECATED) Whether to enable Kubernetes pod security policy (preview). PodSecurityPolicy was deprecated in Kubernetes v1.21, and removed from Kubernetes in v1.25. Learn more at https://aka.ms/k8s/psp and https://aka.ms/aks/psp.
- enable_
rbac bool - Whether to enable Kubernetes Role-Based Access Control.
- extended_
location ExtendedLocation Args - The extended location of the Virtual Machine.
- fqdn_
subdomain str - This cannot be updated once the Managed Cluster has been created.
- http_
proxy_ Managedconfig Cluster HTTPProxy Config Args - Configurations for provisioning the cluster with HTTP proxy servers.
- identity
Managed
Cluster Identity Args - The identity of the managed cluster, if configured.
- identity_
profile Mapping[str, UserAssigned Identity Args] - The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
- ingress_
profile ManagedCluster Ingress Profile Args - Ingress profile for the managed cluster.
- kubernetes_
version str - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
- linux_
profile ContainerService Linux Profile Args - The profile for Linux VMs in the Managed Cluster.
- location str
- The geo-location where the resource lives
- metrics_
profile ManagedCluster Metrics Profile Args - Optional cluster metrics configuration.
- network_
profile ContainerService Network Profile Args - The network configuration profile.
- node_
resource_ strgroup - The name of the resource group containing agent pool nodes.
- node_
resource_ Managedgroup_ profile Cluster Node Resource Group Profile Args - Profile of the node resource group configuration.
- oidc_
issuer_ Managedprofile Cluster OIDCIssuer Profile Args - The OIDC issuer profile of the Managed Cluster.
- pod_
identity_ Managedprofile Cluster Pod Identity Profile Args - See use AAD pod identity for more details on AAD pod identity integration.
- private_
link_ Sequence[Privateresources Link Resource Args] - Private link resources associated with the cluster.
- public_
network_ str | Publicaccess Network Access - Allow or deny public network access for AKS
- resource_
name str - The name of the managed cluster resource.
- security_
profile ManagedCluster Security Profile Args - Security profile for the managed cluster.
- service_
mesh_ Serviceprofile Mesh Profile Args - Service mesh profile for a managed cluster.
- service_
principal_ Managedprofile Cluster Service Principal Profile Args - Information about a service principal identity for the cluster to use for manipulating Azure APIs.
- sku
Managed
Cluster SKUArgs - The managed cluster SKU.
- storage_
profile ManagedCluster Storage Profile Args - Storage profile for the managed cluster.
- support_
plan str | KubernetesSupport Plan - The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
- Mapping[str, str]
- Resource tags.
- upgrade_
settings ClusterUpgrade Settings Args - Settings for upgrading a cluster.
- windows_
profile ManagedCluster Windows Profile Args - The profile for Windows VMs in the Managed Cluster.
- workload_
auto_ Managedscaler_ profile Cluster Workload Auto Scaler Profile Args - Workload Auto-scaler profile for the managed cluster.
- resource
Group StringName - The name of the resource group. The name is case insensitive.
- aad
Profile Property Map - The Azure Active Directory configuration.
- addon
Profiles Map<Property Map> - The profile of managed cluster add-on.
- agent
Pool List<Property Map>Profiles - The agent pool properties.
- api
Server Property MapAccess Profile - The access profile for managed cluster API server.
- auto
Scaler Property MapProfile - Parameters to be applied to the cluster-autoscaler when enabled
- auto
Upgrade Property MapProfile - The auto upgrade configuration.
- azure
Monitor Property MapProfile - Azure Monitor addon profiles for monitoring the managed cluster.
- disable
Local BooleanAccounts - If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
- disk
Encryption StringSet ID - This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
- dns
Prefix String - This cannot be updated once the Managed Cluster has been created.
- enable
Pod BooleanSecurity Policy - (DEPRECATED) Whether to enable Kubernetes pod security policy (preview). PodSecurityPolicy was deprecated in Kubernetes v1.21, and removed from Kubernetes in v1.25. Learn more at https://aka.ms/k8s/psp and https://aka.ms/aks/psp.
- enable
RBAC Boolean - Whether to enable Kubernetes Role-Based Access Control.
- extended
Location Property Map - The extended location of the Virtual Machine.
- fqdn
Subdomain String - This cannot be updated once the Managed Cluster has been created.
- http
Proxy Property MapConfig - Configurations for provisioning the cluster with HTTP proxy servers.
- identity Property Map
- The identity of the managed cluster, if configured.
- identity
Profile Map<Property Map> - The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
- ingress
Profile Property Map - Ingress profile for the managed cluster.
- kubernetes
Version String - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
- linux
Profile Property Map - The profile for Linux VMs in the Managed Cluster.
- location String
- The geo-location where the resource lives
- metrics
Profile Property Map - Optional cluster metrics configuration.
- network
Profile Property Map - The network configuration profile.
- node
Resource StringGroup - The name of the resource group containing agent pool nodes.
- node
Resource Property MapGroup Profile - Profile of the node resource group configuration.
- oidc
Issuer Property MapProfile - The OIDC issuer profile of the Managed Cluster.
- pod
Identity Property MapProfile - See use AAD pod identity for more details on AAD pod identity integration.
- private
Link List<Property Map>Resources - Private link resources associated with the cluster.
- public
Network String | "Enabled" | "Disabled"Access - Allow or deny public network access for AKS
- resource
Name String - The name of the managed cluster resource.
- security
Profile Property Map - Security profile for the managed cluster.
- service
Mesh Property MapProfile - Service mesh profile for a managed cluster.
- service
Principal Property MapProfile - Information about a service principal identity for the cluster to use for manipulating Azure APIs.
- sku Property Map
- The managed cluster SKU.
- storage
Profile Property Map - Storage profile for the managed cluster.
- support
Plan String | "KubernetesOfficial" | "AKSLong Term Support" - The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
- Map<String>
- Resource tags.
- upgrade
Settings Property Map - Settings for upgrading a cluster.
- windows
Profile Property Map - The profile for Windows VMs in the Managed Cluster.
- workload
Auto Property MapScaler Profile - Workload Auto-scaler profile for the managed cluster.
Outputs
All input properties are implicitly available as output properties. Additionally, the ManagedCluster resource produces the following output properties:
- Azure
Api stringVersion - The Azure API version of the resource.
- Azure
Portal stringFQDN - The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
- Current
Kubernetes stringVersion - If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
- ETag string
- Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal etag convention.
- Fqdn string
- The FQDN of the master pool.
- Id string
- The provider-assigned unique ID for this managed resource.
- Max
Agent intPools - The max number of agent pools for the managed cluster.
- Name string
- The name of the resource
- Power
State Pulumi.Azure Native. Container Service. Outputs. Power State Response - The Power State of the cluster.
- Private
FQDN string - The FQDN of private cluster.
- Provisioning
State string - The current provisioning state.
- Resource
UID string - The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
- System
Data Pulumi.Azure Native. Container Service. Outputs. System Data Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- Type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Azure
Api stringVersion - The Azure API version of the resource.
- Azure
Portal stringFQDN - The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
- Current
Kubernetes stringVersion - If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
- ETag string
- Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal etag convention.
- Fqdn string
- The FQDN of the master pool.
- Id string
- The provider-assigned unique ID for this managed resource.
- Max
Agent intPools - The max number of agent pools for the managed cluster.
- Name string
- The name of the resource
- Power
State PowerState Response - The Power State of the cluster.
- Private
FQDN string - The FQDN of private cluster.
- Provisioning
State string - The current provisioning state.
- Resource
UID string - The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
- System
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- Type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- azure
Api StringVersion - The Azure API version of the resource.
- azure
Portal StringFQDN - The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
- current
Kubernetes StringVersion - If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e
Tag String - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal etag convention.
- fqdn String
- The FQDN of the master pool.
- id String
- The provider-assigned unique ID for this managed resource.
- max
Agent IntegerPools - The max number of agent pools for the managed cluster.
- name String
- The name of the resource
- power
State PowerState Response - The Power State of the cluster.
- private
FQDN String - The FQDN of private cluster.
- provisioning
State String - The current provisioning state.
- resource
UID String - The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
- system
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type String
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- azure
Api stringVersion - The Azure API version of the resource.
- azure
Portal stringFQDN - The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
- current
Kubernetes stringVersion - If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e
Tag string - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal etag convention.
- fqdn string
- The FQDN of the master pool.
- id string
- The provider-assigned unique ID for this managed resource.
- max
Agent numberPools - The max number of agent pools for the managed cluster.
- name string
- The name of the resource
- power
State PowerState Response - The Power State of the cluster.
- private
FQDN string - The FQDN of private cluster.
- provisioning
State string - The current provisioning state.
- resource
UID string - The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
- system
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- azure_
api_ strversion - The Azure API version of the resource.
- azure_
portal_ strfqdn - The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
- current_
kubernetes_ strversion - If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e_
tag str - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal etag convention.
- fqdn str
- The FQDN of the master pool.
- id str
- The provider-assigned unique ID for this managed resource.
- max_
agent_ intpools - The max number of agent pools for the managed cluster.
- name str
- The name of the resource
- power_
state PowerState Response - The Power State of the cluster.
- private_
fqdn str - The FQDN of private cluster.
- provisioning_
state str - The current provisioning state.
- resource_
uid str - The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
- system_
data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type str
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- azure
Api StringVersion - The Azure API version of the resource.
- azure
Portal StringFQDN - The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
- current
Kubernetes StringVersion - If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e
Tag String - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal etag convention.
- fqdn String
- The FQDN of the master pool.
- id String
- The provider-assigned unique ID for this managed resource.
- max
Agent NumberPools - The max number of agent pools for the managed cluster.
- name String
- The name of the resource
- power
State Property Map - The Power State of the cluster.
- private
FQDN String - The FQDN of private cluster.
- provisioning
State String - The current provisioning state.
- resource
UID String - The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
- system
Data Property Map - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type String
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
Supporting Types
AdvancedNetworking, AdvancedNetworkingArgs
- Enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- Observability
Pulumi.
Azure Native. Container Service. Inputs. Advanced Networking Observability - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- Security
Pulumi.
Azure Native. Container Service. Inputs. Advanced Networking Security - Security profile to enable security features on cilium based cluster.
- Enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- Observability
Advanced
Networking Observability - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- Security
Advanced
Networking Security - Security profile to enable security features on cilium based cluster.
- enabled Boolean
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability
Advanced
Networking Observability - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security
Advanced
Networking Security - Security profile to enable security features on cilium based cluster.
- enabled boolean
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability
Advanced
Networking Observability - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security
Advanced
Networking Security - Security profile to enable security features on cilium based cluster.
- enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability
Advanced
Networking Observability - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security
Advanced
Networking Security - Security profile to enable security features on cilium based cluster.
- enabled Boolean
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability Property Map
- Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security Property Map
- Security profile to enable security features on cilium based cluster.
AdvancedNetworkingObservability, AdvancedNetworkingObservabilityArgs
- Enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- Enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled Boolean
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled boolean
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled Boolean
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
AdvancedNetworkingObservabilityResponse, AdvancedNetworkingObservabilityResponseArgs
- Enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- Enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled Boolean
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled boolean
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled Boolean
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
AdvancedNetworkingResponse, AdvancedNetworkingResponseArgs
- Enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- Observability
Pulumi.
Azure Native. Container Service. Inputs. Advanced Networking Observability Response - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- Security
Pulumi.
Azure Native. Container Service. Inputs. Advanced Networking Security Response - Security profile to enable security features on cilium based cluster.
- Enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- Observability
Advanced
Networking Observability Response - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- Security
Advanced
Networking Security Response - Security profile to enable security features on cilium based cluster.
- enabled Boolean
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability
Advanced
Networking Observability Response - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security
Advanced
Networking Security Response - Security profile to enable security features on cilium based cluster.
- enabled boolean
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability
Advanced
Networking Observability Response - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security
Advanced
Networking Security Response - Security profile to enable security features on cilium based cluster.
- enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability
Advanced
Networking Observability Response - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security
Advanced
Networking Security Response - Security profile to enable security features on cilium based cluster.
- enabled Boolean
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability Property Map
- Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security Property Map
- Security profile to enable security features on cilium based cluster.
AdvancedNetworkingSecurity, AdvancedNetworkingSecurityArgs
- Enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- Enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- enabled Boolean
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- enabled boolean
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- enabled Boolean
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
AdvancedNetworkingSecurityResponse, AdvancedNetworkingSecurityResponseArgs
- Enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- Enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- enabled Boolean
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- enabled boolean
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- enabled Boolean
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
AgentPoolMode, AgentPoolModeArgs
- System
- SystemSystem agent pools are primarily for hosting critical system pods such as CoreDNS and metrics-server. System agent pools osType must be Linux. System agent pools VM SKU must have at least 2vCPUs and 4GB of memory.
- User
- UserUser agent pools are primarily for hosting your application pods.
- Agent
Pool Mode System - SystemSystem agent pools are primarily for hosting critical system pods such as CoreDNS and metrics-server. System agent pools osType must be Linux. System agent pools VM SKU must have at least 2vCPUs and 4GB of memory.
- Agent
Pool Mode User - UserUser agent pools are primarily for hosting your application pods.
- System
- SystemSystem agent pools are primarily for hosting critical system pods such as CoreDNS and metrics-server. System agent pools osType must be Linux. System agent pools VM SKU must have at least 2vCPUs and 4GB of memory.
- User
- UserUser agent pools are primarily for hosting your application pods.
- System
- SystemSystem agent pools are primarily for hosting critical system pods such as CoreDNS and metrics-server. System agent pools osType must be Linux. System agent pools VM SKU must have at least 2vCPUs and 4GB of memory.
- User
- UserUser agent pools are primarily for hosting your application pods.
- SYSTEM
- SystemSystem agent pools are primarily for hosting critical system pods such as CoreDNS and metrics-server. System agent pools osType must be Linux. System agent pools VM SKU must have at least 2vCPUs and 4GB of memory.
- USER
- UserUser agent pools are primarily for hosting your application pods.
- "System"
- SystemSystem agent pools are primarily for hosting critical system pods such as CoreDNS and metrics-server. System agent pools osType must be Linux. System agent pools VM SKU must have at least 2vCPUs and 4GB of memory.
- "User"
- UserUser agent pools are primarily for hosting your application pods.
AgentPoolNetworkProfile, AgentPoolNetworkProfileArgs
- Allowed
Host List<Pulumi.Ports Azure Native. Container Service. Inputs. Port Range> - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- Application
Security List<string>Groups - The IDs of the application security groups which agent pool will associate when created.
-
List<Pulumi.
Azure Native. Container Service. Inputs. IPTag> - IPTags of instance-level public IPs.
- Allowed
Host []PortPorts Range - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- Application
Security []stringGroups - The IDs of the application security groups which agent pool will associate when created.
- []IPTag
- IPTags of instance-level public IPs.
- allowed
Host List<PortPorts Range> - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application
Security List<String>Groups - The IDs of the application security groups which agent pool will associate when created.
- List<IPTag>
- IPTags of instance-level public IPs.
- allowed
Host PortPorts Range[] - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application
Security string[]Groups - The IDs of the application security groups which agent pool will associate when created.
- IPTag[]
- IPTags of instance-level public IPs.
- allowed_
host_ Sequence[Portports Range] - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application_
security_ Sequence[str]groups - The IDs of the application security groups which agent pool will associate when created.
- Sequence[IPTag]
- IPTags of instance-level public IPs.
- allowed
Host List<Property Map>Ports - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application
Security List<String>Groups - The IDs of the application security groups which agent pool will associate when created.
- List<Property Map>
- IPTags of instance-level public IPs.
AgentPoolNetworkProfileResponse, AgentPoolNetworkProfileResponseArgs
- Allowed
Host List<Pulumi.Ports Azure Native. Container Service. Inputs. Port Range Response> - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- Application
Security List<string>Groups - The IDs of the application security groups which agent pool will associate when created.
-
List<Pulumi.
Azure Native. Container Service. Inputs. IPTag Response> - IPTags of instance-level public IPs.
- Allowed
Host []PortPorts Range Response - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- Application
Security []stringGroups - The IDs of the application security groups which agent pool will associate when created.
-
[]IPTag
Response - IPTags of instance-level public IPs.
- allowed
Host List<PortPorts Range Response> - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application
Security List<String>Groups - The IDs of the application security groups which agent pool will associate when created.
-
List<IPTag
Response> - IPTags of instance-level public IPs.
- allowed
Host PortPorts Range Response[] - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application
Security string[]Groups - The IDs of the application security groups which agent pool will associate when created.
-
IPTag
Response[] - IPTags of instance-level public IPs.
- allowed_
host_ Sequence[Portports Range Response] - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application_
security_ Sequence[str]groups - The IDs of the application security groups which agent pool will associate when created.
-
Sequence[IPTag
Response] - IPTags of instance-level public IPs.
- allowed
Host List<Property Map>Ports - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application
Security List<String>Groups - The IDs of the application security groups which agent pool will associate when created.
- List<Property Map>
- IPTags of instance-level public IPs.
AgentPoolSecurityProfile, AgentPoolSecurityProfileArgs
- Enable
Secure boolBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Enable
VTPM bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Enable
Secure boolBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Enable
VTPM bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
Secure BooleanBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
VTPM Boolean - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
Secure booleanBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
VTPM boolean - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable_
secure_ boolboot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable_
vtpm bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
Secure BooleanBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
VTPM Boolean - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
AgentPoolSecurityProfileResponse, AgentPoolSecurityProfileResponseArgs
- Enable
Secure boolBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Enable
VTPM bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Enable
Secure boolBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Enable
VTPM bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
Secure BooleanBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
VTPM Boolean - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
Secure booleanBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
VTPM boolean - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable_
secure_ boolboot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable_
vtpm bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
Secure BooleanBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
VTPM Boolean - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
AgentPoolType, AgentPoolTypeArgs
- Virtual
Machine Scale Sets - VirtualMachineScaleSetsCreate an Agent Pool backed by a Virtual Machine Scale Set.
- Availability
Set - AvailabilitySetUse of this is strongly discouraged.
- Agent
Pool Type Virtual Machine Scale Sets - VirtualMachineScaleSetsCreate an Agent Pool backed by a Virtual Machine Scale Set.
- Agent
Pool Type Availability Set - AvailabilitySetUse of this is strongly discouraged.
- Virtual
Machine Scale Sets - VirtualMachineScaleSetsCreate an Agent Pool backed by a Virtual Machine Scale Set.
- Availability
Set - AvailabilitySetUse of this is strongly discouraged.
- Virtual
Machine Scale Sets - VirtualMachineScaleSetsCreate an Agent Pool backed by a Virtual Machine Scale Set.
- Availability
Set - AvailabilitySetUse of this is strongly discouraged.
- VIRTUAL_MACHINE_SCALE_SETS
- VirtualMachineScaleSetsCreate an Agent Pool backed by a Virtual Machine Scale Set.
- AVAILABILITY_SET
- AvailabilitySetUse of this is strongly discouraged.
- "Virtual
Machine Scale Sets" - VirtualMachineScaleSetsCreate an Agent Pool backed by a Virtual Machine Scale Set.
- "Availability
Set" - AvailabilitySetUse of this is strongly discouraged.
AgentPoolUpgradeSettings, AgentPoolUpgradeSettingsArgs
- Drain
Timeout intIn Minutes - The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- Max
Surge string - This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://docs.microsoft.com/azure/aks/upgrade-cluster#customize-node-surge-upgrade
- Node
Soak intDuration In Minutes - The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- Drain
Timeout intIn Minutes - The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- Max
Surge string - This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://docs.microsoft.com/azure/aks/upgrade-cluster#customize-node-surge-upgrade
- Node
Soak intDuration In Minutes - The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- drain
Timeout IntegerIn Minutes - The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max
Surge String - This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://docs.microsoft.com/azure/aks/upgrade-cluster#customize-node-surge-upgrade
- node
Soak IntegerDuration In Minutes - The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- drain
Timeout numberIn Minutes - The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max
Surge string - This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://docs.microsoft.com/azure/aks/upgrade-cluster#customize-node-surge-upgrade
- node
Soak numberDuration In Minutes - The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- drain_
timeout_ intin_ minutes - The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max_
surge str - This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://docs.microsoft.com/azure/aks/upgrade-cluster#customize-node-surge-upgrade
- node_
soak_ intduration_ in_ minutes - The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- drain
Timeout NumberIn Minutes - The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max
Surge String - This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://docs.microsoft.com/azure/aks/upgrade-cluster#customize-node-surge-upgrade
- node
Soak NumberDuration In Minutes - The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
AgentPoolUpgradeSettingsResponse, AgentPoolUpgradeSettingsResponseArgs
- Drain
Timeout intIn Minutes - The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- Max
Surge string - This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://docs.microsoft.com/azure/aks/upgrade-cluster#customize-node-surge-upgrade
- Node
Soak intDuration In Minutes - The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- Drain
Timeout intIn Minutes - The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- Max
Surge string - This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://docs.microsoft.com/azure/aks/upgrade-cluster#customize-node-surge-upgrade
- Node
Soak intDuration In Minutes - The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- drain
Timeout IntegerIn Minutes - The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max
Surge String - This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://docs.microsoft.com/azure/aks/upgrade-cluster#customize-node-surge-upgrade
- node
Soak IntegerDuration In Minutes - The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- drain
Timeout numberIn Minutes - The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max
Surge string - This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://docs.microsoft.com/azure/aks/upgrade-cluster#customize-node-surge-upgrade
- node
Soak numberDuration In Minutes - The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- drain_
timeout_ intin_ minutes - The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max_
surge str - This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://docs.microsoft.com/azure/aks/upgrade-cluster#customize-node-surge-upgrade
- node_
soak_ intduration_ in_ minutes - The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- drain
Timeout NumberIn Minutes - The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max
Surge String - This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://docs.microsoft.com/azure/aks/upgrade-cluster#customize-node-surge-upgrade
- node
Soak NumberDuration In Minutes - The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
AgentPoolWindowsProfile, AgentPoolWindowsProfileArgs
- Disable
Outbound boolNat - The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- Disable
Outbound boolNat - The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable
Outbound BooleanNat - The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable
Outbound booleanNat - The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable_
outbound_ boolnat - The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable
Outbound BooleanNat - The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
AgentPoolWindowsProfileResponse, AgentPoolWindowsProfileResponseArgs
- Disable
Outbound boolNat - The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- Disable
Outbound boolNat - The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable
Outbound BooleanNat - The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable
Outbound booleanNat - The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable_
outbound_ boolnat - The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable
Outbound BooleanNat - The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
AzureKeyVaultKms, AzureKeyVaultKmsArgs
- Enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- Key
Id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- Key
Vault string | Pulumi.Network Access Azure Native. Container Service. Key Vault Network Access Types - Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - Key
Vault stringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- Enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- Key
Id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- Key
Vault string | KeyNetwork Access Vault Network Access Types - Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - Key
Vault stringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled Boolean
- Whether to enable Azure Key Vault key management service. The default is false.
- key
Id String - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key
Vault String | KeyNetwork Access Vault Network Access Types - Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key
Vault StringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled boolean
- Whether to enable Azure Key Vault key management service. The default is false.
- key
Id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key
Vault string | KeyNetwork Access Vault Network Access Types - Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key
Vault stringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- key_
id str - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key_
vault_ str | Keynetwork_ access Vault Network Access Types - Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key_
vault_ strresource_ id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled Boolean
- Whether to enable Azure Key Vault key management service. The default is false.
- key
Id String - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key
Vault String | "Public" | "Private"Network Access - Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key
Vault StringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
AzureKeyVaultKmsResponse, AzureKeyVaultKmsResponseArgs
- Enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- Key
Id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- Key
Vault stringNetwork Access - Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - Key
Vault stringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- Enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- Key
Id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- Key
Vault stringNetwork Access - Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - Key
Vault stringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled Boolean
- Whether to enable Azure Key Vault key management service. The default is false.
- key
Id String - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key
Vault StringNetwork Access - Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key
Vault StringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled boolean
- Whether to enable Azure Key Vault key management service. The default is false.
- key
Id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key
Vault stringNetwork Access - Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key
Vault stringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- key_
id str - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key_
vault_ strnetwork_ access - Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key_
vault_ strresource_ id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled Boolean
- Whether to enable Azure Key Vault key management service. The default is false.
- key
Id String - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key
Vault StringNetwork Access - Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key
Vault StringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
BackendPoolType, BackendPoolTypeArgs
- Node
IPConfiguration - NodeIPConfigurationThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- Node
IP - NodeIPThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- Backend
Pool Type Node IPConfiguration - NodeIPConfigurationThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- Backend
Pool Type Node IP - NodeIPThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- Node
IPConfiguration - NodeIPConfigurationThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- Node
IP - NodeIPThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- Node
IPConfiguration - NodeIPConfigurationThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- Node
IP - NodeIPThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- NODE_IP_CONFIGURATION
- NodeIPConfigurationThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- NODE_IP
- NodeIPThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- "Node
IPConfiguration" - NodeIPConfigurationThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- "Node
IP" - NodeIPThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
ClusterUpgradeSettings, ClusterUpgradeSettingsArgs
- Override
Settings Pulumi.Azure Native. Container Service. Inputs. Upgrade Override Settings - Settings for overrides.
- Override
Settings UpgradeOverride Settings - Settings for overrides.
- override
Settings UpgradeOverride Settings - Settings for overrides.
- override
Settings UpgradeOverride Settings - Settings for overrides.
- override_
settings UpgradeOverride Settings - Settings for overrides.
- override
Settings Property Map - Settings for overrides.
ClusterUpgradeSettingsResponse, ClusterUpgradeSettingsResponseArgs
- Override
Settings Pulumi.Azure Native. Container Service. Inputs. Upgrade Override Settings Response - Settings for overrides.
- Override
Settings UpgradeOverride Settings Response - Settings for overrides.
- override
Settings UpgradeOverride Settings Response - Settings for overrides.
- override
Settings UpgradeOverride Settings Response - Settings for overrides.
- override_
settings UpgradeOverride Settings Response - Settings for overrides.
- override
Settings Property Map - Settings for overrides.
Code, CodeArgs
- Running
- RunningThe cluster is running.
- Stopped
- StoppedThe cluster is stopped.
- Code
Running - RunningThe cluster is running.
- Code
Stopped - StoppedThe cluster is stopped.
- Running
- RunningThe cluster is running.
- Stopped
- StoppedThe cluster is stopped.
- Running
- RunningThe cluster is running.
- Stopped
- StoppedThe cluster is stopped.
- RUNNING
- RunningThe cluster is running.
- STOPPED
- StoppedThe cluster is stopped.
- "Running"
- RunningThe cluster is running.
- "Stopped"
- StoppedThe cluster is stopped.
ContainerServiceLinuxProfile, ContainerServiceLinuxProfileArgs
- Admin
Username string - The administrator username to use for Linux VMs.
- Ssh
Pulumi.
Azure Native. Container Service. Inputs. Container Service Ssh Configuration - The SSH configuration for Linux-based VMs running on Azure.
- Admin
Username string - The administrator username to use for Linux VMs.
- Ssh
Container
Service Ssh Configuration - The SSH configuration for Linux-based VMs running on Azure.
- admin
Username String - The administrator username to use for Linux VMs.
- ssh
Container
Service Ssh Configuration - The SSH configuration for Linux-based VMs running on Azure.
- admin
Username string - The administrator username to use for Linux VMs.
- ssh
Container
Service Ssh Configuration - The SSH configuration for Linux-based VMs running on Azure.
- admin_
username str - The administrator username to use for Linux VMs.
- ssh
Container
Service Ssh Configuration - The SSH configuration for Linux-based VMs running on Azure.
- admin
Username String - The administrator username to use for Linux VMs.
- ssh Property Map
- The SSH configuration for Linux-based VMs running on Azure.
ContainerServiceLinuxProfileResponse, ContainerServiceLinuxProfileResponseArgs
- Admin
Username string - The administrator username to use for Linux VMs.
- Ssh
Pulumi.
Azure Native. Container Service. Inputs. Container Service Ssh Configuration Response - The SSH configuration for Linux-based VMs running on Azure.
- Admin
Username string - The administrator username to use for Linux VMs.
- Ssh
Container
Service Ssh Configuration Response - The SSH configuration for Linux-based VMs running on Azure.
- admin
Username String - The administrator username to use for Linux VMs.
- ssh
Container
Service Ssh Configuration Response - The SSH configuration for Linux-based VMs running on Azure.
- admin
Username string - The administrator username to use for Linux VMs.
- ssh
Container
Service Ssh Configuration Response - The SSH configuration for Linux-based VMs running on Azure.
- admin_
username str - The administrator username to use for Linux VMs.
- ssh
Container
Service Ssh Configuration Response - The SSH configuration for Linux-based VMs running on Azure.
- admin
Username String - The administrator username to use for Linux VMs.
- ssh Property Map
- The SSH configuration for Linux-based VMs running on Azure.
ContainerServiceNetworkProfile, ContainerServiceNetworkProfileArgs
- Advanced
Networking Pulumi.Azure Native. Container Service. Inputs. Advanced Networking - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- Dns
Service stringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- Ip
Families List<Union<string, Pulumi.Azure Native. Container Service. Ip Family>> - IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- Load
Balancer Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile - Profile of the cluster load balancer.
- Load
Balancer string | Pulumi.Sku Azure Native. Container Service. Load Balancer Sku - The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- Nat
Gateway Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster NATGateway Profile - Profile of the cluster NAT gateway.
- Network
Dataplane string | Pulumi.Azure Native. Container Service. Network Dataplane - Network dataplane used in the Kubernetes cluster.
- Network
Mode string | Pulumi.Azure Native. Container Service. Network Mode - This cannot be specified if networkPlugin is anything other than 'azure'.
- Network
Plugin string | Pulumi.Azure Native. Container Service. Network Plugin - Network plugin used for building the Kubernetes network.
- Network
Plugin string | Pulumi.Mode Azure Native. Container Service. Network Plugin Mode - The mode the network plugin should use.
- Network
Policy string | Pulumi.Azure Native. Container Service. Network Policy - Network policy used for building the Kubernetes network.
- Outbound
Type string | Pulumi.Azure Native. Container Service. Outbound Type - This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- Pod
Cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- Pod
Cidrs List<string> - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- Service
Cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- Service
Cidrs List<string> - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- Advanced
Networking AdvancedNetworking - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- Dns
Service stringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- Ip
Families []string - IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- Load
Balancer ManagedProfile Cluster Load Balancer Profile - Profile of the cluster load balancer.
- Load
Balancer string | LoadSku Balancer Sku - The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- Nat
Gateway ManagedProfile Cluster NATGateway Profile - Profile of the cluster NAT gateway.
- Network
Dataplane string | NetworkDataplane - Network dataplane used in the Kubernetes cluster.
- Network
Mode string | NetworkMode - This cannot be specified if networkPlugin is anything other than 'azure'.
- Network
Plugin string | NetworkPlugin - Network plugin used for building the Kubernetes network.
- Network
Plugin string | NetworkMode Plugin Mode - The mode the network plugin should use.
- Network
Policy string | NetworkPolicy - Network policy used for building the Kubernetes network.
- Outbound
Type string | OutboundType - This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- Pod
Cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- Pod
Cidrs []string - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- Service
Cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- Service
Cidrs []string - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- advanced
Networking AdvancedNetworking - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns
Service StringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip
Families List<Either<String,IpFamily>> - IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load
Balancer ManagedProfile Cluster Load Balancer Profile - Profile of the cluster load balancer.
- load
Balancer String | LoadSku Balancer Sku - The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat
Gateway ManagedProfile Cluster NATGateway Profile - Profile of the cluster NAT gateway.
- network
Dataplane String | NetworkDataplane - Network dataplane used in the Kubernetes cluster.
- network
Mode String | NetworkMode - This cannot be specified if networkPlugin is anything other than 'azure'.
- network
Plugin String | NetworkPlugin - Network plugin used for building the Kubernetes network.
- network
Plugin String | NetworkMode Plugin Mode - The mode the network plugin should use.
- network
Policy String | NetworkPolicy - Network policy used for building the Kubernetes network.
- outbound
Type String | OutboundType - This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod
Cidr String - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod
Cidrs List<String> - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service
Cidr String - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service
Cidrs List<String> - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- advanced
Networking AdvancedNetworking - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns
Service stringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip
Families (string | IpFamily)[] - IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load
Balancer ManagedProfile Cluster Load Balancer Profile - Profile of the cluster load balancer.
- load
Balancer string | LoadSku Balancer Sku - The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat
Gateway ManagedProfile Cluster NATGateway Profile - Profile of the cluster NAT gateway.
- network
Dataplane string | NetworkDataplane - Network dataplane used in the Kubernetes cluster.
- network
Mode string | NetworkMode - This cannot be specified if networkPlugin is anything other than 'azure'.
- network
Plugin string | NetworkPlugin - Network plugin used for building the Kubernetes network.
- network
Plugin string | NetworkMode Plugin Mode - The mode the network plugin should use.
- network
Policy string | NetworkPolicy - Network policy used for building the Kubernetes network.
- outbound
Type string | OutboundType - This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod
Cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod
Cidrs string[] - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service
Cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service
Cidrs string[] - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- advanced_
networking AdvancedNetworking - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns_
service_ strip - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip_
families Sequence[Union[str, IpFamily]] - IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load_
balancer_ Managedprofile Cluster Load Balancer Profile - Profile of the cluster load balancer.
- load_
balancer_ str | Loadsku Balancer Sku - The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat_
gateway_ Managedprofile Cluster NATGateway Profile - Profile of the cluster NAT gateway.
- network_
dataplane str | NetworkDataplane - Network dataplane used in the Kubernetes cluster.
- network_
mode str | NetworkMode - This cannot be specified if networkPlugin is anything other than 'azure'.
- network_
plugin str | NetworkPlugin - Network plugin used for building the Kubernetes network.
- network_
plugin_ str | Networkmode Plugin Mode - The mode the network plugin should use.
- network_
policy str | NetworkPolicy - Network policy used for building the Kubernetes network.
- outbound_
type str | OutboundType - This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod_
cidr str - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod_
cidrs Sequence[str] - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service_
cidr str - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service_
cidrs Sequence[str] - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- advanced
Networking Property Map - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns
Service StringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip
Families List<String | "IPv4" | "IPv6"> - IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load
Balancer Property MapProfile - Profile of the cluster load balancer.
- load
Balancer String | "standard" | "basic"Sku - The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat
Gateway Property MapProfile - Profile of the cluster NAT gateway.
- network
Dataplane String | "azure" | "cilium" - Network dataplane used in the Kubernetes cluster.
- network
Mode String | "transparent" | "bridge" - This cannot be specified if networkPlugin is anything other than 'azure'.
- network
Plugin String | "azure" | "kubenet" | "none" - Network plugin used for building the Kubernetes network.
- network
Plugin String | "overlay"Mode - The mode the network plugin should use.
- network
Policy String | "none" | "calico" | "azure" | "cilium" - Network policy used for building the Kubernetes network.
- outbound
Type String | "loadBalancer" | "user Defined Routing" | "managed NATGateway" | "user Assigned NATGateway" - This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod
Cidr String - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod
Cidrs List<String> - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service
Cidr String - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service
Cidrs List<String> - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
ContainerServiceNetworkProfileResponse, ContainerServiceNetworkProfileResponseArgs
- Advanced
Networking Pulumi.Azure Native. Container Service. Inputs. Advanced Networking Response - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- Dns
Service stringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- Ip
Families List<string> - IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- Load
Balancer Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Response - Profile of the cluster load balancer.
- Load
Balancer stringSku - The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- Nat
Gateway Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster NATGateway Profile Response - Profile of the cluster NAT gateway.
- Network
Dataplane string - Network dataplane used in the Kubernetes cluster.
- Network
Mode string - This cannot be specified if networkPlugin is anything other than 'azure'.
- Network
Plugin string - Network plugin used for building the Kubernetes network.
- Network
Plugin stringMode - The mode the network plugin should use.
- Network
Policy string - Network policy used for building the Kubernetes network.
- Outbound
Type string - This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- Pod
Cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- Pod
Cidrs List<string> - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- Service
Cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- Service
Cidrs List<string> - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- Advanced
Networking AdvancedNetworking Response - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- Dns
Service stringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- Ip
Families []string - IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- Load
Balancer ManagedProfile Cluster Load Balancer Profile Response - Profile of the cluster load balancer.
- Load
Balancer stringSku - The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- Nat
Gateway ManagedProfile Cluster NATGateway Profile Response - Profile of the cluster NAT gateway.
- Network
Dataplane string - Network dataplane used in the Kubernetes cluster.
- Network
Mode string - This cannot be specified if networkPlugin is anything other than 'azure'.
- Network
Plugin string - Network plugin used for building the Kubernetes network.
- Network
Plugin stringMode - The mode the network plugin should use.
- Network
Policy string - Network policy used for building the Kubernetes network.
- Outbound
Type string - This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- Pod
Cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- Pod
Cidrs []string - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- Service
Cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- Service
Cidrs []string - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- advanced
Networking AdvancedNetworking Response - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns
Service StringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip
Families List<String> - IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load
Balancer ManagedProfile Cluster Load Balancer Profile Response - Profile of the cluster load balancer.
- load
Balancer StringSku - The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat
Gateway ManagedProfile Cluster NATGateway Profile Response - Profile of the cluster NAT gateway.
- network
Dataplane String - Network dataplane used in the Kubernetes cluster.
- network
Mode String - This cannot be specified if networkPlugin is anything other than 'azure'.
- network
Plugin String - Network plugin used for building the Kubernetes network.
- network
Plugin StringMode - The mode the network plugin should use.
- network
Policy String - Network policy used for building the Kubernetes network.
- outbound
Type String - This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod
Cidr String - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod
Cidrs List<String> - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service
Cidr String - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service
Cidrs List<String> - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- advanced
Networking AdvancedNetworking Response - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns
Service stringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip
Families string[] - IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load
Balancer ManagedProfile Cluster Load Balancer Profile Response - Profile of the cluster load balancer.
- load
Balancer stringSku - The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat
Gateway ManagedProfile Cluster NATGateway Profile Response - Profile of the cluster NAT gateway.
- network
Dataplane string - Network dataplane used in the Kubernetes cluster.
- network
Mode string - This cannot be specified if networkPlugin is anything other than 'azure'.
- network
Plugin string - Network plugin used for building the Kubernetes network.
- network
Plugin stringMode - The mode the network plugin should use.
- network
Policy string - Network policy used for building the Kubernetes network.
- outbound
Type string - This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod
Cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod
Cidrs string[] - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service
Cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service
Cidrs string[] - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- advanced_
networking AdvancedNetworking Response - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns_
service_ strip - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip_
families Sequence[str] - IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load_
balancer_ Managedprofile Cluster Load Balancer Profile Response - Profile of the cluster load balancer.
- load_
balancer_ strsku - The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat_
gateway_ Managedprofile Cluster NATGateway Profile Response - Profile of the cluster NAT gateway.
- network_
dataplane str - Network dataplane used in the Kubernetes cluster.
- network_
mode str - This cannot be specified if networkPlugin is anything other than 'azure'.
- network_
plugin str - Network plugin used for building the Kubernetes network.
- network_
plugin_ strmode - The mode the network plugin should use.
- network_
policy str - Network policy used for building the Kubernetes network.
- outbound_
type str - This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod_
cidr str - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod_
cidrs Sequence[str] - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service_
cidr str - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service_
cidrs Sequence[str] - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- advanced
Networking Property Map - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns
Service StringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip
Families List<String> - IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load
Balancer Property MapProfile - Profile of the cluster load balancer.
- load
Balancer StringSku - The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat
Gateway Property MapProfile - Profile of the cluster NAT gateway.
- network
Dataplane String - Network dataplane used in the Kubernetes cluster.
- network
Mode String - This cannot be specified if networkPlugin is anything other than 'azure'.
- network
Plugin String - Network plugin used for building the Kubernetes network.
- network
Plugin StringMode - The mode the network plugin should use.
- network
Policy String - Network policy used for building the Kubernetes network.
- outbound
Type String - This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod
Cidr String - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod
Cidrs List<String> - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service
Cidr String - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service
Cidrs List<String> - One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
ContainerServiceSshConfiguration, ContainerServiceSshConfigurationArgs
- Public
Keys List<Pulumi.Azure Native. Container Service. Inputs. Container Service Ssh Public Key> - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- Public
Keys []ContainerService Ssh Public Key - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public
Keys List<ContainerService Ssh Public Key> - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public
Keys ContainerService Ssh Public Key[] - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public_
keys Sequence[ContainerService Ssh Public Key] - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public
Keys List<Property Map> - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
ContainerServiceSshConfigurationResponse, ContainerServiceSshConfigurationResponseArgs
- Public
Keys List<Pulumi.Azure Native. Container Service. Inputs. Container Service Ssh Public Key Response> - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- Public
Keys []ContainerService Ssh Public Key Response - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public
Keys List<ContainerService Ssh Public Key Response> - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public
Keys ContainerService Ssh Public Key Response[] - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public_
keys Sequence[ContainerService Ssh Public Key Response] - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public
Keys List<Property Map> - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
ContainerServiceSshPublicKey, ContainerServiceSshPublicKeyArgs
- Key
Data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- Key
Data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key
Data String - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key
Data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key_
data str - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key
Data String - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
ContainerServiceSshPublicKeyResponse, ContainerServiceSshPublicKeyResponseArgs
- Key
Data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- Key
Data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key
Data String - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key
Data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key_
data str - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key
Data String - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
CreationData, CreationDataArgs
- Source
Resource stringId - This is the ARM ID of the source object to be used to create the target object.
- Source
Resource stringId - This is the ARM ID of the source object to be used to create the target object.
- source
Resource StringId - This is the ARM ID of the source object to be used to create the target object.
- source
Resource stringId - This is the ARM ID of the source object to be used to create the target object.
- source_
resource_ strid - This is the ARM ID of the source object to be used to create the target object.
- source
Resource StringId - This is the ARM ID of the source object to be used to create the target object.
CreationDataResponse, CreationDataResponseArgs
- Source
Resource stringId - This is the ARM ID of the source object to be used to create the target object.
- Source
Resource stringId - This is the ARM ID of the source object to be used to create the target object.
- source
Resource StringId - This is the ARM ID of the source object to be used to create the target object.
- source
Resource stringId - This is the ARM ID of the source object to be used to create the target object.
- source_
resource_ strid - This is the ARM ID of the source object to be used to create the target object.
- source
Resource StringId - This is the ARM ID of the source object to be used to create the target object.
DelegatedResource, DelegatedResourceArgs
- Location string
- The source resource location - internal use only.
- Referral
Resource string - The delegation id of the referral delegation (optional) - internal use only.
- Resource
Id string - The ARM resource id of the delegated resource - internal use only.
- Tenant
Id string - The tenant id of the delegated resource - internal use only.
- Location string
- The source resource location - internal use only.
- Referral
Resource string - The delegation id of the referral delegation (optional) - internal use only.
- Resource
Id string - The ARM resource id of the delegated resource - internal use only.
- Tenant
Id string - The tenant id of the delegated resource - internal use only.
- location String
- The source resource location - internal use only.
- referral
Resource String - The delegation id of the referral delegation (optional) - internal use only.
- resource
Id String - The ARM resource id of the delegated resource - internal use only.
- tenant
Id String - The tenant id of the delegated resource - internal use only.
- location string
- The source resource location - internal use only.
- referral
Resource string - The delegation id of the referral delegation (optional) - internal use only.
- resource
Id string - The ARM resource id of the delegated resource - internal use only.
- tenant
Id string - The tenant id of the delegated resource - internal use only.
- location str
- The source resource location - internal use only.
- referral_
resource str - The delegation id of the referral delegation (optional) - internal use only.
- resource_
id str - The ARM resource id of the delegated resource - internal use only.
- tenant_
id str - The tenant id of the delegated resource - internal use only.
- location String
- The source resource location - internal use only.
- referral
Resource String - The delegation id of the referral delegation (optional) - internal use only.
- resource
Id String - The ARM resource id of the delegated resource - internal use only.
- tenant
Id String - The tenant id of the delegated resource - internal use only.
DelegatedResourceResponse, DelegatedResourceResponseArgs
- Location string
- The source resource location - internal use only.
- Referral
Resource string - The delegation id of the referral delegation (optional) - internal use only.
- Resource
Id string - The ARM resource id of the delegated resource - internal use only.
- Tenant
Id string - The tenant id of the delegated resource - internal use only.
- Location string
- The source resource location - internal use only.
- Referral
Resource string - The delegation id of the referral delegation (optional) - internal use only.
- Resource
Id string - The ARM resource id of the delegated resource - internal use only.
- Tenant
Id string - The tenant id of the delegated resource - internal use only.
- location String
- The source resource location - internal use only.
- referral
Resource String - The delegation id of the referral delegation (optional) - internal use only.
- resource
Id String - The ARM resource id of the delegated resource - internal use only.
- tenant
Id String - The tenant id of the delegated resource - internal use only.
- location string
- The source resource location - internal use only.
- referral
Resource string - The delegation id of the referral delegation (optional) - internal use only.
- resource
Id string - The ARM resource id of the delegated resource - internal use only.
- tenant
Id string - The tenant id of the delegated resource - internal use only.
- location str
- The source resource location - internal use only.
- referral_
resource str - The delegation id of the referral delegation (optional) - internal use only.
- resource_
id str - The ARM resource id of the delegated resource - internal use only.
- tenant_
id str - The tenant id of the delegated resource - internal use only.
- location String
- The source resource location - internal use only.
- referral
Resource String - The delegation id of the referral delegation (optional) - internal use only.
- resource
Id String - The ARM resource id of the delegated resource - internal use only.
- tenant
Id String - The tenant id of the delegated resource - internal use only.
Expander, ExpanderArgs
- Least_
waste - least-wasteSelects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. This is useful when you have different classes of nodes, for example, high CPU or high memory nodes, and only want to expand those when there are pending pods that need a lot of those resources.
- Most_
pods - most-podsSelects the node group that would be able to schedule the most pods when scaling up. This is useful when you are using nodeSelector to make sure certain pods land on certain nodes. Note that this won't cause the autoscaler to select bigger nodes vs. smaller, as it can add multiple smaller nodes at once.
- Priority
- prioritySelects the node group that has the highest priority assigned by the user. It's configuration is described in more details here.
- Random
- randomUsed when you don't have a particular need for the node groups to scale differently.
- Expander_Least_Waste
- least-wasteSelects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. This is useful when you have different classes of nodes, for example, high CPU or high memory nodes, and only want to expand those when there are pending pods that need a lot of those resources.
- Expander_Most_Pods
- most-podsSelects the node group that would be able to schedule the most pods when scaling up. This is useful when you are using nodeSelector to make sure certain pods land on certain nodes. Note that this won't cause the autoscaler to select bigger nodes vs. smaller, as it can add multiple smaller nodes at once.
- Expander
Priority - prioritySelects the node group that has the highest priority assigned by the user. It's configuration is described in more details here.
- Expander
Random - randomUsed when you don't have a particular need for the node groups to scale differently.
- Leastwaste
- least-wasteSelects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. This is useful when you have different classes of nodes, for example, high CPU or high memory nodes, and only want to expand those when there are pending pods that need a lot of those resources.
- Mostpods
- most-podsSelects the node group that would be able to schedule the most pods when scaling up. This is useful when you are using nodeSelector to make sure certain pods land on certain nodes. Note that this won't cause the autoscaler to select bigger nodes vs. smaller, as it can add multiple smaller nodes at once.
- Priority
- prioritySelects the node group that has the highest priority assigned by the user. It's configuration is described in more details here.
- Random
- randomUsed when you don't have a particular need for the node groups to scale differently.
- Least_
waste - least-wasteSelects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. This is useful when you have different classes of nodes, for example, high CPU or high memory nodes, and only want to expand those when there are pending pods that need a lot of those resources.
- Most_
pods - most-podsSelects the node group that would be able to schedule the most pods when scaling up. This is useful when you are using nodeSelector to make sure certain pods land on certain nodes. Note that this won't cause the autoscaler to select bigger nodes vs. smaller, as it can add multiple smaller nodes at once.
- Priority
- prioritySelects the node group that has the highest priority assigned by the user. It's configuration is described in more details here.
- Random
- randomUsed when you don't have a particular need for the node groups to scale differently.
- LEAST_WASTE
- least-wasteSelects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. This is useful when you have different classes of nodes, for example, high CPU or high memory nodes, and only want to expand those when there are pending pods that need a lot of those resources.
- MOST_PODS
- most-podsSelects the node group that would be able to schedule the most pods when scaling up. This is useful when you are using nodeSelector to make sure certain pods land on certain nodes. Note that this won't cause the autoscaler to select bigger nodes vs. smaller, as it can add multiple smaller nodes at once.
- PRIORITY
- prioritySelects the node group that has the highest priority assigned by the user. It's configuration is described in more details here.
- RANDOM
- randomUsed when you don't have a particular need for the node groups to scale differently.
- "least-waste"
- least-wasteSelects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. This is useful when you have different classes of nodes, for example, high CPU or high memory nodes, and only want to expand those when there are pending pods that need a lot of those resources.
- "most-pods"
- most-podsSelects the node group that would be able to schedule the most pods when scaling up. This is useful when you are using nodeSelector to make sure certain pods land on certain nodes. Note that this won't cause the autoscaler to select bigger nodes vs. smaller, as it can add multiple smaller nodes at once.
- "priority"
- prioritySelects the node group that has the highest priority assigned by the user. It's configuration is described in more details here.
- "random"
- randomUsed when you don't have a particular need for the node groups to scale differently.
ExtendedLocation, ExtendedLocationArgs
- Name string
- The name of the extended location.
- Type
string | Pulumi.
Azure Native. Container Service. Extended Location Types - The type of the extended location.
- Name string
- The name of the extended location.
- Type
string | Extended
Location Types - The type of the extended location.
- name String
- The name of the extended location.
- type
String | Extended
Location Types - The type of the extended location.
- name string
- The name of the extended location.
- type
string | Extended
Location Types - The type of the extended location.
- name str
- The name of the extended location.
- type
str | Extended
Location Types - The type of the extended location.
- name String
- The name of the extended location.
- type
String | "Edge
Zone" - The type of the extended location.
ExtendedLocationResponse, ExtendedLocationResponseArgs
ExtendedLocationTypes, ExtendedLocationTypesArgs
- Edge
Zone - EdgeZone
- Extended
Location Types Edge Zone - EdgeZone
- Edge
Zone - EdgeZone
- Edge
Zone - EdgeZone
- EDGE_ZONE
- EdgeZone
- "Edge
Zone" - EdgeZone
GPUInstanceProfile, GPUInstanceProfileArgs
- MIG1g
- MIG1g
- MIG2g
- MIG2g
- MIG3g
- MIG3g
- MIG4g
- MIG4g
- MIG7g
- MIG7g
- GPUInstance
Profile MIG1g - MIG1g
- GPUInstance
Profile MIG2g - MIG2g
- GPUInstance
Profile MIG3g - MIG3g
- GPUInstance
Profile MIG4g - MIG4g
- GPUInstance
Profile MIG7g - MIG7g
- MIG1g
- MIG1g
- MIG2g
- MIG2g
- MIG3g
- MIG3g
- MIG4g
- MIG4g
- MIG7g
- MIG7g
- MIG1g
- MIG1g
- MIG2g
- MIG2g
- MIG3g
- MIG3g
- MIG4g
- MIG4g
- MIG7g
- MIG7g
- MIG1G
- MIG1g
- MIG2G
- MIG2g
- MIG3G
- MIG3g
- MIG4G
- MIG4g
- MIG7G
- MIG7g
- "MIG1g"
- MIG1g
- "MIG2g"
- MIG2g
- "MIG3g"
- MIG3g
- "MIG4g"
- MIG4g
- "MIG7g"
- MIG7g
IPTag, IPTagArgs
- ip_
tag_ strtype - The IP tag type. Example: RoutingPreference.
- tag str
- The value of the IP tag associated with the public IP. Example: Internet.
IPTagResponse, IPTagResponseArgs
- ip_
tag_ strtype - The IP tag type. Example: RoutingPreference.
- tag str
- The value of the IP tag associated with the public IP. Example: Internet.
IpFamily, IpFamilyArgs
- IPv4
- IPv4
- IPv6
- IPv6
- Ip
Family IPv4 - IPv4
- Ip
Family IPv6 - IPv6
- IPv4
- IPv4
- IPv6
- IPv6
- IPv4
- IPv4
- IPv6
- IPv6
- I_PV4
- IPv4
- I_PV6
- IPv6
- "IPv4"
- IPv4
- "IPv6"
- IPv6
IstioCertificateAuthority, IstioCertificateAuthorityArgs
- Plugin
Pulumi.
Azure Native. Container Service. Inputs. Istio Plugin Certificate Authority - Plugin certificates information for Service Mesh.
- Plugin
Istio
Plugin Certificate Authority - Plugin certificates information for Service Mesh.
- plugin
Istio
Plugin Certificate Authority - Plugin certificates information for Service Mesh.
- plugin
Istio
Plugin Certificate Authority - Plugin certificates information for Service Mesh.
- plugin
Istio
Plugin Certificate Authority - Plugin certificates information for Service Mesh.
- plugin Property Map
- Plugin certificates information for Service Mesh.
IstioCertificateAuthorityResponse, IstioCertificateAuthorityResponseArgs
- Plugin
Pulumi.
Azure Native. Container Service. Inputs. Istio Plugin Certificate Authority Response - Plugin certificates information for Service Mesh.
- Plugin
Istio
Plugin Certificate Authority Response - Plugin certificates information for Service Mesh.
- plugin
Istio
Plugin Certificate Authority Response - Plugin certificates information for Service Mesh.
- plugin
Istio
Plugin Certificate Authority Response - Plugin certificates information for Service Mesh.
- plugin
Istio
Plugin Certificate Authority Response - Plugin certificates information for Service Mesh.
- plugin Property Map
- Plugin certificates information for Service Mesh.
IstioComponents, IstioComponentsArgs
- Egress
Gateways List<Pulumi.Azure Native. Container Service. Inputs. Istio Egress Gateway> - Istio egress gateways.
- Ingress
Gateways List<Pulumi.Azure Native. Container Service. Inputs. Istio Ingress Gateway> - Istio ingress gateways.
- Egress
Gateways []IstioEgress Gateway - Istio egress gateways.
- Ingress
Gateways []IstioIngress Gateway - Istio ingress gateways.
- egress
Gateways List<IstioEgress Gateway> - Istio egress gateways.
- ingress
Gateways List<IstioIngress Gateway> - Istio ingress gateways.
- egress
Gateways IstioEgress Gateway[] - Istio egress gateways.
- ingress
Gateways IstioIngress Gateway[] - Istio ingress gateways.
- egress_
gateways Sequence[IstioEgress Gateway] - Istio egress gateways.
- ingress_
gateways Sequence[IstioIngress Gateway] - Istio ingress gateways.
- egress
Gateways List<Property Map> - Istio egress gateways.
- ingress
Gateways List<Property Map> - Istio ingress gateways.
IstioComponentsResponse, IstioComponentsResponseArgs
- Egress
Gateways List<Pulumi.Azure Native. Container Service. Inputs. Istio Egress Gateway Response> - Istio egress gateways.
- Ingress
Gateways List<Pulumi.Azure Native. Container Service. Inputs. Istio Ingress Gateway Response> - Istio ingress gateways.
- Egress
Gateways []IstioEgress Gateway Response - Istio egress gateways.
- Ingress
Gateways []IstioIngress Gateway Response - Istio ingress gateways.
- egress
Gateways List<IstioEgress Gateway Response> - Istio egress gateways.
- ingress
Gateways List<IstioIngress Gateway Response> - Istio ingress gateways.
- egress
Gateways IstioEgress Gateway Response[] - Istio egress gateways.
- ingress
Gateways IstioIngress Gateway Response[] - Istio ingress gateways.
- egress_
gateways Sequence[IstioEgress Gateway Response] - Istio egress gateways.
- ingress_
gateways Sequence[IstioIngress Gateway Response] - Istio ingress gateways.
- egress
Gateways List<Property Map> - Istio egress gateways.
- ingress
Gateways List<Property Map> - Istio ingress gateways.
IstioEgressGateway, IstioEgressGatewayArgs
- Enabled bool
- Whether to enable the egress gateway.
- Enabled bool
- Whether to enable the egress gateway.
- enabled Boolean
- Whether to enable the egress gateway.
- enabled boolean
- Whether to enable the egress gateway.
- enabled bool
- Whether to enable the egress gateway.
- enabled Boolean
- Whether to enable the egress gateway.
IstioEgressGatewayResponse, IstioEgressGatewayResponseArgs
- Enabled bool
- Whether to enable the egress gateway.
- Enabled bool
- Whether to enable the egress gateway.
- enabled Boolean
- Whether to enable the egress gateway.
- enabled boolean
- Whether to enable the egress gateway.
- enabled bool
- Whether to enable the egress gateway.
- enabled Boolean
- Whether to enable the egress gateway.
IstioIngressGateway, IstioIngressGatewayArgs
- Enabled bool
- Whether to enable the ingress gateway.
- Mode
string | Pulumi.
Azure Native. Container Service. Istio Ingress Gateway Mode - Mode of an ingress gateway.
- Enabled bool
- Whether to enable the ingress gateway.
- Mode
string | Istio
Ingress Gateway Mode - Mode of an ingress gateway.
- enabled Boolean
- Whether to enable the ingress gateway.
- mode
String | Istio
Ingress Gateway Mode - Mode of an ingress gateway.
- enabled boolean
- Whether to enable the ingress gateway.
- mode
string | Istio
Ingress Gateway Mode - Mode of an ingress gateway.
- enabled bool
- Whether to enable the ingress gateway.
- mode
str | Istio
Ingress Gateway Mode - Mode of an ingress gateway.
- enabled Boolean
- Whether to enable the ingress gateway.
- mode String | "External" | "Internal"
- Mode of an ingress gateway.
IstioIngressGatewayMode, IstioIngressGatewayModeArgs
- External
- ExternalThe ingress gateway is assigned a public IP address and is publicly accessible.
- Internal
- InternalThe ingress gateway is assigned an internal IP address and cannot is accessed publicly.
- Istio
Ingress Gateway Mode External - ExternalThe ingress gateway is assigned a public IP address and is publicly accessible.
- Istio
Ingress Gateway Mode Internal - InternalThe ingress gateway is assigned an internal IP address and cannot is accessed publicly.
- External
- ExternalThe ingress gateway is assigned a public IP address and is publicly accessible.
- Internal
- InternalThe ingress gateway is assigned an internal IP address and cannot is accessed publicly.
- External
- ExternalThe ingress gateway is assigned a public IP address and is publicly accessible.
- Internal
- InternalThe ingress gateway is assigned an internal IP address and cannot is accessed publicly.
- EXTERNAL
- ExternalThe ingress gateway is assigned a public IP address and is publicly accessible.
- INTERNAL
- InternalThe ingress gateway is assigned an internal IP address and cannot is accessed publicly.
- "External"
- ExternalThe ingress gateway is assigned a public IP address and is publicly accessible.
- "Internal"
- InternalThe ingress gateway is assigned an internal IP address and cannot is accessed publicly.
IstioIngressGatewayResponse, IstioIngressGatewayResponseArgs
IstioPluginCertificateAuthority, IstioPluginCertificateAuthorityArgs
- Cert
Chain stringObject Name - Certificate chain object name in Azure Key Vault.
- Cert
Object stringName - Intermediate certificate object name in Azure Key Vault.
- Key
Object stringName - Intermediate certificate private key object name in Azure Key Vault.
- Key
Vault stringId - The resource ID of the Key Vault.
- Root
Cert stringObject Name - Root certificate object name in Azure Key Vault.
- Cert
Chain stringObject Name - Certificate chain object name in Azure Key Vault.
- Cert
Object stringName - Intermediate certificate object name in Azure Key Vault.
- Key
Object stringName - Intermediate certificate private key object name in Azure Key Vault.
- Key
Vault stringId - The resource ID of the Key Vault.
- Root
Cert stringObject Name - Root certificate object name in Azure Key Vault.
- cert
Chain StringObject Name - Certificate chain object name in Azure Key Vault.
- cert
Object StringName - Intermediate certificate object name in Azure Key Vault.
- key
Object StringName - Intermediate certificate private key object name in Azure Key Vault.
- key
Vault StringId - The resource ID of the Key Vault.
- root
Cert StringObject Name - Root certificate object name in Azure Key Vault.
- cert
Chain stringObject Name - Certificate chain object name in Azure Key Vault.
- cert
Object stringName - Intermediate certificate object name in Azure Key Vault.
- key
Object stringName - Intermediate certificate private key object name in Azure Key Vault.
- key
Vault stringId - The resource ID of the Key Vault.
- root
Cert stringObject Name - Root certificate object name in Azure Key Vault.
- cert_
chain_ strobject_ name - Certificate chain object name in Azure Key Vault.
- cert_
object_ strname - Intermediate certificate object name in Azure Key Vault.
- key_
object_ strname - Intermediate certificate private key object name in Azure Key Vault.
- key_
vault_ strid - The resource ID of the Key Vault.
- root_
cert_ strobject_ name - Root certificate object name in Azure Key Vault.
- cert
Chain StringObject Name - Certificate chain object name in Azure Key Vault.
- cert
Object StringName - Intermediate certificate object name in Azure Key Vault.
- key
Object StringName - Intermediate certificate private key object name in Azure Key Vault.
- key
Vault StringId - The resource ID of the Key Vault.
- root
Cert StringObject Name - Root certificate object name in Azure Key Vault.
IstioPluginCertificateAuthorityResponse, IstioPluginCertificateAuthorityResponseArgs
- Cert
Chain stringObject Name - Certificate chain object name in Azure Key Vault.
- Cert
Object stringName - Intermediate certificate object name in Azure Key Vault.
- Key
Object stringName - Intermediate certificate private key object name in Azure Key Vault.
- Key
Vault stringId - The resource ID of the Key Vault.
- Root
Cert stringObject Name - Root certificate object name in Azure Key Vault.
- Cert
Chain stringObject Name - Certificate chain object name in Azure Key Vault.
- Cert
Object stringName - Intermediate certificate object name in Azure Key Vault.
- Key
Object stringName - Intermediate certificate private key object name in Azure Key Vault.
- Key
Vault stringId - The resource ID of the Key Vault.
- Root
Cert stringObject Name - Root certificate object name in Azure Key Vault.
- cert
Chain StringObject Name - Certificate chain object name in Azure Key Vault.
- cert
Object StringName - Intermediate certificate object name in Azure Key Vault.
- key
Object StringName - Intermediate certificate private key object name in Azure Key Vault.
- key
Vault StringId - The resource ID of the Key Vault.
- root
Cert StringObject Name - Root certificate object name in Azure Key Vault.
- cert
Chain stringObject Name - Certificate chain object name in Azure Key Vault.
- cert
Object stringName - Intermediate certificate object name in Azure Key Vault.
- key
Object stringName - Intermediate certificate private key object name in Azure Key Vault.
- key
Vault stringId - The resource ID of the Key Vault.
- root
Cert stringObject Name - Root certificate object name in Azure Key Vault.
- cert_
chain_ strobject_ name - Certificate chain object name in Azure Key Vault.
- cert_
object_ strname - Intermediate certificate object name in Azure Key Vault.
- key_
object_ strname - Intermediate certificate private key object name in Azure Key Vault.
- key_
vault_ strid - The resource ID of the Key Vault.
- root_
cert_ strobject_ name - Root certificate object name in Azure Key Vault.
- cert
Chain StringObject Name - Certificate chain object name in Azure Key Vault.
- cert
Object StringName - Intermediate certificate object name in Azure Key Vault.
- key
Object StringName - Intermediate certificate private key object name in Azure Key Vault.
- key
Vault StringId - The resource ID of the Key Vault.
- root
Cert StringObject Name - Root certificate object name in Azure Key Vault.
IstioServiceMesh, IstioServiceMeshArgs
-
Pulumi.
Azure Native. Container Service. Inputs. Istio Certificate Authority - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- Components
Pulumi.
Azure Native. Container Service. Inputs. Istio Components - Istio components configuration.
- Revisions List<string>
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- Components
Istio
Components - Istio components configuration.
- Revisions []string
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components
Istio
Components - Istio components configuration.
- revisions List<String>
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components
Istio
Components - Istio components configuration.
- revisions string[]
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components
Istio
Components - Istio components configuration.
- revisions Sequence[str]
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
- Property Map
- Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components Property Map
- Istio components configuration.
- revisions List<String>
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
IstioServiceMeshResponse, IstioServiceMeshResponseArgs
-
Pulumi.
Azure Native. Container Service. Inputs. Istio Certificate Authority Response - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- Components
Pulumi.
Azure Native. Container Service. Inputs. Istio Components Response - Istio components configuration.
- Revisions List<string>
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority Response - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- Components
Istio
Components Response - Istio components configuration.
- Revisions []string
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority Response - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components
Istio
Components Response - Istio components configuration.
- revisions List<String>
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority Response - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components
Istio
Components Response - Istio components configuration.
- revisions string[]
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority Response - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components
Istio
Components Response - Istio components configuration.
- revisions Sequence[str]
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
- Property Map
- Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components Property Map
- Istio components configuration.
- revisions List<String>
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
KeyVaultNetworkAccessTypes, KeyVaultNetworkAccessTypesArgs
- Public
- Public
- Private
- Private
- Key
Vault Network Access Types Public - Public
- Key
Vault Network Access Types Private - Private
- Public
- Public
- Private
- Private
- Public
- Public
- Private
- Private
- PUBLIC
- Public
- PRIVATE
- Private
- "Public"
- Public
- "Private"
- Private
KubeletConfig, KubeletConfigArgs
- Allowed
Unsafe List<string>Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - Container
Log intMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- Container
Log intMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- Cpu
Cfs boolQuota - The default is true.
- Cpu
Cfs stringQuota Period - The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- Cpu
Manager stringPolicy - The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- Fail
Swap boolOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- Image
Gc intHigh Threshold - To disable image garbage collection, set to 100. The default is 85%
- Image
Gc intLow Threshold - This cannot be set higher than imageGcHighThreshold. The default is 80%
- Pod
Max intPids - The maximum number of processes per pod.
- Topology
Manager stringPolicy - For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- Allowed
Unsafe []stringSysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - Container
Log intMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- Container
Log intMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- Cpu
Cfs boolQuota - The default is true.
- Cpu
Cfs stringQuota Period - The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- Cpu
Manager stringPolicy - The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- Fail
Swap boolOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- Image
Gc intHigh Threshold - To disable image garbage collection, set to 100. The default is 85%
- Image
Gc intLow Threshold - This cannot be set higher than imageGcHighThreshold. The default is 80%
- Pod
Max intPids - The maximum number of processes per pod.
- Topology
Manager stringPolicy - For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed
Unsafe List<String>Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container
Log IntegerMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container
Log IntegerMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu
Cfs BooleanQuota - The default is true.
- cpu
Cfs StringQuota Period - The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu
Manager StringPolicy - The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail
Swap BooleanOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image
Gc IntegerHigh Threshold - To disable image garbage collection, set to 100. The default is 85%
- image
Gc IntegerLow Threshold - This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod
Max IntegerPids - The maximum number of processes per pod.
- topology
Manager StringPolicy - For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed
Unsafe string[]Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container
Log numberMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container
Log numberMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu
Cfs booleanQuota - The default is true.
- cpu
Cfs stringQuota Period - The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu
Manager stringPolicy - The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail
Swap booleanOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image
Gc numberHigh Threshold - To disable image garbage collection, set to 100. The default is 85%
- image
Gc numberLow Threshold - This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod
Max numberPids - The maximum number of processes per pod.
- topology
Manager stringPolicy - For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed_
unsafe_ Sequence[str]sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container_
log_ intmax_ files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container_
log_ intmax_ size_ mb - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu_
cfs_ boolquota - The default is true.
- cpu_
cfs_ strquota_ period - The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu_
manager_ strpolicy - The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail_
swap_ boolon - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image_
gc_ inthigh_ threshold - To disable image garbage collection, set to 100. The default is 85%
- image_
gc_ intlow_ threshold - This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod_
max_ intpids - The maximum number of processes per pod.
- topology_
manager_ strpolicy - For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed
Unsafe List<String>Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container
Log NumberMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container
Log NumberMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu
Cfs BooleanQuota - The default is true.
- cpu
Cfs StringQuota Period - The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu
Manager StringPolicy - The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail
Swap BooleanOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image
Gc NumberHigh Threshold - To disable image garbage collection, set to 100. The default is 85%
- image
Gc NumberLow Threshold - This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod
Max NumberPids - The maximum number of processes per pod.
- topology
Manager StringPolicy - For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
KubeletConfigResponse, KubeletConfigResponseArgs
- Allowed
Unsafe List<string>Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - Container
Log intMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- Container
Log intMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- Cpu
Cfs boolQuota - The default is true.
- Cpu
Cfs stringQuota Period - The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- Cpu
Manager stringPolicy - The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- Fail
Swap boolOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- Image
Gc intHigh Threshold - To disable image garbage collection, set to 100. The default is 85%
- Image
Gc intLow Threshold - This cannot be set higher than imageGcHighThreshold. The default is 80%
- Pod
Max intPids - The maximum number of processes per pod.
- Topology
Manager stringPolicy - For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- Allowed
Unsafe []stringSysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - Container
Log intMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- Container
Log intMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- Cpu
Cfs boolQuota - The default is true.
- Cpu
Cfs stringQuota Period - The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- Cpu
Manager stringPolicy - The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- Fail
Swap boolOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- Image
Gc intHigh Threshold - To disable image garbage collection, set to 100. The default is 85%
- Image
Gc intLow Threshold - This cannot be set higher than imageGcHighThreshold. The default is 80%
- Pod
Max intPids - The maximum number of processes per pod.
- Topology
Manager stringPolicy - For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed
Unsafe List<String>Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container
Log IntegerMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container
Log IntegerMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu
Cfs BooleanQuota - The default is true.
- cpu
Cfs StringQuota Period - The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu
Manager StringPolicy - The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail
Swap BooleanOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image
Gc IntegerHigh Threshold - To disable image garbage collection, set to 100. The default is 85%
- image
Gc IntegerLow Threshold - This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod
Max IntegerPids - The maximum number of processes per pod.
- topology
Manager StringPolicy - For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed
Unsafe string[]Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container
Log numberMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container
Log numberMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu
Cfs booleanQuota - The default is true.
- cpu
Cfs stringQuota Period - The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu
Manager stringPolicy - The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail
Swap booleanOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image
Gc numberHigh Threshold - To disable image garbage collection, set to 100. The default is 85%
- image
Gc numberLow Threshold - This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod
Max numberPids - The maximum number of processes per pod.
- topology
Manager stringPolicy - For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed_
unsafe_ Sequence[str]sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container_
log_ intmax_ files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container_
log_ intmax_ size_ mb - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu_
cfs_ boolquota - The default is true.
- cpu_
cfs_ strquota_ period - The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu_
manager_ strpolicy - The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail_
swap_ boolon - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image_
gc_ inthigh_ threshold - To disable image garbage collection, set to 100. The default is 85%
- image_
gc_ intlow_ threshold - This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod_
max_ intpids - The maximum number of processes per pod.
- topology_
manager_ strpolicy - For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed
Unsafe List<String>Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container
Log NumberMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container
Log NumberMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu
Cfs BooleanQuota - The default is true.
- cpu
Cfs StringQuota Period - The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu
Manager StringPolicy - The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail
Swap BooleanOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image
Gc NumberHigh Threshold - To disable image garbage collection, set to 100. The default is 85%
- image
Gc NumberLow Threshold - This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod
Max NumberPids - The maximum number of processes per pod.
- topology
Manager StringPolicy - For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
KubeletDiskType, KubeletDiskTypeArgs
- OS
- OSKubelet will use the OS disk for its data.
- Temporary
- TemporaryKubelet will use the temporary disk for its data.
- Kubelet
Disk Type OS - OSKubelet will use the OS disk for its data.
- Kubelet
Disk Type Temporary - TemporaryKubelet will use the temporary disk for its data.
- OS
- OSKubelet will use the OS disk for its data.
- Temporary
- TemporaryKubelet will use the temporary disk for its data.
- OS
- OSKubelet will use the OS disk for its data.
- Temporary
- TemporaryKubelet will use the temporary disk for its data.
- OS
- OSKubelet will use the OS disk for its data.
- TEMPORARY
- TemporaryKubelet will use the temporary disk for its data.
- "OS"
- OSKubelet will use the OS disk for its data.
- "Temporary"
- TemporaryKubelet will use the temporary disk for its data.
KubernetesSupportPlan, KubernetesSupportPlanArgs
- Kubernetes
Official - KubernetesOfficialSupport for the version is the same as for the open source Kubernetes offering. Official Kubernetes open source community support versions for 1 year after release.
- AKSLong
Term Support - AKSLongTermSupportSupport for the version extended past the KubernetesOfficial support of 1 year. AKS continues to patch CVEs for another 1 year, for a total of 2 years of support.
- Kubernetes
Support Plan Kubernetes Official - KubernetesOfficialSupport for the version is the same as for the open source Kubernetes offering. Official Kubernetes open source community support versions for 1 year after release.
- Kubernetes
Support Plan AKSLong Term Support - AKSLongTermSupportSupport for the version extended past the KubernetesOfficial support of 1 year. AKS continues to patch CVEs for another 1 year, for a total of 2 years of support.
- Kubernetes
Official - KubernetesOfficialSupport for the version is the same as for the open source Kubernetes offering. Official Kubernetes open source community support versions for 1 year after release.
- AKSLong
Term Support - AKSLongTermSupportSupport for the version extended past the KubernetesOfficial support of 1 year. AKS continues to patch CVEs for another 1 year, for a total of 2 years of support.
- Kubernetes
Official - KubernetesOfficialSupport for the version is the same as for the open source Kubernetes offering. Official Kubernetes open source community support versions for 1 year after release.
- AKSLong
Term Support - AKSLongTermSupportSupport for the version extended past the KubernetesOfficial support of 1 year. AKS continues to patch CVEs for another 1 year, for a total of 2 years of support.
- KUBERNETES_OFFICIAL
- KubernetesOfficialSupport for the version is the same as for the open source Kubernetes offering. Official Kubernetes open source community support versions for 1 year after release.
- AKS_LONG_TERM_SUPPORT
- AKSLongTermSupportSupport for the version extended past the KubernetesOfficial support of 1 year. AKS continues to patch CVEs for another 1 year, for a total of 2 years of support.
- "Kubernetes
Official" - KubernetesOfficialSupport for the version is the same as for the open source Kubernetes offering. Official Kubernetes open source community support versions for 1 year after release.
- "AKSLong
Term Support" - AKSLongTermSupportSupport for the version extended past the KubernetesOfficial support of 1 year. AKS continues to patch CVEs for another 1 year, for a total of 2 years of support.
LicenseType, LicenseTypeArgs
- None
- NoneNo additional licensing is applied.
- Windows_Server
- Windows_ServerEnables Azure Hybrid User Benefits for Windows VMs.
- License
Type None - NoneNo additional licensing is applied.
- License
Type_Windows_Server - Windows_ServerEnables Azure Hybrid User Benefits for Windows VMs.
- None
- NoneNo additional licensing is applied.
- Windows_Server
- Windows_ServerEnables Azure Hybrid User Benefits for Windows VMs.
- None
- NoneNo additional licensing is applied.
- Windows_Server
- Windows_ServerEnables Azure Hybrid User Benefits for Windows VMs.
- NONE
- NoneNo additional licensing is applied.
- WINDOWS_SERVER
- Windows_ServerEnables Azure Hybrid User Benefits for Windows VMs.
- "None"
- NoneNo additional licensing is applied.
- "Windows_Server"
- Windows_ServerEnables Azure Hybrid User Benefits for Windows VMs.
LinuxOSConfig, LinuxOSConfigArgs
- Swap
File intSize MB - The size in MB of a swap file that will be created on each node.
- Sysctls
Pulumi.
Azure Native. Container Service. Inputs. Sysctl Config - Sysctl settings for Linux agent nodes.
- Transparent
Huge stringPage Defrag - Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- Transparent
Huge stringPage Enabled - Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- Swap
File intSize MB - The size in MB of a swap file that will be created on each node.
- Sysctls
Sysctl
Config - Sysctl settings for Linux agent nodes.
- Transparent
Huge stringPage Defrag - Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- Transparent
Huge stringPage Enabled - Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap
File IntegerSize MB - The size in MB of a swap file that will be created on each node.
- sysctls
Sysctl
Config - Sysctl settings for Linux agent nodes.
- transparent
Huge StringPage Defrag - Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent
Huge StringPage Enabled - Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap
File numberSize MB - The size in MB of a swap file that will be created on each node.
- sysctls
Sysctl
Config - Sysctl settings for Linux agent nodes.
- transparent
Huge stringPage Defrag - Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent
Huge stringPage Enabled - Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap_
file_ intsize_ mb - The size in MB of a swap file that will be created on each node.
- sysctls
Sysctl
Config - Sysctl settings for Linux agent nodes.
- transparent_
huge_ strpage_ defrag - Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent_
huge_ strpage_ enabled - Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap
File NumberSize MB - The size in MB of a swap file that will be created on each node.
- sysctls Property Map
- Sysctl settings for Linux agent nodes.
- transparent
Huge StringPage Defrag - Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent
Huge StringPage Enabled - Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
LinuxOSConfigResponse, LinuxOSConfigResponseArgs
- Swap
File intSize MB - The size in MB of a swap file that will be created on each node.
- Sysctls
Pulumi.
Azure Native. Container Service. Inputs. Sysctl Config Response - Sysctl settings for Linux agent nodes.
- Transparent
Huge stringPage Defrag - Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- Transparent
Huge stringPage Enabled - Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- Swap
File intSize MB - The size in MB of a swap file that will be created on each node.
- Sysctls
Sysctl
Config Response - Sysctl settings for Linux agent nodes.
- Transparent
Huge stringPage Defrag - Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- Transparent
Huge stringPage Enabled - Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap
File IntegerSize MB - The size in MB of a swap file that will be created on each node.
- sysctls
Sysctl
Config Response - Sysctl settings for Linux agent nodes.
- transparent
Huge StringPage Defrag - Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent
Huge StringPage Enabled - Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap
File numberSize MB - The size in MB of a swap file that will be created on each node.
- sysctls
Sysctl
Config Response - Sysctl settings for Linux agent nodes.
- transparent
Huge stringPage Defrag - Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent
Huge stringPage Enabled - Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap_
file_ intsize_ mb - The size in MB of a swap file that will be created on each node.
- sysctls
Sysctl
Config Response - Sysctl settings for Linux agent nodes.
- transparent_
huge_ strpage_ defrag - Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent_
huge_ strpage_ enabled - Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap
File NumberSize MB - The size in MB of a swap file that will be created on each node.
- sysctls Property Map
- Sysctl settings for Linux agent nodes.
- transparent
Huge StringPage Defrag - Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent
Huge StringPage Enabled - Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
LoadBalancerSku, LoadBalancerSkuArgs
- Standard
- standardUse a a standard Load Balancer. This is the recommended Load Balancer SKU. For more information about on working with the load balancer in the managed cluster, see the standard Load Balancer article.
- Basic
- basicUse a basic Load Balancer with limited functionality.
- Load
Balancer Sku Standard - standardUse a a standard Load Balancer. This is the recommended Load Balancer SKU. For more information about on working with the load balancer in the managed cluster, see the standard Load Balancer article.
- Load
Balancer Sku Basic - basicUse a basic Load Balancer with limited functionality.
- Standard
- standardUse a a standard Load Balancer. This is the recommended Load Balancer SKU. For more information about on working with the load balancer in the managed cluster, see the standard Load Balancer article.
- Basic
- basicUse a basic Load Balancer with limited functionality.
- Standard
- standardUse a a standard Load Balancer. This is the recommended Load Balancer SKU. For more information about on working with the load balancer in the managed cluster, see the standard Load Balancer article.
- Basic
- basicUse a basic Load Balancer with limited functionality.
- STANDARD
- standardUse a a standard Load Balancer. This is the recommended Load Balancer SKU. For more information about on working with the load balancer in the managed cluster, see the standard Load Balancer article.
- BASIC
- basicUse a basic Load Balancer with limited functionality.
- "standard"
- standardUse a a standard Load Balancer. This is the recommended Load Balancer SKU. For more information about on working with the load balancer in the managed cluster, see the standard Load Balancer article.
- "basic"
- basicUse a basic Load Balancer with limited functionality.
ManagedClusterAADProfile, ManagedClusterAADProfileArgs
- Admin
Group List<string>Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- Client
App stringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Enable
Azure boolRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- Managed bool
- Whether to enable managed AAD.
- Server
App stringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Server
App stringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- Tenant
ID string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- Admin
Group []stringObject IDs - The list of AAD group object IDs that will have admin role of the cluster.
- Client
App stringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Enable
Azure boolRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- Managed bool
- Whether to enable managed AAD.
- Server
App stringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Server
App stringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- Tenant
ID string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin
Group List<String>Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- client
App StringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable
Azure BooleanRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- managed Boolean
- Whether to enable managed AAD.
- server
App StringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server
App StringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant
ID String - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin
Group string[]Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- client
App stringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable
Azure booleanRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- managed boolean
- Whether to enable managed AAD.
- server
App stringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server
App stringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant
ID string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin_
group_ Sequence[str]object_ ids - The list of AAD group object IDs that will have admin role of the cluster.
- client_
app_ strid - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable_
azure_ boolrbac - Whether to enable Azure RBAC for Kubernetes authorization.
- managed bool
- Whether to enable managed AAD.
- server_
app_ strid - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server_
app_ strsecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant_
id str - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin
Group List<String>Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- client
App StringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable
Azure BooleanRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- managed Boolean
- Whether to enable managed AAD.
- server
App StringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server
App StringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant
ID String - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
ManagedClusterAADProfileResponse, ManagedClusterAADProfileResponseArgs
- Admin
Group List<string>Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- Client
App stringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Enable
Azure boolRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- Managed bool
- Whether to enable managed AAD.
- Server
App stringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Server
App stringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- Tenant
ID string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- Admin
Group []stringObject IDs - The list of AAD group object IDs that will have admin role of the cluster.
- Client
App stringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Enable
Azure boolRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- Managed bool
- Whether to enable managed AAD.
- Server
App stringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Server
App stringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- Tenant
ID string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin
Group List<String>Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- client
App StringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable
Azure BooleanRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- managed Boolean
- Whether to enable managed AAD.
- server
App StringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server
App StringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant
ID String - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin
Group string[]Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- client
App stringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable
Azure booleanRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- managed boolean
- Whether to enable managed AAD.
- server
App stringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server
App stringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant
ID string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin_
group_ Sequence[str]object_ ids - The list of AAD group object IDs that will have admin role of the cluster.
- client_
app_ strid - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable_
azure_ boolrbac - Whether to enable Azure RBAC for Kubernetes authorization.
- managed bool
- Whether to enable managed AAD.
- server_
app_ strid - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server_
app_ strsecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant_
id str - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin
Group List<String>Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- client
App StringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable
Azure BooleanRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- managed Boolean
- Whether to enable managed AAD.
- server
App StringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server
App StringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant
ID String - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
ManagedClusterAPIServerAccessProfile, ManagedClusterAPIServerAccessProfileArgs
- List<string>
- IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- Disable
Run boolCommand - Whether to disable run command for the cluster or not.
- Enable
Private boolCluster - For more details, see Creating a private AKS cluster.
- Enable
Private boolCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- Private
DNSZone string - The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- []string
- IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- Disable
Run boolCommand - Whether to disable run command for the cluster or not.
- Enable
Private boolCluster - For more details, see Creating a private AKS cluster.
- Enable
Private boolCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- Private
DNSZone string - The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- List<String>
- IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable
Run BooleanCommand - Whether to disable run command for the cluster or not.
- enable
Private BooleanCluster - For more details, see Creating a private AKS cluster.
- enable
Private BooleanCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- private
DNSZone String - The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- string[]
- IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable
Run booleanCommand - Whether to disable run command for the cluster or not.
- enable
Private booleanCluster - For more details, see Creating a private AKS cluster.
- enable
Private booleanCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- private
DNSZone string - The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- Sequence[str]
- IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable_
run_ boolcommand - Whether to disable run command for the cluster or not.
- enable_
private_ boolcluster - For more details, see Creating a private AKS cluster.
- enable_
private_ boolcluster_ public_ fqdn - Whether to create additional public FQDN for private cluster or not.
- private_
dns_ strzone - The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- List<String>
- IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable
Run BooleanCommand - Whether to disable run command for the cluster or not.
- enable
Private BooleanCluster - For more details, see Creating a private AKS cluster.
- enable
Private BooleanCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- private
DNSZone String - The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
ManagedClusterAPIServerAccessProfileResponse, ManagedClusterAPIServerAccessProfileResponseArgs
- List<string>
- IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- Disable
Run boolCommand - Whether to disable run command for the cluster or not.
- Enable
Private boolCluster - For more details, see Creating a private AKS cluster.
- Enable
Private boolCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- Private
DNSZone string - The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- []string
- IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- Disable
Run boolCommand - Whether to disable run command for the cluster or not.
- Enable
Private boolCluster - For more details, see Creating a private AKS cluster.
- Enable
Private boolCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- Private
DNSZone string - The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- List<String>
- IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable
Run BooleanCommand - Whether to disable run command for the cluster or not.
- enable
Private BooleanCluster - For more details, see Creating a private AKS cluster.
- enable
Private BooleanCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- private
DNSZone String - The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- string[]
- IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable
Run booleanCommand - Whether to disable run command for the cluster or not.
- enable
Private booleanCluster - For more details, see Creating a private AKS cluster.
- enable
Private booleanCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- private
DNSZone string - The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- Sequence[str]
- IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable_
run_ boolcommand - Whether to disable run command for the cluster or not.
- enable_
private_ boolcluster - For more details, see Creating a private AKS cluster.
- enable_
private_ boolcluster_ public_ fqdn - Whether to create additional public FQDN for private cluster or not.
- private_
dns_ strzone - The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- List<String>
- IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable
Run BooleanCommand - Whether to disable run command for the cluster or not.
- enable
Private BooleanCluster - For more details, see Creating a private AKS cluster.
- enable
Private BooleanCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- private
DNSZone String - The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
ManagedClusterAddonProfile, ManagedClusterAddonProfileArgs
ManagedClusterAddonProfileResponse, ManagedClusterAddonProfileResponseArgs
- Enabled bool
- Whether the add-on is enabled or not.
- Identity
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Addon Profile Response Identity - Information of user assigned identity used by this add-on.
- Config Dictionary<string, string>
- Key-value pairs for configuring an add-on.
- Enabled bool
- Whether the add-on is enabled or not.
- Identity
Managed
Cluster Addon Profile Response Identity - Information of user assigned identity used by this add-on.
- Config map[string]string
- Key-value pairs for configuring an add-on.
- enabled Boolean
- Whether the add-on is enabled or not.
- identity
Managed
Cluster Addon Profile Response Identity - Information of user assigned identity used by this add-on.
- config Map<String,String>
- Key-value pairs for configuring an add-on.
- enabled boolean
- Whether the add-on is enabled or not.
- identity
Managed
Cluster Addon Profile Response Identity - Information of user assigned identity used by this add-on.
- config {[key: string]: string}
- Key-value pairs for configuring an add-on.
- enabled bool
- Whether the add-on is enabled or not.
- identity
Managed
Cluster Addon Profile Response Identity - Information of user assigned identity used by this add-on.
- config Mapping[str, str]
- Key-value pairs for configuring an add-on.
- enabled Boolean
- Whether the add-on is enabled or not.
- identity Property Map
- Information of user assigned identity used by this add-on.
- config Map<String>
- Key-value pairs for configuring an add-on.
ManagedClusterAddonProfileResponseIdentity, ManagedClusterAddonProfileResponseIdentityArgs
- Client
Id string - The client ID of the user assigned identity.
- Object
Id string - The object ID of the user assigned identity.
- Resource
Id string - The resource ID of the user assigned identity.
- Client
Id string - The client ID of the user assigned identity.
- Object
Id string - The object ID of the user assigned identity.
- Resource
Id string - The resource ID of the user assigned identity.
- client
Id String - The client ID of the user assigned identity.
- object
Id String - The object ID of the user assigned identity.
- resource
Id String - The resource ID of the user assigned identity.
- client
Id string - The client ID of the user assigned identity.
- object
Id string - The object ID of the user assigned identity.
- resource
Id string - The resource ID of the user assigned identity.
- client_
id str - The client ID of the user assigned identity.
- object_
id str - The object ID of the user assigned identity.
- resource_
id str - The resource ID of the user assigned identity.
- client
Id String - The client ID of the user assigned identity.
- object
Id String - The object ID of the user assigned identity.
- resource
Id String - The resource ID of the user assigned identity.
ManagedClusterAgentPoolProfile, ManagedClusterAgentPoolProfileArgs
- Name string
- Windows agent pool names must be 6 characters or less.
- Availability
Zones List<string> - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- Capacity
Reservation stringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- Count int
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- Creation
Data Pulumi.Azure Native. Container Service. Inputs. Creation Data - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- Enable
Auto boolScaling - Whether to enable auto-scaler
- Enable
Encryption boolAt Host - This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- Enable
FIPS bool - See Add a FIPS-enabled node pool for more details.
- Enable
Node boolPublic IP - Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- Enable
Ultra boolSSD - Whether to enable UltraSSD
- Gpu
Instance string | Pulumi.Profile Azure Native. Container Service. GPUInstance Profile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- Host
Group stringID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- Kubelet
Config Pulumi.Azure Native. Container Service. Inputs. Kubelet Config - The Kubelet configuration on the agent pool nodes.
- Kubelet
Disk string | Pulumi.Type Azure Native. Container Service. Kubelet Disk Type - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- Linux
OSConfig Pulumi.Azure Native. Container Service. Inputs. Linux OSConfig - The OS configuration of Linux agent nodes.
- Max
Count int - The maximum number of nodes for auto-scaling
- Max
Pods int - The maximum number of pods that can run on a node.
- Message
Of stringThe Day - A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- Min
Count int - The minimum number of nodes for auto-scaling
- Mode
string | Pulumi.
Azure Native. Container Service. Agent Pool Mode - A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- Network
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Network Profile - Network-related settings of an agent pool.
- Node
Labels Dictionary<string, string> - The node labels to be persisted across all nodes in agent pool.
- Node
Public stringIPPrefix ID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- Node
Taints List<string> - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- Orchestrator
Version string - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- Os
Disk intSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- Os
Disk string | Pulumi.Type Azure Native. Container Service. OSDisk Type - The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- Os
SKU string | Pulumi.Azure Native. Container Service. OSSKU - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- Os
Type string | Pulumi.Azure Native. Container Service. OSType - The operating system type. The default is Linux.
- Pod
Subnet stringID - If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Power
State Pulumi.Azure Native. Container Service. Inputs. Power State - When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- Proximity
Placement stringGroup ID - The ID for Proximity Placement Group.
- Scale
Down string | Pulumi.Mode Azure Native. Container Service. Scale Down Mode - This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- Scale
Set string | Pulumi.Eviction Policy Azure Native. Container Service. Scale Set Eviction Policy - This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- Scale
Set string | Pulumi.Priority Azure Native. Container Service. Scale Set Priority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- Security
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Security Profile - The security settings of an agent pool.
- Spot
Max doublePrice - Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Dictionary<string, string>
- The tags to be persisted on the agent pool virtual machine scale set.
- Type
string | Pulumi.
Azure Native. Container Service. Agent Pool Type - The type of Agent Pool.
- Upgrade
Settings Pulumi.Azure Native. Container Service. Inputs. Agent Pool Upgrade Settings - Settings for upgrading the agentpool
- Vm
Size string - VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. If this field is not specified, AKS will attempt to find an appropriate VM SKU for your pool, based on quota and capacity. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- Vnet
Subnet stringID - If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Windows
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Windows Profile - The Windows agent pool's specific profile.
- Workload
Runtime string | Pulumi.Azure Native. Container Service. Workload Runtime - Determines the type of workload a node can run.
- Name string
- Windows agent pool names must be 6 characters or less.
- Availability
Zones []string - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- Capacity
Reservation stringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- Count int
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- Creation
Data CreationData - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- Enable
Auto boolScaling - Whether to enable auto-scaler
- Enable
Encryption boolAt Host - This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- Enable
FIPS bool - See Add a FIPS-enabled node pool for more details.
- Enable
Node boolPublic IP - Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- Enable
Ultra boolSSD - Whether to enable UltraSSD
- Gpu
Instance string | GPUInstanceProfile Profile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- Host
Group stringID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- Kubelet
Config KubeletConfig - The Kubelet configuration on the agent pool nodes.
- Kubelet
Disk string | KubeletType Disk Type - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- Linux
OSConfig LinuxOSConfig - The OS configuration of Linux agent nodes.
- Max
Count int - The maximum number of nodes for auto-scaling
- Max
Pods int - The maximum number of pods that can run on a node.
- Message
Of stringThe Day - A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- Min
Count int - The minimum number of nodes for auto-scaling
- Mode
string | Agent
Pool Mode - A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- Network
Profile AgentPool Network Profile - Network-related settings of an agent pool.
- Node
Labels map[string]string - The node labels to be persisted across all nodes in agent pool.
- Node
Public stringIPPrefix ID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- Node
Taints []string - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- Orchestrator
Version string - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- Os
Disk intSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- Os
Disk string | OSDiskType Type - The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- Os
SKU string | OSSKU - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- Os
Type string | OSType - The operating system type. The default is Linux.
- Pod
Subnet stringID - If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Power
State PowerState - When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- Proximity
Placement stringGroup ID - The ID for Proximity Placement Group.
- Scale
Down string | ScaleMode Down Mode - This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- Scale
Set string | ScaleEviction Policy Set Eviction Policy - This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- Scale
Set string | ScalePriority Set Priority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- Security
Profile AgentPool Security Profile - The security settings of an agent pool.
- Spot
Max float64Price - Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- map[string]string
- The tags to be persisted on the agent pool virtual machine scale set.
- Type
string | Agent
Pool Type - The type of Agent Pool.
- Upgrade
Settings AgentPool Upgrade Settings - Settings for upgrading the agentpool
- Vm
Size string - VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. If this field is not specified, AKS will attempt to find an appropriate VM SKU for your pool, based on quota and capacity. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- Vnet
Subnet stringID - If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Windows
Profile AgentPool Windows Profile - The Windows agent pool's specific profile.
- Workload
Runtime string | WorkloadRuntime - Determines the type of workload a node can run.
- name String
- Windows agent pool names must be 6 characters or less.
- availability
Zones List<String> - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity
Reservation StringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count Integer
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation
Data CreationData - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable
Auto BooleanScaling - Whether to enable auto-scaler
- enable
Encryption BooleanAt Host - This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable
FIPS Boolean - See Add a FIPS-enabled node pool for more details.
- enable
Node BooleanPublic IP - Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable
Ultra BooleanSSD - Whether to enable UltraSSD
- gpu
Instance String | GPUInstanceProfile Profile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- host
Group StringID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet
Config KubeletConfig - The Kubelet configuration on the agent pool nodes.
- kubelet
Disk String | KubeletType Disk Type - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux
OSConfig LinuxOSConfig - The OS configuration of Linux agent nodes.
- max
Count Integer - The maximum number of nodes for auto-scaling
- max
Pods Integer - The maximum number of pods that can run on a node.
- message
Of StringThe Day - A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min
Count Integer - The minimum number of nodes for auto-scaling
- mode
String | Agent
Pool Mode - A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network
Profile AgentPool Network Profile - Network-related settings of an agent pool.
- node
Labels Map<String,String> - The node labels to be persisted across all nodes in agent pool.
- node
Public StringIPPrefix ID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node
Taints List<String> - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator
Version String - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os
Disk IntegerSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os
Disk String | OSDiskType Type - The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os
SKU String | OSSKU - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os
Type String | OSType - The operating system type. The default is Linux.
- pod
Subnet StringID - If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power
State PowerState - When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity
Placement StringGroup ID - The ID for Proximity Placement Group.
- scale
Down String | ScaleMode Down Mode - This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale
Set String | ScaleEviction Policy Set Eviction Policy - This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale
Set String | ScalePriority Set Priority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security
Profile AgentPool Security Profile - The security settings of an agent pool.
- spot
Max DoublePrice - Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Map<String,String>
- The tags to be persisted on the agent pool virtual machine scale set.
- type
String | Agent
Pool Type - The type of Agent Pool.
- upgrade
Settings AgentPool Upgrade Settings - Settings for upgrading the agentpool
- vm
Size String - VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. If this field is not specified, AKS will attempt to find an appropriate VM SKU for your pool, based on quota and capacity. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet
Subnet StringID - If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows
Profile AgentPool Windows Profile - The Windows agent pool's specific profile.
- workload
Runtime String | WorkloadRuntime - Determines the type of workload a node can run.
- name string
- Windows agent pool names must be 6 characters or less.
- availability
Zones string[] - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity
Reservation stringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count number
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation
Data CreationData - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable
Auto booleanScaling - Whether to enable auto-scaler
- enable
Encryption booleanAt Host - This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable
FIPS boolean - See Add a FIPS-enabled node pool for more details.
- enable
Node booleanPublic IP - Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable
Ultra booleanSSD - Whether to enable UltraSSD
- gpu
Instance string | GPUInstanceProfile Profile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- host
Group stringID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet
Config KubeletConfig - The Kubelet configuration on the agent pool nodes.
- kubelet
Disk string | KubeletType Disk Type - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux
OSConfig LinuxOSConfig - The OS configuration of Linux agent nodes.
- max
Count number - The maximum number of nodes for auto-scaling
- max
Pods number - The maximum number of pods that can run on a node.
- message
Of stringThe Day - A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min
Count number - The minimum number of nodes for auto-scaling
- mode
string | Agent
Pool Mode - A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network
Profile AgentPool Network Profile - Network-related settings of an agent pool.
- node
Labels {[key: string]: string} - The node labels to be persisted across all nodes in agent pool.
- node
Public stringIPPrefix ID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node
Taints string[] - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator
Version string - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os
Disk numberSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os
Disk string | OSDiskType Type - The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os
SKU string | OSSKU - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os
Type string | OSType - The operating system type. The default is Linux.
- pod
Subnet stringID - If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power
State PowerState - When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity
Placement stringGroup ID - The ID for Proximity Placement Group.
- scale
Down string | ScaleMode Down Mode - This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale
Set string | ScaleEviction Policy Set Eviction Policy - This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale
Set string | ScalePriority Set Priority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security
Profile AgentPool Security Profile - The security settings of an agent pool.
- spot
Max numberPrice - Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- {[key: string]: string}
- The tags to be persisted on the agent pool virtual machine scale set.
- type
string | Agent
Pool Type - The type of Agent Pool.
- upgrade
Settings AgentPool Upgrade Settings - Settings for upgrading the agentpool
- vm
Size string - VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. If this field is not specified, AKS will attempt to find an appropriate VM SKU for your pool, based on quota and capacity. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet
Subnet stringID - If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows
Profile AgentPool Windows Profile - The Windows agent pool's specific profile.
- workload
Runtime string | WorkloadRuntime - Determines the type of workload a node can run.
- name str
- Windows agent pool names must be 6 characters or less.
- availability_
zones Sequence[str] - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity_
reservation_ strgroup_ id - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count int
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation_
data CreationData - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable_
auto_ boolscaling - Whether to enable auto-scaler
- enable_
encryption_ boolat_ host - This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable_
fips bool - See Add a FIPS-enabled node pool for more details.
- enable_
node_ boolpublic_ ip - Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable_
ultra_ boolssd - Whether to enable UltraSSD
- gpu_
instance_ str | GPUInstanceprofile Profile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- host_
group_ strid - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet_
config KubeletConfig - The Kubelet configuration on the agent pool nodes.
- kubelet_
disk_ str | Kubelettype Disk Type - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux_
os_ Linuxconfig OSConfig - The OS configuration of Linux agent nodes.
- max_
count int - The maximum number of nodes for auto-scaling
- max_
pods int - The maximum number of pods that can run on a node.
- message_
of_ strthe_ day - A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min_
count int - The minimum number of nodes for auto-scaling
- mode
str | Agent
Pool Mode - A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network_
profile AgentPool Network Profile - Network-related settings of an agent pool.
- node_
labels Mapping[str, str] - The node labels to be persisted across all nodes in agent pool.
- node_
public_ strip_ prefix_ id - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node_
taints Sequence[str] - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator_
version str - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os_
disk_ intsize_ gb - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os_
disk_ str | OSDisktype Type - The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os_
sku str | OSSKU - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os_
type str | OSType - The operating system type. The default is Linux.
- pod_
subnet_ strid - If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power_
state PowerState - When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity_
placement_ strgroup_ id - The ID for Proximity Placement Group.
- scale_
down_ str | Scalemode Down Mode - This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale_
set_ str | Scaleeviction_ policy Set Eviction Policy - This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale_
set_ str | Scalepriority Set Priority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security_
profile AgentPool Security Profile - The security settings of an agent pool.
- spot_
max_ floatprice - Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Mapping[str, str]
- The tags to be persisted on the agent pool virtual machine scale set.
- type
str | Agent
Pool Type - The type of Agent Pool.
- upgrade_
settings AgentPool Upgrade Settings - Settings for upgrading the agentpool
- vm_
size str - VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. If this field is not specified, AKS will attempt to find an appropriate VM SKU for your pool, based on quota and capacity. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet_
subnet_ strid - If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows_
profile AgentPool Windows Profile - The Windows agent pool's specific profile.
- workload_
runtime str | WorkloadRuntime - Determines the type of workload a node can run.
- name String
- Windows agent pool names must be 6 characters or less.
- availability
Zones List<String> - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity
Reservation StringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count Number
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation
Data Property Map - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable
Auto BooleanScaling - Whether to enable auto-scaler
- enable
Encryption BooleanAt Host - This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable
FIPS Boolean - See Add a FIPS-enabled node pool for more details.
- enable
Node BooleanPublic IP - Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable
Ultra BooleanSSD - Whether to enable UltraSSD
- gpu
Instance String | "MIG1g" | "MIG2g" | "MIG3g" | "MIG4g" | "MIG7g"Profile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- host
Group StringID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet
Config Property Map - The Kubelet configuration on the agent pool nodes.
- kubelet
Disk String | "OS" | "Temporary"Type - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux
OSConfig Property Map - The OS configuration of Linux agent nodes.
- max
Count Number - The maximum number of nodes for auto-scaling
- max
Pods Number - The maximum number of pods that can run on a node.
- message
Of StringThe Day - A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min
Count Number - The minimum number of nodes for auto-scaling
- mode String | "System" | "User"
- A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network
Profile Property Map - Network-related settings of an agent pool.
- node
Labels Map<String> - The node labels to be persisted across all nodes in agent pool.
- node
Public StringIPPrefix ID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node
Taints List<String> - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator
Version String - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os
Disk NumberSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os
Disk String | "Managed" | "Ephemeral"Type - The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os
SKU String | "Ubuntu" | "AzureLinux" | "CBLMariner" | "Windows2019" | "Windows2022" - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os
Type String | "Linux" | "Windows" - The operating system type. The default is Linux.
- pod
Subnet StringID - If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power
State Property Map - When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity
Placement StringGroup ID - The ID for Proximity Placement Group.
- scale
Down String | "Delete" | "Deallocate"Mode - This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale
Set String | "Delete" | "Deallocate"Eviction Policy - This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale
Set String | "Spot" | "Regular"Priority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security
Profile Property Map - The security settings of an agent pool.
- spot
Max NumberPrice - Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Map<String>
- The tags to be persisted on the agent pool virtual machine scale set.
- type
String | "Virtual
Machine Scale Sets" | "Availability Set" - The type of Agent Pool.
- upgrade
Settings Property Map - Settings for upgrading the agentpool
- vm
Size String - VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. If this field is not specified, AKS will attempt to find an appropriate VM SKU for your pool, based on quota and capacity. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet
Subnet StringID - If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows
Profile Property Map - The Windows agent pool's specific profile.
- workload
Runtime String | "OCIContainer" | "WasmWasi" - Determines the type of workload a node can run.
ManagedClusterAgentPoolProfileResponse, ManagedClusterAgentPoolProfileResponseArgs
- Current
Orchestrator stringVersion - If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
- ETag string
- Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal etag convention.
- Name string
- Windows agent pool names must be 6 characters or less.
- Node
Image stringVersion - The version of node image
- Provisioning
State string - The current deployment or provisioning state.
- Availability
Zones List<string> - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- Capacity
Reservation stringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- Count int
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- Creation
Data Pulumi.Azure Native. Container Service. Inputs. Creation Data Response - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- Enable
Auto boolScaling - Whether to enable auto-scaler
- Enable
Encryption boolAt Host - This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- Enable
FIPS bool - See Add a FIPS-enabled node pool for more details.
- Enable
Node boolPublic IP - Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- Enable
Ultra boolSSD - Whether to enable UltraSSD
- Gpu
Instance stringProfile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- Host
Group stringID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- Kubelet
Config Pulumi.Azure Native. Container Service. Inputs. Kubelet Config Response - The Kubelet configuration on the agent pool nodes.
- Kubelet
Disk stringType - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- Linux
OSConfig Pulumi.Azure Native. Container Service. Inputs. Linux OSConfig Response - The OS configuration of Linux agent nodes.
- Max
Count int - The maximum number of nodes for auto-scaling
- Max
Pods int - The maximum number of pods that can run on a node.
- Message
Of stringThe Day - A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- Min
Count int - The minimum number of nodes for auto-scaling
- Mode string
- A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- Network
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Network Profile Response - Network-related settings of an agent pool.
- Node
Labels Dictionary<string, string> - The node labels to be persisted across all nodes in agent pool.
- Node
Public stringIPPrefix ID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- Node
Taints List<string> - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- Orchestrator
Version string - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- Os
Disk intSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- Os
Disk stringType - The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- Os
SKU string - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- Os
Type string - The operating system type. The default is Linux.
- Pod
Subnet stringID - If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Power
State Pulumi.Azure Native. Container Service. Inputs. Power State Response - When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- Proximity
Placement stringGroup ID - The ID for Proximity Placement Group.
- Scale
Down stringMode - This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- Scale
Set stringEviction Policy - This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- Scale
Set stringPriority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- Security
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Security Profile Response - The security settings of an agent pool.
- Spot
Max doublePrice - Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Dictionary<string, string>
- The tags to be persisted on the agent pool virtual machine scale set.
- Type string
- The type of Agent Pool.
- Upgrade
Settings Pulumi.Azure Native. Container Service. Inputs. Agent Pool Upgrade Settings Response - Settings for upgrading the agentpool
- Vm
Size string - VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. If this field is not specified, AKS will attempt to find an appropriate VM SKU for your pool, based on quota and capacity. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- Vnet
Subnet stringID - If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Windows
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Windows Profile Response - The Windows agent pool's specific profile.
- Workload
Runtime string - Determines the type of workload a node can run.
- Current
Orchestrator stringVersion - If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
- ETag string
- Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal etag convention.
- Name string
- Windows agent pool names must be 6 characters or less.
- Node
Image stringVersion - The version of node image
- Provisioning
State string - The current deployment or provisioning state.
- Availability
Zones []string - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- Capacity
Reservation stringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- Count int
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- Creation
Data CreationData Response - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- Enable
Auto boolScaling - Whether to enable auto-scaler
- Enable
Encryption boolAt Host - This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- Enable
FIPS bool - See Add a FIPS-enabled node pool for more details.
- Enable
Node boolPublic IP - Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- Enable
Ultra boolSSD - Whether to enable UltraSSD
- Gpu
Instance stringProfile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- Host
Group stringID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- Kubelet
Config KubeletConfig Response - The Kubelet configuration on the agent pool nodes.
- Kubelet
Disk stringType - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- Linux
OSConfig LinuxOSConfig Response - The OS configuration of Linux agent nodes.
- Max
Count int - The maximum number of nodes for auto-scaling
- Max
Pods int - The maximum number of pods that can run on a node.
- Message
Of stringThe Day - A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- Min
Count int - The minimum number of nodes for auto-scaling
- Mode string
- A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- Network
Profile AgentPool Network Profile Response - Network-related settings of an agent pool.
- Node
Labels map[string]string - The node labels to be persisted across all nodes in agent pool.
- Node
Public stringIPPrefix ID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- Node
Taints []string - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- Orchestrator
Version string - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- Os
Disk intSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- Os
Disk stringType - The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- Os
SKU string - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- Os
Type string - The operating system type. The default is Linux.
- Pod
Subnet stringID - If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Power
State PowerState Response - When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- Proximity
Placement stringGroup ID - The ID for Proximity Placement Group.
- Scale
Down stringMode - This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- Scale
Set stringEviction Policy - This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- Scale
Set stringPriority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- Security
Profile AgentPool Security Profile Response - The security settings of an agent pool.
- Spot
Max float64Price - Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- map[string]string
- The tags to be persisted on the agent pool virtual machine scale set.
- Type string
- The type of Agent Pool.
- Upgrade
Settings AgentPool Upgrade Settings Response - Settings for upgrading the agentpool
- Vm
Size string - VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. If this field is not specified, AKS will attempt to find an appropriate VM SKU for your pool, based on quota and capacity. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- Vnet
Subnet stringID - If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Windows
Profile AgentPool Windows Profile Response - The Windows agent pool's specific profile.
- Workload
Runtime string - Determines the type of workload a node can run.
- current
Orchestrator StringVersion - If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e
Tag String - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal etag convention.
- name String
- Windows agent pool names must be 6 characters or less.
- node
Image StringVersion - The version of node image
- provisioning
State String - The current deployment or provisioning state.
- availability
Zones List<String> - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity
Reservation StringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count Integer
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation
Data CreationData Response - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable
Auto BooleanScaling - Whether to enable auto-scaler
- enable
Encryption BooleanAt Host - This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable
FIPS Boolean - See Add a FIPS-enabled node pool for more details.
- enable
Node BooleanPublic IP - Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable
Ultra BooleanSSD - Whether to enable UltraSSD
- gpu
Instance StringProfile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- host
Group StringID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet
Config KubeletConfig Response - The Kubelet configuration on the agent pool nodes.
- kubelet
Disk StringType - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux
OSConfig LinuxOSConfig Response - The OS configuration of Linux agent nodes.
- max
Count Integer - The maximum number of nodes for auto-scaling
- max
Pods Integer - The maximum number of pods that can run on a node.
- message
Of StringThe Day - A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min
Count Integer - The minimum number of nodes for auto-scaling
- mode String
- A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network
Profile AgentPool Network Profile Response - Network-related settings of an agent pool.
- node
Labels Map<String,String> - The node labels to be persisted across all nodes in agent pool.
- node
Public StringIPPrefix ID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node
Taints List<String> - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator
Version String - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os
Disk IntegerSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os
Disk StringType - The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os
SKU String - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os
Type String - The operating system type. The default is Linux.
- pod
Subnet StringID - If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power
State PowerState Response - When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity
Placement StringGroup ID - The ID for Proximity Placement Group.
- scale
Down StringMode - This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale
Set StringEviction Policy - This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale
Set StringPriority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security
Profile AgentPool Security Profile Response - The security settings of an agent pool.
- spot
Max DoublePrice - Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Map<String,String>
- The tags to be persisted on the agent pool virtual machine scale set.
- type String
- The type of Agent Pool.
- upgrade
Settings AgentPool Upgrade Settings Response - Settings for upgrading the agentpool
- vm
Size String - VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. If this field is not specified, AKS will attempt to find an appropriate VM SKU for your pool, based on quota and capacity. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet
Subnet StringID - If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows
Profile AgentPool Windows Profile Response - The Windows agent pool's specific profile.
- workload
Runtime String - Determines the type of workload a node can run.
- current
Orchestrator stringVersion - If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e
Tag string - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal etag convention.
- name string
- Windows agent pool names must be 6 characters or less.
- node
Image stringVersion - The version of node image
- provisioning
State string - The current deployment or provisioning state.
- availability
Zones string[] - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity
Reservation stringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count number
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation
Data CreationData Response - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable
Auto booleanScaling - Whether to enable auto-scaler
- enable
Encryption booleanAt Host - This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable
FIPS boolean - See Add a FIPS-enabled node pool for more details.
- enable
Node booleanPublic IP - Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable
Ultra booleanSSD - Whether to enable UltraSSD
- gpu
Instance stringProfile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- host
Group stringID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet
Config KubeletConfig Response - The Kubelet configuration on the agent pool nodes.
- kubelet
Disk stringType - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux
OSConfig LinuxOSConfig Response - The OS configuration of Linux agent nodes.
- max
Count number - The maximum number of nodes for auto-scaling
- max
Pods number - The maximum number of pods that can run on a node.
- message
Of stringThe Day - A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min
Count number - The minimum number of nodes for auto-scaling
- mode string
- A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network
Profile AgentPool Network Profile Response - Network-related settings of an agent pool.
- node
Labels {[key: string]: string} - The node labels to be persisted across all nodes in agent pool.
- node
Public stringIPPrefix ID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node
Taints string[] - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator
Version string - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os
Disk numberSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os
Disk stringType - The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os
SKU string - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os
Type string - The operating system type. The default is Linux.
- pod
Subnet stringID - If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power
State PowerState Response - When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity
Placement stringGroup ID - The ID for Proximity Placement Group.
- scale
Down stringMode - This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale
Set stringEviction Policy - This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale
Set stringPriority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security
Profile AgentPool Security Profile Response - The security settings of an agent pool.
- spot
Max numberPrice - Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- {[key: string]: string}
- The tags to be persisted on the agent pool virtual machine scale set.
- type string
- The type of Agent Pool.
- upgrade
Settings AgentPool Upgrade Settings Response - Settings for upgrading the agentpool
- vm
Size string - VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. If this field is not specified, AKS will attempt to find an appropriate VM SKU for your pool, based on quota and capacity. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet
Subnet stringID - If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows
Profile AgentPool Windows Profile Response - The Windows agent pool's specific profile.
- workload
Runtime string - Determines the type of workload a node can run.
- current_
orchestrator_ strversion - If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e_
tag str - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal etag convention.
- name str
- Windows agent pool names must be 6 characters or less.
- node_
image_ strversion - The version of node image
- provisioning_
state str - The current deployment or provisioning state.
- availability_
zones Sequence[str] - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity_
reservation_ strgroup_ id - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count int
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation_
data CreationData Response - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable_
auto_ boolscaling - Whether to enable auto-scaler
- enable_
encryption_ boolat_ host - This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable_
fips bool - See Add a FIPS-enabled node pool for more details.
- enable_
node_ boolpublic_ ip - Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable_
ultra_ boolssd - Whether to enable UltraSSD
- gpu_
instance_ strprofile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- host_
group_ strid - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet_
config KubeletConfig Response - The Kubelet configuration on the agent pool nodes.
- kubelet_
disk_ strtype - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux_
os_ Linuxconfig OSConfig Response - The OS configuration of Linux agent nodes.
- max_
count int - The maximum number of nodes for auto-scaling
- max_
pods int - The maximum number of pods that can run on a node.
- message_
of_ strthe_ day - A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min_
count int - The minimum number of nodes for auto-scaling
- mode str
- A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network_
profile AgentPool Network Profile Response - Network-related settings of an agent pool.
- node_
labels Mapping[str, str] - The node labels to be persisted across all nodes in agent pool.
- node_
public_ strip_ prefix_ id - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node_
taints Sequence[str] - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator_
version str - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os_
disk_ intsize_ gb - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os_
disk_ strtype - The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os_
sku str - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os_
type str - The operating system type. The default is Linux.
- pod_
subnet_ strid - If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power_
state PowerState Response - When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity_
placement_ strgroup_ id - The ID for Proximity Placement Group.
- scale_
down_ strmode - This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale_
set_ streviction_ policy - This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale_
set_ strpriority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security_
profile AgentPool Security Profile Response - The security settings of an agent pool.
- spot_
max_ floatprice - Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Mapping[str, str]
- The tags to be persisted on the agent pool virtual machine scale set.
- type str
- The type of Agent Pool.
- upgrade_
settings AgentPool Upgrade Settings Response - Settings for upgrading the agentpool
- vm_
size str - VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. If this field is not specified, AKS will attempt to find an appropriate VM SKU for your pool, based on quota and capacity. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet_
subnet_ strid - If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows_
profile AgentPool Windows Profile Response - The Windows agent pool's specific profile.
- workload_
runtime str - Determines the type of workload a node can run.
- current
Orchestrator StringVersion - If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e
Tag String - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal etag convention.
- name String
- Windows agent pool names must be 6 characters or less.
- node
Image StringVersion - The version of node image
- provisioning
State String - The current deployment or provisioning state.
- availability
Zones List<String> - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity
Reservation StringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count Number
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation
Data Property Map - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable
Auto BooleanScaling - Whether to enable auto-scaler
- enable
Encryption BooleanAt Host - This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable
FIPS Boolean - See Add a FIPS-enabled node pool for more details.
- enable
Node BooleanPublic IP - Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable
Ultra BooleanSSD - Whether to enable UltraSSD
- gpu
Instance StringProfile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- host
Group StringID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet
Config Property Map - The Kubelet configuration on the agent pool nodes.
- kubelet
Disk StringType - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux
OSConfig Property Map - The OS configuration of Linux agent nodes.
- max
Count Number - The maximum number of nodes for auto-scaling
- max
Pods Number - The maximum number of pods that can run on a node.
- message
Of StringThe Day - A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min
Count Number - The minimum number of nodes for auto-scaling
- mode String
- A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network
Profile Property Map - Network-related settings of an agent pool.
- node
Labels Map<String> - The node labels to be persisted across all nodes in agent pool.
- node
Public StringIPPrefix ID - This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node
Taints List<String> - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator
Version String - Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os
Disk NumberSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os
Disk StringType - The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os
SKU String - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os
Type String - The operating system type. The default is Linux.
- pod
Subnet StringID - If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power
State Property Map - When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity
Placement StringGroup ID - The ID for Proximity Placement Group.
- scale
Down StringMode - This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale
Set StringEviction Policy - This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale
Set StringPriority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security
Profile Property Map - The security settings of an agent pool.
- spot
Max NumberPrice - Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Map<String>
- The tags to be persisted on the agent pool virtual machine scale set.
- type String
- The type of Agent Pool.
- upgrade
Settings Property Map - Settings for upgrading the agentpool
- vm
Size String - VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. If this field is not specified, AKS will attempt to find an appropriate VM SKU for your pool, based on quota and capacity. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet
Subnet StringID - If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows
Profile Property Map - The Windows agent pool's specific profile.
- workload
Runtime String - Determines the type of workload a node can run.
ManagedClusterAutoUpgradeProfile, ManagedClusterAutoUpgradeProfileArgs
- Node
OSUpgrade string | Pulumi.Channel Azure Native. Container Service. Node OSUpgrade Channel - Manner in which the OS on your nodes is updated. The default is NodeImage.
- Upgrade
Channel string | Pulumi.Azure Native. Container Service. Upgrade Channel - For more information see setting the AKS cluster auto-upgrade channel.
- Node
OSUpgrade string | NodeChannel OSUpgrade Channel - Manner in which the OS on your nodes is updated. The default is NodeImage.
- Upgrade
Channel string | UpgradeChannel - For more information see setting the AKS cluster auto-upgrade channel.
- node
OSUpgrade String | NodeChannel OSUpgrade Channel - Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade
Channel String | UpgradeChannel - For more information see setting the AKS cluster auto-upgrade channel.
- node
OSUpgrade string | NodeChannel OSUpgrade Channel - Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade
Channel string | UpgradeChannel - For more information see setting the AKS cluster auto-upgrade channel.
- node_
os_ str | Nodeupgrade_ channel OSUpgrade Channel - Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade_
channel str | UpgradeChannel - For more information see setting the AKS cluster auto-upgrade channel.
- node
OSUpgrade String | "None" | "Unmanaged" | "NodeChannel Image" | "Security Patch" - Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade
Channel String | "rapid" | "stable" | "patch" | "node-image" | "none" - For more information see setting the AKS cluster auto-upgrade channel.
ManagedClusterAutoUpgradeProfileResponse, ManagedClusterAutoUpgradeProfileResponseArgs
- Node
OSUpgrade stringChannel - Manner in which the OS on your nodes is updated. The default is NodeImage.
- Upgrade
Channel string - For more information see setting the AKS cluster auto-upgrade channel.
- Node
OSUpgrade stringChannel - Manner in which the OS on your nodes is updated. The default is NodeImage.
- Upgrade
Channel string - For more information see setting the AKS cluster auto-upgrade channel.
- node
OSUpgrade StringChannel - Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade
Channel String - For more information see setting the AKS cluster auto-upgrade channel.
- node
OSUpgrade stringChannel - Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade
Channel string - For more information see setting the AKS cluster auto-upgrade channel.
- node_
os_ strupgrade_ channel - Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade_
channel str - For more information see setting the AKS cluster auto-upgrade channel.
- node
OSUpgrade StringChannel - Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade
Channel String - For more information see setting the AKS cluster auto-upgrade channel.
ManagedClusterAzureMonitorProfile, ManagedClusterAzureMonitorProfileArgs
- Metrics
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Azure Monitor Profile Metrics - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- Metrics
Managed
Cluster Azure Monitor Profile Metrics - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics
Managed
Cluster Azure Monitor Profile Metrics - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics
Managed
Cluster Azure Monitor Profile Metrics - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics
Managed
Cluster Azure Monitor Profile Metrics - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics Property Map
- Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
ManagedClusterAzureMonitorProfileKubeStateMetrics, ManagedClusterAzureMonitorProfileKubeStateMetricsArgs
- Metric
Annotations stringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- Metric
Labels stringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- Metric
Annotations stringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- Metric
Labels stringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric
Annotations StringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric
Labels StringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric
Annotations stringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric
Labels stringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric_
annotations_ strallow_ list - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric_
labels_ strallowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric
Annotations StringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric
Labels StringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
ManagedClusterAzureMonitorProfileKubeStateMetricsResponse, ManagedClusterAzureMonitorProfileKubeStateMetricsResponseArgs
- Metric
Annotations stringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- Metric
Labels stringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- Metric
Annotations stringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- Metric
Labels stringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric
Annotations StringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric
Labels StringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric
Annotations stringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric
Labels stringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric_
annotations_ strallow_ list - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric_
labels_ strallowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric
Annotations StringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric
Labels StringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
ManagedClusterAzureMonitorProfileMetrics, ManagedClusterAzureMonitorProfileMetricsArgs
- Enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- Kube
State Pulumi.Metrics Azure Native. Container Service. Inputs. Managed Cluster Azure Monitor Profile Kube State Metrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- Enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- Kube
State ManagedMetrics Cluster Azure Monitor Profile Kube State Metrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled Boolean
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube
State ManagedMetrics Cluster Azure Monitor Profile Kube State Metrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled boolean
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube
State ManagedMetrics Cluster Azure Monitor Profile Kube State Metrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube_
state_ Managedmetrics Cluster Azure Monitor Profile Kube State Metrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled Boolean
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube
State Property MapMetrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
ManagedClusterAzureMonitorProfileMetricsResponse, ManagedClusterAzureMonitorProfileMetricsResponseArgs
- Enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- Kube
State Pulumi.Metrics Azure Native. Container Service. Inputs. Managed Cluster Azure Monitor Profile Kube State Metrics Response - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- Enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- Kube
State ManagedMetrics Cluster Azure Monitor Profile Kube State Metrics Response - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled Boolean
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube
State ManagedMetrics Cluster Azure Monitor Profile Kube State Metrics Response - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled boolean
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube
State ManagedMetrics Cluster Azure Monitor Profile Kube State Metrics Response - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube_
state_ Managedmetrics Cluster Azure Monitor Profile Kube State Metrics Response - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled Boolean
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube
State Property MapMetrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
ManagedClusterAzureMonitorProfileResponse, ManagedClusterAzureMonitorProfileResponseArgs
- Metrics
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Azure Monitor Profile Metrics Response - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- Metrics
Managed
Cluster Azure Monitor Profile Metrics Response - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics
Managed
Cluster Azure Monitor Profile Metrics Response - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics
Managed
Cluster Azure Monitor Profile Metrics Response - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics
Managed
Cluster Azure Monitor Profile Metrics Response - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics Property Map
- Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
ManagedClusterCostAnalysis, ManagedClusterCostAnalysisArgs
- Enabled bool
- The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- Enabled bool
- The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled Boolean
- The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled boolean
- The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled bool
- The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled Boolean
- The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
ManagedClusterCostAnalysisResponse, ManagedClusterCostAnalysisResponseArgs
- Enabled bool
- The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- Enabled bool
- The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled Boolean
- The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled boolean
- The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled bool
- The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled Boolean
- The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
ManagedClusterHTTPProxyConfig, ManagedClusterHTTPProxyConfigArgs
- Http
Proxy string - The HTTP proxy server endpoint to use.
- Https
Proxy string - The HTTPS proxy server endpoint to use.
- No
Proxy List<string> - The endpoints that should not go through proxy.
- Trusted
Ca string - Alternative CA cert to use for connecting to proxy servers.
- Http
Proxy string - The HTTP proxy server endpoint to use.
- Https
Proxy string - The HTTPS proxy server endpoint to use.
- No
Proxy []string - The endpoints that should not go through proxy.
- Trusted
Ca string - Alternative CA cert to use for connecting to proxy servers.
- http
Proxy String - The HTTP proxy server endpoint to use.
- https
Proxy String - The HTTPS proxy server endpoint to use.
- no
Proxy List<String> - The endpoints that should not go through proxy.
- trusted
Ca String - Alternative CA cert to use for connecting to proxy servers.
- http
Proxy string - The HTTP proxy server endpoint to use.
- https
Proxy string - The HTTPS proxy server endpoint to use.
- no
Proxy string[] - The endpoints that should not go through proxy.
- trusted
Ca string - Alternative CA cert to use for connecting to proxy servers.
- http_
proxy str - The HTTP proxy server endpoint to use.
- https_
proxy str - The HTTPS proxy server endpoint to use.
- no_
proxy Sequence[str] - The endpoints that should not go through proxy.
- trusted_
ca str - Alternative CA cert to use for connecting to proxy servers.
- http
Proxy String - The HTTP proxy server endpoint to use.
- https
Proxy String - The HTTPS proxy server endpoint to use.
- no
Proxy List<String> - The endpoints that should not go through proxy.
- trusted
Ca String - Alternative CA cert to use for connecting to proxy servers.
ManagedClusterHTTPProxyConfigResponse, ManagedClusterHTTPProxyConfigResponseArgs
- Http
Proxy string - The HTTP proxy server endpoint to use.
- Https
Proxy string - The HTTPS proxy server endpoint to use.
- No
Proxy List<string> - The endpoints that should not go through proxy.
- Trusted
Ca string - Alternative CA cert to use for connecting to proxy servers.
- Http
Proxy string - The HTTP proxy server endpoint to use.
- Https
Proxy string - The HTTPS proxy server endpoint to use.
- No
Proxy []string - The endpoints that should not go through proxy.
- Trusted
Ca string - Alternative CA cert to use for connecting to proxy servers.
- http
Proxy String - The HTTP proxy server endpoint to use.
- https
Proxy String - The HTTPS proxy server endpoint to use.
- no
Proxy List<String> - The endpoints that should not go through proxy.
- trusted
Ca String - Alternative CA cert to use for connecting to proxy servers.
- http
Proxy string - The HTTP proxy server endpoint to use.
- https
Proxy string - The HTTPS proxy server endpoint to use.
- no
Proxy string[] - The endpoints that should not go through proxy.
- trusted
Ca string - Alternative CA cert to use for connecting to proxy servers.
- http_
proxy str - The HTTP proxy server endpoint to use.
- https_
proxy str - The HTTPS proxy server endpoint to use.
- no_
proxy Sequence[str] - The endpoints that should not go through proxy.
- trusted_
ca str - Alternative CA cert to use for connecting to proxy servers.
- http
Proxy String - The HTTP proxy server endpoint to use.
- https
Proxy String - The HTTPS proxy server endpoint to use.
- no
Proxy List<String> - The endpoints that should not go through proxy.
- trusted
Ca String - Alternative CA cert to use for connecting to proxy servers.
ManagedClusterIdentity, ManagedClusterIdentityArgs
- Delegated
Resources Dictionary<string, Pulumi.Azure Native. Container Service. Inputs. Delegated Resource> - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- Type
Pulumi.
Azure Native. Container Service. Resource Identity Type - For more information see use managed identities in AKS.
- User
Assigned List<string>Identities - The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- Delegated
Resources map[string]DelegatedResource - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- Type
Resource
Identity Type - For more information see use managed identities in AKS.
- User
Assigned []stringIdentities - The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- delegated
Resources Map<String,DelegatedResource> - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type
Resource
Identity Type - For more information see use managed identities in AKS.
- user
Assigned List<String>Identities - The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- delegated
Resources {[key: string]: DelegatedResource} - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type
Resource
Identity Type - For more information see use managed identities in AKS.
- user
Assigned string[]Identities - The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- delegated_
resources Mapping[str, DelegatedResource] - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type
Resource
Identity Type - For more information see use managed identities in AKS.
- user_
assigned_ Sequence[str]identities - The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- delegated
Resources Map<Property Map> - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type
"System
Assigned" | "User Assigned" | "None" - For more information see use managed identities in AKS.
- user
Assigned List<String>Identities - The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
ManagedClusterIdentityResponse, ManagedClusterIdentityResponseArgs
- Principal
Id string - The principal id of the system assigned identity which is used by master components.
- Tenant
Id string - The tenant id of the system assigned identity which is used by master components.
- Delegated
Resources Dictionary<string, Pulumi.Azure Native. Container Service. Inputs. Delegated Resource Response> - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- Type string
- For more information see use managed identities in AKS.
- User
Assigned Dictionary<string, Pulumi.Identities Azure Native. Container Service. Inputs. Managed Cluster Identity Response User Assigned Identities> - The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- Principal
Id string - The principal id of the system assigned identity which is used by master components.
- Tenant
Id string - The tenant id of the system assigned identity which is used by master components.
- Delegated
Resources map[string]DelegatedResource Response - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- Type string
- For more information see use managed identities in AKS.
- User
Assigned map[string]ManagedIdentities Cluster Identity Response User Assigned Identities - The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- principal
Id String - The principal id of the system assigned identity which is used by master components.
- tenant
Id String - The tenant id of the system assigned identity which is used by master components.
- delegated
Resources Map<String,DelegatedResource Response> - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type String
- For more information see use managed identities in AKS.
- user
Assigned Map<String,ManagedIdentities Cluster Identity Response User Assigned Identities> - The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- principal
Id string - The principal id of the system assigned identity which is used by master components.
- tenant
Id string - The tenant id of the system assigned identity which is used by master components.
- delegated
Resources {[key: string]: DelegatedResource Response} - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type string
- For more information see use managed identities in AKS.
- user
Assigned {[key: string]: ManagedIdentities Cluster Identity Response User Assigned Identities} - The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- principal_
id str - The principal id of the system assigned identity which is used by master components.
- tenant_
id str - The tenant id of the system assigned identity which is used by master components.
- delegated_
resources Mapping[str, DelegatedResource Response] - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type str
- For more information see use managed identities in AKS.
- user_
assigned_ Mapping[str, Managedidentities Cluster Identity Response User Assigned Identities] - The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- principal
Id String - The principal id of the system assigned identity which is used by master components.
- tenant
Id String - The tenant id of the system assigned identity which is used by master components.
- delegated
Resources Map<Property Map> - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type String
- For more information see use managed identities in AKS.
- user
Assigned Map<Property Map>Identities - The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
ManagedClusterIdentityResponseUserAssignedIdentities, ManagedClusterIdentityResponseUserAssignedIdentitiesArgs
- Client
Id string - The client id of user assigned identity.
- Principal
Id string - The principal id of user assigned identity.
- Client
Id string - The client id of user assigned identity.
- Principal
Id string - The principal id of user assigned identity.
- client
Id String - The client id of user assigned identity.
- principal
Id String - The principal id of user assigned identity.
- client
Id string - The client id of user assigned identity.
- principal
Id string - The principal id of user assigned identity.
- client_
id str - The client id of user assigned identity.
- principal_
id str - The principal id of user assigned identity.
- client
Id String - The client id of user assigned identity.
- principal
Id String - The principal id of user assigned identity.
ManagedClusterIngressProfile, ManagedClusterIngressProfileArgs
- Web
App Pulumi.Routing Azure Native. Container Service. Inputs. Managed Cluster Ingress Profile Web App Routing - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- Web
App ManagedRouting Cluster Ingress Profile Web App Routing - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web
App ManagedRouting Cluster Ingress Profile Web App Routing - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web
App ManagedRouting Cluster Ingress Profile Web App Routing - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web_
app_ Managedrouting Cluster Ingress Profile Web App Routing - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web
App Property MapRouting - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
ManagedClusterIngressProfileResponse, ManagedClusterIngressProfileResponseArgs
- Web
App Pulumi.Routing Azure Native. Container Service. Inputs. Managed Cluster Ingress Profile Web App Routing Response - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- Web
App ManagedRouting Cluster Ingress Profile Web App Routing Response - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web
App ManagedRouting Cluster Ingress Profile Web App Routing Response - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web
App ManagedRouting Cluster Ingress Profile Web App Routing Response - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web_
app_ Managedrouting Cluster Ingress Profile Web App Routing Response - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web
App Property MapRouting - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
ManagedClusterIngressProfileWebAppRouting, ManagedClusterIngressProfileWebAppRoutingArgs
- Dns
Zone List<string>Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- Enabled bool
- Whether to enable the Application Routing add-on.
- Dns
Zone []stringResource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- Enabled bool
- Whether to enable the Application Routing add-on.
- dns
Zone List<String>Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled Boolean
- Whether to enable the Application Routing add-on.
- dns
Zone string[]Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled boolean
- Whether to enable the Application Routing add-on.
- dns_
zone_ Sequence[str]resource_ ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled bool
- Whether to enable the Application Routing add-on.
- dns
Zone List<String>Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled Boolean
- Whether to enable the Application Routing add-on.
ManagedClusterIngressProfileWebAppRoutingResponse, ManagedClusterIngressProfileWebAppRoutingResponseArgs
- Identity
Pulumi.
Azure Native. Container Service. Inputs. User Assigned Identity Response - Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
- Dns
Zone List<string>Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- Enabled bool
- Whether to enable the Application Routing add-on.
- Identity
User
Assigned Identity Response - Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
- Dns
Zone []stringResource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- Enabled bool
- Whether to enable the Application Routing add-on.
- identity
User
Assigned Identity Response - Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
- dns
Zone List<String>Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled Boolean
- Whether to enable the Application Routing add-on.
- identity
User
Assigned Identity Response - Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
- dns
Zone string[]Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled boolean
- Whether to enable the Application Routing add-on.
- identity
User
Assigned Identity Response - Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
- dns_
zone_ Sequence[str]resource_ ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled bool
- Whether to enable the Application Routing add-on.
- identity Property Map
- Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
- dns
Zone List<String>Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled Boolean
- Whether to enable the Application Routing add-on.
ManagedClusterLoadBalancerProfile, ManagedClusterLoadBalancerProfileArgs
- Allocated
Outbound intPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- Backend
Pool string | Pulumi.Type Azure Native. Container Service. Backend Pool Type - The type of the managed inbound Load Balancer BackendPool.
- Effective
Outbound List<Pulumi.IPs Azure Native. Container Service. Inputs. Resource Reference> - The effective outbound IP resources of the cluster load balancer.
- Enable
Multiple boolStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- Managed
Outbound Pulumi.IPs Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- Outbound
IPPrefixes Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- Outbound
IPs Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- Allocated
Outbound intPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- Backend
Pool string | BackendType Pool Type - The type of the managed inbound Load Balancer BackendPool.
- Effective
Outbound []ResourceIPs Reference - The effective outbound IP resources of the cluster load balancer.
- Enable
Multiple boolStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- Managed
Outbound ManagedIPs Cluster Load Balancer Profile Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- Outbound
IPPrefixes ManagedCluster Load Balancer Profile Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- Outbound
IPs ManagedCluster Load Balancer Profile Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- allocated
Outbound IntegerPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend
Pool String | BackendType Pool Type - The type of the managed inbound Load Balancer BackendPool.
- effective
Outbound List<ResourceIPs Reference> - The effective outbound IP resources of the cluster load balancer.
- enable
Multiple BooleanStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle
Timeout IntegerIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed
Outbound ManagedIPs Cluster Load Balancer Profile Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- outbound
IPPrefixes ManagedCluster Load Balancer Profile Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound
IPs ManagedCluster Load Balancer Profile Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- allocated
Outbound numberPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend
Pool string | BackendType Pool Type - The type of the managed inbound Load Balancer BackendPool.
- effective
Outbound ResourceIPs Reference[] - The effective outbound IP resources of the cluster load balancer.
- enable
Multiple booleanStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle
Timeout numberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed
Outbound ManagedIPs Cluster Load Balancer Profile Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- outbound
IPPrefixes ManagedCluster Load Balancer Profile Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound
IPs ManagedCluster Load Balancer Profile Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- allocated_
outbound_ intports - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend_
pool_ str | Backendtype Pool Type - The type of the managed inbound Load Balancer BackendPool.
- effective_
outbound_ Sequence[Resourceips Reference] - The effective outbound IP resources of the cluster load balancer.
- enable_
multiple_ boolstandard_ load_ balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle_
timeout_ intin_ minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed_
outbound_ Managedips Cluster Load Balancer Profile Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- outbound_
ip_ Managedprefixes Cluster Load Balancer Profile Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound_
ips ManagedCluster Load Balancer Profile Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- allocated
Outbound NumberPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend
Pool String | "NodeType IPConfiguration" | "Node IP" - The type of the managed inbound Load Balancer BackendPool.
- effective
Outbound List<Property Map>IPs - The effective outbound IP resources of the cluster load balancer.
- enable
Multiple BooleanStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle
Timeout NumberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed
Outbound Property MapIPs - Desired managed outbound IPs for the cluster load balancer.
- outbound
IPPrefixes Property Map - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound
IPs Property Map - Desired outbound IP resources for the cluster load balancer.
ManagedClusterLoadBalancerProfileManagedOutboundIPs, ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
- Count int
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- Count
IPv6 int - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- Count int
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- Count
IPv6 int - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count Integer
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count
IPv6 Integer - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count number
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count
IPv6 number - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count int
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count_
i_ intpv6 - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count Number
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count
IPv6 Number - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
ManagedClusterLoadBalancerProfileOutboundIPPrefixes, ManagedClusterLoadBalancerProfileOutboundIPPrefixesArgs
- Public
IPPrefixes List<Pulumi.Azure Native. Container Service. Inputs. Resource Reference> - A list of public IP prefix resources.
- Public
IPPrefixes []ResourceReference - A list of public IP prefix resources.
- public
IPPrefixes List<ResourceReference> - A list of public IP prefix resources.
- public
IPPrefixes ResourceReference[] - A list of public IP prefix resources.
- public_
ip_ Sequence[Resourceprefixes Reference] - A list of public IP prefix resources.
- public
IPPrefixes List<Property Map> - A list of public IP prefix resources.
ManagedClusterLoadBalancerProfileOutboundIPs, ManagedClusterLoadBalancerProfileOutboundIPsArgs
- Public
IPs List<Pulumi.Azure Native. Container Service. Inputs. Resource Reference> - A list of public IP resources.
- Public
IPs []ResourceReference - A list of public IP resources.
- public
IPs List<ResourceReference> - A list of public IP resources.
- public
IPs ResourceReference[] - A list of public IP resources.
- public_
ips Sequence[ResourceReference] - A list of public IP resources.
- public
IPs List<Property Map> - A list of public IP resources.
ManagedClusterLoadBalancerProfileResponse, ManagedClusterLoadBalancerProfileResponseArgs
- Allocated
Outbound intPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- Backend
Pool stringType - The type of the managed inbound Load Balancer BackendPool.
- Effective
Outbound List<Pulumi.IPs Azure Native. Container Service. Inputs. Resource Reference Response> - The effective outbound IP resources of the cluster load balancer.
- Enable
Multiple boolStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- Managed
Outbound Pulumi.IPs Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Response Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- Outbound
IPPrefixes Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Response Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- Outbound
IPs Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Response Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- Allocated
Outbound intPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- Backend
Pool stringType - The type of the managed inbound Load Balancer BackendPool.
- Effective
Outbound []ResourceIPs Reference Response - The effective outbound IP resources of the cluster load balancer.
- Enable
Multiple boolStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- Managed
Outbound ManagedIPs Cluster Load Balancer Profile Response Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- Outbound
IPPrefixes ManagedCluster Load Balancer Profile Response Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- Outbound
IPs ManagedCluster Load Balancer Profile Response Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- allocated
Outbound IntegerPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend
Pool StringType - The type of the managed inbound Load Balancer BackendPool.
- effective
Outbound List<ResourceIPs Reference Response> - The effective outbound IP resources of the cluster load balancer.
- enable
Multiple BooleanStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle
Timeout IntegerIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed
Outbound ManagedIPs Cluster Load Balancer Profile Response Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- outbound
IPPrefixes ManagedCluster Load Balancer Profile Response Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound
IPs ManagedCluster Load Balancer Profile Response Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- allocated
Outbound numberPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend
Pool stringType - The type of the managed inbound Load Balancer BackendPool.
- effective
Outbound ResourceIPs Reference Response[] - The effective outbound IP resources of the cluster load balancer.
- enable
Multiple booleanStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle
Timeout numberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed
Outbound ManagedIPs Cluster Load Balancer Profile Response Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- outbound
IPPrefixes ManagedCluster Load Balancer Profile Response Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound
IPs ManagedCluster Load Balancer Profile Response Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- allocated_
outbound_ intports - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend_
pool_ strtype - The type of the managed inbound Load Balancer BackendPool.
- effective_
outbound_ Sequence[Resourceips Reference Response] - The effective outbound IP resources of the cluster load balancer.
- enable_
multiple_ boolstandard_ load_ balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle_
timeout_ intin_ minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed_
outbound_ Managedips Cluster Load Balancer Profile Response Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- outbound_
ip_ Managedprefixes Cluster Load Balancer Profile Response Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound_
ips ManagedCluster Load Balancer Profile Response Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- allocated
Outbound NumberPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend
Pool StringType - The type of the managed inbound Load Balancer BackendPool.
- effective
Outbound List<Property Map>IPs - The effective outbound IP resources of the cluster load balancer.
- enable
Multiple BooleanStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle
Timeout NumberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed
Outbound Property MapIPs - Desired managed outbound IPs for the cluster load balancer.
- outbound
IPPrefixes Property Map - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound
IPs Property Map - Desired outbound IP resources for the cluster load balancer.
ManagedClusterLoadBalancerProfileResponseManagedOutboundIPs, ManagedClusterLoadBalancerProfileResponseManagedOutboundIPsArgs
- Count int
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- Count
IPv6 int - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- Count int
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- Count
IPv6 int - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count Integer
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count
IPv6 Integer - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count number
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count
IPv6 number - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count int
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count_
i_ intpv6 - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count Number
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count
IPv6 Number - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
ManagedClusterLoadBalancerProfileResponseOutboundIPPrefixes, ManagedClusterLoadBalancerProfileResponseOutboundIPPrefixesArgs
- Public
IPPrefixes List<Pulumi.Azure Native. Container Service. Inputs. Resource Reference Response> - A list of public IP prefix resources.
- Public
IPPrefixes []ResourceReference Response - A list of public IP prefix resources.
- public
IPPrefixes List<ResourceReference Response> - A list of public IP prefix resources.
- public
IPPrefixes ResourceReference Response[] - A list of public IP prefix resources.
- public_
ip_ Sequence[Resourceprefixes Reference Response] - A list of public IP prefix resources.
- public
IPPrefixes List<Property Map> - A list of public IP prefix resources.
ManagedClusterLoadBalancerProfileResponseOutboundIPs, ManagedClusterLoadBalancerProfileResponseOutboundIPsArgs
- Public
IPs List<Pulumi.Azure Native. Container Service. Inputs. Resource Reference Response> - A list of public IP resources.
- Public
IPs []ResourceReference Response - A list of public IP resources.
- public
IPs List<ResourceReference Response> - A list of public IP resources.
- public
IPs ResourceReference Response[] - A list of public IP resources.
- public_
ips Sequence[ResourceReference Response] - A list of public IP resources.
- public
IPs List<Property Map> - A list of public IP resources.
ManagedClusterManagedOutboundIPProfile, ManagedClusterManagedOutboundIPProfileArgs
- Count int
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- Count int
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count Integer
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count number
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count int
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count Number
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
ManagedClusterManagedOutboundIPProfileResponse, ManagedClusterManagedOutboundIPProfileResponseArgs
- Count int
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- Count int
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count Integer
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count number
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count int
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count Number
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
ManagedClusterMetricsProfile, ManagedClusterMetricsProfileArgs
- Cost
Analysis Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Cost Analysis - The cost analysis configuration for the cluster
- Cost
Analysis ManagedCluster Cost Analysis - The cost analysis configuration for the cluster
- cost
Analysis ManagedCluster Cost Analysis - The cost analysis configuration for the cluster
- cost
Analysis ManagedCluster Cost Analysis - The cost analysis configuration for the cluster
- cost_
analysis ManagedCluster Cost Analysis - The cost analysis configuration for the cluster
- cost
Analysis Property Map - The cost analysis configuration for the cluster
ManagedClusterMetricsProfileResponse, ManagedClusterMetricsProfileResponseArgs
- Cost
Analysis Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Cost Analysis Response - The cost analysis configuration for the cluster
- Cost
Analysis ManagedCluster Cost Analysis Response - The cost analysis configuration for the cluster
- cost
Analysis ManagedCluster Cost Analysis Response - The cost analysis configuration for the cluster
- cost
Analysis ManagedCluster Cost Analysis Response - The cost analysis configuration for the cluster
- cost_
analysis ManagedCluster Cost Analysis Response - The cost analysis configuration for the cluster
- cost
Analysis Property Map - The cost analysis configuration for the cluster
ManagedClusterNATGatewayProfile, ManagedClusterNATGatewayProfileArgs
- Effective
Outbound List<Pulumi.IPs Azure Native. Container Service. Inputs. Resource Reference> - The effective outbound IP resources of the cluster NAT gateway.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- Managed
Outbound Pulumi.IPProfile Azure Native. Container Service. Inputs. Managed Cluster Managed Outbound IPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
- Effective
Outbound []ResourceIPs Reference - The effective outbound IP resources of the cluster NAT gateway.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- Managed
Outbound ManagedIPProfile Cluster Managed Outbound IPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
- effective
Outbound List<ResourceIPs Reference> - The effective outbound IP resources of the cluster NAT gateway.
- idle
Timeout IntegerIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed
Outbound ManagedIPProfile Cluster Managed Outbound IPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
- effective
Outbound ResourceIPs Reference[] - The effective outbound IP resources of the cluster NAT gateway.
- idle
Timeout numberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed
Outbound ManagedIPProfile Cluster Managed Outbound IPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
- effective_
outbound_ Sequence[Resourceips Reference] - The effective outbound IP resources of the cluster NAT gateway.
- idle_
timeout_ intin_ minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed_
outbound_ Managedip_ profile Cluster Managed Outbound IPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
- effective
Outbound List<Property Map>IPs - The effective outbound IP resources of the cluster NAT gateway.
- idle
Timeout NumberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed
Outbound Property MapIPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
ManagedClusterNATGatewayProfileResponse, ManagedClusterNATGatewayProfileResponseArgs
- Effective
Outbound List<Pulumi.IPs Azure Native. Container Service. Inputs. Resource Reference Response> - The effective outbound IP resources of the cluster NAT gateway.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- Managed
Outbound Pulumi.IPProfile Azure Native. Container Service. Inputs. Managed Cluster Managed Outbound IPProfile Response - Profile of the managed outbound IP resources of the cluster NAT gateway.
- Effective
Outbound []ResourceIPs Reference Response - The effective outbound IP resources of the cluster NAT gateway.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- Managed
Outbound ManagedIPProfile Cluster Managed Outbound IPProfile Response - Profile of the managed outbound IP resources of the cluster NAT gateway.
- effective
Outbound List<ResourceIPs Reference Response> - The effective outbound IP resources of the cluster NAT gateway.
- idle
Timeout IntegerIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed
Outbound ManagedIPProfile Cluster Managed Outbound IPProfile Response - Profile of the managed outbound IP resources of the cluster NAT gateway.
- effective
Outbound ResourceIPs Reference Response[] - The effective outbound IP resources of the cluster NAT gateway.
- idle
Timeout numberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed
Outbound ManagedIPProfile Cluster Managed Outbound IPProfile Response - Profile of the managed outbound IP resources of the cluster NAT gateway.
- effective_
outbound_ Sequence[Resourceips Reference Response] - The effective outbound IP resources of the cluster NAT gateway.
- idle_
timeout_ intin_ minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed_
outbound_ Managedip_ profile Cluster Managed Outbound IPProfile Response - Profile of the managed outbound IP resources of the cluster NAT gateway.
- effective
Outbound List<Property Map>IPs - The effective outbound IP resources of the cluster NAT gateway.
- idle
Timeout NumberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed
Outbound Property MapIPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
ManagedClusterNodeResourceGroupProfile, ManagedClusterNodeResourceGroupProfileArgs
- Restriction
Level string | Pulumi.Azure Native. Container Service. Restriction Level - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- Restriction
Level string | RestrictionLevel - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction
Level String | RestrictionLevel - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction
Level string | RestrictionLevel - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction_
level str | RestrictionLevel - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction
Level String | "Unrestricted" | "ReadOnly" - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
ManagedClusterNodeResourceGroupProfileResponse, ManagedClusterNodeResourceGroupProfileResponseArgs
- Restriction
Level string - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- Restriction
Level string - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction
Level String - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction
Level string - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction_
level str - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction
Level String - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
ManagedClusterOIDCIssuerProfile, ManagedClusterOIDCIssuerProfileArgs
- Enabled bool
- Whether the OIDC issuer is enabled.
- Enabled bool
- Whether the OIDC issuer is enabled.
- enabled Boolean
- Whether the OIDC issuer is enabled.
- enabled boolean
- Whether the OIDC issuer is enabled.
- enabled bool
- Whether the OIDC issuer is enabled.
- enabled Boolean
- Whether the OIDC issuer is enabled.
ManagedClusterOIDCIssuerProfileResponse, ManagedClusterOIDCIssuerProfileResponseArgs
- issuer_
url str - The OIDC issuer url of the Managed Cluster.
- enabled bool
- Whether the OIDC issuer is enabled.
ManagedClusterPodIdentity, ManagedClusterPodIdentityArgs
- Identity
Pulumi.
Azure Native. Container Service. Inputs. User Assigned Identity - The user assigned identity details.
- Name string
- The name of the pod identity.
- Namespace string
- The namespace of the pod identity.
- Binding
Selector string - The binding selector to use for the AzureIdentityBinding resource.
- Identity
User
Assigned Identity - The user assigned identity details.
- Name string
- The name of the pod identity.
- Namespace string
- The namespace of the pod identity.
- Binding
Selector string - The binding selector to use for the AzureIdentityBinding resource.
- identity
User
Assigned Identity - The user assigned identity details.
- name String
- The name of the pod identity.
- namespace String
- The namespace of the pod identity.
- binding
Selector String - The binding selector to use for the AzureIdentityBinding resource.
- identity
User
Assigned Identity - The user assigned identity details.
- name string
- The name of the pod identity.
- namespace string
- The namespace of the pod identity.
- binding
Selector string - The binding selector to use for the AzureIdentityBinding resource.
- identity
User
Assigned Identity - The user assigned identity details.
- name str
- The name of the pod identity.
- namespace str
- The namespace of the pod identity.
- binding_
selector str - The binding selector to use for the AzureIdentityBinding resource.
- identity Property Map
- The user assigned identity details.
- name String
- The name of the pod identity.
- namespace String
- The namespace of the pod identity.
- binding
Selector String - The binding selector to use for the AzureIdentityBinding resource.
ManagedClusterPodIdentityException, ManagedClusterPodIdentityExceptionArgs
- name str
- The name of the pod identity exception.
- namespace str
- The namespace of the pod identity exception.
- pod_
labels Mapping[str, str] - The pod labels to match.
ManagedClusterPodIdentityExceptionResponse, ManagedClusterPodIdentityExceptionResponseArgs
- name str
- The name of the pod identity exception.
- namespace str
- The namespace of the pod identity exception.
- pod_
labels Mapping[str, str] - The pod labels to match.
ManagedClusterPodIdentityProfile, ManagedClusterPodIdentityProfileArgs
- Allow
Network boolPlugin Kubenet - Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- Enabled bool
- Whether the pod identity addon is enabled.
- User
Assigned List<Pulumi.Identities Azure Native. Container Service. Inputs. Managed Cluster Pod Identity> - The pod identities to use in the cluster.
- User
Assigned List<Pulumi.Identity Exceptions Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Exception> - The pod identity exceptions to allow.
- Allow
Network boolPlugin Kubenet - Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- Enabled bool
- Whether the pod identity addon is enabled.
- User
Assigned []ManagedIdentities Cluster Pod Identity - The pod identities to use in the cluster.
- User
Assigned []ManagedIdentity Exceptions Cluster Pod Identity Exception - The pod identity exceptions to allow.
- allow
Network BooleanPlugin Kubenet - Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled Boolean
- Whether the pod identity addon is enabled.
- user
Assigned List<ManagedIdentities Cluster Pod Identity> - The pod identities to use in the cluster.
- user
Assigned List<ManagedIdentity Exceptions Cluster Pod Identity Exception> - The pod identity exceptions to allow.
- allow
Network booleanPlugin Kubenet - Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled boolean
- Whether the pod identity addon is enabled.
- user
Assigned ManagedIdentities Cluster Pod Identity[] - The pod identities to use in the cluster.
- user
Assigned ManagedIdentity Exceptions Cluster Pod Identity Exception[] - The pod identity exceptions to allow.
- allow_
network_ boolplugin_ kubenet - Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled bool
- Whether the pod identity addon is enabled.
- user_
assigned_ Sequence[Managedidentities Cluster Pod Identity] - The pod identities to use in the cluster.
- user_
assigned_ Sequence[Managedidentity_ exceptions Cluster Pod Identity Exception] - The pod identity exceptions to allow.
- allow
Network BooleanPlugin Kubenet - Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled Boolean
- Whether the pod identity addon is enabled.
- user
Assigned List<Property Map>Identities - The pod identities to use in the cluster.
- user
Assigned List<Property Map>Identity Exceptions - The pod identity exceptions to allow.
ManagedClusterPodIdentityProfileResponse, ManagedClusterPodIdentityProfileResponseArgs
- Allow
Network boolPlugin Kubenet - Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- Enabled bool
- Whether the pod identity addon is enabled.
- User
Assigned List<Pulumi.Identities Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Response> - The pod identities to use in the cluster.
- User
Assigned List<Pulumi.Identity Exceptions Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Exception Response> - The pod identity exceptions to allow.
- Allow
Network boolPlugin Kubenet - Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- Enabled bool
- Whether the pod identity addon is enabled.
- User
Assigned []ManagedIdentities Cluster Pod Identity Response - The pod identities to use in the cluster.
- User
Assigned []ManagedIdentity Exceptions Cluster Pod Identity Exception Response - The pod identity exceptions to allow.
- allow
Network BooleanPlugin Kubenet - Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled Boolean
- Whether the pod identity addon is enabled.
- user
Assigned List<ManagedIdentities Cluster Pod Identity Response> - The pod identities to use in the cluster.
- user
Assigned List<ManagedIdentity Exceptions Cluster Pod Identity Exception Response> - The pod identity exceptions to allow.
- allow
Network booleanPlugin Kubenet - Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled boolean
- Whether the pod identity addon is enabled.
- user
Assigned ManagedIdentities Cluster Pod Identity Response[] - The pod identities to use in the cluster.
- user
Assigned ManagedIdentity Exceptions Cluster Pod Identity Exception Response[] - The pod identity exceptions to allow.
- allow_
network_ boolplugin_ kubenet - Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled bool
- Whether the pod identity addon is enabled.
- user_
assigned_ Sequence[Managedidentities Cluster Pod Identity Response] - The pod identities to use in the cluster.
- user_
assigned_ Sequence[Managedidentity_ exceptions Cluster Pod Identity Exception Response] - The pod identity exceptions to allow.
- allow
Network BooleanPlugin Kubenet - Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled Boolean
- Whether the pod identity addon is enabled.
- user
Assigned List<Property Map>Identities - The pod identities to use in the cluster.
- user
Assigned List<Property Map>Identity Exceptions - The pod identity exceptions to allow.
ManagedClusterPodIdentityProvisioningErrorBodyResponse, ManagedClusterPodIdentityProvisioningErrorBodyResponseArgs
- Code string
- An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
- Details
List<Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Provisioning Error Body Response> - A list of additional details about the error.
- Message string
- A message describing the error, intended to be suitable for display in a user interface.
- Target string
- The target of the particular error. For example, the name of the property in error.
- Code string
- An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
- Details
[]Managed
Cluster Pod Identity Provisioning Error Body Response - A list of additional details about the error.
- Message string
- A message describing the error, intended to be suitable for display in a user interface.
- Target string
- The target of the particular error. For example, the name of the property in error.
- code String
- An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
- details
List<Managed
Cluster Pod Identity Provisioning Error Body Response> - A list of additional details about the error.
- message String
- A message describing the error, intended to be suitable for display in a user interface.
- target String
- The target of the particular error. For example, the name of the property in error.
- code string
- An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
- details
Managed
Cluster Pod Identity Provisioning Error Body Response[] - A list of additional details about the error.
- message string
- A message describing the error, intended to be suitable for display in a user interface.
- target string
- The target of the particular error. For example, the name of the property in error.
- code str
- An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
- details
Sequence[Managed
Cluster Pod Identity Provisioning Error Body Response] - A list of additional details about the error.
- message str
- A message describing the error, intended to be suitable for display in a user interface.
- target str
- The target of the particular error. For example, the name of the property in error.
- code String
- An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
- details List<Property Map>
- A list of additional details about the error.
- message String
- A message describing the error, intended to be suitable for display in a user interface.
- target String
- The target of the particular error. For example, the name of the property in error.
ManagedClusterPodIdentityProvisioningErrorResponse, ManagedClusterPodIdentityProvisioningErrorResponseArgs
- Error
Managed
Cluster Pod Identity Provisioning Error Body Response - Details about the error.
- error
Managed
Cluster Pod Identity Provisioning Error Body Response - Details about the error.
- error
Managed
Cluster Pod Identity Provisioning Error Body Response - Details about the error.
- error
Managed
Cluster Pod Identity Provisioning Error Body Response - Details about the error.
- error Property Map
- Details about the error.
ManagedClusterPodIdentityResponse, ManagedClusterPodIdentityResponseArgs
- Identity
Pulumi.
Azure Native. Container Service. Inputs. User Assigned Identity Response - The user assigned identity details.
- Name string
- The name of the pod identity.
- Namespace string
- The namespace of the pod identity.
- Provisioning
Info Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Response Provisioning Info - Provisioning
State string - The current provisioning state of the pod identity.
- Binding
Selector string - The binding selector to use for the AzureIdentityBinding resource.
- Identity
User
Assigned Identity Response - The user assigned identity details.
- Name string
- The name of the pod identity.
- Namespace string
- The namespace of the pod identity.
- Provisioning
Info ManagedCluster Pod Identity Response Provisioning Info - Provisioning
State string - The current provisioning state of the pod identity.
- Binding
Selector string - The binding selector to use for the AzureIdentityBinding resource.
- identity
User
Assigned Identity Response - The user assigned identity details.
- name String
- The name of the pod identity.
- namespace String
- The namespace of the pod identity.
- provisioning
Info ManagedCluster Pod Identity Response Provisioning Info - provisioning
State String - The current provisioning state of the pod identity.
- binding
Selector String - The binding selector to use for the AzureIdentityBinding resource.
- identity
User
Assigned Identity Response - The user assigned identity details.
- name string
- The name of the pod identity.
- namespace string
- The namespace of the pod identity.
- provisioning
Info ManagedCluster Pod Identity Response Provisioning Info - provisioning
State string - The current provisioning state of the pod identity.
- binding
Selector string - The binding selector to use for the AzureIdentityBinding resource.
- identity
User
Assigned Identity Response - The user assigned identity details.
- name str
- The name of the pod identity.
- namespace str
- The namespace of the pod identity.
- provisioning_
info ManagedCluster Pod Identity Response Provisioning Info - provisioning_
state str - The current provisioning state of the pod identity.
- binding_
selector str - The binding selector to use for the AzureIdentityBinding resource.
- identity Property Map
- The user assigned identity details.
- name String
- The name of the pod identity.
- namespace String
- The namespace of the pod identity.
- provisioning
Info Property Map - provisioning
State String - The current provisioning state of the pod identity.
- binding
Selector String - The binding selector to use for the AzureIdentityBinding resource.
ManagedClusterPodIdentityResponseProvisioningInfo, ManagedClusterPodIdentityResponseProvisioningInfoArgs
- Error
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Provisioning Error Response - Pod identity assignment error (if any).
- Error
Managed
Cluster Pod Identity Provisioning Error Response - Pod identity assignment error (if any).
- error
Managed
Cluster Pod Identity Provisioning Error Response - Pod identity assignment error (if any).
- error
Managed
Cluster Pod Identity Provisioning Error Response - Pod identity assignment error (if any).
- error
Managed
Cluster Pod Identity Provisioning Error Response - Pod identity assignment error (if any).
- error Property Map
- Pod identity assignment error (if any).
ManagedClusterPropertiesAutoScalerProfile, ManagedClusterPropertiesAutoScalerProfileArgs
- Balance
Similar stringNode Groups - Valid values are 'true' and 'false'
- Daemonset
Eviction boolFor Empty Nodes - If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Daemonset
Eviction boolFor Occupied Nodes - If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Expander
string | Pulumi.
Azure Native. Container Service. Expander - If not specified, the default is 'random'. See expanders for more information.
- Ignore
Daemonsets boolUtilization - If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- Max
Empty stringBulk Delete - The default is 10.
- Max
Graceful stringTermination Sec - The default is 600.
- Max
Node stringProvision Time - The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Max
Total stringUnready Percentage - The default is 45. The maximum is 100 and the minimum is 0.
- New
Pod stringScale Up Delay - For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- Ok
Total stringUnready Count - This must be an integer. The default is 3.
- Scale
Down stringDelay After Add - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Delete - The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Failure - The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnneeded Time - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnready Time - The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUtilization Threshold - The default is '0.5'.
- Scan
Interval string - The default is '10'. Values must be an integer number of seconds.
- Skip
Nodes stringWith Local Storage - The default is true.
- Skip
Nodes stringWith System Pods - The default is true.
- Balance
Similar stringNode Groups - Valid values are 'true' and 'false'
- Daemonset
Eviction boolFor Empty Nodes - If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Daemonset
Eviction boolFor Occupied Nodes - If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Expander string | Expander
- If not specified, the default is 'random'. See expanders for more information.
- Ignore
Daemonsets boolUtilization - If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- Max
Empty stringBulk Delete - The default is 10.
- Max
Graceful stringTermination Sec - The default is 600.
- Max
Node stringProvision Time - The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Max
Total stringUnready Percentage - The default is 45. The maximum is 100 and the minimum is 0.
- New
Pod stringScale Up Delay - For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- Ok
Total stringUnready Count - This must be an integer. The default is 3.
- Scale
Down stringDelay After Add - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Delete - The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Failure - The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnneeded Time - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnready Time - The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUtilization Threshold - The default is '0.5'.
- Scan
Interval string - The default is '10'. Values must be an integer number of seconds.
- Skip
Nodes stringWith Local Storage - The default is true.
- Skip
Nodes stringWith System Pods - The default is true.
- balance
Similar StringNode Groups - Valid values are 'true' and 'false'
- daemonset
Eviction BooleanFor Empty Nodes - If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset
Eviction BooleanFor Occupied Nodes - If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander String | Expander
- If not specified, the default is 'random'. See expanders for more information.
- ignore
Daemonsets BooleanUtilization - If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max
Empty StringBulk Delete - The default is 10.
- max
Graceful StringTermination Sec - The default is 600.
- max
Node StringProvision Time - The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max
Total StringUnready Percentage - The default is 45. The maximum is 100 and the minimum is 0.
- new
Pod StringScale Up Delay - For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok
Total StringUnready Count - This must be an integer. The default is 3.
- scale
Down StringDelay After Add - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Delete - The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Failure - The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnneeded Time - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnready Time - The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUtilization Threshold - The default is '0.5'.
- scan
Interval String - The default is '10'. Values must be an integer number of seconds.
- skip
Nodes StringWith Local Storage - The default is true.
- skip
Nodes StringWith System Pods - The default is true.
- balance
Similar stringNode Groups - Valid values are 'true' and 'false'
- daemonset
Eviction booleanFor Empty Nodes - If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset
Eviction booleanFor Occupied Nodes - If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander string | Expander
- If not specified, the default is 'random'. See expanders for more information.
- ignore
Daemonsets booleanUtilization - If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max
Empty stringBulk Delete - The default is 10.
- max
Graceful stringTermination Sec - The default is 600.
- max
Node stringProvision Time - The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max
Total stringUnready Percentage - The default is 45. The maximum is 100 and the minimum is 0.
- new
Pod stringScale Up Delay - For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok
Total stringUnready Count - This must be an integer. The default is 3.
- scale
Down stringDelay After Add - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringDelay After Delete - The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringDelay After Failure - The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringUnneeded Time - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringUnready Time - The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringUtilization Threshold - The default is '0.5'.
- scan
Interval string - The default is '10'. Values must be an integer number of seconds.
- skip
Nodes stringWith Local Storage - The default is true.
- skip
Nodes stringWith System Pods - The default is true.
- balance_
similar_ strnode_ groups - Valid values are 'true' and 'false'
- daemonset_
eviction_ boolfor_ empty_ nodes - If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset_
eviction_ boolfor_ occupied_ nodes - If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander str | Expander
- If not specified, the default is 'random'. See expanders for more information.
- ignore_
daemonsets_ boolutilization - If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max_
empty_ strbulk_ delete - The default is 10.
- max_
graceful_ strtermination_ sec - The default is 600.
- max_
node_ strprovision_ time - The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max_
total_ strunready_ percentage - The default is 45. The maximum is 100 and the minimum is 0.
- new_
pod_ strscale_ up_ delay - For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok_
total_ strunready_ count - This must be an integer. The default is 3.
- scale_
down_ strdelay_ after_ add - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strdelay_ after_ delete - The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strdelay_ after_ failure - The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strunneeded_ time - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strunready_ time - The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strutilization_ threshold - The default is '0.5'.
- scan_
interval str - The default is '10'. Values must be an integer number of seconds.
- skip_
nodes_ strwith_ local_ storage - The default is true.
- skip_
nodes_ strwith_ system_ pods - The default is true.
- balance
Similar StringNode Groups - Valid values are 'true' and 'false'
- daemonset
Eviction BooleanFor Empty Nodes - If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset
Eviction BooleanFor Occupied Nodes - If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander String | "least-waste" | "most-pods" | "priority" | "random"
- If not specified, the default is 'random'. See expanders for more information.
- ignore
Daemonsets BooleanUtilization - If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max
Empty StringBulk Delete - The default is 10.
- max
Graceful StringTermination Sec - The default is 600.
- max
Node StringProvision Time - The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max
Total StringUnready Percentage - The default is 45. The maximum is 100 and the minimum is 0.
- new
Pod StringScale Up Delay - For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok
Total StringUnready Count - This must be an integer. The default is 3.
- scale
Down StringDelay After Add - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Delete - The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Failure - The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnneeded Time - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnready Time - The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUtilization Threshold - The default is '0.5'.
- scan
Interval String - The default is '10'. Values must be an integer number of seconds.
- skip
Nodes StringWith Local Storage - The default is true.
- skip
Nodes StringWith System Pods - The default is true.
ManagedClusterPropertiesResponseAutoScalerProfile, ManagedClusterPropertiesResponseAutoScalerProfileArgs
- Balance
Similar stringNode Groups - Valid values are 'true' and 'false'
- Daemonset
Eviction boolFor Empty Nodes - If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Daemonset
Eviction boolFor Occupied Nodes - If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Expander string
- If not specified, the default is 'random'. See expanders for more information.
- Ignore
Daemonsets boolUtilization - If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- Max
Empty stringBulk Delete - The default is 10.
- Max
Graceful stringTermination Sec - The default is 600.
- Max
Node stringProvision Time - The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Max
Total stringUnready Percentage - The default is 45. The maximum is 100 and the minimum is 0.
- New
Pod stringScale Up Delay - For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- Ok
Total stringUnready Count - This must be an integer. The default is 3.
- Scale
Down stringDelay After Add - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Delete - The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Failure - The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnneeded Time - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnready Time - The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUtilization Threshold - The default is '0.5'.
- Scan
Interval string - The default is '10'. Values must be an integer number of seconds.
- Skip
Nodes stringWith Local Storage - The default is true.
- Skip
Nodes stringWith System Pods - The default is true.
- Balance
Similar stringNode Groups - Valid values are 'true' and 'false'
- Daemonset
Eviction boolFor Empty Nodes - If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Daemonset
Eviction boolFor Occupied Nodes - If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Expander string
- If not specified, the default is 'random'. See expanders for more information.
- Ignore
Daemonsets boolUtilization - If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- Max
Empty stringBulk Delete - The default is 10.
- Max
Graceful stringTermination Sec - The default is 600.
- Max
Node stringProvision Time - The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Max
Total stringUnready Percentage - The default is 45. The maximum is 100 and the minimum is 0.
- New
Pod stringScale Up Delay - For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- Ok
Total stringUnready Count - This must be an integer. The default is 3.
- Scale
Down stringDelay After Add - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Delete - The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Failure - The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnneeded Time - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnready Time - The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUtilization Threshold - The default is '0.5'.
- Scan
Interval string - The default is '10'. Values must be an integer number of seconds.
- Skip
Nodes stringWith Local Storage - The default is true.
- Skip
Nodes stringWith System Pods - The default is true.
- balance
Similar StringNode Groups - Valid values are 'true' and 'false'
- daemonset
Eviction BooleanFor Empty Nodes - If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset
Eviction BooleanFor Occupied Nodes - If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander String
- If not specified, the default is 'random'. See expanders for more information.
- ignore
Daemonsets BooleanUtilization - If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max
Empty StringBulk Delete - The default is 10.
- max
Graceful StringTermination Sec - The default is 600.
- max
Node StringProvision Time - The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max
Total StringUnready Percentage - The default is 45. The maximum is 100 and the minimum is 0.
- new
Pod StringScale Up Delay - For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok
Total StringUnready Count - This must be an integer. The default is 3.
- scale
Down StringDelay After Add - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Delete - The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Failure - The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnneeded Time - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnready Time - The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUtilization Threshold - The default is '0.5'.
- scan
Interval String - The default is '10'. Values must be an integer number of seconds.
- skip
Nodes StringWith Local Storage - The default is true.
- skip
Nodes StringWith System Pods - The default is true.
- balance
Similar stringNode Groups - Valid values are 'true' and 'false'
- daemonset
Eviction booleanFor Empty Nodes - If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset
Eviction booleanFor Occupied Nodes - If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander string
- If not specified, the default is 'random'. See expanders for more information.
- ignore
Daemonsets booleanUtilization - If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max
Empty stringBulk Delete - The default is 10.
- max
Graceful stringTermination Sec - The default is 600.
- max
Node stringProvision Time - The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max
Total stringUnready Percentage - The default is 45. The maximum is 100 and the minimum is 0.
- new
Pod stringScale Up Delay - For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok
Total stringUnready Count - This must be an integer. The default is 3.
- scale
Down stringDelay After Add - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringDelay After Delete - The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringDelay After Failure - The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringUnneeded Time - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringUnready Time - The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringUtilization Threshold - The default is '0.5'.
- scan
Interval string - The default is '10'. Values must be an integer number of seconds.
- skip
Nodes stringWith Local Storage - The default is true.
- skip
Nodes stringWith System Pods - The default is true.
- balance_
similar_ strnode_ groups - Valid values are 'true' and 'false'
- daemonset_
eviction_ boolfor_ empty_ nodes - If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset_
eviction_ boolfor_ occupied_ nodes - If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander str
- If not specified, the default is 'random'. See expanders for more information.
- ignore_
daemonsets_ boolutilization - If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max_
empty_ strbulk_ delete - The default is 10.
- max_
graceful_ strtermination_ sec - The default is 600.
- max_
node_ strprovision_ time - The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max_
total_ strunready_ percentage - The default is 45. The maximum is 100 and the minimum is 0.
- new_
pod_ strscale_ up_ delay - For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok_
total_ strunready_ count - This must be an integer. The default is 3.
- scale_
down_ strdelay_ after_ add - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strdelay_ after_ delete - The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strdelay_ after_ failure - The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strunneeded_ time - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strunready_ time - The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strutilization_ threshold - The default is '0.5'.
- scan_
interval str - The default is '10'. Values must be an integer number of seconds.
- skip_
nodes_ strwith_ local_ storage - The default is true.
- skip_
nodes_ strwith_ system_ pods - The default is true.
- balance
Similar StringNode Groups - Valid values are 'true' and 'false'
- daemonset
Eviction BooleanFor Empty Nodes - If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset
Eviction BooleanFor Occupied Nodes - If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander String
- If not specified, the default is 'random'. See expanders for more information.
- ignore
Daemonsets BooleanUtilization - If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max
Empty StringBulk Delete - The default is 10.
- max
Graceful StringTermination Sec - The default is 600.
- max
Node StringProvision Time - The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max
Total StringUnready Percentage - The default is 45. The maximum is 100 and the minimum is 0.
- new
Pod StringScale Up Delay - For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok
Total StringUnready Count - This must be an integer. The default is 3.
- scale
Down StringDelay After Add - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Delete - The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Failure - The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnneeded Time - The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnready Time - The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUtilization Threshold - The default is '0.5'.
- scan
Interval String - The default is '10'. Values must be an integer number of seconds.
- skip
Nodes StringWith Local Storage - The default is true.
- skip
Nodes StringWith System Pods - The default is true.
ManagedClusterSKU, ManagedClusterSKUArgs
- Name
string | Pulumi.
Azure Native. Container Service. Managed Cluster SKUName - The name of a managed cluster SKU.
- Tier
string | Pulumi.
Azure Native. Container Service. Managed Cluster SKUTier - If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- Name
string | Managed
Cluster SKUName - The name of a managed cluster SKU.
- Tier
string | Managed
Cluster SKUTier - If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name
String | Managed
Cluster SKUName - The name of a managed cluster SKU.
- tier
String | Managed
Cluster SKUTier - If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name
string | Managed
Cluster SKUName - The name of a managed cluster SKU.
- tier
string | Managed
Cluster SKUTier - If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name
str | Managed
Cluster SKUName - The name of a managed cluster SKU.
- tier
str | Managed
Cluster SKUTier - If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name String | "Base"
- The name of a managed cluster SKU.
- tier String | "Premium" | "Standard" | "Free"
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
ManagedClusterSKUName, ManagedClusterSKUNameArgs
- Base
- BaseBase option for the AKS control plane.
- Managed
Cluster SKUName Base - BaseBase option for the AKS control plane.
- Base
- BaseBase option for the AKS control plane.
- Base
- BaseBase option for the AKS control plane.
- BASE
- BaseBase option for the AKS control plane.
- "Base"
- BaseBase option for the AKS control plane.
ManagedClusterSKUResponse, ManagedClusterSKUResponseArgs
- Name string
- The name of a managed cluster SKU.
- Tier string
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- Name string
- The name of a managed cluster SKU.
- Tier string
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name String
- The name of a managed cluster SKU.
- tier String
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name string
- The name of a managed cluster SKU.
- tier string
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name str
- The name of a managed cluster SKU.
- tier str
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name String
- The name of a managed cluster SKU.
- tier String
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
ManagedClusterSKUTier, ManagedClusterSKUTierArgs
- Premium
- PremiumCluster has premium capabilities in addition to all of the capabilities included in 'Standard'. Premium enables selection of LongTermSupport (aka.ms/aks/lts) for certain Kubernetes versions.
- Standard
- StandardRecommended for mission-critical and production workloads. Includes Kubernetes control plane autoscaling, workload-intensive testing, and up to 5,000 nodes per cluster. Guarantees 99.95% availability of the Kubernetes API server endpoint for clusters that use Availability Zones and 99.9% of availability for clusters that don't use Availability Zones.
- Free
- FreeThe cluster management is free, but charged for VM, storage, and networking usage. Best for experimenting, learning, simple testing, or workloads with fewer than 10 nodes. Not recommended for production use cases.
- Managed
Cluster SKUTier Premium - PremiumCluster has premium capabilities in addition to all of the capabilities included in 'Standard'. Premium enables selection of LongTermSupport (aka.ms/aks/lts) for certain Kubernetes versions.
- Managed
Cluster SKUTier Standard - StandardRecommended for mission-critical and production workloads. Includes Kubernetes control plane autoscaling, workload-intensive testing, and up to 5,000 nodes per cluster. Guarantees 99.95% availability of the Kubernetes API server endpoint for clusters that use Availability Zones and 99.9% of availability for clusters that don't use Availability Zones.
- Managed
Cluster SKUTier Free - FreeThe cluster management is free, but charged for VM, storage, and networking usage. Best for experimenting, learning, simple testing, or workloads with fewer than 10 nodes. Not recommended for production use cases.
- Premium
- PremiumCluster has premium capabilities in addition to all of the capabilities included in 'Standard'. Premium enables selection of LongTermSupport (aka.ms/aks/lts) for certain Kubernetes versions.
- Standard
- StandardRecommended for mission-critical and production workloads. Includes Kubernetes control plane autoscaling, workload-intensive testing, and up to 5,000 nodes per cluster. Guarantees 99.95% availability of the Kubernetes API server endpoint for clusters that use Availability Zones and 99.9% of availability for clusters that don't use Availability Zones.
- Free
- FreeThe cluster management is free, but charged for VM, storage, and networking usage. Best for experimenting, learning, simple testing, or workloads with fewer than 10 nodes. Not recommended for production use cases.
- Premium
- PremiumCluster has premium capabilities in addition to all of the capabilities included in 'Standard'. Premium enables selection of LongTermSupport (aka.ms/aks/lts) for certain Kubernetes versions.
- Standard
- StandardRecommended for mission-critical and production workloads. Includes Kubernetes control plane autoscaling, workload-intensive testing, and up to 5,000 nodes per cluster. Guarantees 99.95% availability of the Kubernetes API server endpoint for clusters that use Availability Zones and 99.9% of availability for clusters that don't use Availability Zones.
- Free
- FreeThe cluster management is free, but charged for VM, storage, and networking usage. Best for experimenting, learning, simple testing, or workloads with fewer than 10 nodes. Not recommended for production use cases.
- PREMIUM
- PremiumCluster has premium capabilities in addition to all of the capabilities included in 'Standard'. Premium enables selection of LongTermSupport (aka.ms/aks/lts) for certain Kubernetes versions.
- STANDARD
- StandardRecommended for mission-critical and production workloads. Includes Kubernetes control plane autoscaling, workload-intensive testing, and up to 5,000 nodes per cluster. Guarantees 99.95% availability of the Kubernetes API server endpoint for clusters that use Availability Zones and 99.9% of availability for clusters that don't use Availability Zones.
- FREE
- FreeThe cluster management is free, but charged for VM, storage, and networking usage. Best for experimenting, learning, simple testing, or workloads with fewer than 10 nodes. Not recommended for production use cases.
- "Premium"
- PremiumCluster has premium capabilities in addition to all of the capabilities included in 'Standard'. Premium enables selection of LongTermSupport (aka.ms/aks/lts) for certain Kubernetes versions.
- "Standard"
- StandardRecommended for mission-critical and production workloads. Includes Kubernetes control plane autoscaling, workload-intensive testing, and up to 5,000 nodes per cluster. Guarantees 99.95% availability of the Kubernetes API server endpoint for clusters that use Availability Zones and 99.9% of availability for clusters that don't use Availability Zones.
- "Free"
- FreeThe cluster management is free, but charged for VM, storage, and networking usage. Best for experimenting, learning, simple testing, or workloads with fewer than 10 nodes. Not recommended for production use cases.
ManagedClusterSecurityProfile, ManagedClusterSecurityProfileArgs
- Azure
Key Pulumi.Vault Kms Azure Native. Container Service. Inputs. Azure Key Vault Kms - Azure Key Vault key management service settings for the security profile.
- Defender
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Security Profile Defender - Microsoft Defender settings for the security profile.
- Image
Cleaner Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile Image Cleaner - Image Cleaner settings for the security profile.
- Workload
Identity Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile Workload Identity - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- Azure
Key AzureVault Kms Key Vault Kms - Azure Key Vault key management service settings for the security profile.
- Defender
Managed
Cluster Security Profile Defender - Microsoft Defender settings for the security profile.
- Image
Cleaner ManagedCluster Security Profile Image Cleaner - Image Cleaner settings for the security profile.
- Workload
Identity ManagedCluster Security Profile Workload Identity - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure
Key AzureVault Kms Key Vault Kms - Azure Key Vault key management service settings for the security profile.
- defender
Managed
Cluster Security Profile Defender - Microsoft Defender settings for the security profile.
- image
Cleaner ManagedCluster Security Profile Image Cleaner - Image Cleaner settings for the security profile.
- workload
Identity ManagedCluster Security Profile Workload Identity - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure
Key AzureVault Kms Key Vault Kms - Azure Key Vault key management service settings for the security profile.
- defender
Managed
Cluster Security Profile Defender - Microsoft Defender settings for the security profile.
- image
Cleaner ManagedCluster Security Profile Image Cleaner - Image Cleaner settings for the security profile.
- workload
Identity ManagedCluster Security Profile Workload Identity - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure_
key_ Azurevault_ kms Key Vault Kms - Azure Key Vault key management service settings for the security profile.
- defender
Managed
Cluster Security Profile Defender - Microsoft Defender settings for the security profile.
- image_
cleaner ManagedCluster Security Profile Image Cleaner - Image Cleaner settings for the security profile.
- workload_
identity ManagedCluster Security Profile Workload Identity - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure
Key Property MapVault Kms - Azure Key Vault key management service settings for the security profile.
- defender Property Map
- Microsoft Defender settings for the security profile.
- image
Cleaner Property Map - Image Cleaner settings for the security profile.
- workload
Identity Property Map - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
ManagedClusterSecurityProfileDefender, ManagedClusterSecurityProfileDefenderArgs
- Log
Analytics stringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- Security
Monitoring Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile Defender Security Monitoring - Microsoft Defender threat detection for Cloud settings for the security profile.
- Log
Analytics stringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- Security
Monitoring ManagedCluster Security Profile Defender Security Monitoring - Microsoft Defender threat detection for Cloud settings for the security profile.
- log
Analytics StringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security
Monitoring ManagedCluster Security Profile Defender Security Monitoring - Microsoft Defender threat detection for Cloud settings for the security profile.
- log
Analytics stringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security
Monitoring ManagedCluster Security Profile Defender Security Monitoring - Microsoft Defender threat detection for Cloud settings for the security profile.
- log_
analytics_ strworkspace_ resource_ id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security_
monitoring ManagedCluster Security Profile Defender Security Monitoring - Microsoft Defender threat detection for Cloud settings for the security profile.
- log
Analytics StringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security
Monitoring Property Map - Microsoft Defender threat detection for Cloud settings for the security profile.
ManagedClusterSecurityProfileDefenderResponse, ManagedClusterSecurityProfileDefenderResponseArgs
- Log
Analytics stringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- Security
Monitoring Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile Defender Security Monitoring Response - Microsoft Defender threat detection for Cloud settings for the security profile.
- Log
Analytics stringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- Security
Monitoring ManagedCluster Security Profile Defender Security Monitoring Response - Microsoft Defender threat detection for Cloud settings for the security profile.
- log
Analytics StringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security
Monitoring ManagedCluster Security Profile Defender Security Monitoring Response - Microsoft Defender threat detection for Cloud settings for the security profile.
- log
Analytics stringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security
Monitoring ManagedCluster Security Profile Defender Security Monitoring Response - Microsoft Defender threat detection for Cloud settings for the security profile.
- log_
analytics_ strworkspace_ resource_ id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security_
monitoring ManagedCluster Security Profile Defender Security Monitoring Response - Microsoft Defender threat detection for Cloud settings for the security profile.
- log
Analytics StringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security
Monitoring Property Map - Microsoft Defender threat detection for Cloud settings for the security profile.
ManagedClusterSecurityProfileDefenderSecurityMonitoring, ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs
- Enabled bool
- Whether to enable Defender threat detection
- Enabled bool
- Whether to enable Defender threat detection
- enabled Boolean
- Whether to enable Defender threat detection
- enabled boolean
- Whether to enable Defender threat detection
- enabled bool
- Whether to enable Defender threat detection
- enabled Boolean
- Whether to enable Defender threat detection
ManagedClusterSecurityProfileDefenderSecurityMonitoringResponse, ManagedClusterSecurityProfileDefenderSecurityMonitoringResponseArgs
- Enabled bool
- Whether to enable Defender threat detection
- Enabled bool
- Whether to enable Defender threat detection
- enabled Boolean
- Whether to enable Defender threat detection
- enabled boolean
- Whether to enable Defender threat detection
- enabled bool
- Whether to enable Defender threat detection
- enabled Boolean
- Whether to enable Defender threat detection
ManagedClusterSecurityProfileImageCleaner, ManagedClusterSecurityProfileImageCleanerArgs
- Enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- Interval
Hours int - Image Cleaner scanning interval in hours.
- Enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- Interval
Hours int - Image Cleaner scanning interval in hours.
- enabled Boolean
- Whether to enable Image Cleaner on AKS cluster.
- interval
Hours Integer - Image Cleaner scanning interval in hours.
- enabled boolean
- Whether to enable Image Cleaner on AKS cluster.
- interval
Hours number - Image Cleaner scanning interval in hours.
- enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- interval_
hours int - Image Cleaner scanning interval in hours.
- enabled Boolean
- Whether to enable Image Cleaner on AKS cluster.
- interval
Hours Number - Image Cleaner scanning interval in hours.
ManagedClusterSecurityProfileImageCleanerResponse, ManagedClusterSecurityProfileImageCleanerResponseArgs
- Enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- Interval
Hours int - Image Cleaner scanning interval in hours.
- Enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- Interval
Hours int - Image Cleaner scanning interval in hours.
- enabled Boolean
- Whether to enable Image Cleaner on AKS cluster.
- interval
Hours Integer - Image Cleaner scanning interval in hours.
- enabled boolean
- Whether to enable Image Cleaner on AKS cluster.
- interval
Hours number - Image Cleaner scanning interval in hours.
- enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- interval_
hours int - Image Cleaner scanning interval in hours.
- enabled Boolean
- Whether to enable Image Cleaner on AKS cluster.
- interval
Hours Number - Image Cleaner scanning interval in hours.
ManagedClusterSecurityProfileResponse, ManagedClusterSecurityProfileResponseArgs
- Azure
Key Pulumi.Vault Kms Azure Native. Container Service. Inputs. Azure Key Vault Kms Response - Azure Key Vault key management service settings for the security profile.
- Defender
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Security Profile Defender Response - Microsoft Defender settings for the security profile.
- Image
Cleaner Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile Image Cleaner Response - Image Cleaner settings for the security profile.
- Workload
Identity Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile Workload Identity Response - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- Azure
Key AzureVault Kms Key Vault Kms Response - Azure Key Vault key management service settings for the security profile.
- Defender
Managed
Cluster Security Profile Defender Response - Microsoft Defender settings for the security profile.
- Image
Cleaner ManagedCluster Security Profile Image Cleaner Response - Image Cleaner settings for the security profile.
- Workload
Identity ManagedCluster Security Profile Workload Identity Response - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure
Key AzureVault Kms Key Vault Kms Response - Azure Key Vault key management service settings for the security profile.
- defender
Managed
Cluster Security Profile Defender Response - Microsoft Defender settings for the security profile.
- image
Cleaner ManagedCluster Security Profile Image Cleaner Response - Image Cleaner settings for the security profile.
- workload
Identity ManagedCluster Security Profile Workload Identity Response - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure
Key AzureVault Kms Key Vault Kms Response - Azure Key Vault key management service settings for the security profile.
- defender
Managed
Cluster Security Profile Defender Response - Microsoft Defender settings for the security profile.
- image
Cleaner ManagedCluster Security Profile Image Cleaner Response - Image Cleaner settings for the security profile.
- workload
Identity ManagedCluster Security Profile Workload Identity Response - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure_
key_ Azurevault_ kms Key Vault Kms Response - Azure Key Vault key management service settings for the security profile.
- defender
Managed
Cluster Security Profile Defender Response - Microsoft Defender settings for the security profile.
- image_
cleaner ManagedCluster Security Profile Image Cleaner Response - Image Cleaner settings for the security profile.
- workload_
identity ManagedCluster Security Profile Workload Identity Response - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure
Key Property MapVault Kms - Azure Key Vault key management service settings for the security profile.
- defender Property Map
- Microsoft Defender settings for the security profile.
- image
Cleaner Property Map - Image Cleaner settings for the security profile.
- workload
Identity Property Map - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
ManagedClusterSecurityProfileWorkloadIdentity, ManagedClusterSecurityProfileWorkloadIdentityArgs
- Enabled bool
- Whether to enable workload identity.
- Enabled bool
- Whether to enable workload identity.
- enabled Boolean
- Whether to enable workload identity.
- enabled boolean
- Whether to enable workload identity.
- enabled bool
- Whether to enable workload identity.
- enabled Boolean
- Whether to enable workload identity.
ManagedClusterSecurityProfileWorkloadIdentityResponse, ManagedClusterSecurityProfileWorkloadIdentityResponseArgs
- Enabled bool
- Whether to enable workload identity.
- Enabled bool
- Whether to enable workload identity.
- enabled Boolean
- Whether to enable workload identity.
- enabled boolean
- Whether to enable workload identity.
- enabled bool
- Whether to enable workload identity.
- enabled Boolean
- Whether to enable workload identity.
ManagedClusterServicePrincipalProfile, ManagedClusterServicePrincipalProfileArgs
ManagedClusterServicePrincipalProfileResponse, ManagedClusterServicePrincipalProfileResponseArgs
ManagedClusterStorageProfile, ManagedClusterStorageProfileArgs
- Blob
CSIDriver Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile Blob CSIDriver - AzureBlob CSI Driver settings for the storage profile.
- Disk
CSIDriver Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile Disk CSIDriver - AzureDisk CSI Driver settings for the storage profile.
- File
CSIDriver Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile File CSIDriver - AzureFile CSI Driver settings for the storage profile.
- Snapshot
Controller Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile Snapshot Controller - Snapshot Controller settings for the storage profile.
- Blob
CSIDriver ManagedCluster Storage Profile Blob CSIDriver - AzureBlob CSI Driver settings for the storage profile.
- Disk
CSIDriver ManagedCluster Storage Profile Disk CSIDriver - AzureDisk CSI Driver settings for the storage profile.
- File
CSIDriver ManagedCluster Storage Profile File CSIDriver - AzureFile CSI Driver settings for the storage profile.
- Snapshot
Controller ManagedCluster Storage Profile Snapshot Controller - Snapshot Controller settings for the storage profile.
- blob
CSIDriver ManagedCluster Storage Profile Blob CSIDriver - AzureBlob CSI Driver settings for the storage profile.
- disk
CSIDriver ManagedCluster Storage Profile Disk CSIDriver - AzureDisk CSI Driver settings for the storage profile.
- file
CSIDriver ManagedCluster Storage Profile File CSIDriver - AzureFile CSI Driver settings for the storage profile.
- snapshot
Controller ManagedCluster Storage Profile Snapshot Controller - Snapshot Controller settings for the storage profile.
- blob
CSIDriver ManagedCluster Storage Profile Blob CSIDriver - AzureBlob CSI Driver settings for the storage profile.
- disk
CSIDriver ManagedCluster Storage Profile Disk CSIDriver - AzureDisk CSI Driver settings for the storage profile.
- file
CSIDriver ManagedCluster Storage Profile File CSIDriver - AzureFile CSI Driver settings for the storage profile.
- snapshot
Controller ManagedCluster Storage Profile Snapshot Controller - Snapshot Controller settings for the storage profile.
- blob_
csi_ Manageddriver Cluster Storage Profile Blob CSIDriver - AzureBlob CSI Driver settings for the storage profile.
- disk_
csi_ Manageddriver Cluster Storage Profile Disk CSIDriver - AzureDisk CSI Driver settings for the storage profile.
- file_
csi_ Manageddriver Cluster Storage Profile File CSIDriver - AzureFile CSI Driver settings for the storage profile.
- snapshot_
controller ManagedCluster Storage Profile Snapshot Controller - Snapshot Controller settings for the storage profile.
- blob
CSIDriver Property Map - AzureBlob CSI Driver settings for the storage profile.
- disk
CSIDriver Property Map - AzureDisk CSI Driver settings for the storage profile.
- file
CSIDriver Property Map - AzureFile CSI Driver settings for the storage profile.
- snapshot
Controller Property Map - Snapshot Controller settings for the storage profile.
ManagedClusterStorageProfileBlobCSIDriver, ManagedClusterStorageProfileBlobCSIDriverArgs
- Enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- Enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled Boolean
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled boolean
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled Boolean
- Whether to enable AzureBlob CSI Driver. The default value is false.
ManagedClusterStorageProfileBlobCSIDriverResponse, ManagedClusterStorageProfileBlobCSIDriverResponseArgs
- Enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- Enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled Boolean
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled boolean
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled Boolean
- Whether to enable AzureBlob CSI Driver. The default value is false.
ManagedClusterStorageProfileDiskCSIDriver, ManagedClusterStorageProfileDiskCSIDriverArgs
- Enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- Enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled boolean
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureDisk CSI Driver. The default value is true.
ManagedClusterStorageProfileDiskCSIDriverResponse, ManagedClusterStorageProfileDiskCSIDriverResponseArgs
- Enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- Enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled boolean
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureDisk CSI Driver. The default value is true.
ManagedClusterStorageProfileFileCSIDriver, ManagedClusterStorageProfileFileCSIDriverArgs
- Enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- Enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled boolean
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureFile CSI Driver. The default value is true.
ManagedClusterStorageProfileFileCSIDriverResponse, ManagedClusterStorageProfileFileCSIDriverResponseArgs
- Enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- Enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled boolean
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureFile CSI Driver. The default value is true.
ManagedClusterStorageProfileResponse, ManagedClusterStorageProfileResponseArgs
- Blob
CSIDriver Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile Blob CSIDriver Response - AzureBlob CSI Driver settings for the storage profile.
- Disk
CSIDriver Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile Disk CSIDriver Response - AzureDisk CSI Driver settings for the storage profile.
- File
CSIDriver Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile File CSIDriver Response - AzureFile CSI Driver settings for the storage profile.
- Snapshot
Controller Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile Snapshot Controller Response - Snapshot Controller settings for the storage profile.
- Blob
CSIDriver ManagedCluster Storage Profile Blob CSIDriver Response - AzureBlob CSI Driver settings for the storage profile.
- Disk
CSIDriver ManagedCluster Storage Profile Disk CSIDriver Response - AzureDisk CSI Driver settings for the storage profile.
- File
CSIDriver ManagedCluster Storage Profile File CSIDriver Response - AzureFile CSI Driver settings for the storage profile.
- Snapshot
Controller ManagedCluster Storage Profile Snapshot Controller Response - Snapshot Controller settings for the storage profile.
- blob
CSIDriver ManagedCluster Storage Profile Blob CSIDriver Response - AzureBlob CSI Driver settings for the storage profile.
- disk
CSIDriver ManagedCluster Storage Profile Disk CSIDriver Response - AzureDisk CSI Driver settings for the storage profile.
- file
CSIDriver ManagedCluster Storage Profile File CSIDriver Response - AzureFile CSI Driver settings for the storage profile.
- snapshot
Controller ManagedCluster Storage Profile Snapshot Controller Response - Snapshot Controller settings for the storage profile.
- blob
CSIDriver ManagedCluster Storage Profile Blob CSIDriver Response - AzureBlob CSI Driver settings for the storage profile.
- disk
CSIDriver ManagedCluster Storage Profile Disk CSIDriver Response - AzureDisk CSI Driver settings for the storage profile.
- file
CSIDriver ManagedCluster Storage Profile File CSIDriver Response - AzureFile CSI Driver settings for the storage profile.
- snapshot
Controller ManagedCluster Storage Profile Snapshot Controller Response - Snapshot Controller settings for the storage profile.
- blob_
csi_ Manageddriver Cluster Storage Profile Blob CSIDriver Response - AzureBlob CSI Driver settings for the storage profile.
- disk_
csi_ Manageddriver Cluster Storage Profile Disk CSIDriver Response - AzureDisk CSI Driver settings for the storage profile.
- file_
csi_ Manageddriver Cluster Storage Profile File CSIDriver Response - AzureFile CSI Driver settings for the storage profile.
- snapshot_
controller ManagedCluster Storage Profile Snapshot Controller Response - Snapshot Controller settings for the storage profile.
- blob
CSIDriver Property Map - AzureBlob CSI Driver settings for the storage profile.
- disk
CSIDriver Property Map - AzureDisk CSI Driver settings for the storage profile.
- file
CSIDriver Property Map - AzureFile CSI Driver settings for the storage profile.
- snapshot
Controller Property Map - Snapshot Controller settings for the storage profile.
ManagedClusterStorageProfileSnapshotController, ManagedClusterStorageProfileSnapshotControllerArgs
- Enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- Enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- enabled Boolean
- Whether to enable Snapshot Controller. The default value is true.
- enabled boolean
- Whether to enable Snapshot Controller. The default value is true.
- enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- enabled Boolean
- Whether to enable Snapshot Controller. The default value is true.
ManagedClusterStorageProfileSnapshotControllerResponse, ManagedClusterStorageProfileSnapshotControllerResponseArgs
- Enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- Enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- enabled Boolean
- Whether to enable Snapshot Controller. The default value is true.
- enabled boolean
- Whether to enable Snapshot Controller. The default value is true.
- enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- enabled Boolean
- Whether to enable Snapshot Controller. The default value is true.
ManagedClusterWindowsProfile, ManagedClusterWindowsProfileArgs
- Admin
Username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- Admin
Password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- Enable
CSIProxy bool - For more details on CSI proxy, see the CSI proxy GitHub repo.
- Gmsa
Profile Pulumi.Azure Native. Container Service. Inputs. Windows Gmsa Profile - The Windows gMSA Profile in the Managed Cluster.
- License
Type string | Pulumi.Azure Native. Container Service. License Type - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- Admin
Username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- Admin
Password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- Enable
CSIProxy bool - For more details on CSI proxy, see the CSI proxy GitHub repo.
- Gmsa
Profile WindowsGmsa Profile - The Windows gMSA Profile in the Managed Cluster.
- License
Type string | LicenseType - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin
Username String - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin
Password String - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable
CSIProxy Boolean - For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa
Profile WindowsGmsa Profile - The Windows gMSA Profile in the Managed Cluster.
- license
Type String | LicenseType - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin
Username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin
Password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable
CSIProxy boolean - For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa
Profile WindowsGmsa Profile - The Windows gMSA Profile in the Managed Cluster.
- license
Type string | LicenseType - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin_
username str - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin_
password str - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable_
csi_ boolproxy - For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa_
profile WindowsGmsa Profile - The Windows gMSA Profile in the Managed Cluster.
- license_
type str | LicenseType - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin
Username String - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin
Password String - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable
CSIProxy Boolean - For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa
Profile Property Map - The Windows gMSA Profile in the Managed Cluster.
- license
Type String | "None" | "Windows_Server" - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
ManagedClusterWindowsProfileResponse, ManagedClusterWindowsProfileResponseArgs
- Admin
Username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- Admin
Password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- Enable
CSIProxy bool - For more details on CSI proxy, see the CSI proxy GitHub repo.
- Gmsa
Profile Pulumi.Azure Native. Container Service. Inputs. Windows Gmsa Profile Response - The Windows gMSA Profile in the Managed Cluster.
- License
Type string - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- Admin
Username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- Admin
Password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- Enable
CSIProxy bool - For more details on CSI proxy, see the CSI proxy GitHub repo.
- Gmsa
Profile WindowsGmsa Profile Response - The Windows gMSA Profile in the Managed Cluster.
- License
Type string - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin
Username String - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin
Password String - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable
CSIProxy Boolean - For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa
Profile WindowsGmsa Profile Response - The Windows gMSA Profile in the Managed Cluster.
- license
Type String - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin
Username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin
Password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable
CSIProxy boolean - For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa
Profile WindowsGmsa Profile Response - The Windows gMSA Profile in the Managed Cluster.
- license
Type string - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin_
username str - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin_
password str - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable_
csi_ boolproxy - For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa_
profile WindowsGmsa Profile Response - The Windows gMSA Profile in the Managed Cluster.
- license_
type str - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin
Username String - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin
Password String - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable
CSIProxy Boolean - For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa
Profile Property Map - The Windows gMSA Profile in the Managed Cluster.
- license
Type String - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
ManagedClusterWorkloadAutoScalerProfile, ManagedClusterWorkloadAutoScalerProfileArgs
- Keda
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Workload Auto Scaler Profile Keda - KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
- Vertical
Pod Pulumi.Autoscaler Azure Native. Container Service. Inputs. Managed Cluster Workload Auto Scaler Profile Vertical Pod Autoscaler - VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.
- Keda
Managed
Cluster Workload Auto Scaler Profile Keda - KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
- Vertical
Pod ManagedAutoscaler Cluster Workload Auto Scaler Profile Vertical Pod Autoscaler - VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.
- keda
Managed
Cluster Workload Auto Scaler Profile Keda - KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
- vertical
Pod ManagedAutoscaler Cluster Workload Auto Scaler Profile Vertical Pod Autoscaler - VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.
- keda
Managed
Cluster Workload Auto Scaler Profile Keda - KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
- vertical
Pod ManagedAutoscaler Cluster Workload Auto Scaler Profile Vertical Pod Autoscaler - VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.
- keda
Managed
Cluster Workload Auto Scaler Profile Keda - KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
- vertical_
pod_ Managedautoscaler Cluster Workload Auto Scaler Profile Vertical Pod Autoscaler - VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.
- keda Property Map
- KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
- vertical
Pod Property MapAutoscaler - VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.
ManagedClusterWorkloadAutoScalerProfileKeda, ManagedClusterWorkloadAutoScalerProfileKedaArgs
- Enabled bool
- Whether to enable KEDA.
- Enabled bool
- Whether to enable KEDA.
- enabled Boolean
- Whether to enable KEDA.
- enabled boolean
- Whether to enable KEDA.
- enabled bool
- Whether to enable KEDA.
- enabled Boolean
- Whether to enable KEDA.
ManagedClusterWorkloadAutoScalerProfileKedaResponse, ManagedClusterWorkloadAutoScalerProfileKedaResponseArgs
- Enabled bool
- Whether to enable KEDA.
- Enabled bool
- Whether to enable KEDA.
- enabled Boolean
- Whether to enable KEDA.
- enabled boolean
- Whether to enable KEDA.
- enabled bool
- Whether to enable KEDA.
- enabled Boolean
- Whether to enable KEDA.
ManagedClusterWorkloadAutoScalerProfileResponse, ManagedClusterWorkloadAutoScalerProfileResponseArgs
- Keda
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Workload Auto Scaler Profile Keda Response - KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
- Vertical
Pod Pulumi.Autoscaler Azure Native. Container Service. Inputs. Managed Cluster Workload Auto Scaler Profile Vertical Pod Autoscaler Response - VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.
- Keda
Managed
Cluster Workload Auto Scaler Profile Keda Response - KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
- Vertical
Pod ManagedAutoscaler Cluster Workload Auto Scaler Profile Vertical Pod Autoscaler Response - VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.
- keda
Managed
Cluster Workload Auto Scaler Profile Keda Response - KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
- vertical
Pod ManagedAutoscaler Cluster Workload Auto Scaler Profile Vertical Pod Autoscaler Response - VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.
- keda
Managed
Cluster Workload Auto Scaler Profile Keda Response - KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
- vertical
Pod ManagedAutoscaler Cluster Workload Auto Scaler Profile Vertical Pod Autoscaler Response - VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.
- keda
Managed
Cluster Workload Auto Scaler Profile Keda Response - KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
- vertical_
pod_ Managedautoscaler Cluster Workload Auto Scaler Profile Vertical Pod Autoscaler Response - VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.
- keda Property Map
- KEDA (Kubernetes Event-driven Autoscaling) settings for the workload auto-scaler profile.
- vertical
Pod Property MapAutoscaler - VPA (Vertical Pod Autoscaler) settings for the workload auto-scaler profile.
ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscaler, ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerArgs
- Enabled bool
- Whether to enable VPA. Default value is false.
- Enabled bool
- Whether to enable VPA. Default value is false.
- enabled Boolean
- Whether to enable VPA. Default value is false.
- enabled boolean
- Whether to enable VPA. Default value is false.
- enabled bool
- Whether to enable VPA. Default value is false.
- enabled Boolean
- Whether to enable VPA. Default value is false.
ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerResponse, ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerResponseArgs
- Enabled bool
- Whether to enable VPA. Default value is false.
- Enabled bool
- Whether to enable VPA. Default value is false.
- enabled Boolean
- Whether to enable VPA. Default value is false.
- enabled boolean
- Whether to enable VPA. Default value is false.
- enabled bool
- Whether to enable VPA. Default value is false.
- enabled Boolean
- Whether to enable VPA. Default value is false.
NetworkDataplane, NetworkDataplaneArgs
- Azure
- azureUse Azure network dataplane.
- Cilium
- ciliumUse Cilium network dataplane. See Azure CNI Powered by Cilium for more information.
- Network
Dataplane Azure - azureUse Azure network dataplane.
- Network
Dataplane Cilium - ciliumUse Cilium network dataplane. See Azure CNI Powered by Cilium for more information.
- Azure
- azureUse Azure network dataplane.
- Cilium
- ciliumUse Cilium network dataplane. See Azure CNI Powered by Cilium for more information.
- Azure
- azureUse Azure network dataplane.
- Cilium
- ciliumUse Cilium network dataplane. See Azure CNI Powered by Cilium for more information.
- AZURE
- azureUse Azure network dataplane.
- CILIUM
- ciliumUse Cilium network dataplane. See Azure CNI Powered by Cilium for more information.
- "azure"
- azureUse Azure network dataplane.
- "cilium"
- ciliumUse Cilium network dataplane. See Azure CNI Powered by Cilium for more information.
NetworkMode, NetworkModeArgs
- Transparent
- transparentNo bridge is created. Intra-VM Pod to Pod communication is through IP routes created by Azure CNI. See Transparent Mode for more information.
- Bridge
- bridgeThis is no longer supported
- Network
Mode Transparent - transparentNo bridge is created. Intra-VM Pod to Pod communication is through IP routes created by Azure CNI. See Transparent Mode for more information.
- Network
Mode Bridge - bridgeThis is no longer supported
- Transparent
- transparentNo bridge is created. Intra-VM Pod to Pod communication is through IP routes created by Azure CNI. See Transparent Mode for more information.
- Bridge
- bridgeThis is no longer supported
- Transparent
- transparentNo bridge is created. Intra-VM Pod to Pod communication is through IP routes created by Azure CNI. See Transparent Mode for more information.
- Bridge
- bridgeThis is no longer supported
- TRANSPARENT
- transparentNo bridge is created. Intra-VM Pod to Pod communication is through IP routes created by Azure CNI. See Transparent Mode for more information.
- BRIDGE
- bridgeThis is no longer supported
- "transparent"
- transparentNo bridge is created. Intra-VM Pod to Pod communication is through IP routes created by Azure CNI. See Transparent Mode for more information.
- "bridge"
- bridgeThis is no longer supported
NetworkPlugin, NetworkPluginArgs
- Azure
- azureUse the Azure CNI network plugin. See Azure CNI (advanced) networking for more information.
- Kubenet
- kubenetUse the Kubenet network plugin. See Kubenet (basic) networking for more information.
- None
- noneNo CNI plugin is pre-installed. See BYO CNI for more information.
- Network
Plugin Azure - azureUse the Azure CNI network plugin. See Azure CNI (advanced) networking for more information.
- Network
Plugin Kubenet - kubenetUse the Kubenet network plugin. See Kubenet (basic) networking for more information.
- Network
Plugin None - noneNo CNI plugin is pre-installed. See BYO CNI for more information.
- Azure
- azureUse the Azure CNI network plugin. See Azure CNI (advanced) networking for more information.
- Kubenet
- kubenetUse the Kubenet network plugin. See Kubenet (basic) networking for more information.
- None
- noneNo CNI plugin is pre-installed. See BYO CNI for more information.
- Azure
- azureUse the Azure CNI network plugin. See Azure CNI (advanced) networking for more information.
- Kubenet
- kubenetUse the Kubenet network plugin. See Kubenet (basic) networking for more information.
- None
- noneNo CNI plugin is pre-installed. See BYO CNI for more information.
- AZURE
- azureUse the Azure CNI network plugin. See Azure CNI (advanced) networking for more information.
- KUBENET
- kubenetUse the Kubenet network plugin. See Kubenet (basic) networking for more information.
- NONE
- noneNo CNI plugin is pre-installed. See BYO CNI for more information.
- "azure"
- azureUse the Azure CNI network plugin. See Azure CNI (advanced) networking for more information.
- "kubenet"
- kubenetUse the Kubenet network plugin. See Kubenet (basic) networking for more information.
- "none"
- noneNo CNI plugin is pre-installed. See BYO CNI for more information.
NetworkPluginMode, NetworkPluginModeArgs
- Overlay
- overlayUsed with networkPlugin=azure, pods are given IPs from the PodCIDR address space but use Azure Routing Domains rather than Kubenet's method of route tables. For more information visit https://aka.ms/aks/azure-cni-overlay.
- Network
Plugin Mode Overlay - overlayUsed with networkPlugin=azure, pods are given IPs from the PodCIDR address space but use Azure Routing Domains rather than Kubenet's method of route tables. For more information visit https://aka.ms/aks/azure-cni-overlay.
- Overlay
- overlayUsed with networkPlugin=azure, pods are given IPs from the PodCIDR address space but use Azure Routing Domains rather than Kubenet's method of route tables. For more information visit https://aka.ms/aks/azure-cni-overlay.
- Overlay
- overlayUsed with networkPlugin=azure, pods are given IPs from the PodCIDR address space but use Azure Routing Domains rather than Kubenet's method of route tables. For more information visit https://aka.ms/aks/azure-cni-overlay.
- OVERLAY
- overlayUsed with networkPlugin=azure, pods are given IPs from the PodCIDR address space but use Azure Routing Domains rather than Kubenet's method of route tables. For more information visit https://aka.ms/aks/azure-cni-overlay.
- "overlay"
- overlayUsed with networkPlugin=azure, pods are given IPs from the PodCIDR address space but use Azure Routing Domains rather than Kubenet's method of route tables. For more information visit https://aka.ms/aks/azure-cni-overlay.
NetworkPolicy, NetworkPolicyArgs
- None
- noneNetwork policies will not be enforced. This is the default value when NetworkPolicy is not specified.
- Calico
- calicoUse Calico network policies. See differences between Azure and Calico policies for more information.
- Azure
- azureUse Azure network policies. See differences between Azure and Calico policies for more information.
- Cilium
- ciliumUse Cilium to enforce network policies. This requires networkDataplane to be 'cilium'.
- Network
Policy None - noneNetwork policies will not be enforced. This is the default value when NetworkPolicy is not specified.
- Network
Policy Calico - calicoUse Calico network policies. See differences between Azure and Calico policies for more information.
- Network
Policy Azure - azureUse Azure network policies. See differences between Azure and Calico policies for more information.
- Network
Policy Cilium - ciliumUse Cilium to enforce network policies. This requires networkDataplane to be 'cilium'.
- None
- noneNetwork policies will not be enforced. This is the default value when NetworkPolicy is not specified.
- Calico
- calicoUse Calico network policies. See differences between Azure and Calico policies for more information.
- Azure
- azureUse Azure network policies. See differences between Azure and Calico policies for more information.
- Cilium
- ciliumUse Cilium to enforce network policies. This requires networkDataplane to be 'cilium'.
- None
- noneNetwork policies will not be enforced. This is the default value when NetworkPolicy is not specified.
- Calico
- calicoUse Calico network policies. See differences between Azure and Calico policies for more information.
- Azure
- azureUse Azure network policies. See differences between Azure and Calico policies for more information.
- Cilium
- ciliumUse Cilium to enforce network policies. This requires networkDataplane to be 'cilium'.
- NONE
- noneNetwork policies will not be enforced. This is the default value when NetworkPolicy is not specified.
- CALICO
- calicoUse Calico network policies. See differences between Azure and Calico policies for more information.
- AZURE
- azureUse Azure network policies. See differences between Azure and Calico policies for more information.
- CILIUM
- ciliumUse Cilium to enforce network policies. This requires networkDataplane to be 'cilium'.
- "none"
- noneNetwork policies will not be enforced. This is the default value when NetworkPolicy is not specified.
- "calico"
- calicoUse Calico network policies. See differences between Azure and Calico policies for more information.
- "azure"
- azureUse Azure network policies. See differences between Azure and Calico policies for more information.
- "cilium"
- ciliumUse Cilium to enforce network policies. This requires networkDataplane to be 'cilium'.
NodeOSUpgradeChannel, NodeOSUpgradeChannelArgs
- None
- NoneNo attempt to update your machines OS will be made either by OS or by rolling VHDs. This means you are responsible for your security updates
- Unmanaged
- UnmanagedOS updates will be applied automatically through the OS built-in patching infrastructure. Newly scaled in machines will be unpatched initially and will be patched at some point by the OS's infrastructure. Behavior of this option depends on the OS in question. Ubuntu and Mariner apply security patches through unattended upgrade roughly once a day around 06:00 UTC. Windows does not apply security patches automatically and so for them this option is equivalent to None till further notice
- Node
Image - NodeImageAKS will update the nodes with a newly patched VHD containing security fixes and bugfixes on a weekly cadence. With the VHD update machines will be rolling reimaged to that VHD following maintenance windows and surge settings. No extra VHD cost is incurred when choosing this option as AKS hosts the images.
- Security
Patch - SecurityPatchAKS downloads and updates the nodes with tested security updates. These updates honor the maintenance window settings and produce a new VHD that is used on new nodes. On some occasions it's not possible to apply the updates in place, in such cases the existing nodes will also be re-imaged to the newly produced VHD in order to apply the changes. This option incurs an extra cost of hosting the new Security Patch VHDs in your resource group for just in time consumption.
- Node
OSUpgrade Channel None - NoneNo attempt to update your machines OS will be made either by OS or by rolling VHDs. This means you are responsible for your security updates
- Node
OSUpgrade Channel Unmanaged - UnmanagedOS updates will be applied automatically through the OS built-in patching infrastructure. Newly scaled in machines will be unpatched initially and will be patched at some point by the OS's infrastructure. Behavior of this option depends on the OS in question. Ubuntu and Mariner apply security patches through unattended upgrade roughly once a day around 06:00 UTC. Windows does not apply security patches automatically and so for them this option is equivalent to None till further notice
- Node
OSUpgrade Channel Node Image - NodeImageAKS will update the nodes with a newly patched VHD containing security fixes and bugfixes on a weekly cadence. With the VHD update machines will be rolling reimaged to that VHD following maintenance windows and surge settings. No extra VHD cost is incurred when choosing this option as AKS hosts the images.
- Node
OSUpgrade Channel Security Patch - SecurityPatchAKS downloads and updates the nodes with tested security updates. These updates honor the maintenance window settings and produce a new VHD that is used on new nodes. On some occasions it's not possible to apply the updates in place, in such cases the existing nodes will also be re-imaged to the newly produced VHD in order to apply the changes. This option incurs an extra cost of hosting the new Security Patch VHDs in your resource group for just in time consumption.
- None
- NoneNo attempt to update your machines OS will be made either by OS or by rolling VHDs. This means you are responsible for your security updates
- Unmanaged
- UnmanagedOS updates will be applied automatically through the OS built-in patching infrastructure. Newly scaled in machines will be unpatched initially and will be patched at some point by the OS's infrastructure. Behavior of this option depends on the OS in question. Ubuntu and Mariner apply security patches through unattended upgrade roughly once a day around 06:00 UTC. Windows does not apply security patches automatically and so for them this option is equivalent to None till further notice
- Node
Image - NodeImageAKS will update the nodes with a newly patched VHD containing security fixes and bugfixes on a weekly cadence. With the VHD update machines will be rolling reimaged to that VHD following maintenance windows and surge settings. No extra VHD cost is incurred when choosing this option as AKS hosts the images.
- Security
Patch - SecurityPatchAKS downloads and updates the nodes with tested security updates. These updates honor the maintenance window settings and produce a new VHD that is used on new nodes. On some occasions it's not possible to apply the updates in place, in such cases the existing nodes will also be re-imaged to the newly produced VHD in order to apply the changes. This option incurs an extra cost of hosting the new Security Patch VHDs in your resource group for just in time consumption.
- None
- NoneNo attempt to update your machines OS will be made either by OS or by rolling VHDs. This means you are responsible for your security updates
- Unmanaged
- UnmanagedOS updates will be applied automatically through the OS built-in patching infrastructure. Newly scaled in machines will be unpatched initially and will be patched at some point by the OS's infrastructure. Behavior of this option depends on the OS in question. Ubuntu and Mariner apply security patches through unattended upgrade roughly once a day around 06:00 UTC. Windows does not apply security patches automatically and so for them this option is equivalent to None till further notice
- Node
Image - NodeImageAKS will update the nodes with a newly patched VHD containing security fixes and bugfixes on a weekly cadence. With the VHD update machines will be rolling reimaged to that VHD following maintenance windows and surge settings. No extra VHD cost is incurred when choosing this option as AKS hosts the images.
- Security
Patch - SecurityPatchAKS downloads and updates the nodes with tested security updates. These updates honor the maintenance window settings and produce a new VHD that is used on new nodes. On some occasions it's not possible to apply the updates in place, in such cases the existing nodes will also be re-imaged to the newly produced VHD in order to apply the changes. This option incurs an extra cost of hosting the new Security Patch VHDs in your resource group for just in time consumption.
- NONE
- NoneNo attempt to update your machines OS will be made either by OS or by rolling VHDs. This means you are responsible for your security updates
- UNMANAGED
- UnmanagedOS updates will be applied automatically through the OS built-in patching infrastructure. Newly scaled in machines will be unpatched initially and will be patched at some point by the OS's infrastructure. Behavior of this option depends on the OS in question. Ubuntu and Mariner apply security patches through unattended upgrade roughly once a day around 06:00 UTC. Windows does not apply security patches automatically and so for them this option is equivalent to None till further notice
- NODE_IMAGE
- NodeImageAKS will update the nodes with a newly patched VHD containing security fixes and bugfixes on a weekly cadence. With the VHD update machines will be rolling reimaged to that VHD following maintenance windows and surge settings. No extra VHD cost is incurred when choosing this option as AKS hosts the images.
- SECURITY_PATCH
- SecurityPatchAKS downloads and updates the nodes with tested security updates. These updates honor the maintenance window settings and produce a new VHD that is used on new nodes. On some occasions it's not possible to apply the updates in place, in such cases the existing nodes will also be re-imaged to the newly produced VHD in order to apply the changes. This option incurs an extra cost of hosting the new Security Patch VHDs in your resource group for just in time consumption.
- "None"
- NoneNo attempt to update your machines OS will be made either by OS or by rolling VHDs. This means you are responsible for your security updates
- "Unmanaged"
- UnmanagedOS updates will be applied automatically through the OS built-in patching infrastructure. Newly scaled in machines will be unpatched initially and will be patched at some point by the OS's infrastructure. Behavior of this option depends on the OS in question. Ubuntu and Mariner apply security patches through unattended upgrade roughly once a day around 06:00 UTC. Windows does not apply security patches automatically and so for them this option is equivalent to None till further notice
- "Node
Image" - NodeImageAKS will update the nodes with a newly patched VHD containing security fixes and bugfixes on a weekly cadence. With the VHD update machines will be rolling reimaged to that VHD following maintenance windows and surge settings. No extra VHD cost is incurred when choosing this option as AKS hosts the images.
- "Security
Patch" - SecurityPatchAKS downloads and updates the nodes with tested security updates. These updates honor the maintenance window settings and produce a new VHD that is used on new nodes. On some occasions it's not possible to apply the updates in place, in such cases the existing nodes will also be re-imaged to the newly produced VHD in order to apply the changes. This option incurs an extra cost of hosting the new Security Patch VHDs in your resource group for just in time consumption.
OSDiskType, OSDiskTypeArgs
- Managed
- ManagedAzure replicates the operating system disk for a virtual machine to Azure storage to avoid data loss should the VM need to be relocated to another host. Since containers aren't designed to have local state persisted, this behavior offers limited value while providing some drawbacks, including slower node provisioning and higher read/write latency.
- Ephemeral
- EphemeralEphemeral OS disks are stored only on the host machine, just like a temporary disk. This provides lower read/write latency, along with faster node scaling and cluster upgrades.
- OSDisk
Type Managed - ManagedAzure replicates the operating system disk for a virtual machine to Azure storage to avoid data loss should the VM need to be relocated to another host. Since containers aren't designed to have local state persisted, this behavior offers limited value while providing some drawbacks, including slower node provisioning and higher read/write latency.
- OSDisk
Type Ephemeral - EphemeralEphemeral OS disks are stored only on the host machine, just like a temporary disk. This provides lower read/write latency, along with faster node scaling and cluster upgrades.
- Managed
- ManagedAzure replicates the operating system disk for a virtual machine to Azure storage to avoid data loss should the VM need to be relocated to another host. Since containers aren't designed to have local state persisted, this behavior offers limited value while providing some drawbacks, including slower node provisioning and higher read/write latency.
- Ephemeral
- EphemeralEphemeral OS disks are stored only on the host machine, just like a temporary disk. This provides lower read/write latency, along with faster node scaling and cluster upgrades.
- Managed
- ManagedAzure replicates the operating system disk for a virtual machine to Azure storage to avoid data loss should the VM need to be relocated to another host. Since containers aren't designed to have local state persisted, this behavior offers limited value while providing some drawbacks, including slower node provisioning and higher read/write latency.
- Ephemeral
- EphemeralEphemeral OS disks are stored only on the host machine, just like a temporary disk. This provides lower read/write latency, along with faster node scaling and cluster upgrades.
- MANAGED
- ManagedAzure replicates the operating system disk for a virtual machine to Azure storage to avoid data loss should the VM need to be relocated to another host. Since containers aren't designed to have local state persisted, this behavior offers limited value while providing some drawbacks, including slower node provisioning and higher read/write latency.
- EPHEMERAL
- EphemeralEphemeral OS disks are stored only on the host machine, just like a temporary disk. This provides lower read/write latency, along with faster node scaling and cluster upgrades.
- "Managed"
- ManagedAzure replicates the operating system disk for a virtual machine to Azure storage to avoid data loss should the VM need to be relocated to another host. Since containers aren't designed to have local state persisted, this behavior offers limited value while providing some drawbacks, including slower node provisioning and higher read/write latency.
- "Ephemeral"
- EphemeralEphemeral OS disks are stored only on the host machine, just like a temporary disk. This provides lower read/write latency, along with faster node scaling and cluster upgrades.
OSSKU, OSSKUArgs
- Ubuntu
- UbuntuUse Ubuntu as the OS for node images.
- Azure
Linux - AzureLinuxUse AzureLinux as the OS for node images. Azure Linux is a container-optimized Linux distro built by Microsoft, visit https://aka.ms/azurelinux for more information.
- CBLMariner
- CBLMarinerDeprecated OSSKU. Microsoft recommends that new deployments choose 'AzureLinux' instead.
- Windows2019
- Windows2019Use Windows2019 as the OS for node images. Unsupported for system node pools. Windows2019 only supports Windows2019 containers; it cannot run Windows2022 containers and vice versa.
- Windows2022
- Windows2022Use Windows2022 as the OS for node images. Unsupported for system node pools. Windows2022 only supports Windows2022 containers; it cannot run Windows2019 containers and vice versa.
- OSSKUUbuntu
- UbuntuUse Ubuntu as the OS for node images.
- OSSKUAzure
Linux - AzureLinuxUse AzureLinux as the OS for node images. Azure Linux is a container-optimized Linux distro built by Microsoft, visit https://aka.ms/azurelinux for more information.
- OSSKUCBLMariner
- CBLMarinerDeprecated OSSKU. Microsoft recommends that new deployments choose 'AzureLinux' instead.
- OSSKUWindows2019
- Windows2019Use Windows2019 as the OS for node images. Unsupported for system node pools. Windows2019 only supports Windows2019 containers; it cannot run Windows2022 containers and vice versa.
- OSSKUWindows2022
- Windows2022Use Windows2022 as the OS for node images. Unsupported for system node pools. Windows2022 only supports Windows2022 containers; it cannot run Windows2019 containers and vice versa.
- Ubuntu
- UbuntuUse Ubuntu as the OS for node images.
- Azure
Linux - AzureLinuxUse AzureLinux as the OS for node images. Azure Linux is a container-optimized Linux distro built by Microsoft, visit https://aka.ms/azurelinux for more information.
- CBLMariner
- CBLMarinerDeprecated OSSKU. Microsoft recommends that new deployments choose 'AzureLinux' instead.
- Windows2019
- Windows2019Use Windows2019 as the OS for node images. Unsupported for system node pools. Windows2019 only supports Windows2019 containers; it cannot run Windows2022 containers and vice versa.
- Windows2022
- Windows2022Use Windows2022 as the OS for node images. Unsupported for system node pools. Windows2022 only supports Windows2022 containers; it cannot run Windows2019 containers and vice versa.
- Ubuntu
- UbuntuUse Ubuntu as the OS for node images.
- Azure
Linux - AzureLinuxUse AzureLinux as the OS for node images. Azure Linux is a container-optimized Linux distro built by Microsoft, visit https://aka.ms/azurelinux for more information.
- CBLMariner
- CBLMarinerDeprecated OSSKU. Microsoft recommends that new deployments choose 'AzureLinux' instead.
- Windows2019
- Windows2019Use Windows2019 as the OS for node images. Unsupported for system node pools. Windows2019 only supports Windows2019 containers; it cannot run Windows2022 containers and vice versa.
- Windows2022
- Windows2022Use Windows2022 as the OS for node images. Unsupported for system node pools. Windows2022 only supports Windows2022 containers; it cannot run Windows2019 containers and vice versa.
- UBUNTU
- UbuntuUse Ubuntu as the OS for node images.
- AZURE_LINUX
- AzureLinuxUse AzureLinux as the OS for node images. Azure Linux is a container-optimized Linux distro built by Microsoft, visit https://aka.ms/azurelinux for more information.
- CBL_MARINER
- CBLMarinerDeprecated OSSKU. Microsoft recommends that new deployments choose 'AzureLinux' instead.
- WINDOWS2019
- Windows2019Use Windows2019 as the OS for node images. Unsupported for system node pools. Windows2019 only supports Windows2019 containers; it cannot run Windows2022 containers and vice versa.
- WINDOWS2022
- Windows2022Use Windows2022 as the OS for node images. Unsupported for system node pools. Windows2022 only supports Windows2022 containers; it cannot run Windows2019 containers and vice versa.
- "Ubuntu"
- UbuntuUse Ubuntu as the OS for node images.
- "Azure
Linux" - AzureLinuxUse AzureLinux as the OS for node images. Azure Linux is a container-optimized Linux distro built by Microsoft, visit https://aka.ms/azurelinux for more information.
- "CBLMariner"
- CBLMarinerDeprecated OSSKU. Microsoft recommends that new deployments choose 'AzureLinux' instead.
- "Windows2019"
- Windows2019Use Windows2019 as the OS for node images. Unsupported for system node pools. Windows2019 only supports Windows2019 containers; it cannot run Windows2022 containers and vice versa.
- "Windows2022"
- Windows2022Use Windows2022 as the OS for node images. Unsupported for system node pools. Windows2022 only supports Windows2022 containers; it cannot run Windows2019 containers and vice versa.
OSType, OSTypeArgs
- Linux
- LinuxUse Linux.
- Windows
- WindowsUse Windows.
- OSType
Linux - LinuxUse Linux.
- OSType
Windows - WindowsUse Windows.
- Linux
- LinuxUse Linux.
- Windows
- WindowsUse Windows.
- Linux
- LinuxUse Linux.
- Windows
- WindowsUse Windows.
- LINUX
- LinuxUse Linux.
- WINDOWS
- WindowsUse Windows.
- "Linux"
- LinuxUse Linux.
- "Windows"
- WindowsUse Windows.
OutboundType, OutboundTypeArgs
- Load
Balancer - loadBalancerThe load balancer is used for egress through an AKS assigned public IP. This supports Kubernetes services of type 'loadBalancer'. For more information see outbound type loadbalancer.
- User
Defined Routing - userDefinedRoutingEgress paths must be defined by the user. This is an advanced scenario and requires proper network configuration. For more information see outbound type userDefinedRouting.
- Managed
NATGateway - managedNATGatewayThe AKS-managed NAT gateway is used for egress.
- User
Assigned NATGateway - userAssignedNATGatewayThe user-assigned NAT gateway associated to the cluster subnet is used for egress. This is an advanced scenario and requires proper network configuration.
- Outbound
Type Load Balancer - loadBalancerThe load balancer is used for egress through an AKS assigned public IP. This supports Kubernetes services of type 'loadBalancer'. For more information see outbound type loadbalancer.
- Outbound
Type User Defined Routing - userDefinedRoutingEgress paths must be defined by the user. This is an advanced scenario and requires proper network configuration. For more information see outbound type userDefinedRouting.
- Outbound
Type Managed NATGateway - managedNATGatewayThe AKS-managed NAT gateway is used for egress.
- Outbound
Type User Assigned NATGateway - userAssignedNATGatewayThe user-assigned NAT gateway associated to the cluster subnet is used for egress. This is an advanced scenario and requires proper network configuration.
- Load
Balancer - loadBalancerThe load balancer is used for egress through an AKS assigned public IP. This supports Kubernetes services of type 'loadBalancer'. For more information see outbound type loadbalancer.
- User
Defined Routing - userDefinedRoutingEgress paths must be defined by the user. This is an advanced scenario and requires proper network configuration. For more information see outbound type userDefinedRouting.
- Managed
NATGateway - managedNATGatewayThe AKS-managed NAT gateway is used for egress.
- User
Assigned NATGateway - userAssignedNATGatewayThe user-assigned NAT gateway associated to the cluster subnet is used for egress. This is an advanced scenario and requires proper network configuration.
- Load
Balancer - loadBalancerThe load balancer is used for egress through an AKS assigned public IP. This supports Kubernetes services of type 'loadBalancer'. For more information see outbound type loadbalancer.
- User
Defined Routing - userDefinedRoutingEgress paths must be defined by the user. This is an advanced scenario and requires proper network configuration. For more information see outbound type userDefinedRouting.
- Managed
NATGateway - managedNATGatewayThe AKS-managed NAT gateway is used for egress.
- User
Assigned NATGateway - userAssignedNATGatewayThe user-assigned NAT gateway associated to the cluster subnet is used for egress. This is an advanced scenario and requires proper network configuration.
- LOAD_BALANCER
- loadBalancerThe load balancer is used for egress through an AKS assigned public IP. This supports Kubernetes services of type 'loadBalancer'. For more information see outbound type loadbalancer.
- USER_DEFINED_ROUTING
- userDefinedRoutingEgress paths must be defined by the user. This is an advanced scenario and requires proper network configuration. For more information see outbound type userDefinedRouting.
- MANAGED_NAT_GATEWAY
- managedNATGatewayThe AKS-managed NAT gateway is used for egress.
- USER_ASSIGNED_NAT_GATEWAY
- userAssignedNATGatewayThe user-assigned NAT gateway associated to the cluster subnet is used for egress. This is an advanced scenario and requires proper network configuration.
- "load
Balancer" - loadBalancerThe load balancer is used for egress through an AKS assigned public IP. This supports Kubernetes services of type 'loadBalancer'. For more information see outbound type loadbalancer.
- "user
Defined Routing" - userDefinedRoutingEgress paths must be defined by the user. This is an advanced scenario and requires proper network configuration. For more information see outbound type userDefinedRouting.
- "managed
NATGateway" - managedNATGatewayThe AKS-managed NAT gateway is used for egress.
- "user
Assigned NATGateway" - userAssignedNATGatewayThe user-assigned NAT gateway associated to the cluster subnet is used for egress. This is an advanced scenario and requires proper network configuration.
PortRange, PortRangeArgs
- Port
End int - The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
- Port
Start int - The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
- Protocol
string | Pulumi.
Azure Native. Container Service. Protocol - The network protocol of the port.
- Port
End int - The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
- Port
Start int - The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
- Protocol string | Protocol
- The network protocol of the port.
- port
End Integer - The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
- port
Start Integer - The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
- protocol String | Protocol
- The network protocol of the port.
- port
End number - The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
- port
Start number - The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
- protocol string | Protocol
- The network protocol of the port.
- port_
end int - The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
- port_
start int - The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
- protocol str | Protocol
- The network protocol of the port.
- port
End Number - The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
- port
Start Number - The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
- protocol String | "TCP" | "UDP"
- The network protocol of the port.
PortRangeResponse, PortRangeResponseArgs
- Port
End int - The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
- Port
Start int - The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
- Protocol string
- The network protocol of the port.
- Port
End int - The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
- Port
Start int - The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
- Protocol string
- The network protocol of the port.
- port
End Integer - The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
- port
Start Integer - The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
- protocol String
- The network protocol of the port.
- port
End number - The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
- port
Start number - The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
- protocol string
- The network protocol of the port.
- port_
end int - The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
- port_
start int - The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
- protocol str
- The network protocol of the port.
- port
End Number - The maximum port that is included in the range. It should be ranged from 1 to 65535, and be greater than or equal to portStart.
- port
Start Number - The minimum port that is included in the range. It should be ranged from 1 to 65535, and be less than or equal to portEnd.
- protocol String
- The network protocol of the port.
PowerState, PowerStateArgs
- Code
string | Pulumi.
Azure Native. Container Service. Code - Tells whether the cluster is Running or Stopped
- code String | "Running" | "Stopped"
- Tells whether the cluster is Running or Stopped
PowerStateResponse, PowerStateResponseArgs
- Code string
- Tells whether the cluster is Running or Stopped
- Code string
- Tells whether the cluster is Running or Stopped
- code String
- Tells whether the cluster is Running or Stopped
- code string
- Tells whether the cluster is Running or Stopped
- code str
- Tells whether the cluster is Running or Stopped
- code String
- Tells whether the cluster is Running or Stopped
PrivateLinkResource, PrivateLinkResourceArgs
- Group
Id string - The group ID of the resource.
- Id string
- The ID of the private link resource.
- Name string
- The name of the private link resource.
- Required
Members List<string> - The RequiredMembers of the resource
- Type string
- The resource type.
- Group
Id string - The group ID of the resource.
- Id string
- The ID of the private link resource.
- Name string
- The name of the private link resource.
- Required
Members []string - The RequiredMembers of the resource
- Type string
- The resource type.
- group
Id String - The group ID of the resource.
- id String
- The ID of the private link resource.
- name String
- The name of the private link resource.
- required
Members List<String> - The RequiredMembers of the resource
- type String
- The resource type.
- group
Id string - The group ID of the resource.
- id string
- The ID of the private link resource.
- name string
- The name of the private link resource.
- required
Members string[] - The RequiredMembers of the resource
- type string
- The resource type.
- group_
id str - The group ID of the resource.
- id str
- The ID of the private link resource.
- name str
- The name of the private link resource.
- required_
members Sequence[str] - The RequiredMembers of the resource
- type str
- The resource type.
- group
Id String - The group ID of the resource.
- id String
- The ID of the private link resource.
- name String
- The name of the private link resource.
- required
Members List<String> - The RequiredMembers of the resource
- type String
- The resource type.
PrivateLinkResourceResponse, PrivateLinkResourceResponseArgs
- Private
Link stringService ID - The private link service ID of the resource, this field is exposed only to NRP internally.
- Group
Id string - The group ID of the resource.
- Id string
- The ID of the private link resource.
- Name string
- The name of the private link resource.
- Required
Members List<string> - The RequiredMembers of the resource
- Type string
- The resource type.
- Private
Link stringService ID - The private link service ID of the resource, this field is exposed only to NRP internally.
- Group
Id string - The group ID of the resource.
- Id string
- The ID of the private link resource.
- Name string
- The name of the private link resource.
- Required
Members []string - The RequiredMembers of the resource
- Type string
- The resource type.
- private
Link StringService ID - The private link service ID of the resource, this field is exposed only to NRP internally.
- group
Id String - The group ID of the resource.
- id String
- The ID of the private link resource.
- name String
- The name of the private link resource.
- required
Members List<String> - The RequiredMembers of the resource
- type String
- The resource type.
- private
Link stringService ID - The private link service ID of the resource, this field is exposed only to NRP internally.
- group
Id string - The group ID of the resource.
- id string
- The ID of the private link resource.
- name string
- The name of the private link resource.
- required
Members string[] - The RequiredMembers of the resource
- type string
- The resource type.
- private_
link_ strservice_ id - The private link service ID of the resource, this field is exposed only to NRP internally.
- group_
id str - The group ID of the resource.
- id str
- The ID of the private link resource.
- name str
- The name of the private link resource.
- required_
members Sequence[str] - The RequiredMembers of the resource
- type str
- The resource type.
- private
Link StringService ID - The private link service ID of the resource, this field is exposed only to NRP internally.
- group
Id String - The group ID of the resource.
- id String
- The ID of the private link resource.
- name String
- The name of the private link resource.
- required
Members List<String> - The RequiredMembers of the resource
- type String
- The resource type.
Protocol, ProtocolArgs
- TCP
- TCPTCP protocol.
- UDP
- UDPUDP protocol.
- Protocol
TCP - TCPTCP protocol.
- Protocol
UDP - UDPUDP protocol.
- TCP
- TCPTCP protocol.
- UDP
- UDPUDP protocol.
- TCP
- TCPTCP protocol.
- UDP
- UDPUDP protocol.
- TCP
- TCPTCP protocol.
- UDP
- UDPUDP protocol.
- "TCP"
- TCPTCP protocol.
- "UDP"
- UDPUDP protocol.
PublicNetworkAccess, PublicNetworkAccessArgs
- Enabled
- Enabled
- Disabled
- Disabled
- Public
Network Access Enabled - Enabled
- Public
Network Access Disabled - Disabled
- Enabled
- Enabled
- Disabled
- Disabled
- Enabled
- Enabled
- Disabled
- Disabled
- ENABLED
- Enabled
- DISABLED
- Disabled
- "Enabled"
- Enabled
- "Disabled"
- Disabled
ResourceIdentityType, ResourceIdentityTypeArgs
- System
Assigned - SystemAssignedUse an implicitly created system assigned managed identity to manage cluster resources. Master components in the control plane such as kube-controller-manager will use the system assigned managed identity to manipulate Azure resources.
- User
Assigned - UserAssignedUse a user-specified identity to manage cluster resources. Master components in the control plane such as kube-controller-manager will use the specified user assigned managed identity to manipulate Azure resources.
- None
- NoneDo not use a managed identity for the Managed Cluster, service principal will be used instead.
- Resource
Identity Type System Assigned - SystemAssignedUse an implicitly created system assigned managed identity to manage cluster resources. Master components in the control plane such as kube-controller-manager will use the system assigned managed identity to manipulate Azure resources.
- Resource
Identity Type User Assigned - UserAssignedUse a user-specified identity to manage cluster resources. Master components in the control plane such as kube-controller-manager will use the specified user assigned managed identity to manipulate Azure resources.
- Resource
Identity Type None - NoneDo not use a managed identity for the Managed Cluster, service principal will be used instead.
- System
Assigned - SystemAssignedUse an implicitly created system assigned managed identity to manage cluster resources. Master components in the control plane such as kube-controller-manager will use the system assigned managed identity to manipulate Azure resources.
- User
Assigned - UserAssignedUse a user-specified identity to manage cluster resources. Master components in the control plane such as kube-controller-manager will use the specified user assigned managed identity to manipulate Azure resources.
- None
- NoneDo not use a managed identity for the Managed Cluster, service principal will be used instead.
- System
Assigned - SystemAssignedUse an implicitly created system assigned managed identity to manage cluster resources. Master components in the control plane such as kube-controller-manager will use the system assigned managed identity to manipulate Azure resources.
- User
Assigned - UserAssignedUse a user-specified identity to manage cluster resources. Master components in the control plane such as kube-controller-manager will use the specified user assigned managed identity to manipulate Azure resources.
- None
- NoneDo not use a managed identity for the Managed Cluster, service principal will be used instead.
- SYSTEM_ASSIGNED
- SystemAssignedUse an implicitly created system assigned managed identity to manage cluster resources. Master components in the control plane such as kube-controller-manager will use the system assigned managed identity to manipulate Azure resources.
- USER_ASSIGNED
- UserAssignedUse a user-specified identity to manage cluster resources. Master components in the control plane such as kube-controller-manager will use the specified user assigned managed identity to manipulate Azure resources.
- NONE
- NoneDo not use a managed identity for the Managed Cluster, service principal will be used instead.
- "System
Assigned" - SystemAssignedUse an implicitly created system assigned managed identity to manage cluster resources. Master components in the control plane such as kube-controller-manager will use the system assigned managed identity to manipulate Azure resources.
- "User
Assigned" - UserAssignedUse a user-specified identity to manage cluster resources. Master components in the control plane such as kube-controller-manager will use the specified user assigned managed identity to manipulate Azure resources.
- "None"
- NoneDo not use a managed identity for the Managed Cluster, service principal will be used instead.
ResourceReference, ResourceReferenceArgs
- Id string
- The fully qualified Azure resource id.
- Id string
- The fully qualified Azure resource id.
- id String
- The fully qualified Azure resource id.
- id string
- The fully qualified Azure resource id.
- id str
- The fully qualified Azure resource id.
- id String
- The fully qualified Azure resource id.
ResourceReferenceResponse, ResourceReferenceResponseArgs
- Id string
- The fully qualified Azure resource id.
- Id string
- The fully qualified Azure resource id.
- id String
- The fully qualified Azure resource id.
- id string
- The fully qualified Azure resource id.
- id str
- The fully qualified Azure resource id.
- id String
- The fully qualified Azure resource id.
RestrictionLevel, RestrictionLevelArgs
- Unrestricted
- UnrestrictedAll RBAC permissions are allowed on the managed node resource group
- Read
Only - ReadOnlyOnly */read RBAC permissions allowed on the managed node resource group
- Restriction
Level Unrestricted - UnrestrictedAll RBAC permissions are allowed on the managed node resource group
- Restriction
Level Read Only - ReadOnlyOnly */read RBAC permissions allowed on the managed node resource group
- Unrestricted
- UnrestrictedAll RBAC permissions are allowed on the managed node resource group
- Read
Only - ReadOnlyOnly */read RBAC permissions allowed on the managed node resource group
- Unrestricted
- UnrestrictedAll RBAC permissions are allowed on the managed node resource group
- Read
Only - ReadOnlyOnly */read RBAC permissions allowed on the managed node resource group
- UNRESTRICTED
- UnrestrictedAll RBAC permissions are allowed on the managed node resource group
- READ_ONLY
- ReadOnlyOnly */read RBAC permissions allowed on the managed node resource group
- "Unrestricted"
- UnrestrictedAll RBAC permissions are allowed on the managed node resource group
- "Read
Only" - ReadOnlyOnly */read RBAC permissions allowed on the managed node resource group
ScaleDownMode, ScaleDownModeArgs
- Delete
- DeleteCreate new instances during scale up and remove instances during scale down.
- Deallocate
- DeallocateAttempt to start deallocated instances (if they exist) during scale up and deallocate instances during scale down.
- Scale
Down Mode Delete - DeleteCreate new instances during scale up and remove instances during scale down.
- Scale
Down Mode Deallocate - DeallocateAttempt to start deallocated instances (if they exist) during scale up and deallocate instances during scale down.
- Delete
- DeleteCreate new instances during scale up and remove instances during scale down.
- Deallocate
- DeallocateAttempt to start deallocated instances (if they exist) during scale up and deallocate instances during scale down.
- Delete
- DeleteCreate new instances during scale up and remove instances during scale down.
- Deallocate
- DeallocateAttempt to start deallocated instances (if they exist) during scale up and deallocate instances during scale down.
- DELETE
- DeleteCreate new instances during scale up and remove instances during scale down.
- DEALLOCATE
- DeallocateAttempt to start deallocated instances (if they exist) during scale up and deallocate instances during scale down.
- "Delete"
- DeleteCreate new instances during scale up and remove instances during scale down.
- "Deallocate"
- DeallocateAttempt to start deallocated instances (if they exist) during scale up and deallocate instances during scale down.
ScaleSetEvictionPolicy, ScaleSetEvictionPolicyArgs
- Delete
- DeleteNodes in the underlying Scale Set of the node pool are deleted when they're evicted.
- Deallocate
- DeallocateNodes in the underlying Scale Set of the node pool are set to the stopped-deallocated state upon eviction. Nodes in the stopped-deallocated state count against your compute quota and can cause issues with cluster scaling or upgrading.
- Scale
Set Eviction Policy Delete - DeleteNodes in the underlying Scale Set of the node pool are deleted when they're evicted.
- Scale
Set Eviction Policy Deallocate - DeallocateNodes in the underlying Scale Set of the node pool are set to the stopped-deallocated state upon eviction. Nodes in the stopped-deallocated state count against your compute quota and can cause issues with cluster scaling or upgrading.
- Delete
- DeleteNodes in the underlying Scale Set of the node pool are deleted when they're evicted.
- Deallocate
- DeallocateNodes in the underlying Scale Set of the node pool are set to the stopped-deallocated state upon eviction. Nodes in the stopped-deallocated state count against your compute quota and can cause issues with cluster scaling or upgrading.
- Delete
- DeleteNodes in the underlying Scale Set of the node pool are deleted when they're evicted.
- Deallocate
- DeallocateNodes in the underlying Scale Set of the node pool are set to the stopped-deallocated state upon eviction. Nodes in the stopped-deallocated state count against your compute quota and can cause issues with cluster scaling or upgrading.
- DELETE
- DeleteNodes in the underlying Scale Set of the node pool are deleted when they're evicted.
- DEALLOCATE
- DeallocateNodes in the underlying Scale Set of the node pool are set to the stopped-deallocated state upon eviction. Nodes in the stopped-deallocated state count against your compute quota and can cause issues with cluster scaling or upgrading.
- "Delete"
- DeleteNodes in the underlying Scale Set of the node pool are deleted when they're evicted.
- "Deallocate"
- DeallocateNodes in the underlying Scale Set of the node pool are set to the stopped-deallocated state upon eviction. Nodes in the stopped-deallocated state count against your compute quota and can cause issues with cluster scaling or upgrading.
ScaleSetPriority, ScaleSetPriorityArgs
- Spot
- SpotSpot priority VMs will be used. There is no SLA for spot nodes. See spot on AKS for more information.
- Regular
- RegularRegular VMs will be used.
- Scale
Set Priority Spot - SpotSpot priority VMs will be used. There is no SLA for spot nodes. See spot on AKS for more information.
- Scale
Set Priority Regular - RegularRegular VMs will be used.
- Spot
- SpotSpot priority VMs will be used. There is no SLA for spot nodes. See spot on AKS for more information.
- Regular
- RegularRegular VMs will be used.
- Spot
- SpotSpot priority VMs will be used. There is no SLA for spot nodes. See spot on AKS for more information.
- Regular
- RegularRegular VMs will be used.
- SPOT
- SpotSpot priority VMs will be used. There is no SLA for spot nodes. See spot on AKS for more information.
- REGULAR
- RegularRegular VMs will be used.
- "Spot"
- SpotSpot priority VMs will be used. There is no SLA for spot nodes. See spot on AKS for more information.
- "Regular"
- RegularRegular VMs will be used.
ServiceMeshMode, ServiceMeshModeArgs
- Istio
- IstioIstio deployed as an AKS addon.
- Disabled
- DisabledMesh is disabled.
- Service
Mesh Mode Istio - IstioIstio deployed as an AKS addon.
- Service
Mesh Mode Disabled - DisabledMesh is disabled.
- Istio
- IstioIstio deployed as an AKS addon.
- Disabled
- DisabledMesh is disabled.
- Istio
- IstioIstio deployed as an AKS addon.
- Disabled
- DisabledMesh is disabled.
- ISTIO
- IstioIstio deployed as an AKS addon.
- DISABLED
- DisabledMesh is disabled.
- "Istio"
- IstioIstio deployed as an AKS addon.
- "Disabled"
- DisabledMesh is disabled.
ServiceMeshProfile, ServiceMeshProfileArgs
- Mode
string | Pulumi.
Azure Native. Container Service. Service Mesh Mode - Mode of the service mesh.
- Istio
Pulumi.
Azure Native. Container Service. Inputs. Istio Service Mesh - Istio service mesh configuration.
- Mode
string | Service
Mesh Mode - Mode of the service mesh.
- Istio
Istio
Service Mesh - Istio service mesh configuration.
- mode
String | Service
Mesh Mode - Mode of the service mesh.
- istio
Istio
Service Mesh - Istio service mesh configuration.
- mode
string | Service
Mesh Mode - Mode of the service mesh.
- istio
Istio
Service Mesh - Istio service mesh configuration.
- mode
str | Service
Mesh Mode - Mode of the service mesh.
- istio
Istio
Service Mesh - Istio service mesh configuration.
- mode String | "Istio" | "Disabled"
- Mode of the service mesh.
- istio Property Map
- Istio service mesh configuration.
ServiceMeshProfileResponse, ServiceMeshProfileResponseArgs
- Mode string
- Mode of the service mesh.
- Istio
Pulumi.
Azure Native. Container Service. Inputs. Istio Service Mesh Response - Istio service mesh configuration.
- Mode string
- Mode of the service mesh.
- Istio
Istio
Service Mesh Response - Istio service mesh configuration.
- mode String
- Mode of the service mesh.
- istio
Istio
Service Mesh Response - Istio service mesh configuration.
- mode string
- Mode of the service mesh.
- istio
Istio
Service Mesh Response - Istio service mesh configuration.
- mode str
- Mode of the service mesh.
- istio
Istio
Service Mesh Response - Istio service mesh configuration.
- mode String
- Mode of the service mesh.
- istio Property Map
- Istio service mesh configuration.
SysctlConfig, SysctlConfigArgs
- Fs
Aio intMax Nr - Sysctl setting fs.aio-max-nr.
- Fs
File intMax - Sysctl setting fs.file-max.
- Fs
Inotify intMax User Watches - Sysctl setting fs.inotify.max_user_watches.
- Fs
Nr intOpen - Sysctl setting fs.nr_open.
- Kernel
Threads intMax - Sysctl setting kernel.threads-max.
- Net
Core intNetdev Max Backlog - Sysctl setting net.core.netdev_max_backlog.
- Net
Core intOptmem Max - Sysctl setting net.core.optmem_max.
- Net
Core intRmem Default - Sysctl setting net.core.rmem_default.
- Net
Core intRmem Max - Sysctl setting net.core.rmem_max.
- Net
Core intSomaxconn - Sysctl setting net.core.somaxconn.
- Net
Core intWmem Default - Sysctl setting net.core.wmem_default.
- Net
Core intWmem Max - Sysctl setting net.core.wmem_max.
- Net
Ipv4Ip stringLocal Port Range - Sysctl setting net.ipv4.ip_local_port_range.
- Net
Ipv4Neigh intDefault Gc Thresh1 - Sysctl setting net.ipv4.neigh.default.gc_thresh1.
- Net
Ipv4Neigh intDefault Gc Thresh2 - Sysctl setting net.ipv4.neigh.default.gc_thresh2.
- Net
Ipv4Neigh intDefault Gc Thresh3 - Sysctl setting net.ipv4.neigh.default.gc_thresh3.
- Net
Ipv4Tcp intFin Timeout - Sysctl setting net.ipv4.tcp_fin_timeout.
- Net
Ipv4Tcp intKeepalive Probes - Sysctl setting net.ipv4.tcp_keepalive_probes.
- Net
Ipv4Tcp intKeepalive Time - Sysctl setting net.ipv4.tcp_keepalive_time.
- Net
Ipv4Tcp intMax Syn Backlog - Sysctl setting net.ipv4.tcp_max_syn_backlog.
- Net
Ipv4Tcp intMax Tw Buckets - Sysctl setting net.ipv4.tcp_max_tw_buckets.
- Net
Ipv4Tcp boolTw Reuse - Sysctl setting net.ipv4.tcp_tw_reuse.
- Net
Ipv4Tcpkeepalive intIntvl - Sysctl setting net.ipv4.tcp_keepalive_intvl.
- Net
Netfilter intNf Conntrack Buckets - Sysctl setting net.netfilter.nf_conntrack_buckets.
- Net
Netfilter intNf Conntrack Max - Sysctl setting net.netfilter.nf_conntrack_max.
- Vm
Max intMap Count - Sysctl setting vm.max_map_count.
- Vm
Swappiness int - Sysctl setting vm.swappiness.
- Vm
Vfs intCache Pressure - Sysctl setting vm.vfs_cache_pressure.
- Fs
Aio intMax Nr - Sysctl setting fs.aio-max-nr.
- Fs
File intMax - Sysctl setting fs.file-max.
- Fs
Inotify intMax User Watches - Sysctl setting fs.inotify.max_user_watches.
- Fs
Nr intOpen - Sysctl setting fs.nr_open.
- Kernel
Threads intMax - Sysctl setting kernel.threads-max.
- Net
Core intNetdev Max Backlog - Sysctl setting net.core.netdev_max_backlog.
- Net
Core intOptmem Max - Sysctl setting net.core.optmem_max.
- Net
Core intRmem Default - Sysctl setting net.core.rmem_default.
- Net
Core intRmem Max - Sysctl setting net.core.rmem_max.
- Net
Core intSomaxconn - Sysctl setting net.core.somaxconn.
- Net
Core intWmem Default - Sysctl setting net.core.wmem_default.
- Net
Core intWmem Max - Sysctl setting net.core.wmem_max.
- Net
Ipv4Ip stringLocal Port Range - Sysctl setting net.ipv4.ip_local_port_range.
- Net
Ipv4Neigh intDefault Gc Thresh1 - Sysctl setting net.ipv4.neigh.default.gc_thresh1.
- Net
Ipv4Neigh intDefault Gc Thresh2 - Sysctl setting net.ipv4.neigh.default.gc_thresh2.
- Net
Ipv4Neigh intDefault Gc Thresh3 - Sysctl setting net.ipv4.neigh.default.gc_thresh3.
- Net
Ipv4Tcp intFin Timeout - Sysctl setting net.ipv4.tcp_fin_timeout.
- Net
Ipv4Tcp intKeepalive Probes - Sysctl setting net.ipv4.tcp_keepalive_probes.
- Net
Ipv4Tcp intKeepalive Time - Sysctl setting net.ipv4.tcp_keepalive_time.
- Net
Ipv4Tcp intMax Syn Backlog - Sysctl setting net.ipv4.tcp_max_syn_backlog.
- Net
Ipv4Tcp intMax Tw Buckets - Sysctl setting net.ipv4.tcp_max_tw_buckets.
- Net
Ipv4Tcp boolTw Reuse - Sysctl setting net.ipv4.tcp_tw_reuse.
- Net
Ipv4Tcpkeepalive intIntvl - Sysctl setting net.ipv4.tcp_keepalive_intvl.
- Net
Netfilter intNf Conntrack Buckets - Sysctl setting net.netfilter.nf_conntrack_buckets.
- Net
Netfilter intNf Conntrack Max - Sysctl setting net.netfilter.nf_conntrack_max.
- Vm
Max intMap Count - Sysctl setting vm.max_map_count.
- Vm
Swappiness int - Sysctl setting vm.swappiness.
- Vm
Vfs intCache Pressure - Sysctl setting vm.vfs_cache_pressure.
- fs
Aio IntegerMax Nr - Sysctl setting fs.aio-max-nr.
- fs
File IntegerMax - Sysctl setting fs.file-max.
- fs
Inotify IntegerMax User Watches - Sysctl setting fs.inotify.max_user_watches.
- fs
Nr IntegerOpen - Sysctl setting fs.nr_open.
- kernel
Threads IntegerMax - Sysctl setting kernel.threads-max.
- net
Core IntegerNetdev Max Backlog - Sysctl setting net.core.netdev_max_backlog.
- net
Core IntegerOptmem Max - Sysctl setting net.core.optmem_max.
- net
Core IntegerRmem Default - Sysctl setting net.core.rmem_default.
- net
Core IntegerRmem Max - Sysctl setting net.core.rmem_max.
- net
Core IntegerSomaxconn - Sysctl setting net.core.somaxconn.
- net
Core IntegerWmem Default - Sysctl setting net.core.wmem_default.
- net
Core IntegerWmem Max - Sysctl setting net.core.wmem_max.
- net
Ipv4Ip StringLocal Port Range - Sysctl setting net.ipv4.ip_local_port_range.
- net
Ipv4Neigh IntegerDefault Gc Thresh1 - Sysctl setting net.ipv4.neigh.default.gc_thresh1.
- net
Ipv4Neigh IntegerDefault Gc Thresh2 - Sysctl setting net.ipv4.neigh.default.gc_thresh2.
- net
Ipv4Neigh IntegerDefault Gc Thresh3 - Sysctl setting net.ipv4.neigh.default.gc_thresh3.
- net
Ipv4Tcp IntegerFin Timeout - Sysctl setting net.ipv4.tcp_fin_timeout.
- net
Ipv4Tcp IntegerKeepalive Probes - Sysctl setting net.ipv4.tcp_keepalive_probes.
- net
Ipv4Tcp IntegerKeepalive Time - Sysctl setting net.ipv4.tcp_keepalive_time.
- net
Ipv4Tcp IntegerMax Syn Backlog - Sysctl setting net.ipv4.tcp_max_syn_backlog.
- net
Ipv4Tcp IntegerMax Tw Buckets - Sysctl setting net.ipv4.tcp_max_tw_buckets.
- net
Ipv4Tcp BooleanTw Reuse - Sysctl setting net.ipv4.tcp_tw_reuse.
- net
Ipv4Tcpkeepalive IntegerIntvl - Sysctl setting net.ipv4.tcp_keepalive_intvl.
- net
Netfilter IntegerNf Conntrack Buckets - Sysctl setting net.netfilter.nf_conntrack_buckets.
- net
Netfilter IntegerNf Conntrack Max - Sysctl setting net.netfilter.nf_conntrack_max.
- vm
Max IntegerMap Count - Sysctl setting vm.max_map_count.
- vm
Swappiness Integer - Sysctl setting vm.swappiness.
- vm
Vfs IntegerCache Pressure - Sysctl setting vm.vfs_cache_pressure.
- fs
Aio numberMax Nr - Sysctl setting fs.aio-max-nr.
- fs
File numberMax - Sysctl setting fs.file-max.
- fs
Inotify numberMax User Watches - Sysctl setting fs.inotify.max_user_watches.
- fs
Nr numberOpen - Sysctl setting fs.nr_open.
- kernel
Threads numberMax - Sysctl setting kernel.threads-max.
- net
Core numberNetdev Max Backlog - Sysctl setting net.core.netdev_max_backlog.
- net
Core numberOptmem Max - Sysctl setting net.core.optmem_max.
- net
Core numberRmem Default - Sysctl setting net.core.rmem_default.
- net
Core numberRmem Max - Sysctl setting net.core.rmem_max.
- net
Core numberSomaxconn - Sysctl setting net.core.somaxconn.
- net
Core numberWmem Default - Sysctl setting net.core.wmem_default.
- net
Core numberWmem Max - Sysctl setting net.core.wmem_max.
- net
Ipv4Ip stringLocal Port Range - Sysctl setting net.ipv4.ip_local_port_range.
- net
Ipv4Neigh numberDefault Gc Thresh1 - Sysctl setting net.ipv4.neigh.default.gc_thresh1.
- net
Ipv4Neigh numberDefault Gc Thresh2 - Sysctl setting net.ipv4.neigh.default.gc_thresh2.
- net
Ipv4Neigh numberDefault Gc Thresh3 - Sysctl setting net.ipv4.neigh.default.gc_thresh3.
- net
Ipv4Tcp numberFin Timeout - Sysctl setting net.ipv4.tcp_fin_timeout.
- net
Ipv4Tcp numberKeepalive Probes - Sysctl setting net.ipv4.tcp_keepalive_probes.
- net
Ipv4Tcp numberKeepalive Time - Sysctl setting net.ipv4.tcp_keepalive_time.
- net
Ipv4Tcp numberMax Syn Backlog - Sysctl setting net.ipv4.tcp_max_syn_backlog.
- net
Ipv4Tcp numberMax Tw Buckets - Sysctl setting net.ipv4.tcp_max_tw_buckets.
- net
Ipv4Tcp booleanTw Reuse - Sysctl setting net.ipv4.tcp_tw_reuse.
- net
Ipv4Tcpkeepalive numberIntvl - Sysctl setting net.ipv4.tcp_keepalive_intvl.
- net
Netfilter numberNf Conntrack Buckets - Sysctl setting net.netfilter.nf_conntrack_buckets.
- net
Netfilter numberNf Conntrack Max - Sysctl setting net.netfilter.nf_conntrack_max.
- vm
Max numberMap Count - Sysctl setting vm.max_map_count.
- vm
Swappiness number - Sysctl setting vm.swappiness.
- vm
Vfs numberCache Pressure - Sysctl setting vm.vfs_cache_pressure.
- fs_
aio_ intmax_ nr - Sysctl setting fs.aio-max-nr.
- fs_
file_ intmax - Sysctl setting fs.file-max.
- fs_
inotify_ intmax_ user_ watches - Sysctl setting fs.inotify.max_user_watches.
- fs_
nr_ intopen - Sysctl setting fs.nr_open.
- kernel_
threads_ intmax - Sysctl setting kernel.threads-max.
- net_
core_ intnetdev_ max_ backlog - Sysctl setting net.core.netdev_max_backlog.
- net_
core_ intoptmem_ max - Sysctl setting net.core.optmem_max.
- net_
core_ intrmem_ default - Sysctl setting net.core.rmem_default.
- net_
core_ intrmem_ max - Sysctl setting net.core.rmem_max.
- net_
core_ intsomaxconn - Sysctl setting net.core.somaxconn.
- net_
core_ intwmem_ default - Sysctl setting net.core.wmem_default.
- net_
core_ intwmem_ max - Sysctl setting net.core.wmem_max.
- net_
ipv4_ strip_ local_ port_ range - Sysctl setting net.ipv4.ip_local_port_range.
- net_
ipv4_ intneigh_ default_ gc_ thresh1 - Sysctl setting net.ipv4.neigh.default.gc_thresh1.
- net_
ipv4_ intneigh_ default_ gc_ thresh2 - Sysctl setting net.ipv4.neigh.default.gc_thresh2.
- net_
ipv4_ intneigh_ default_ gc_ thresh3 - Sysctl setting net.ipv4.neigh.default.gc_thresh3.
- net_
ipv4_ inttcp_ fin_ timeout - Sysctl setting net.ipv4.tcp_fin_timeout.
- net_
ipv4_ inttcp_ keepalive_ probes - Sysctl setting net.ipv4.tcp_keepalive_probes.
- net_
ipv4_ inttcp_ keepalive_ time - Sysctl setting net.ipv4.tcp_keepalive_time.
- net_
ipv4_ inttcp_ max_ syn_ backlog - Sysctl setting net.ipv4.tcp_max_syn_backlog.
- net_
ipv4_ inttcp_ max_ tw_ buckets - Sysctl setting net.ipv4.tcp_max_tw_buckets.
- net_
ipv4_ booltcp_ tw_ reuse - Sysctl setting net.ipv4.tcp_tw_reuse.
- net_
ipv4_ inttcpkeepalive_ intvl - Sysctl setting net.ipv4.tcp_keepalive_intvl.
- net_
netfilter_ intnf_ conntrack_ buckets - Sysctl setting net.netfilter.nf_conntrack_buckets.
- net_
netfilter_ intnf_ conntrack_ max - Sysctl setting net.netfilter.nf_conntrack_max.
- vm_
max_ intmap_ count - Sysctl setting vm.max_map_count.
- vm_
swappiness int - Sysctl setting vm.swappiness.
- vm_
vfs_ intcache_ pressure - Sysctl setting vm.vfs_cache_pressure.
- fs
Aio NumberMax Nr - Sysctl setting fs.aio-max-nr.
- fs
File NumberMax - Sysctl setting fs.file-max.
- fs
Inotify NumberMax User Watches - Sysctl setting fs.inotify.max_user_watches.
- fs
Nr NumberOpen - Sysctl setting fs.nr_open.
- kernel
Threads NumberMax - Sysctl setting kernel.threads-max.
- net
Core NumberNetdev Max Backlog - Sysctl setting net.core.netdev_max_backlog.
- net
Core NumberOptmem Max - Sysctl setting net.core.optmem_max.
- net
Core NumberRmem Default - Sysctl setting net.core.rmem_default.
- net
Core NumberRmem Max - Sysctl setting net.core.rmem_max.
- net
Core NumberSomaxconn - Sysctl setting net.core.somaxconn.
- net
Core NumberWmem Default - Sysctl setting net.core.wmem_default.
- net
Core NumberWmem Max - Sysctl setting net.core.wmem_max.
- net
Ipv4Ip StringLocal Port Range - Sysctl setting net.ipv4.ip_local_port_range.
- net
Ipv4Neigh NumberDefault Gc Thresh1 - Sysctl setting net.ipv4.neigh.default.gc_thresh1.
- net
Ipv4Neigh NumberDefault Gc Thresh2 - Sysctl setting net.ipv4.neigh.default.gc_thresh2.
- net
Ipv4Neigh NumberDefault Gc Thresh3 - Sysctl setting net.ipv4.neigh.default.gc_thresh3.
- net
Ipv4Tcp NumberFin Timeout - Sysctl setting net.ipv4.tcp_fin_timeout.
- net
Ipv4Tcp NumberKeepalive Probes - Sysctl setting net.ipv4.tcp_keepalive_probes.
- net
Ipv4Tcp NumberKeepalive Time - Sysctl setting net.ipv4.tcp_keepalive_time.
- net
Ipv4Tcp NumberMax Syn Backlog - Sysctl setting net.ipv4.tcp_max_syn_backlog.
- net
Ipv4Tcp NumberMax Tw Buckets - Sysctl setting net.ipv4.tcp_max_tw_buckets.
- net
Ipv4Tcp BooleanTw Reuse - Sysctl setting net.ipv4.tcp_tw_reuse.
- net
Ipv4Tcpkeepalive NumberIntvl - Sysctl setting net.ipv4.tcp_keepalive_intvl.
- net
Netfilter NumberNf Conntrack Buckets - Sysctl setting net.netfilter.nf_conntrack_buckets.
- net
Netfilter NumberNf Conntrack Max - Sysctl setting net.netfilter.nf_conntrack_max.
- vm
Max NumberMap Count - Sysctl setting vm.max_map_count.
- vm
Swappiness Number - Sysctl setting vm.swappiness.
- vm
Vfs NumberCache Pressure - Sysctl setting vm.vfs_cache_pressure.
SysctlConfigResponse, SysctlConfigResponseArgs
- Fs
Aio intMax Nr - Sysctl setting fs.aio-max-nr.
- Fs
File intMax - Sysctl setting fs.file-max.
- Fs
Inotify intMax User Watches - Sysctl setting fs.inotify.max_user_watches.
- Fs
Nr intOpen - Sysctl setting fs.nr_open.
- Kernel
Threads intMax - Sysctl setting kernel.threads-max.
- Net
Core intNetdev Max Backlog - Sysctl setting net.core.netdev_max_backlog.
- Net
Core intOptmem Max - Sysctl setting net.core.optmem_max.
- Net
Core intRmem Default - Sysctl setting net.core.rmem_default.
- Net
Core intRmem Max - Sysctl setting net.core.rmem_max.
- Net
Core intSomaxconn - Sysctl setting net.core.somaxconn.
- Net
Core intWmem Default - Sysctl setting net.core.wmem_default.
- Net
Core intWmem Max - Sysctl setting net.core.wmem_max.
- Net
Ipv4Ip stringLocal Port Range - Sysctl setting net.ipv4.ip_local_port_range.
- Net
Ipv4Neigh intDefault Gc Thresh1 - Sysctl setting net.ipv4.neigh.default.gc_thresh1.
- Net
Ipv4Neigh intDefault Gc Thresh2 - Sysctl setting net.ipv4.neigh.default.gc_thresh2.
- Net
Ipv4Neigh intDefault Gc Thresh3 - Sysctl setting net.ipv4.neigh.default.gc_thresh3.
- Net
Ipv4Tcp intFin Timeout - Sysctl setting net.ipv4.tcp_fin_timeout.
- Net
Ipv4Tcp intKeepalive Probes - Sysctl setting net.ipv4.tcp_keepalive_probes.
- Net
Ipv4Tcp intKeepalive Time - Sysctl setting net.ipv4.tcp_keepalive_time.
- Net
Ipv4Tcp intMax Syn Backlog - Sysctl setting net.ipv4.tcp_max_syn_backlog.
- Net
Ipv4Tcp intMax Tw Buckets - Sysctl setting net.ipv4.tcp_max_tw_buckets.
- Net
Ipv4Tcp boolTw Reuse - Sysctl setting net.ipv4.tcp_tw_reuse.
- Net
Ipv4Tcpkeepalive intIntvl - Sysctl setting net.ipv4.tcp_keepalive_intvl.
- Net
Netfilter intNf Conntrack Buckets - Sysctl setting net.netfilter.nf_conntrack_buckets.
- Net
Netfilter intNf Conntrack Max - Sysctl setting net.netfilter.nf_conntrack_max.
- Vm
Max intMap Count - Sysctl setting vm.max_map_count.
- Vm
Swappiness int - Sysctl setting vm.swappiness.
- Vm
Vfs intCache Pressure - Sysctl setting vm.vfs_cache_pressure.
- Fs
Aio intMax Nr - Sysctl setting fs.aio-max-nr.
- Fs
File intMax - Sysctl setting fs.file-max.
- Fs
Inotify intMax User Watches - Sysctl setting fs.inotify.max_user_watches.
- Fs
Nr intOpen - Sysctl setting fs.nr_open.
- Kernel
Threads intMax - Sysctl setting kernel.threads-max.
- Net
Core intNetdev Max Backlog - Sysctl setting net.core.netdev_max_backlog.
- Net
Core intOptmem Max - Sysctl setting net.core.optmem_max.
- Net
Core intRmem Default - Sysctl setting net.core.rmem_default.
- Net
Core intRmem Max - Sysctl setting net.core.rmem_max.
- Net
Core intSomaxconn - Sysctl setting net.core.somaxconn.
- Net
Core intWmem Default - Sysctl setting net.core.wmem_default.
- Net
Core intWmem Max - Sysctl setting net.core.wmem_max.
- Net
Ipv4Ip stringLocal Port Range - Sysctl setting net.ipv4.ip_local_port_range.
- Net
Ipv4Neigh intDefault Gc Thresh1 - Sysctl setting net.ipv4.neigh.default.gc_thresh1.
- Net
Ipv4Neigh intDefault Gc Thresh2 - Sysctl setting net.ipv4.neigh.default.gc_thresh2.
- Net
Ipv4Neigh intDefault Gc Thresh3 - Sysctl setting net.ipv4.neigh.default.gc_thresh3.
- Net
Ipv4Tcp intFin Timeout - Sysctl setting net.ipv4.tcp_fin_timeout.
- Net
Ipv4Tcp intKeepalive Probes - Sysctl setting net.ipv4.tcp_keepalive_probes.
- Net
Ipv4Tcp intKeepalive Time - Sysctl setting net.ipv4.tcp_keepalive_time.
- Net
Ipv4Tcp intMax Syn Backlog - Sysctl setting net.ipv4.tcp_max_syn_backlog.
- Net
Ipv4Tcp intMax Tw Buckets - Sysctl setting net.ipv4.tcp_max_tw_buckets.
- Net
Ipv4Tcp boolTw Reuse - Sysctl setting net.ipv4.tcp_tw_reuse.
- Net
Ipv4Tcpkeepalive intIntvl - Sysctl setting net.ipv4.tcp_keepalive_intvl.
- Net
Netfilter intNf Conntrack Buckets - Sysctl setting net.netfilter.nf_conntrack_buckets.
- Net
Netfilter intNf Conntrack Max - Sysctl setting net.netfilter.nf_conntrack_max.
- Vm
Max intMap Count - Sysctl setting vm.max_map_count.
- Vm
Swappiness int - Sysctl setting vm.swappiness.
- Vm
Vfs intCache Pressure - Sysctl setting vm.vfs_cache_pressure.
- fs
Aio IntegerMax Nr - Sysctl setting fs.aio-max-nr.
- fs
File IntegerMax - Sysctl setting fs.file-max.
- fs
Inotify IntegerMax User Watches - Sysctl setting fs.inotify.max_user_watches.
- fs
Nr IntegerOpen - Sysctl setting fs.nr_open.
- kernel
Threads IntegerMax - Sysctl setting kernel.threads-max.
- net
Core IntegerNetdev Max Backlog - Sysctl setting net.core.netdev_max_backlog.
- net
Core IntegerOptmem Max - Sysctl setting net.core.optmem_max.
- net
Core IntegerRmem Default - Sysctl setting net.core.rmem_default.
- net
Core IntegerRmem Max - Sysctl setting net.core.rmem_max.
- net
Core IntegerSomaxconn - Sysctl setting net.core.somaxconn.
- net
Core IntegerWmem Default - Sysctl setting net.core.wmem_default.
- net
Core IntegerWmem Max - Sysctl setting net.core.wmem_max.
- net
Ipv4Ip StringLocal Port Range - Sysctl setting net.ipv4.ip_local_port_range.
- net
Ipv4Neigh IntegerDefault Gc Thresh1 - Sysctl setting net.ipv4.neigh.default.gc_thresh1.
- net
Ipv4Neigh IntegerDefault Gc Thresh2 - Sysctl setting net.ipv4.neigh.default.gc_thresh2.
- net
Ipv4Neigh IntegerDefault Gc Thresh3 - Sysctl setting net.ipv4.neigh.default.gc_thresh3.
- net
Ipv4Tcp IntegerFin Timeout - Sysctl setting net.ipv4.tcp_fin_timeout.
- net
Ipv4Tcp IntegerKeepalive Probes - Sysctl setting net.ipv4.tcp_keepalive_probes.
- net
Ipv4Tcp IntegerKeepalive Time - Sysctl setting net.ipv4.tcp_keepalive_time.
- net
Ipv4Tcp IntegerMax Syn Backlog - Sysctl setting net.ipv4.tcp_max_syn_backlog.
- net
Ipv4Tcp IntegerMax Tw Buckets - Sysctl setting net.ipv4.tcp_max_tw_buckets.
- net
Ipv4Tcp BooleanTw Reuse - Sysctl setting net.ipv4.tcp_tw_reuse.
- net
Ipv4Tcpkeepalive IntegerIntvl - Sysctl setting net.ipv4.tcp_keepalive_intvl.
- net
Netfilter IntegerNf Conntrack Buckets - Sysctl setting net.netfilter.nf_conntrack_buckets.
- net
Netfilter IntegerNf Conntrack Max - Sysctl setting net.netfilter.nf_conntrack_max.
- vm
Max IntegerMap Count - Sysctl setting vm.max_map_count.
- vm
Swappiness Integer - Sysctl setting vm.swappiness.
- vm
Vfs IntegerCache Pressure - Sysctl setting vm.vfs_cache_pressure.
- fs
Aio numberMax Nr - Sysctl setting fs.aio-max-nr.
- fs
File numberMax - Sysctl setting fs.file-max.
- fs
Inotify numberMax User Watches - Sysctl setting fs.inotify.max_user_watches.
- fs
Nr numberOpen - Sysctl setting fs.nr_open.
- kernel
Threads numberMax - Sysctl setting kernel.threads-max.
- net
Core numberNetdev Max Backlog - Sysctl setting net.core.netdev_max_backlog.
- net
Core numberOptmem Max - Sysctl setting net.core.optmem_max.
- net
Core numberRmem Default - Sysctl setting net.core.rmem_default.
- net
Core numberRmem Max - Sysctl setting net.core.rmem_max.
- net
Core numberSomaxconn - Sysctl setting net.core.somaxconn.
- net
Core numberWmem Default - Sysctl setting net.core.wmem_default.
- net
Core numberWmem Max - Sysctl setting net.core.wmem_max.
- net
Ipv4Ip stringLocal Port Range - Sysctl setting net.ipv4.ip_local_port_range.
- net
Ipv4Neigh numberDefault Gc Thresh1 - Sysctl setting net.ipv4.neigh.default.gc_thresh1.
- net
Ipv4Neigh numberDefault Gc Thresh2 - Sysctl setting net.ipv4.neigh.default.gc_thresh2.
- net
Ipv4Neigh numberDefault Gc Thresh3 - Sysctl setting net.ipv4.neigh.default.gc_thresh3.
- net
Ipv4Tcp numberFin Timeout - Sysctl setting net.ipv4.tcp_fin_timeout.
- net
Ipv4Tcp numberKeepalive Probes - Sysctl setting net.ipv4.tcp_keepalive_probes.
- net
Ipv4Tcp numberKeepalive Time - Sysctl setting net.ipv4.tcp_keepalive_time.
- net
Ipv4Tcp numberMax Syn Backlog - Sysctl setting net.ipv4.tcp_max_syn_backlog.
- net
Ipv4Tcp numberMax Tw Buckets - Sysctl setting net.ipv4.tcp_max_tw_buckets.
- net
Ipv4Tcp booleanTw Reuse - Sysctl setting net.ipv4.tcp_tw_reuse.
- net
Ipv4Tcpkeepalive numberIntvl - Sysctl setting net.ipv4.tcp_keepalive_intvl.
- net
Netfilter numberNf Conntrack Buckets - Sysctl setting net.netfilter.nf_conntrack_buckets.
- net
Netfilter numberNf Conntrack Max - Sysctl setting net.netfilter.nf_conntrack_max.
- vm
Max numberMap Count - Sysctl setting vm.max_map_count.
- vm
Swappiness number - Sysctl setting vm.swappiness.
- vm
Vfs numberCache Pressure - Sysctl setting vm.vfs_cache_pressure.
- fs_
aio_ intmax_ nr - Sysctl setting fs.aio-max-nr.
- fs_
file_ intmax - Sysctl setting fs.file-max.
- fs_
inotify_ intmax_ user_ watches - Sysctl setting fs.inotify.max_user_watches.
- fs_
nr_ intopen - Sysctl setting fs.nr_open.
- kernel_
threads_ intmax - Sysctl setting kernel.threads-max.
- net_
core_ intnetdev_ max_ backlog - Sysctl setting net.core.netdev_max_backlog.
- net_
core_ intoptmem_ max - Sysctl setting net.core.optmem_max.
- net_
core_ intrmem_ default - Sysctl setting net.core.rmem_default.
- net_
core_ intrmem_ max - Sysctl setting net.core.rmem_max.
- net_
core_ intsomaxconn - Sysctl setting net.core.somaxconn.
- net_
core_ intwmem_ default - Sysctl setting net.core.wmem_default.
- net_
core_ intwmem_ max - Sysctl setting net.core.wmem_max.
- net_
ipv4_ strip_ local_ port_ range - Sysctl setting net.ipv4.ip_local_port_range.
- net_
ipv4_ intneigh_ default_ gc_ thresh1 - Sysctl setting net.ipv4.neigh.default.gc_thresh1.
- net_
ipv4_ intneigh_ default_ gc_ thresh2 - Sysctl setting net.ipv4.neigh.default.gc_thresh2.
- net_
ipv4_ intneigh_ default_ gc_ thresh3 - Sysctl setting net.ipv4.neigh.default.gc_thresh3.
- net_
ipv4_ inttcp_ fin_ timeout - Sysctl setting net.ipv4.tcp_fin_timeout.
- net_
ipv4_ inttcp_ keepalive_ probes - Sysctl setting net.ipv4.tcp_keepalive_probes.
- net_
ipv4_ inttcp_ keepalive_ time - Sysctl setting net.ipv4.tcp_keepalive_time.
- net_
ipv4_ inttcp_ max_ syn_ backlog - Sysctl setting net.ipv4.tcp_max_syn_backlog.
- net_
ipv4_ inttcp_ max_ tw_ buckets - Sysctl setting net.ipv4.tcp_max_tw_buckets.
- net_
ipv4_ booltcp_ tw_ reuse - Sysctl setting net.ipv4.tcp_tw_reuse.
- net_
ipv4_ inttcpkeepalive_ intvl - Sysctl setting net.ipv4.tcp_keepalive_intvl.
- net_
netfilter_ intnf_ conntrack_ buckets - Sysctl setting net.netfilter.nf_conntrack_buckets.
- net_
netfilter_ intnf_ conntrack_ max - Sysctl setting net.netfilter.nf_conntrack_max.
- vm_
max_ intmap_ count - Sysctl setting vm.max_map_count.
- vm_
swappiness int - Sysctl setting vm.swappiness.
- vm_
vfs_ intcache_ pressure - Sysctl setting vm.vfs_cache_pressure.
- fs
Aio NumberMax Nr - Sysctl setting fs.aio-max-nr.
- fs
File NumberMax - Sysctl setting fs.file-max.
- fs
Inotify NumberMax User Watches - Sysctl setting fs.inotify.max_user_watches.
- fs
Nr NumberOpen - Sysctl setting fs.nr_open.
- kernel
Threads NumberMax - Sysctl setting kernel.threads-max.
- net
Core NumberNetdev Max Backlog - Sysctl setting net.core.netdev_max_backlog.
- net
Core NumberOptmem Max - Sysctl setting net.core.optmem_max.
- net
Core NumberRmem Default - Sysctl setting net.core.rmem_default.
- net
Core NumberRmem Max - Sysctl setting net.core.rmem_max.
- net
Core NumberSomaxconn - Sysctl setting net.core.somaxconn.
- net
Core NumberWmem Default - Sysctl setting net.core.wmem_default.
- net
Core NumberWmem Max - Sysctl setting net.core.wmem_max.
- net
Ipv4Ip StringLocal Port Range - Sysctl setting net.ipv4.ip_local_port_range.
- net
Ipv4Neigh NumberDefault Gc Thresh1 - Sysctl setting net.ipv4.neigh.default.gc_thresh1.
- net
Ipv4Neigh NumberDefault Gc Thresh2 - Sysctl setting net.ipv4.neigh.default.gc_thresh2.
- net
Ipv4Neigh NumberDefault Gc Thresh3 - Sysctl setting net.ipv4.neigh.default.gc_thresh3.
- net
Ipv4Tcp NumberFin Timeout - Sysctl setting net.ipv4.tcp_fin_timeout.
- net
Ipv4Tcp NumberKeepalive Probes - Sysctl setting net.ipv4.tcp_keepalive_probes.
- net
Ipv4Tcp NumberKeepalive Time - Sysctl setting net.ipv4.tcp_keepalive_time.
- net
Ipv4Tcp NumberMax Syn Backlog - Sysctl setting net.ipv4.tcp_max_syn_backlog.
- net
Ipv4Tcp NumberMax Tw Buckets - Sysctl setting net.ipv4.tcp_max_tw_buckets.
- net
Ipv4Tcp BooleanTw Reuse - Sysctl setting net.ipv4.tcp_tw_reuse.
- net
Ipv4Tcpkeepalive NumberIntvl - Sysctl setting net.ipv4.tcp_keepalive_intvl.
- net
Netfilter NumberNf Conntrack Buckets - Sysctl setting net.netfilter.nf_conntrack_buckets.
- net
Netfilter NumberNf Conntrack Max - Sysctl setting net.netfilter.nf_conntrack_max.
- vm
Max NumberMap Count - Sysctl setting vm.max_map_count.
- vm
Swappiness Number - Sysctl setting vm.swappiness.
- vm
Vfs NumberCache Pressure - Sysctl setting vm.vfs_cache_pressure.
SystemDataResponse, SystemDataResponseArgs
- Created
At string - The timestamp of resource creation (UTC).
- Created
By string - The identity that created the resource.
- Created
By stringType - The type of identity that created the resource.
- Last
Modified stringAt - The timestamp of resource last modification (UTC)
- Last
Modified stringBy - The identity that last modified the resource.
- Last
Modified stringBy Type - The type of identity that last modified the resource.
- Created
At string - The timestamp of resource creation (UTC).
- Created
By string - The identity that created the resource.
- Created
By stringType - The type of identity that created the resource.
- Last
Modified stringAt - The timestamp of resource last modification (UTC)
- Last
Modified stringBy - The identity that last modified the resource.
- Last
Modified stringBy Type - The type of identity that last modified the resource.
- created
At String - The timestamp of resource creation (UTC).
- created
By String - The identity that created the resource.
- created
By StringType - The type of identity that created the resource.
- last
Modified StringAt - The timestamp of resource last modification (UTC)
- last
Modified StringBy - The identity that last modified the resource.
- last
Modified StringBy Type - The type of identity that last modified the resource.
- created
At string - The timestamp of resource creation (UTC).
- created
By string - The identity that created the resource.
- created
By stringType - The type of identity that created the resource.
- last
Modified stringAt - The timestamp of resource last modification (UTC)
- last
Modified stringBy - The identity that last modified the resource.
- last
Modified stringBy Type - The type of identity that last modified the resource.
- created_
at str - The timestamp of resource creation (UTC).
- created_
by str - The identity that created the resource.
- created_
by_ strtype - The type of identity that created the resource.
- last_
modified_ strat - The timestamp of resource last modification (UTC)
- last_
modified_ strby - The identity that last modified the resource.
- last_
modified_ strby_ type - The type of identity that last modified the resource.
- created
At String - The timestamp of resource creation (UTC).
- created
By String - The identity that created the resource.
- created
By StringType - The type of identity that created the resource.
- last
Modified StringAt - The timestamp of resource last modification (UTC)
- last
Modified StringBy - The identity that last modified the resource.
- last
Modified StringBy Type - The type of identity that last modified the resource.
UpgradeChannel, UpgradeChannelArgs
- Rapid
- rapidAutomatically upgrade the cluster to the latest supported patch release on the latest supported minor version. In cases where the cluster is at a version of Kubernetes that is at an N-2 minor version where N is the latest supported minor version, the cluster first upgrades to the latest supported patch version on N-1 minor version. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster first is upgraded to 1.18.6, then is upgraded to 1.19.1.
- Stable
- stableAutomatically upgrade the cluster to the latest supported patch release on minor version N-1, where N is the latest supported minor version. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster is upgraded to 1.18.6.
- Patch
- patchAutomatically upgrade the cluster to the latest supported patch version when it becomes available while keeping the minor version the same. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster is upgraded to 1.17.9.
- Node_
image - node-imageAutomatically upgrade the node image to the latest version available. Consider using nodeOSUpgradeChannel instead as that allows you to configure node OS patching separate from Kubernetes version patching
- None
- noneDisables auto-upgrades and keeps the cluster at its current version of Kubernetes.
- Upgrade
Channel Rapid - rapidAutomatically upgrade the cluster to the latest supported patch release on the latest supported minor version. In cases where the cluster is at a version of Kubernetes that is at an N-2 minor version where N is the latest supported minor version, the cluster first upgrades to the latest supported patch version on N-1 minor version. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster first is upgraded to 1.18.6, then is upgraded to 1.19.1.
- Upgrade
Channel Stable - stableAutomatically upgrade the cluster to the latest supported patch release on minor version N-1, where N is the latest supported minor version. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster is upgraded to 1.18.6.
- Upgrade
Channel Patch - patchAutomatically upgrade the cluster to the latest supported patch version when it becomes available while keeping the minor version the same. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster is upgraded to 1.17.9.
- Upgrade
Channel_Node_Image - node-imageAutomatically upgrade the node image to the latest version available. Consider using nodeOSUpgradeChannel instead as that allows you to configure node OS patching separate from Kubernetes version patching
- Upgrade
Channel None - noneDisables auto-upgrades and keeps the cluster at its current version of Kubernetes.
- Rapid
- rapidAutomatically upgrade the cluster to the latest supported patch release on the latest supported minor version. In cases where the cluster is at a version of Kubernetes that is at an N-2 minor version where N is the latest supported minor version, the cluster first upgrades to the latest supported patch version on N-1 minor version. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster first is upgraded to 1.18.6, then is upgraded to 1.19.1.
- Stable
- stableAutomatically upgrade the cluster to the latest supported patch release on minor version N-1, where N is the latest supported minor version. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster is upgraded to 1.18.6.
- Patch
- patchAutomatically upgrade the cluster to the latest supported patch version when it becomes available while keeping the minor version the same. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster is upgraded to 1.17.9.
- Nodeimage
- node-imageAutomatically upgrade the node image to the latest version available. Consider using nodeOSUpgradeChannel instead as that allows you to configure node OS patching separate from Kubernetes version patching
- None
- noneDisables auto-upgrades and keeps the cluster at its current version of Kubernetes.
- Rapid
- rapidAutomatically upgrade the cluster to the latest supported patch release on the latest supported minor version. In cases where the cluster is at a version of Kubernetes that is at an N-2 minor version where N is the latest supported minor version, the cluster first upgrades to the latest supported patch version on N-1 minor version. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster first is upgraded to 1.18.6, then is upgraded to 1.19.1.
- Stable
- stableAutomatically upgrade the cluster to the latest supported patch release on minor version N-1, where N is the latest supported minor version. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster is upgraded to 1.18.6.
- Patch
- patchAutomatically upgrade the cluster to the latest supported patch version when it becomes available while keeping the minor version the same. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster is upgraded to 1.17.9.
- Node_
image - node-imageAutomatically upgrade the node image to the latest version available. Consider using nodeOSUpgradeChannel instead as that allows you to configure node OS patching separate from Kubernetes version patching
- None
- noneDisables auto-upgrades and keeps the cluster at its current version of Kubernetes.
- RAPID
- rapidAutomatically upgrade the cluster to the latest supported patch release on the latest supported minor version. In cases where the cluster is at a version of Kubernetes that is at an N-2 minor version where N is the latest supported minor version, the cluster first upgrades to the latest supported patch version on N-1 minor version. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster first is upgraded to 1.18.6, then is upgraded to 1.19.1.
- STABLE
- stableAutomatically upgrade the cluster to the latest supported patch release on minor version N-1, where N is the latest supported minor version. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster is upgraded to 1.18.6.
- PATCH
- patchAutomatically upgrade the cluster to the latest supported patch version when it becomes available while keeping the minor version the same. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster is upgraded to 1.17.9.
- NODE_IMAGE
- node-imageAutomatically upgrade the node image to the latest version available. Consider using nodeOSUpgradeChannel instead as that allows you to configure node OS patching separate from Kubernetes version patching
- NONE
- noneDisables auto-upgrades and keeps the cluster at its current version of Kubernetes.
- "rapid"
- rapidAutomatically upgrade the cluster to the latest supported patch release on the latest supported minor version. In cases where the cluster is at a version of Kubernetes that is at an N-2 minor version where N is the latest supported minor version, the cluster first upgrades to the latest supported patch version on N-1 minor version. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster first is upgraded to 1.18.6, then is upgraded to 1.19.1.
- "stable"
- stableAutomatically upgrade the cluster to the latest supported patch release on minor version N-1, where N is the latest supported minor version. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster is upgraded to 1.18.6.
- "patch"
- patchAutomatically upgrade the cluster to the latest supported patch version when it becomes available while keeping the minor version the same. For example, if a cluster is running version 1.17.7 and versions 1.17.9, 1.18.4, 1.18.6, and 1.19.1 are available, your cluster is upgraded to 1.17.9.
- "node-image"
- node-imageAutomatically upgrade the node image to the latest version available. Consider using nodeOSUpgradeChannel instead as that allows you to configure node OS patching separate from Kubernetes version patching
- "none"
- noneDisables auto-upgrades and keeps the cluster at its current version of Kubernetes.
UpgradeOverrideSettings, UpgradeOverrideSettingsArgs
- Force
Upgrade bool - Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
- Until string
- Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the
untilexpires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.
- Force
Upgrade bool - Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
- Until string
- Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the
untilexpires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.
- force
Upgrade Boolean - Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
- until String
- Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the
untilexpires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.
- force
Upgrade boolean - Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
- until string
- Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the
untilexpires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.
- force_
upgrade bool - Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
- until str
- Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the
untilexpires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.
- force
Upgrade Boolean - Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
- until String
- Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the
untilexpires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.
UpgradeOverrideSettingsResponse, UpgradeOverrideSettingsResponseArgs
- Force
Upgrade bool - Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
- Until string
- Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the
untilexpires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.
- Force
Upgrade bool - Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
- Until string
- Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the
untilexpires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.
- force
Upgrade Boolean - Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
- until String
- Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the
untilexpires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.
- force
Upgrade boolean - Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
- until string
- Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the
untilexpires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.
- force_
upgrade bool - Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
- until str
- Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the
untilexpires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.
- force
Upgrade Boolean - Whether to force upgrade the cluster. Note that this option instructs upgrade operation to bypass upgrade protections such as checking for deprecated API usage. Enable this option only with caution.
- until String
- Until when the overrides are effective. Note that this only matches the start time of an upgrade, and the effectiveness won't change once an upgrade starts even if the
untilexpires as upgrade proceeds. This field is not set by default. It must be set for the overrides to take effect.
UserAssignedIdentity, UserAssignedIdentityArgs
- Client
Id string - The client ID of the user assigned identity.
- Object
Id string - The object ID of the user assigned identity.
- Resource
Id string - The resource ID of the user assigned identity.
- Client
Id string - The client ID of the user assigned identity.
- Object
Id string - The object ID of the user assigned identity.
- Resource
Id string - The resource ID of the user assigned identity.
- client
Id String - The client ID of the user assigned identity.
- object
Id String - The object ID of the user assigned identity.
- resource
Id String - The resource ID of the user assigned identity.
- client
Id string - The client ID of the user assigned identity.
- object
Id string - The object ID of the user assigned identity.
- resource
Id string - The resource ID of the user assigned identity.
- client_
id str - The client ID of the user assigned identity.
- object_
id str - The object ID of the user assigned identity.
- resource_
id str - The resource ID of the user assigned identity.
- client
Id String - The client ID of the user assigned identity.
- object
Id String - The object ID of the user assigned identity.
- resource
Id String - The resource ID of the user assigned identity.
UserAssignedIdentityResponse, UserAssignedIdentityResponseArgs
- Client
Id string - The client ID of the user assigned identity.
- Object
Id string - The object ID of the user assigned identity.
- Principal
Id string - The principal ID of the assigned identity.
- Resource
Id string - The resource ID of the user assigned identity.
- Client
Id string - The client ID of the user assigned identity.
- Object
Id string - The object ID of the user assigned identity.
- Principal
Id string - The principal ID of the assigned identity.
- Resource
Id string - The resource ID of the user assigned identity.
- client
Id String - The client ID of the user assigned identity.
- object
Id String - The object ID of the user assigned identity.
- principal
Id String - The principal ID of the assigned identity.
- resource
Id String - The resource ID of the user assigned identity.
- client
Id string - The client ID of the user assigned identity.
- object
Id string - The object ID of the user assigned identity.
- principal
Id string - The principal ID of the assigned identity.
- resource
Id string - The resource ID of the user assigned identity.
- client_
id str - The client ID of the user assigned identity.
- object_
id str - The object ID of the user assigned identity.
- principal_
id str - The principal ID of the assigned identity.
- resource_
id str - The resource ID of the user assigned identity.
- client
Id String - The client ID of the user assigned identity.
- object
Id String - The object ID of the user assigned identity.
- principal
Id String - The principal ID of the assigned identity.
- resource
Id String - The resource ID of the user assigned identity.
WindowsGmsaProfile, WindowsGmsaProfileArgs
- Dns
Server string - Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- Enabled bool
- Specifies whether to enable Windows gMSA in the managed cluster.
- Root
Domain stringName - Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- Dns
Server string - Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- Enabled bool
- Specifies whether to enable Windows gMSA in the managed cluster.
- Root
Domain stringName - Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- dns
Server String - Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- enabled Boolean
- Specifies whether to enable Windows gMSA in the managed cluster.
- root
Domain StringName - Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- dns
Server string - Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- enabled boolean
- Specifies whether to enable Windows gMSA in the managed cluster.
- root
Domain stringName - Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- dns_
server str - Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- enabled bool
- Specifies whether to enable Windows gMSA in the managed cluster.
- root_
domain_ strname - Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- dns
Server String - Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- enabled Boolean
- Specifies whether to enable Windows gMSA in the managed cluster.
- root
Domain StringName - Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
WindowsGmsaProfileResponse, WindowsGmsaProfileResponseArgs
- Dns
Server string - Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- Enabled bool
- Specifies whether to enable Windows gMSA in the managed cluster.
- Root
Domain stringName - Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- Dns
Server string - Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- Enabled bool
- Specifies whether to enable Windows gMSA in the managed cluster.
- Root
Domain stringName - Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- dns
Server String - Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- enabled Boolean
- Specifies whether to enable Windows gMSA in the managed cluster.
- root
Domain StringName - Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- dns
Server string - Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- enabled boolean
- Specifies whether to enable Windows gMSA in the managed cluster.
- root
Domain stringName - Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- dns_
server str - Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- enabled bool
- Specifies whether to enable Windows gMSA in the managed cluster.
- root_
domain_ strname - Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- dns
Server String - Specifies the DNS server for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
- enabled Boolean
- Specifies whether to enable Windows gMSA in the managed cluster.
- root
Domain StringName - Specifies the root domain name for Windows gMSA. Set it to empty if you have configured the DNS server in the vnet which is used to create the managed cluster.
WorkloadRuntime, WorkloadRuntimeArgs
- OCIContainer
- OCIContainerNodes will use Kubelet to run standard OCI container workloads.
- Wasm
Wasi - WasmWasiNodes will use Krustlet to run WASM workloads using the WASI provider (Preview).
- Workload
Runtime OCIContainer - OCIContainerNodes will use Kubelet to run standard OCI container workloads.
- Workload
Runtime Wasm Wasi - WasmWasiNodes will use Krustlet to run WASM workloads using the WASI provider (Preview).
- OCIContainer
- OCIContainerNodes will use Kubelet to run standard OCI container workloads.
- Wasm
Wasi - WasmWasiNodes will use Krustlet to run WASM workloads using the WASI provider (Preview).
- OCIContainer
- OCIContainerNodes will use Kubelet to run standard OCI container workloads.
- Wasm
Wasi - WasmWasiNodes will use Krustlet to run WASM workloads using the WASI provider (Preview).
- OCI_CONTAINER
- OCIContainerNodes will use Kubelet to run standard OCI container workloads.
- WASM_WASI
- WasmWasiNodes will use Krustlet to run WASM workloads using the WASI provider (Preview).
- "OCIContainer"
- OCIContainerNodes will use Kubelet to run standard OCI container workloads.
- "Wasm
Wasi" - WasmWasiNodes will use Krustlet to run WASM workloads using the WASI provider (Preview).
Import
An existing resource can be imported using its type token, name, and identifier, e.g.
$ pulumi import azure-native:containerservice:ManagedCluster clustername1 /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ContainerService/managedClusters/{resourceName}
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Azure Native pulumi/pulumi-azure-native
- License
- Apache-2.0
This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.
Azure Native v3.4.0 published on Wednesday, May 7, 2025 by Pulumi