This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.
Viewing docs for Azure Native v3.18.0
published on Saturday, May 9, 2026 by Pulumi
published on Saturday, May 9, 2026 by Pulumi
This is the latest version of Azure Native. Use the Azure Native v2 docs if using the v2 version of this package.
Viewing docs for Azure Native v3.18.0
published on Saturday, May 9, 2026 by Pulumi
published on Saturday, May 9, 2026 by Pulumi
Managed cluster.
Uses Azure REST API version 2025-09-01. In version 2.x of the Azure Native provider, it used API version 2023-04-01.
Other available API versions: 2019-11-01, 2020-01-01, 2020-02-01, 2020-03-01, 2020-04-01, 2020-06-01, 2020-07-01, 2020-09-01, 2020-11-01, 2020-12-01, 2021-02-01, 2021-03-01, 2021-05-01, 2021-07-01, 2021-08-01, 2021-09-01, 2021-10-01, 2021-11-01-preview, 2022-01-01, 2022-01-02-preview, 2022-02-01, 2022-02-02-preview, 2022-03-01, 2022-03-02-preview, 2022-04-01, 2022-04-02-preview, 2022-05-02-preview, 2022-06-01, 2022-06-02-preview, 2022-07-01, 2022-07-02-preview, 2022-08-02-preview, 2022-08-03-preview, 2022-09-01, 2022-09-02-preview, 2022-10-02-preview, 2022-11-01, 2022-11-02-preview, 2023-01-01, 2023-01-02-preview, 2023-02-01, 2023-02-02-preview, 2023-03-01, 2023-03-02-preview, 2023-04-01, 2023-04-02-preview, 2023-05-01, 2023-05-02-preview, 2023-06-01, 2023-06-02-preview, 2023-07-01, 2023-07-02-preview, 2023-08-01, 2023-08-02-preview, 2023-09-01, 2023-09-02-preview, 2023-10-01, 2023-10-02-preview, 2023-11-01, 2023-11-02-preview, 2024-01-01, 2024-01-02-preview, 2024-02-01, 2024-02-02-preview, 2024-03-02-preview, 2024-04-02-preview, 2024-05-01, 2024-05-02-preview, 2024-06-02-preview, 2024-07-01, 2024-07-02-preview, 2024-08-01, 2024-09-01, 2024-09-02-preview, 2024-10-01, 2024-10-02-preview, 2025-01-01, 2025-01-02-preview, 2025-02-01, 2025-02-02-preview, 2025-03-01, 2025-03-02-preview, 2025-04-01, 2025-04-02-preview, 2025-05-01, 2025-05-02-preview, 2025-06-02-preview, 2025-07-01, 2025-07-02-preview, 2025-08-01, 2025-08-02-preview, 2025-09-02-preview, 2025-10-01, 2025-10-02-preview. These can be accessed by generating a local SDK package using the CLI command pulumi package add azure-native containerservice [ApiVersion]. See the version guide for details.
When creating a managed cluster you must define at least one agent pool inline via the agentPoolProfiles property. The Azure API does not currently allow this property to be updated directly. Instead, additional agent pools can be defined via the AgentPool resource. If needing to change the initial agent pool profile property, you can either trigger the whole cluster to be re-created by using the replaceOnChanges resource option, or make the change directly in Azure then use pulumi refresh to update the stack’s stack to match.
Example Usage
Create Managed Cluster using an agent pool snapshot
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
CreationData = new AzureNative.ContainerService.Inputs.CreationDataArgs
{
SourceResourceId = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.ContainerService/snapshots/snapshot1",
},
EnableFIPS = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
CreationData: &containerservice.CreationDataArgs{
SourceResourceId: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.ContainerService/snapshots/snapshot1"),
},
EnableFIPS: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.CreationDataArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.creationData(CreationDataArgs.builder()
.sourceResourceId("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.ContainerService/snapshots/snapshot1")
.build())
.enableFIPS(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
creationData: {
sourceResourceId: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.ContainerService/snapshots/snapshot1",
},
enableFIPS: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"creation_data": {
"source_resource_id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.ContainerService/snapshots/snapshot1",
},
"enable_fips": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
creationData:
sourceResourceId: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.ContainerService/snapshots/snapshot1
enableFIPS: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with AKS-managed NAT gateway as outbound type
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = false,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
NatGatewayProfile = new AzureNative.ContainerService.Inputs.ManagedClusterNATGatewayProfileArgs
{
ManagedOutboundIPProfile = new AzureNative.ContainerService.Inputs.ManagedClusterManagedOutboundIPProfileArgs
{
Count = 2,
},
},
OutboundType = AzureNative.ContainerService.OutboundType.ManagedNATGateway,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(false),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
NatGatewayProfile: &containerservice.ManagedClusterNATGatewayProfileArgs{
ManagedOutboundIPProfile: &containerservice.ManagedClusterManagedOutboundIPProfileArgs{
Count: pulumi.Int(2),
},
},
OutboundType: pulumi.String(containerservice.OutboundTypeManagedNATGateway),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterNATGatewayProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterManagedOutboundIPProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(false)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerSku("standard")
.natGatewayProfile(ManagedClusterNATGatewayProfileArgs.builder()
.managedOutboundIPProfile(ManagedClusterManagedOutboundIPProfileArgs.builder()
.count(2)
.build())
.build())
.outboundType("managedNATGateway")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: false,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
natGatewayProfile: {
managedOutboundIPProfile: {
count: 2,
},
},
outboundType: azure_native.containerservice.OutboundType.ManagedNATGateway,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": False,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"nat_gateway_profile": {
"managed_outbound_ip_profile": {
"count": 2,
},
},
"outbound_type": azure_native.containerservice.OutboundType.MANAGED_NAT_GATEWAY,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: false
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerSku: standard
natGatewayProfile:
managedOutboundIPProfile:
count: 2
outboundType: managedNATGateway
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with Azure KeyVault Secrets Provider Addon
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles =
{
{ "azureKeyvaultSecretsProvider", new AzureNative.ContainerService.Inputs.ManagedClusterAddonProfileArgs
{
Config =
{
{ "enableSecretRotation", "true" },
{ "rotationPollInterval", "2m" },
},
Enabled = true,
} },
},
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{
"azureKeyvaultSecretsProvider": &containerservice.ManagedClusterAddonProfileArgs{
Config: pulumi.StringMap{
"enableSecretRotation": pulumi.String("true"),
"rotationPollInterval": pulumi.String("2m"),
},
Enabled: pulumi.Bool(true),
},
},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.of("azureKeyvaultSecretsProvider", ManagedClusterAddonProfileArgs.builder()
.config(Map.ofEntries(
Map.entry("enableSecretRotation", "true"),
Map.entry("rotationPollInterval", "2m")
))
.enabled(true)
.build()))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {
azureKeyvaultSecretsProvider: {
config: {
enableSecretRotation: "true",
rotationPollInterval: "2m",
},
enabled: true,
},
},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={
"azureKeyvaultSecretsProvider": {
"config": {
"enableSecretRotation": "true",
"rotationPollInterval": "2m",
},
"enabled": True,
},
},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles:
azureKeyvaultSecretsProvider:
config:
enableSecretRotation: 'true'
rotationPollInterval: 2m
enabled: true
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with Capacity Reservation Group
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
CapacityReservationGroupID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/capacityReservationGroups/crg1",
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
CapacityReservationGroupID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/capacityReservationGroups/crg1"),
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.capacityReservationGroupID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/capacityReservationGroups/crg1")
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
capacityReservationGroupID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/capacityReservationGroups/crg1",
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"capacity_reservation_group_id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/capacityReservationGroups/crg1",
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- capacityReservationGroupID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/capacityReservationGroups/crg1
count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with Custom CA Trust Certificates
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
SecurityProfile = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileArgs
{
CustomCATrustCertificates = new[]
{
"ZHVtbXlFeGFtcGxlVGVzdFZhbHVlRm9yQ2VydGlmaWNhdGVUb0JlQWRkZWQ=",
},
},
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
SecurityProfile: &containerservice.ManagedClusterSecurityProfileArgs{
CustomCATrustCertificates: pulumi.StringArray{
pulumi.String("ZHVtbXlFeGFtcGxlVGVzdFZhbHVlRm9yQ2VydGlmaWNhdGVUb0JlQWRkZWQ="),
},
},
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSecurityProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.securityProfile(ManagedClusterSecurityProfileArgs.builder()
.customCATrustCertificates("ZHVtbXlFeGFtcGxlVGVzdFZhbHVlRm9yQ2VydGlmaWNhdGVUb0JlQWRkZWQ=")
.build())
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
securityProfile: {
customCATrustCertificates: ["ZHVtbXlFeGFtcGxlVGVzdFZhbHVlRm9yQ2VydGlmaWNhdGVUb0JlQWRkZWQ="],
},
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
security_profile={
"custom_ca_trust_certificates": ["ZHVtbXlFeGFtcGxlVGVzdFZhbHVlRm9yQ2VydGlmaWNhdGVUb0JlQWRkZWQ="],
},
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
securityProfile:
customCATrustCertificates:
- ZHVtbXlFeGFtcGxlVGVzdFZhbHVlRm9yQ2VydGlmaWNhdGVUb0JlQWRkZWQ=
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with Dedicated Host Group
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
HostGroupID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg/providers/Microsoft.Compute/hostGroups/hostgroup1",
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
HostGroupID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg/providers/Microsoft.Compute/hostGroups/hostgroup1"),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.hostGroupID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg/providers/Microsoft.Compute/hostGroups/hostgroup1")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
hostGroupID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg/providers/Microsoft.Compute/hostGroups/hostgroup1",
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"host_group_id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg/providers/Microsoft.Compute/hostGroups/hostgroup1",
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
hostGroupID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg/providers/Microsoft.Compute/hostGroups/hostgroup1
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with EncryptionAtHost enabled
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableEncryptionAtHost = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableEncryptionAtHost: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableEncryptionAtHost(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableEncryptionAtHost: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_encryption_at_host": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableEncryptionAtHost: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with FIPS enabled OS
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableFIPS = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableFIPS: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableFIPS(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableFIPS: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_fips": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableFIPS: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with GPUMIG
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
GpuInstanceProfile = AzureNative.ContainerService.GPUInstanceProfile.MIG3g,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_ND96asr_v4",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
HttpProxyConfig = new AzureNative.ContainerService.Inputs.ManagedClusterHTTPProxyConfigArgs
{
HttpProxy = "http://myproxy.server.com:8080",
HttpsProxy = "https://myproxy.server.com:8080",
NoProxy = new[]
{
"localhost",
"127.0.0.1",
},
TrustedCa = "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
GpuInstanceProfile: pulumi.String(containerservice.GPUInstanceProfileMIG3g),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_ND96asr_v4"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
HttpProxyConfig: &containerservice.ManagedClusterHTTPProxyConfigArgs{
HttpProxy: pulumi.String("http://myproxy.server.com:8080"),
HttpsProxy: pulumi.String("https://myproxy.server.com:8080"),
NoProxy: pulumi.StringArray{
pulumi.String("localhost"),
pulumi.String("127.0.0.1"),
},
TrustedCa: pulumi.String("Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U="),
},
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterHTTPProxyConfigArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.gpuInstanceProfile("MIG3g")
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_ND96asr_v4")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.httpProxyConfig(ManagedClusterHTTPProxyConfigArgs.builder()
.httpProxy("http://myproxy.server.com:8080")
.httpsProxy("https://myproxy.server.com:8080")
.noProxy(
"localhost",
"127.0.0.1")
.trustedCa("Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=")
.build())
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
gpuInstanceProfile: azure_native.containerservice.GPUInstanceProfile.MIG3g,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_ND96asr_v4",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
httpProxyConfig: {
httpProxy: "http://myproxy.server.com:8080",
httpsProxy: "https://myproxy.server.com:8080",
noProxy: [
"localhost",
"127.0.0.1",
],
trustedCa: "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"gpu_instance_profile": azure_native.containerservice.GPUInstanceProfile.MIG3G,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_ND96asr_v4",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
http_proxy_config={
"http_proxy": "http://myproxy.server.com:8080",
"https_proxy": "https://myproxy.server.com:8080",
"no_proxy": [
"localhost",
"127.0.0.1",
],
"trusted_ca": "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
gpuInstanceProfile: MIG3g
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_ND96asr_v4
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
httpProxyConfig:
httpProxy: http://myproxy.server.com:8080
httpsProxy: https://myproxy.server.com:8080
noProxy:
- localhost
- 127.0.0.1
trustedCa: Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with HTTP proxy configured
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
HttpProxyConfig = new AzureNative.ContainerService.Inputs.ManagedClusterHTTPProxyConfigArgs
{
HttpProxy = "http://myproxy.server.com:8080",
HttpsProxy = "https://myproxy.server.com:8080",
NoProxy = new[]
{
"localhost",
"127.0.0.1",
},
TrustedCa = "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
HttpProxyConfig: &containerservice.ManagedClusterHTTPProxyConfigArgs{
HttpProxy: pulumi.String("http://myproxy.server.com:8080"),
HttpsProxy: pulumi.String("https://myproxy.server.com:8080"),
NoProxy: pulumi.StringArray{
pulumi.String("localhost"),
pulumi.String("127.0.0.1"),
},
TrustedCa: pulumi.String("Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U="),
},
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterHTTPProxyConfigArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.httpProxyConfig(ManagedClusterHTTPProxyConfigArgs.builder()
.httpProxy("http://myproxy.server.com:8080")
.httpsProxy("https://myproxy.server.com:8080")
.noProxy(
"localhost",
"127.0.0.1")
.trustedCa("Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=")
.build())
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
httpProxyConfig: {
httpProxy: "http://myproxy.server.com:8080",
httpsProxy: "https://myproxy.server.com:8080",
noProxy: [
"localhost",
"127.0.0.1",
],
trustedCa: "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
http_proxy_config={
"http_proxy": "http://myproxy.server.com:8080",
"https_proxy": "https://myproxy.server.com:8080",
"no_proxy": [
"localhost",
"127.0.0.1",
],
"trusted_ca": "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
httpProxyConfig:
httpProxy: http://myproxy.server.com:8080
httpsProxy: https://myproxy.server.com:8080
noProxy:
- localhost
- 127.0.0.1
trustedCa: Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with LongTermSupport
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableEncryptionAtHost = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
ApiServerAccessProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAPIServerAccessProfileArgs
{
DisableRunCommand = true,
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = AzureNative.ContainerService.ManagedClusterSKUName.Base,
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Premium,
},
SupportPlan = AzureNative.ContainerService.KubernetesSupportPlan.AKSLongTermSupport,
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableEncryptionAtHost: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
ApiServerAccessProfile: &containerservice.ManagedClusterAPIServerAccessProfileArgs{
DisableRunCommand: pulumi.Bool(true),
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String(containerservice.ManagedClusterSKUNameBase),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierPremium),
},
SupportPlan: pulumi.String(containerservice.KubernetesSupportPlanAKSLongTermSupport),
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAPIServerAccessProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableEncryptionAtHost(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.apiServerAccessProfile(ManagedClusterAPIServerAccessProfileArgs.builder()
.disableRunCommand(true)
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Base")
.tier("Premium")
.build())
.supportPlan("AKSLongTermSupport")
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableEncryptionAtHost: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
apiServerAccessProfile: {
disableRunCommand: true,
},
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: azure_native.containerservice.ManagedClusterSKUName.Base,
tier: azure_native.containerservice.ManagedClusterSKUTier.Premium,
},
supportPlan: azure_native.containerservice.KubernetesSupportPlan.AKSLongTermSupport,
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_encryption_at_host": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
api_server_access_profile={
"disable_run_command": True,
},
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": azure_native.containerservice.ManagedClusterSKUName.BASE,
"tier": azure_native.containerservice.ManagedClusterSKUTier.PREMIUM,
},
support_plan=azure_native.containerservice.KubernetesSupportPlan.AKS_LONG_TERM_SUPPORT,
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableEncryptionAtHost: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
apiServerAccessProfile:
disableRunCommand: true
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Base
tier: Premium
supportPlan: AKSLongTermSupport
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with Node Public IP Prefix
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
NodePublicIPPrefixID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/publicIPPrefixes/public-ip-prefix",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
NodePublicIPPrefixID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/publicIPPrefixes/public-ip-prefix"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.nodePublicIPPrefixID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/publicIPPrefixes/public-ip-prefix")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
nodePublicIPPrefixID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/publicIPPrefixes/public-ip-prefix",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"node_public_ip_prefix_id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/publicIPPrefixes/public-ip-prefix",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
nodePublicIPPrefixID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/publicIPPrefixes/public-ip-prefix
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with OSSKU
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsSKU = AzureNative.ContainerService.OSSKU.AzureLinux,
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
HttpProxyConfig = new AzureNative.ContainerService.Inputs.ManagedClusterHTTPProxyConfigArgs
{
HttpProxy = "http://myproxy.server.com:8080",
HttpsProxy = "https://myproxy.server.com:8080",
NoProxy = new[]
{
"localhost",
"127.0.0.1",
},
TrustedCa = "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsSKU: pulumi.String(containerservice.OSSKUAzureLinux),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
HttpProxyConfig: &containerservice.ManagedClusterHTTPProxyConfigArgs{
HttpProxy: pulumi.String("http://myproxy.server.com:8080"),
HttpsProxy: pulumi.String("https://myproxy.server.com:8080"),
NoProxy: pulumi.StringArray{
pulumi.String("localhost"),
pulumi.String("127.0.0.1"),
},
TrustedCa: pulumi.String("Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U="),
},
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterHTTPProxyConfigArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osSKU("AzureLinux")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.httpProxyConfig(ManagedClusterHTTPProxyConfigArgs.builder()
.httpProxy("http://myproxy.server.com:8080")
.httpsProxy("https://myproxy.server.com:8080")
.noProxy(
"localhost",
"127.0.0.1")
.trustedCa("Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=")
.build())
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osSKU: azure_native.containerservice.OSSKU.AzureLinux,
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
httpProxyConfig: {
httpProxy: "http://myproxy.server.com:8080",
httpsProxy: "https://myproxy.server.com:8080",
noProxy: [
"localhost",
"127.0.0.1",
],
trustedCa: "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_sku": azure_native.containerservice.OSSKU.AZURE_LINUX,
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
http_proxy_config={
"http_proxy": "http://myproxy.server.com:8080",
"https_proxy": "https://myproxy.server.com:8080",
"no_proxy": [
"localhost",
"127.0.0.1",
],
"trusted_ca": "Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=",
},
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osSKU: AzureLinux
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
httpProxyConfig:
httpProxy: http://myproxy.server.com:8080
httpsProxy: https://myproxy.server.com:8080
noProxy:
- localhost
- 127.0.0.1
trustedCa: Q29uZ3JhdHMhIFlvdSBoYXZlIGZvdW5kIGEgaGlkZGVuIG1lc3NhZ2U=
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with PPG
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
ProximityPlacementGroupID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/proximityPlacementGroups/ppg1",
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
ProximityPlacementGroupID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/proximityPlacementGroups/ppg1"),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.proximityPlacementGroupID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/proximityPlacementGroups/ppg1")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
proximityPlacementGroupID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/proximityPlacementGroups/ppg1",
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"proximity_placement_group_id": "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/proximityPlacementGroups/ppg1",
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
proximityPlacementGroupID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/proximityPlacementGroups/ppg1
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with PodIdentity enabled
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
PodIdentityProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityProfileArgs
{
AllowNetworkPluginKubenet = true,
Enabled = true,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
PodIdentityProfile: &containerservice.ManagedClusterPodIdentityProfileArgs{
AllowNetworkPluginKubenet: pulumi.Bool(true),
Enabled: pulumi.Bool(true),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPodIdentityProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.podIdentityProfile(ManagedClusterPodIdentityProfileArgs.builder()
.allowNetworkPluginKubenet(true)
.enabled(true)
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
podIdentityProfile: {
allowNetworkPluginKubenet: true,
enabled: true,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
pod_identity_profile={
"allow_network_plugin_kubenet": True,
"enabled": True,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
podIdentityProfile:
allowNetworkPluginKubenet: true
enabled: true
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with RunCommand disabled
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableEncryptionAtHost = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
ApiServerAccessProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAPIServerAccessProfileArgs
{
DisableRunCommand = true,
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableEncryptionAtHost: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
ApiServerAccessProfile: &containerservice.ManagedClusterAPIServerAccessProfileArgs{
DisableRunCommand: pulumi.Bool(true),
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAPIServerAccessProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableEncryptionAtHost(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.apiServerAccessProfile(ManagedClusterAPIServerAccessProfileArgs.builder()
.disableRunCommand(true)
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableEncryptionAtHost: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
apiServerAccessProfile: {
disableRunCommand: true,
},
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_encryption_at_host": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
api_server_access_profile={
"disable_run_command": True,
},
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableEncryptionAtHost: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
apiServerAccessProfile:
disableRunCommand: true
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with Security Profile configured
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
DnsPrefix = "dnsprefix1",
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
SecurityProfile = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileArgs
{
Defender = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileDefenderArgs
{
LogAnalyticsWorkspaceResourceId = "/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME",
SecurityMonitoring = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs
{
Enabled = true,
},
},
WorkloadIdentity = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileWorkloadIdentityArgs
{
Enabled = true,
},
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
DnsPrefix: pulumi.String("dnsprefix1"),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
SecurityProfile: &containerservice.ManagedClusterSecurityProfileArgs{
Defender: &containerservice.ManagedClusterSecurityProfileDefenderArgs{
LogAnalyticsWorkspaceResourceId: pulumi.String("/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME"),
SecurityMonitoring: &containerservice.ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs{
Enabled: pulumi.Bool(true),
},
},
WorkloadIdentity: &containerservice.ManagedClusterSecurityProfileWorkloadIdentityArgs{
Enabled: pulumi.Bool(true),
},
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSecurityProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSecurityProfileDefenderArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSecurityProfileWorkloadIdentityArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.dnsPrefix("dnsprefix1")
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.securityProfile(ManagedClusterSecurityProfileArgs.builder()
.defender(ManagedClusterSecurityProfileDefenderArgs.builder()
.logAnalyticsWorkspaceResourceId("/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME")
.securityMonitoring(ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs.builder()
.enabled(true)
.build())
.build())
.workloadIdentity(ManagedClusterSecurityProfileWorkloadIdentityArgs.builder()
.enabled(true)
.build())
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
dnsPrefix: "dnsprefix1",
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
securityProfile: {
defender: {
logAnalyticsWorkspaceResourceId: "/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME",
securityMonitoring: {
enabled: true,
},
},
workloadIdentity: {
enabled: true,
},
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
dns_prefix="dnsprefix1",
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
security_profile={
"defender": {
"log_analytics_workspace_resource_id": "/subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME",
"security_monitoring": {
"enabled": True,
},
},
"workload_identity": {
"enabled": True,
},
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
dnsPrefix: dnsprefix1
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
securityProfile:
defender:
logAnalyticsWorkspaceResourceId: /subscriptions/SUB_ID/resourcegroups/RG_NAME/providers/microsoft.operationalinsights/workspaces/WORKSPACE_NAME
securityMonitoring:
enabled: true
workloadIdentity:
enabled: true
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
Create Managed Cluster with UltraSSD enabled
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
EnableUltraSSD = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
EnableUltraSSD: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.enableUltraSSD(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
enableUltraSSD: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"enable_ultra_ssd": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
enableUltraSSD: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Cluster with Web App Routing Ingress Profile configured
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
DnsPrefix = "dnsprefix1",
IngressProfile = new AzureNative.ContainerService.Inputs.ManagedClusterIngressProfileArgs
{
WebAppRouting = new AzureNative.ContainerService.Inputs.ManagedClusterIngressProfileWebAppRoutingArgs
{
DnsZoneResourceIds = new[]
{
"/subscriptions/SUB_ID/resourceGroups/RG_NAME/providers/Microsoft.Network/dnszones/DNS_ZONE_NAME",
},
Enabled = true,
},
},
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
DnsPrefix: pulumi.String("dnsprefix1"),
IngressProfile: &containerservice.ManagedClusterIngressProfileArgs{
WebAppRouting: &containerservice.ManagedClusterIngressProfileWebAppRoutingArgs{
DnsZoneResourceIds: pulumi.StringArray{
pulumi.String("/subscriptions/SUB_ID/resourceGroups/RG_NAME/providers/Microsoft.Network/dnszones/DNS_ZONE_NAME"),
},
Enabled: pulumi.Bool(true),
},
},
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterIngressProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterIngressProfileWebAppRoutingArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.dnsPrefix("dnsprefix1")
.ingressProfile(ManagedClusterIngressProfileArgs.builder()
.webAppRouting(ManagedClusterIngressProfileWebAppRoutingArgs.builder()
.dnsZoneResourceIds("/subscriptions/SUB_ID/resourceGroups/RG_NAME/providers/Microsoft.Network/dnszones/DNS_ZONE_NAME")
.enabled(true)
.build())
.build())
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
dnsPrefix: "dnsprefix1",
ingressProfile: {
webAppRouting: {
dnsZoneResourceIds: ["/subscriptions/SUB_ID/resourceGroups/RG_NAME/providers/Microsoft.Network/dnszones/DNS_ZONE_NAME"],
enabled: true,
},
},
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
dns_prefix="dnsprefix1",
ingress_profile={
"web_app_routing": {
"dns_zone_resource_ids": ["/subscriptions/SUB_ID/resourceGroups/RG_NAME/providers/Microsoft.Network/dnszones/DNS_ZONE_NAME"],
"enabled": True,
},
},
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
dnsPrefix: dnsprefix1
ingressProfile:
webAppRouting:
dnsZoneResourceIds:
- /subscriptions/SUB_ID/resourceGroups/RG_NAME/providers/Microsoft.Network/dnszones/DNS_ZONE_NAME
enabled: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
Create Managed Cluster with user-assigned NAT gateway as outbound type
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = false,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.UserAssignedNATGateway,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(false),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeUserAssignedNATGateway),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(false)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerSku("standard")
.outboundType("userAssignedNATGateway")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: false,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.UserAssignedNATGateway,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": False,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.USER_ASSIGNED_NAT_GATEWAY,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableNodePublicIP: false
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerSku: standard
outboundType: userAssignedNATGateway
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Private Cluster with Public FQDN specified
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableEncryptionAtHost = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
ApiServerAccessProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAPIServerAccessProfileArgs
{
EnablePrivateCluster = true,
EnablePrivateClusterPublicFQDN = true,
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableEncryptionAtHost: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
ApiServerAccessProfile: &containerservice.ManagedClusterAPIServerAccessProfileArgs{
EnablePrivateCluster: pulumi.Bool(true),
EnablePrivateClusterPublicFQDN: pulumi.Bool(true),
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAPIServerAccessProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableEncryptionAtHost(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.apiServerAccessProfile(ManagedClusterAPIServerAccessProfileArgs.builder()
.enablePrivateCluster(true)
.enablePrivateClusterPublicFQDN(true)
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableEncryptionAtHost: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
apiServerAccessProfile: {
enablePrivateCluster: true,
enablePrivateClusterPublicFQDN: true,
},
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_encryption_at_host": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
api_server_access_profile={
"enable_private_cluster": True,
"enable_private_cluster_public_fqdn": True,
},
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableEncryptionAtHost: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
apiServerAccessProfile:
enablePrivateCluster: true
enablePrivateClusterPublicFQDN: true
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create Managed Private Cluster with fqdn subdomain specified
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableEncryptionAtHost = true,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
ApiServerAccessProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAPIServerAccessProfileArgs
{
EnablePrivateCluster = true,
PrivateDNSZone = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/privateDnsZones/privatelink.location1.azmk8s.io",
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
EnableRBAC = true,
FqdnSubdomain = "domain1",
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableEncryptionAtHost: pulumi.Bool(true),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
ApiServerAccessProfile: &containerservice.ManagedClusterAPIServerAccessProfileArgs{
EnablePrivateCluster: pulumi.Bool(true),
PrivateDNSZone: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/privateDnsZones/privatelink.location1.azmk8s.io"),
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
EnableRBAC: pulumi.Bool(true),
FqdnSubdomain: pulumi.String("domain1"),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAPIServerAccessProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableEncryptionAtHost(true)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.apiServerAccessProfile(ManagedClusterAPIServerAccessProfileArgs.builder()
.enablePrivateCluster(true)
.privateDNSZone("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/privateDnsZones/privatelink.location1.azmk8s.io")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.enableRBAC(true)
.fqdnSubdomain("domain1")
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {},
agentPoolProfiles: [{
count: 3,
enableEncryptionAtHost: true,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
apiServerAccessProfile: {
enablePrivateCluster: true,
privateDNSZone: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/privateDnsZones/privatelink.location1.azmk8s.io",
},
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
enableRBAC: true,
fqdnSubdomain: "domain1",
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={},
agent_pool_profiles=[{
"count": 3,
"enable_encryption_at_host": True,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
api_server_access_profile={
"enable_private_cluster": True,
"private_dns_zone": "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/privateDnsZones/privatelink.location1.azmk8s.io",
},
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
enable_rbac=True,
fqdn_subdomain="domain1",
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles: {}
agentPoolProfiles:
- count: 3
enableEncryptionAtHost: true
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
apiServerAccessProfile:
enablePrivateCluster: true
privateDNSZone: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Network/privateDnsZones/privatelink.location1.azmk8s.io
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
enableRBAC: true
fqdnSubdomain: domain1
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create/Update AAD Managed Cluster with EnableAzureRBAC
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AadProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAADProfileArgs
{
EnableAzureRBAC = true,
Managed = true,
},
AddonProfiles = null,
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
AvailabilityZones = new[]
{
"1",
"2",
"3",
},
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS1_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AadProfile: &containerservice.ManagedClusterAADProfileArgs{
EnableAzureRBAC: pulumi.Bool(true),
Managed: pulumi.Bool(true),
},
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
AvailabilityZones: pulumi.StringArray{
pulumi.String("1"),
pulumi.String("2"),
pulumi.String("3"),
},
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS1_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAADProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.aadProfile(ManagedClusterAADProfileArgs.builder()
.enableAzureRBAC(true)
.managed(true)
.build())
.addonProfiles(Map.ofEntries(
))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.availabilityZones(
"1",
"2",
"3")
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS1_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
aadProfile: {
enableAzureRBAC: true,
managed: true,
},
addonProfiles: {},
agentPoolProfiles: [{
availabilityZones: [
"1",
"2",
"3",
],
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS1_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
aad_profile={
"enable_azure_rbac": True,
"managed": True,
},
addon_profiles={},
agent_pool_profiles=[{
"availability_zones": [
"1",
"2",
"3",
],
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS1_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
aadProfile:
enableAzureRBAC: true
managed: true
addonProfiles: {}
agentPoolProfiles:
- availabilityZones:
- '1'
- '2'
- '3'
count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS1_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create/Update Managed Cluster with Azure Service Mesh
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedCluster = new AzureNative.ContainerService.ManagedCluster("managedCluster", new()
{
AddonProfiles =
{
{ "azureKeyvaultSecretsProvider", new AzureNative.ContainerService.Inputs.ManagedClusterAddonProfileArgs
{
Config =
{
{ "enableSecretRotation", "true" },
{ "rotationPollInterval", "2m" },
},
Enabled = true,
} },
},
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Count = 3,
EnableNodePublicIP = true,
Mode = AzureNative.ContainerService.AgentPoolMode.System,
Name = "nodepool1",
OsType = AzureNative.ContainerService.OSType.Linux,
Type = AzureNative.ContainerService.AgentPoolType.VirtualMachineScaleSets,
VmSize = "Standard_DS2_v2",
},
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
ScaleDownDelayAfterAdd = "15m",
ScanInterval = "20s",
},
DiskEncryptionSetID = "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
DnsPrefix = "dnsprefix1",
EnableRBAC = true,
KubernetesVersion = "",
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "azureuser",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "keydata",
},
},
},
},
Location = "location1",
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 2,
},
},
LoadBalancerSku = AzureNative.ContainerService.LoadBalancerSku.Standard,
OutboundType = AzureNative.ContainerService.OutboundType.LoadBalancer,
},
ResourceGroupName = "rg1",
ResourceName = "clustername1",
ServiceMeshProfile = new AzureNative.ContainerService.Inputs.ServiceMeshProfileArgs
{
Istio = new AzureNative.ContainerService.Inputs.IstioServiceMeshArgs
{
CertificateAuthority = new AzureNative.ContainerService.Inputs.IstioCertificateAuthorityArgs
{
Plugin = new AzureNative.ContainerService.Inputs.IstioPluginCertificateAuthorityArgs
{
CertChainObjectName = "cert-chain",
CertObjectName = "ca-cert",
KeyObjectName = "ca-key",
KeyVaultId = "/subscriptions/854c9ddb-fe9e-4aea-8d58-99ed88282881/resourceGroups/ddama-test/providers/Microsoft.KeyVault/vaults/my-akv",
RootCertObjectName = "root-cert",
},
},
Components = new AzureNative.ContainerService.Inputs.IstioComponentsArgs
{
EgressGateways = new[]
{
new AzureNative.ContainerService.Inputs.IstioEgressGatewayArgs
{
Enabled = true,
GatewayConfigurationName = "test-gateway-configuration",
Name = "test-istio-egress",
},
},
IngressGateways = new[]
{
new AzureNative.ContainerService.Inputs.IstioIngressGatewayArgs
{
Enabled = true,
Mode = AzureNative.ContainerService.IstioIngressGatewayMode.Internal,
},
},
},
},
Mode = AzureNative.ContainerService.ServiceMeshMode.Istio,
},
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "clientid",
Secret = "secret",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "Basic",
Tier = AzureNative.ContainerService.ManagedClusterSKUTier.Free,
},
Tags =
{
{ "archv2", "" },
{ "tier", "production" },
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminPassword = "replacePassword1234$",
AdminUsername = "azureuser",
},
});
});
package main
import (
containerservice "github.com/pulumi/pulumi-azure-native-sdk/containerservice/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := containerservice.NewManagedCluster(ctx, "managedCluster", &containerservice.ManagedClusterArgs{
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{
"azureKeyvaultSecretsProvider": &containerservice.ManagedClusterAddonProfileArgs{
Config: pulumi.StringMap{
"enableSecretRotation": pulumi.String("true"),
"rotationPollInterval": pulumi.String("2m"),
},
Enabled: pulumi.Bool(true),
},
},
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Count: pulumi.Int(3),
EnableNodePublicIP: pulumi.Bool(true),
Mode: pulumi.String(containerservice.AgentPoolModeSystem),
Name: pulumi.String("nodepool1"),
OsType: pulumi.String(containerservice.OSTypeLinux),
Type: pulumi.String(containerservice.AgentPoolTypeVirtualMachineScaleSets),
VmSize: pulumi.String("Standard_DS2_v2"),
},
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
ScaleDownDelayAfterAdd: pulumi.String("15m"),
ScanInterval: pulumi.String("20s"),
},
DiskEncryptionSetID: pulumi.String("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des"),
DnsPrefix: pulumi.String("dnsprefix1"),
EnableRBAC: pulumi.Bool(true),
KubernetesVersion: pulumi.String(""),
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("azureuser"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("keydata"),
},
},
},
},
Location: pulumi.String("location1"),
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(2),
},
},
LoadBalancerSku: pulumi.String(containerservice.LoadBalancerSkuStandard),
OutboundType: pulumi.String(containerservice.OutboundTypeLoadBalancer),
},
ResourceGroupName: pulumi.String("rg1"),
ResourceName: pulumi.String("clustername1"),
ServiceMeshProfile: &containerservice.ServiceMeshProfileArgs{
Istio: &containerservice.IstioServiceMeshArgs{
CertificateAuthority: &containerservice.IstioCertificateAuthorityArgs{
Plugin: &containerservice.IstioPluginCertificateAuthorityArgs{
CertChainObjectName: pulumi.String("cert-chain"),
CertObjectName: pulumi.String("ca-cert"),
KeyObjectName: pulumi.String("ca-key"),
KeyVaultId: pulumi.String("/subscriptions/854c9ddb-fe9e-4aea-8d58-99ed88282881/resourceGroups/ddama-test/providers/Microsoft.KeyVault/vaults/my-akv"),
RootCertObjectName: pulumi.String("root-cert"),
},
},
Components: &containerservice.IstioComponentsArgs{
EgressGateways: containerservice.IstioEgressGatewayArray{
&containerservice.IstioEgressGatewayArgs{
Enabled: pulumi.Bool(true),
GatewayConfigurationName: pulumi.String("test-gateway-configuration"),
Name: pulumi.String("test-istio-egress"),
},
},
IngressGateways: containerservice.IstioIngressGatewayArray{
&containerservice.IstioIngressGatewayArgs{
Enabled: pulumi.Bool(true),
Mode: pulumi.String(containerservice.IstioIngressGatewayModeInternal),
},
},
},
},
Mode: pulumi.String(containerservice.ServiceMeshModeIstio),
},
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("clientid"),
Secret: pulumi.String("secret"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("Basic"),
Tier: pulumi.String(containerservice.ManagedClusterSKUTierFree),
},
Tags: pulumi.StringMap{
"archv2": pulumi.String(""),
"tier": pulumi.String("production"),
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminPassword: pulumi.String("replacePassword1234$"),
AdminUsername: pulumi.String("azureuser"),
},
})
if err != nil {
return err
}
return nil
})
}
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.containerservice.ManagedCluster;
import com.pulumi.azurenative.containerservice.ManagedClusterArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterAgentPoolProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterPropertiesAutoScalerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceLinuxProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceSshConfigurationArgs;
import com.pulumi.azurenative.containerservice.inputs.ContainerServiceNetworkProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs;
import com.pulumi.azurenative.containerservice.inputs.ServiceMeshProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.IstioServiceMeshArgs;
import com.pulumi.azurenative.containerservice.inputs.IstioCertificateAuthorityArgs;
import com.pulumi.azurenative.containerservice.inputs.IstioPluginCertificateAuthorityArgs;
import com.pulumi.azurenative.containerservice.inputs.IstioComponentsArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterServicePrincipalProfileArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterSKUArgs;
import com.pulumi.azurenative.containerservice.inputs.ManagedClusterWindowsProfileArgs;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedCluster = new ManagedCluster("managedCluster", ManagedClusterArgs.builder()
.addonProfiles(Map.of("azureKeyvaultSecretsProvider", ManagedClusterAddonProfileArgs.builder()
.config(Map.ofEntries(
Map.entry("enableSecretRotation", "true"),
Map.entry("rotationPollInterval", "2m")
))
.enabled(true)
.build()))
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.count(3)
.enableNodePublicIP(true)
.mode("System")
.name("nodepool1")
.osType("Linux")
.type("VirtualMachineScaleSets")
.vmSize("Standard_DS2_v2")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.scaleDownDelayAfterAdd("15m")
.scanInterval("20s")
.build())
.diskEncryptionSetID("/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des")
.dnsPrefix("dnsprefix1")
.enableRBAC(true)
.kubernetesVersion("")
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("azureuser")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("keydata")
.build())
.build())
.build())
.location("location1")
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(2)
.build())
.build())
.loadBalancerSku("standard")
.outboundType("loadBalancer")
.build())
.resourceGroupName("rg1")
.resourceName("clustername1")
.serviceMeshProfile(ServiceMeshProfileArgs.builder()
.istio(IstioServiceMeshArgs.builder()
.certificateAuthority(IstioCertificateAuthorityArgs.builder()
.plugin(IstioPluginCertificateAuthorityArgs.builder()
.certChainObjectName("cert-chain")
.certObjectName("ca-cert")
.keyObjectName("ca-key")
.keyVaultId("/subscriptions/854c9ddb-fe9e-4aea-8d58-99ed88282881/resourceGroups/ddama-test/providers/Microsoft.KeyVault/vaults/my-akv")
.rootCertObjectName("root-cert")
.build())
.build())
.components(IstioComponentsArgs.builder()
.egressGateways(IstioEgressGatewayArgs.builder()
.enabled(true)
.gatewayConfigurationName("test-gateway-configuration")
.name("test-istio-egress")
.build())
.ingressGateways(IstioIngressGatewayArgs.builder()
.enabled(true)
.mode("Internal")
.build())
.build())
.build())
.mode("Istio")
.build())
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("clientid")
.secret("secret")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("Basic")
.tier("Free")
.build())
.tags(Map.ofEntries(
Map.entry("archv2", ""),
Map.entry("tier", "production")
))
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminPassword("replacePassword1234$")
.adminUsername("azureuser")
.build())
.build());
}
}
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedCluster = new azure_native.containerservice.ManagedCluster("managedCluster", {
addonProfiles: {
azureKeyvaultSecretsProvider: {
config: {
enableSecretRotation: "true",
rotationPollInterval: "2m",
},
enabled: true,
},
},
agentPoolProfiles: [{
count: 3,
enableNodePublicIP: true,
mode: azure_native.containerservice.AgentPoolMode.System,
name: "nodepool1",
osType: azure_native.containerservice.OSType.Linux,
type: azure_native.containerservice.AgentPoolType.VirtualMachineScaleSets,
vmSize: "Standard_DS2_v2",
}],
autoScalerProfile: {
scaleDownDelayAfterAdd: "15m",
scanInterval: "20s",
},
diskEncryptionSetID: "/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dnsPrefix: "dnsprefix1",
enableRBAC: true,
kubernetesVersion: "",
linuxProfile: {
adminUsername: "azureuser",
ssh: {
publicKeys: [{
keyData: "keydata",
}],
},
},
location: "location1",
networkProfile: {
loadBalancerProfile: {
managedOutboundIPs: {
count: 2,
},
},
loadBalancerSku: azure_native.containerservice.LoadBalancerSku.Standard,
outboundType: azure_native.containerservice.OutboundType.LoadBalancer,
},
resourceGroupName: "rg1",
resourceName: "clustername1",
serviceMeshProfile: {
istio: {
certificateAuthority: {
plugin: {
certChainObjectName: "cert-chain",
certObjectName: "ca-cert",
keyObjectName: "ca-key",
keyVaultId: "/subscriptions/854c9ddb-fe9e-4aea-8d58-99ed88282881/resourceGroups/ddama-test/providers/Microsoft.KeyVault/vaults/my-akv",
rootCertObjectName: "root-cert",
},
},
components: {
egressGateways: [{
enabled: true,
gatewayConfigurationName: "test-gateway-configuration",
name: "test-istio-egress",
}],
ingressGateways: [{
enabled: true,
mode: azure_native.containerservice.IstioIngressGatewayMode.Internal,
}],
},
},
mode: azure_native.containerservice.ServiceMeshMode.Istio,
},
servicePrincipalProfile: {
clientId: "clientid",
secret: "secret",
},
sku: {
name: "Basic",
tier: azure_native.containerservice.ManagedClusterSKUTier.Free,
},
tags: {
archv2: "",
tier: "production",
},
windowsProfile: {
adminPassword: "replacePassword1234$",
adminUsername: "azureuser",
},
});
import pulumi
import pulumi_azure_native as azure_native
managed_cluster = azure_native.containerservice.ManagedCluster("managedCluster",
addon_profiles={
"azureKeyvaultSecretsProvider": {
"config": {
"enableSecretRotation": "true",
"rotationPollInterval": "2m",
},
"enabled": True,
},
},
agent_pool_profiles=[{
"count": 3,
"enable_node_public_ip": True,
"mode": azure_native.containerservice.AgentPoolMode.SYSTEM,
"name": "nodepool1",
"os_type": azure_native.containerservice.OSType.LINUX,
"type": azure_native.containerservice.AgentPoolType.VIRTUAL_MACHINE_SCALE_SETS,
"vm_size": "Standard_DS2_v2",
}],
auto_scaler_profile={
"scale_down_delay_after_add": "15m",
"scan_interval": "20s",
},
disk_encryption_set_id="/subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des",
dns_prefix="dnsprefix1",
enable_rbac=True,
kubernetes_version="",
linux_profile={
"admin_username": "azureuser",
"ssh": {
"public_keys": [{
"key_data": "keydata",
}],
},
},
location="location1",
network_profile={
"load_balancer_profile": {
"managed_outbound_ips": {
"count": 2,
},
},
"load_balancer_sku": azure_native.containerservice.LoadBalancerSku.STANDARD,
"outbound_type": azure_native.containerservice.OutboundType.LOAD_BALANCER,
},
resource_group_name="rg1",
resource_name_="clustername1",
service_mesh_profile={
"istio": {
"certificate_authority": {
"plugin": {
"cert_chain_object_name": "cert-chain",
"cert_object_name": "ca-cert",
"key_object_name": "ca-key",
"key_vault_id": "/subscriptions/854c9ddb-fe9e-4aea-8d58-99ed88282881/resourceGroups/ddama-test/providers/Microsoft.KeyVault/vaults/my-akv",
"root_cert_object_name": "root-cert",
},
},
"components": {
"egress_gateways": [{
"enabled": True,
"gateway_configuration_name": "test-gateway-configuration",
"name": "test-istio-egress",
}],
"ingress_gateways": [{
"enabled": True,
"mode": azure_native.containerservice.IstioIngressGatewayMode.INTERNAL,
}],
},
},
"mode": azure_native.containerservice.ServiceMeshMode.ISTIO,
},
service_principal_profile={
"client_id": "clientid",
"secret": "secret",
},
sku={
"name": "Basic",
"tier": azure_native.containerservice.ManagedClusterSKUTier.FREE,
},
tags={
"archv2": "",
"tier": "production",
},
windows_profile={
"admin_password": "replacePassword1234$",
"admin_username": "azureuser",
})
resources:
managedCluster:
type: azure-native:containerservice:ManagedCluster
properties:
addonProfiles:
azureKeyvaultSecretsProvider:
config:
enableSecretRotation: 'true'
rotationPollInterval: 2m
enabled: true
agentPoolProfiles:
- count: 3
enableNodePublicIP: true
mode: System
name: nodepool1
osType: Linux
type: VirtualMachineScaleSets
vmSize: Standard_DS2_v2
autoScalerProfile:
scaleDownDelayAfterAdd: 15m
scanInterval: 20s
diskEncryptionSetID: /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/rg1/providers/Microsoft.Compute/diskEncryptionSets/des
dnsPrefix: dnsprefix1
enableRBAC: true
kubernetesVersion: ""
linuxProfile:
adminUsername: azureuser
ssh:
publicKeys:
- keyData: keydata
location: location1
networkProfile:
loadBalancerProfile:
managedOutboundIPs:
count: 2
loadBalancerSku: standard
outboundType: loadBalancer
resourceGroupName: rg1
resourceName: clustername1
serviceMeshProfile:
istio:
certificateAuthority:
plugin:
certChainObjectName: cert-chain
certObjectName: ca-cert
keyObjectName: ca-key
keyVaultId: /subscriptions/854c9ddb-fe9e-4aea-8d58-99ed88282881/resourceGroups/ddama-test/providers/Microsoft.KeyVault/vaults/my-akv
rootCertObjectName: root-cert
components:
egressGateways:
- enabled: true
gatewayConfigurationName: test-gateway-configuration
name: test-istio-egress
ingressGateways:
- enabled: true
mode: Internal
mode: Istio
servicePrincipalProfile:
clientId: clientid
secret: secret
sku:
name: Basic
tier: Free
tags:
archv2: ""
tier: production
windowsProfile:
adminPassword: replacePassword1234$
adminUsername: azureuser
Create ManagedCluster Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new ManagedCluster(name: string, args: ManagedClusterArgs, opts?: CustomResourceOptions);@overload
def ManagedCluster(resource_name: str,
args: ManagedClusterArgs,
opts: Optional[ResourceOptions] = None)
@overload
def ManagedCluster(resource_name: str,
opts: Optional[ResourceOptions] = None,
resource_group_name: Optional[str] = None,
location: Optional[str] = None,
metrics_profile: Optional[ManagedClusterMetricsProfileArgs] = None,
ai_toolchain_operator_profile: Optional[ManagedClusterAIToolchainOperatorProfileArgs] = None,
api_server_access_profile: Optional[ManagedClusterAPIServerAccessProfileArgs] = None,
auto_scaler_profile: Optional[ManagedClusterPropertiesAutoScalerProfileArgs] = None,
auto_upgrade_profile: Optional[ManagedClusterAutoUpgradeProfileArgs] = None,
azure_monitor_profile: Optional[ManagedClusterAzureMonitorProfileArgs] = None,
bootstrap_profile: Optional[ManagedClusterBootstrapProfileArgs] = None,
disable_local_accounts: Optional[bool] = None,
disk_encryption_set_id: Optional[str] = None,
dns_prefix: Optional[str] = None,
enable_rbac: Optional[bool] = None,
extended_location: Optional[ExtendedLocationArgs] = None,
fqdn_subdomain: Optional[str] = None,
http_proxy_config: Optional[ManagedClusterHTTPProxyConfigArgs] = None,
identity: Optional[ManagedClusterIdentityArgs] = None,
identity_profile: Optional[Mapping[str, UserAssignedIdentityArgs]] = None,
aad_profile: Optional[ManagedClusterAADProfileArgs] = None,
kind: Optional[str] = None,
kubernetes_version: Optional[str] = None,
agent_pool_profiles: Optional[Sequence[ManagedClusterAgentPoolProfileArgs]] = None,
linux_profile: Optional[ContainerServiceLinuxProfileArgs] = None,
ingress_profile: Optional[ManagedClusterIngressProfileArgs] = None,
network_profile: Optional[ContainerServiceNetworkProfileArgs] = None,
node_provisioning_profile: Optional[ManagedClusterNodeProvisioningProfileArgs] = None,
node_resource_group: Optional[str] = None,
node_resource_group_profile: Optional[ManagedClusterNodeResourceGroupProfileArgs] = None,
oidc_issuer_profile: Optional[ManagedClusterOIDCIssuerProfileArgs] = None,
pod_identity_profile: Optional[ManagedClusterPodIdentityProfileArgs] = None,
private_link_resources: Optional[Sequence[PrivateLinkResourceArgs]] = None,
public_network_access: Optional[Union[str, PublicNetworkAccess]] = None,
addon_profiles: Optional[Mapping[str, ManagedClusterAddonProfileArgs]] = None,
resource_name_: Optional[str] = None,
security_profile: Optional[ManagedClusterSecurityProfileArgs] = None,
service_mesh_profile: Optional[ServiceMeshProfileArgs] = None,
service_principal_profile: Optional[ManagedClusterServicePrincipalProfileArgs] = None,
sku: Optional[ManagedClusterSKUArgs] = None,
storage_profile: Optional[ManagedClusterStorageProfileArgs] = None,
support_plan: Optional[Union[str, KubernetesSupportPlan]] = None,
tags: Optional[Mapping[str, str]] = None,
upgrade_settings: Optional[ClusterUpgradeSettingsArgs] = None,
windows_profile: Optional[ManagedClusterWindowsProfileArgs] = None,
workload_auto_scaler_profile: Optional[ManagedClusterWorkloadAutoScalerProfileArgs] = None)func NewManagedCluster(ctx *Context, name string, args ManagedClusterArgs, opts ...ResourceOption) (*ManagedCluster, error)public ManagedCluster(string name, ManagedClusterArgs args, CustomResourceOptions? opts = null)
public ManagedCluster(String name, ManagedClusterArgs args)
public ManagedCluster(String name, ManagedClusterArgs args, CustomResourceOptions options)
type: azure-native:containerservice:ManagedCluster
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
resource "azure-native_containerservice_managedcluster" "name" {
# resource properties
}Parameters
- name string
- The unique name of the resource.
- args ManagedClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ManagedClusterArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ManagedClusterArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ManagedClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ManagedClusterArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var managedClusterResource = new AzureNative.ContainerService.ManagedCluster("managedClusterResource", new()
{
ResourceGroupName = "string",
Location = "string",
MetricsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterMetricsProfileArgs
{
CostAnalysis = new AzureNative.ContainerService.Inputs.ManagedClusterCostAnalysisArgs
{
Enabled = false,
},
},
AiToolchainOperatorProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAIToolchainOperatorProfileArgs
{
Enabled = false,
},
ApiServerAccessProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAPIServerAccessProfileArgs
{
AuthorizedIPRanges = new[]
{
"string",
},
DisableRunCommand = false,
EnablePrivateCluster = false,
EnablePrivateClusterPublicFQDN = false,
EnableVnetIntegration = false,
PrivateDNSZone = "string",
SubnetId = "string",
},
AutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPropertiesAutoScalerProfileArgs
{
BalanceSimilarNodeGroups = "string",
DaemonsetEvictionForEmptyNodes = false,
DaemonsetEvictionForOccupiedNodes = false,
Expander = "string",
IgnoreDaemonsetsUtilization = false,
MaxEmptyBulkDelete = "string",
MaxGracefulTerminationSec = "string",
MaxNodeProvisionTime = "string",
MaxTotalUnreadyPercentage = "string",
NewPodScaleUpDelay = "string",
OkTotalUnreadyCount = "string",
ScaleDownDelayAfterAdd = "string",
ScaleDownDelayAfterDelete = "string",
ScaleDownDelayAfterFailure = "string",
ScaleDownUnneededTime = "string",
ScaleDownUnreadyTime = "string",
ScaleDownUtilizationThreshold = "string",
ScanInterval = "string",
SkipNodesWithLocalStorage = "string",
SkipNodesWithSystemPods = "string",
},
AutoUpgradeProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAutoUpgradeProfileArgs
{
NodeOSUpgradeChannel = "string",
UpgradeChannel = "string",
},
AzureMonitorProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAzureMonitorProfileArgs
{
Metrics = new AzureNative.ContainerService.Inputs.ManagedClusterAzureMonitorProfileMetricsArgs
{
Enabled = false,
KubeStateMetrics = new AzureNative.ContainerService.Inputs.ManagedClusterAzureMonitorProfileKubeStateMetricsArgs
{
MetricAnnotationsAllowList = "string",
MetricLabelsAllowlist = "string",
},
},
},
BootstrapProfile = new AzureNative.ContainerService.Inputs.ManagedClusterBootstrapProfileArgs
{
ArtifactSource = "string",
ContainerRegistryId = "string",
},
DisableLocalAccounts = false,
DiskEncryptionSetID = "string",
DnsPrefix = "string",
EnableRBAC = false,
ExtendedLocation = new AzureNative.ContainerService.Inputs.ExtendedLocationArgs
{
Name = "string",
Type = "string",
},
FqdnSubdomain = "string",
HttpProxyConfig = new AzureNative.ContainerService.Inputs.ManagedClusterHTTPProxyConfigArgs
{
HttpProxy = "string",
HttpsProxy = "string",
NoProxy = new[]
{
"string",
},
TrustedCa = "string",
},
Identity = new AzureNative.ContainerService.Inputs.ManagedClusterIdentityArgs
{
DelegatedResources =
{
{ "string", new AzureNative.ContainerService.Inputs.DelegatedResourceArgs
{
Location = "string",
ReferralResource = "string",
ResourceId = "string",
TenantId = "string",
} },
},
Type = AzureNative.ContainerService.ResourceIdentityType.SystemAssigned,
UserAssignedIdentities = new[]
{
"string",
},
},
IdentityProfile =
{
{ "string", new AzureNative.ContainerService.Inputs.UserAssignedIdentityArgs
{
ClientId = "string",
ObjectId = "string",
ResourceId = "string",
} },
},
AadProfile = new AzureNative.ContainerService.Inputs.ManagedClusterAADProfileArgs
{
AdminGroupObjectIDs = new[]
{
"string",
},
ClientAppID = "string",
EnableAzureRBAC = false,
Managed = false,
ServerAppID = "string",
ServerAppSecret = "string",
TenantID = "string",
},
Kind = "string",
KubernetesVersion = "string",
AgentPoolProfiles = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterAgentPoolProfileArgs
{
Name = "string",
AvailabilityZones = new[]
{
"string",
},
CapacityReservationGroupID = "string",
Count = 0,
CreationData = new AzureNative.ContainerService.Inputs.CreationDataArgs
{
SourceResourceId = "string",
},
EnableAutoScaling = false,
EnableEncryptionAtHost = false,
EnableFIPS = false,
EnableNodePublicIP = false,
EnableUltraSSD = false,
GatewayProfile = new AzureNative.ContainerService.Inputs.AgentPoolGatewayProfileArgs
{
PublicIPPrefixSize = 0,
},
GpuInstanceProfile = "string",
GpuProfile = new AzureNative.ContainerService.Inputs.GPUProfileArgs
{
Driver = "string",
},
HostGroupID = "string",
KubeletConfig = new AzureNative.ContainerService.Inputs.KubeletConfigArgs
{
AllowedUnsafeSysctls = new[]
{
"string",
},
ContainerLogMaxFiles = 0,
ContainerLogMaxSizeMB = 0,
CpuCfsQuota = false,
CpuCfsQuotaPeriod = "string",
CpuManagerPolicy = "string",
FailSwapOn = false,
ImageGcHighThreshold = 0,
ImageGcLowThreshold = 0,
PodMaxPids = 0,
TopologyManagerPolicy = "string",
},
KubeletDiskType = "string",
LinuxOSConfig = new AzureNative.ContainerService.Inputs.LinuxOSConfigArgs
{
SwapFileSizeMB = 0,
Sysctls = new AzureNative.ContainerService.Inputs.SysctlConfigArgs
{
FsAioMaxNr = 0,
FsFileMax = 0,
FsInotifyMaxUserWatches = 0,
FsNrOpen = 0,
KernelThreadsMax = 0,
NetCoreNetdevMaxBacklog = 0,
NetCoreOptmemMax = 0,
NetCoreRmemDefault = 0,
NetCoreRmemMax = 0,
NetCoreSomaxconn = 0,
NetCoreWmemDefault = 0,
NetCoreWmemMax = 0,
NetIpv4IpLocalPortRange = "string",
NetIpv4NeighDefaultGcThresh1 = 0,
NetIpv4NeighDefaultGcThresh2 = 0,
NetIpv4NeighDefaultGcThresh3 = 0,
NetIpv4TcpFinTimeout = 0,
NetIpv4TcpKeepaliveProbes = 0,
NetIpv4TcpKeepaliveTime = 0,
NetIpv4TcpMaxSynBacklog = 0,
NetIpv4TcpMaxTwBuckets = 0,
NetIpv4TcpTwReuse = false,
NetIpv4TcpkeepaliveIntvl = 0,
NetNetfilterNfConntrackBuckets = 0,
NetNetfilterNfConntrackMax = 0,
VmMaxMapCount = 0,
VmSwappiness = 0,
VmVfsCachePressure = 0,
},
TransparentHugePageDefrag = "string",
TransparentHugePageEnabled = "string",
},
LocalDNSProfile = new AzureNative.ContainerService.Inputs.LocalDNSProfileArgs
{
KubeDNSOverrides =
{
{ "string", new AzureNative.ContainerService.Inputs.LocalDNSOverrideArgs
{
CacheDurationInSeconds = 0,
ForwardDestination = "string",
ForwardPolicy = "string",
MaxConcurrent = 0,
Protocol = "string",
QueryLogging = "string",
ServeStale = "string",
ServeStaleDurationInSeconds = 0,
} },
},
Mode = "string",
VnetDNSOverrides =
{
{ "string", new AzureNative.ContainerService.Inputs.LocalDNSOverrideArgs
{
CacheDurationInSeconds = 0,
ForwardDestination = "string",
ForwardPolicy = "string",
MaxConcurrent = 0,
Protocol = "string",
QueryLogging = "string",
ServeStale = "string",
ServeStaleDurationInSeconds = 0,
} },
},
},
MaxCount = 0,
MaxPods = 0,
MessageOfTheDay = "string",
MinCount = 0,
Mode = "string",
NetworkProfile = new AzureNative.ContainerService.Inputs.AgentPoolNetworkProfileArgs
{
AllowedHostPorts = new[]
{
new AzureNative.ContainerService.Inputs.PortRangeArgs
{
PortEnd = 0,
PortStart = 0,
Protocol = "string",
},
},
ApplicationSecurityGroups = new[]
{
"string",
},
NodePublicIPTags = new[]
{
new AzureNative.ContainerService.Inputs.IPTagArgs
{
IpTagType = "string",
Tag = "string",
},
},
},
NodeLabels =
{
{ "string", "string" },
},
NodePublicIPPrefixID = "string",
NodeTaints = new[]
{
"string",
},
OrchestratorVersion = "string",
OsDiskSizeGB = 0,
OsDiskType = "string",
OsSKU = "string",
OsType = "string",
PodIPAllocationMode = "string",
PodSubnetID = "string",
PowerState = new AzureNative.ContainerService.Inputs.PowerStateArgs
{
Code = "string",
},
ProximityPlacementGroupID = "string",
ScaleDownMode = "string",
ScaleSetEvictionPolicy = "string",
ScaleSetPriority = "string",
SecurityProfile = new AzureNative.ContainerService.Inputs.AgentPoolSecurityProfileArgs
{
EnableSecureBoot = false,
EnableVTPM = false,
SshAccess = "string",
},
SpotMaxPrice = 0,
Tags =
{
{ "string", "string" },
},
Type = "string",
UpgradeSettings = new AzureNative.ContainerService.Inputs.AgentPoolUpgradeSettingsArgs
{
DrainTimeoutInMinutes = 0,
MaxSurge = "string",
MaxUnavailable = "string",
NodeSoakDurationInMinutes = 0,
UndrainableNodeBehavior = "string",
},
VirtualMachineNodesStatus = new[]
{
new AzureNative.ContainerService.Inputs.VirtualMachineNodesArgs
{
Count = 0,
Size = "string",
},
},
VirtualMachinesProfile = new AzureNative.ContainerService.Inputs.VirtualMachinesProfileArgs
{
Scale = new AzureNative.ContainerService.Inputs.ScaleProfileArgs
{
Manual = new[]
{
new AzureNative.ContainerService.Inputs.ManualScaleProfileArgs
{
Count = 0,
Size = "string",
},
},
},
},
VmSize = "string",
VnetSubnetID = "string",
WindowsProfile = new AzureNative.ContainerService.Inputs.AgentPoolWindowsProfileArgs
{
DisableOutboundNat = false,
},
WorkloadRuntime = "string",
},
},
LinuxProfile = new AzureNative.ContainerService.Inputs.ContainerServiceLinuxProfileArgs
{
AdminUsername = "string",
Ssh = new AzureNative.ContainerService.Inputs.ContainerServiceSshConfigurationArgs
{
PublicKeys = new[]
{
new AzureNative.ContainerService.Inputs.ContainerServiceSshPublicKeyArgs
{
KeyData = "string",
},
},
},
},
IngressProfile = new AzureNative.ContainerService.Inputs.ManagedClusterIngressProfileArgs
{
WebAppRouting = new AzureNative.ContainerService.Inputs.ManagedClusterIngressProfileWebAppRoutingArgs
{
DnsZoneResourceIds = new[]
{
"string",
},
Enabled = false,
Nginx = new AzureNative.ContainerService.Inputs.ManagedClusterIngressProfileNginxArgs
{
DefaultIngressControllerType = "string",
},
},
},
NetworkProfile = new AzureNative.ContainerService.Inputs.ContainerServiceNetworkProfileArgs
{
AdvancedNetworking = new AzureNative.ContainerService.Inputs.AdvancedNetworkingArgs
{
Enabled = false,
Observability = new AzureNative.ContainerService.Inputs.AdvancedNetworkingObservabilityArgs
{
Enabled = false,
},
Security = new AzureNative.ContainerService.Inputs.AdvancedNetworkingSecurityArgs
{
AdvancedNetworkPolicies = "string",
Enabled = false,
},
},
DnsServiceIP = "string",
IpFamilies = new[]
{
"string",
},
LoadBalancerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileArgs
{
AllocatedOutboundPorts = 0,
BackendPoolType = "string",
EnableMultipleStandardLoadBalancers = false,
IdleTimeoutInMinutes = 0,
ManagedOutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
{
Count = 0,
CountIPv6 = 0,
},
OutboundIPPrefixes = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileOutboundIPPrefixesArgs
{
PublicIPPrefixes = new[]
{
new AzureNative.ContainerService.Inputs.ResourceReferenceArgs
{
Id = "string",
},
},
},
OutboundIPs = new AzureNative.ContainerService.Inputs.ManagedClusterLoadBalancerProfileOutboundIPsArgs
{
PublicIPs = new[]
{
new AzureNative.ContainerService.Inputs.ResourceReferenceArgs
{
Id = "string",
},
},
},
},
LoadBalancerSku = "string",
NatGatewayProfile = new AzureNative.ContainerService.Inputs.ManagedClusterNATGatewayProfileArgs
{
IdleTimeoutInMinutes = 0,
ManagedOutboundIPProfile = new AzureNative.ContainerService.Inputs.ManagedClusterManagedOutboundIPProfileArgs
{
Count = 0,
},
},
NetworkDataplane = "string",
NetworkMode = "string",
NetworkPlugin = "string",
NetworkPluginMode = "string",
NetworkPolicy = "string",
OutboundType = "string",
PodCidr = "string",
PodCidrs = new[]
{
"string",
},
ServiceCidr = "string",
ServiceCidrs = new[]
{
"string",
},
StaticEgressGatewayProfile = new AzureNative.ContainerService.Inputs.ManagedClusterStaticEgressGatewayProfileArgs
{
Enabled = false,
},
},
NodeProvisioningProfile = new AzureNative.ContainerService.Inputs.ManagedClusterNodeProvisioningProfileArgs
{
DefaultNodePools = "string",
Mode = "string",
},
NodeResourceGroup = "string",
NodeResourceGroupProfile = new AzureNative.ContainerService.Inputs.ManagedClusterNodeResourceGroupProfileArgs
{
RestrictionLevel = "string",
},
OidcIssuerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterOIDCIssuerProfileArgs
{
Enabled = false,
},
PodIdentityProfile = new AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityProfileArgs
{
AllowNetworkPluginKubenet = false,
Enabled = false,
UserAssignedIdentities = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityArgs
{
Identity = new AzureNative.ContainerService.Inputs.UserAssignedIdentityArgs
{
ClientId = "string",
ObjectId = "string",
ResourceId = "string",
},
Name = "string",
Namespace = "string",
BindingSelector = "string",
},
},
UserAssignedIdentityExceptions = new[]
{
new AzureNative.ContainerService.Inputs.ManagedClusterPodIdentityExceptionArgs
{
Name = "string",
Namespace = "string",
PodLabels =
{
{ "string", "string" },
},
},
},
},
PrivateLinkResources = new[]
{
new AzureNative.ContainerService.Inputs.PrivateLinkResourceArgs
{
GroupId = "string",
Id = "string",
Name = "string",
RequiredMembers = new[]
{
"string",
},
Type = "string",
},
},
PublicNetworkAccess = "string",
AddonProfiles =
{
{ "string", new AzureNative.ContainerService.Inputs.ManagedClusterAddonProfileArgs
{
Enabled = false,
Config =
{
{ "string", "string" },
},
} },
},
ResourceName = "string",
SecurityProfile = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileArgs
{
AzureKeyVaultKms = new AzureNative.ContainerService.Inputs.AzureKeyVaultKmsArgs
{
Enabled = false,
KeyId = "string",
KeyVaultNetworkAccess = "string",
KeyVaultResourceId = "string",
},
CustomCATrustCertificates = new[]
{
"string",
},
Defender = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileDefenderArgs
{
LogAnalyticsWorkspaceResourceId = "string",
SecurityMonitoring = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs
{
Enabled = false,
},
},
ImageCleaner = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileImageCleanerArgs
{
Enabled = false,
IntervalHours = 0,
},
WorkloadIdentity = new AzureNative.ContainerService.Inputs.ManagedClusterSecurityProfileWorkloadIdentityArgs
{
Enabled = false,
},
},
ServiceMeshProfile = new AzureNative.ContainerService.Inputs.ServiceMeshProfileArgs
{
Mode = "string",
Istio = new AzureNative.ContainerService.Inputs.IstioServiceMeshArgs
{
CertificateAuthority = new AzureNative.ContainerService.Inputs.IstioCertificateAuthorityArgs
{
Plugin = new AzureNative.ContainerService.Inputs.IstioPluginCertificateAuthorityArgs
{
CertChainObjectName = "string",
CertObjectName = "string",
KeyObjectName = "string",
KeyVaultId = "string",
RootCertObjectName = "string",
},
},
Components = new AzureNative.ContainerService.Inputs.IstioComponentsArgs
{
EgressGateways = new[]
{
new AzureNative.ContainerService.Inputs.IstioEgressGatewayArgs
{
Enabled = false,
Name = "string",
GatewayConfigurationName = "string",
Namespace = "string",
},
},
IngressGateways = new[]
{
new AzureNative.ContainerService.Inputs.IstioIngressGatewayArgs
{
Enabled = false,
Mode = "string",
},
},
},
Revisions = new[]
{
"string",
},
},
},
ServicePrincipalProfile = new AzureNative.ContainerService.Inputs.ManagedClusterServicePrincipalProfileArgs
{
ClientId = "string",
Secret = "string",
},
Sku = new AzureNative.ContainerService.Inputs.ManagedClusterSKUArgs
{
Name = "string",
Tier = "string",
},
StorageProfile = new AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileArgs
{
BlobCSIDriver = new AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileBlobCSIDriverArgs
{
Enabled = false,
},
DiskCSIDriver = new AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileDiskCSIDriverArgs
{
Enabled = false,
},
FileCSIDriver = new AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileFileCSIDriverArgs
{
Enabled = false,
},
SnapshotController = new AzureNative.ContainerService.Inputs.ManagedClusterStorageProfileSnapshotControllerArgs
{
Enabled = false,
},
},
SupportPlan = "string",
Tags =
{
{ "string", "string" },
},
UpgradeSettings = new AzureNative.ContainerService.Inputs.ClusterUpgradeSettingsArgs
{
OverrideSettings = new AzureNative.ContainerService.Inputs.UpgradeOverrideSettingsArgs
{
ForceUpgrade = false,
Until = "string",
},
},
WindowsProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWindowsProfileArgs
{
AdminUsername = "string",
AdminPassword = "string",
EnableCSIProxy = false,
GmsaProfile = new AzureNative.ContainerService.Inputs.WindowsGmsaProfileArgs
{
DnsServer = "string",
Enabled = false,
RootDomainName = "string",
},
LicenseType = "string",
},
WorkloadAutoScalerProfile = new AzureNative.ContainerService.Inputs.ManagedClusterWorkloadAutoScalerProfileArgs
{
Keda = new AzureNative.ContainerService.Inputs.ManagedClusterWorkloadAutoScalerProfileKedaArgs
{
Enabled = false,
},
VerticalPodAutoscaler = new AzureNative.ContainerService.Inputs.ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerArgs
{
Enabled = false,
},
},
});
example, err := containerservice.NewManagedCluster(ctx, "managedClusterResource", &containerservice.ManagedClusterArgs{
ResourceGroupName: pulumi.String("string"),
Location: pulumi.String("string"),
MetricsProfile: &containerservice.ManagedClusterMetricsProfileArgs{
CostAnalysis: &containerservice.ManagedClusterCostAnalysisArgs{
Enabled: pulumi.Bool(false),
},
},
AiToolchainOperatorProfile: &containerservice.ManagedClusterAIToolchainOperatorProfileArgs{
Enabled: pulumi.Bool(false),
},
ApiServerAccessProfile: &containerservice.ManagedClusterAPIServerAccessProfileArgs{
AuthorizedIPRanges: pulumi.StringArray{
pulumi.String("string"),
},
DisableRunCommand: pulumi.Bool(false),
EnablePrivateCluster: pulumi.Bool(false),
EnablePrivateClusterPublicFQDN: pulumi.Bool(false),
EnableVnetIntegration: pulumi.Bool(false),
PrivateDNSZone: pulumi.String("string"),
SubnetId: pulumi.String("string"),
},
AutoScalerProfile: &containerservice.ManagedClusterPropertiesAutoScalerProfileArgs{
BalanceSimilarNodeGroups: pulumi.String("string"),
DaemonsetEvictionForEmptyNodes: pulumi.Bool(false),
DaemonsetEvictionForOccupiedNodes: pulumi.Bool(false),
Expander: pulumi.String("string"),
IgnoreDaemonsetsUtilization: pulumi.Bool(false),
MaxEmptyBulkDelete: pulumi.String("string"),
MaxGracefulTerminationSec: pulumi.String("string"),
MaxNodeProvisionTime: pulumi.String("string"),
MaxTotalUnreadyPercentage: pulumi.String("string"),
NewPodScaleUpDelay: pulumi.String("string"),
OkTotalUnreadyCount: pulumi.String("string"),
ScaleDownDelayAfterAdd: pulumi.String("string"),
ScaleDownDelayAfterDelete: pulumi.String("string"),
ScaleDownDelayAfterFailure: pulumi.String("string"),
ScaleDownUnneededTime: pulumi.String("string"),
ScaleDownUnreadyTime: pulumi.String("string"),
ScaleDownUtilizationThreshold: pulumi.String("string"),
ScanInterval: pulumi.String("string"),
SkipNodesWithLocalStorage: pulumi.String("string"),
SkipNodesWithSystemPods: pulumi.String("string"),
},
AutoUpgradeProfile: &containerservice.ManagedClusterAutoUpgradeProfileArgs{
NodeOSUpgradeChannel: pulumi.String("string"),
UpgradeChannel: pulumi.String("string"),
},
AzureMonitorProfile: &containerservice.ManagedClusterAzureMonitorProfileArgs{
Metrics: &containerservice.ManagedClusterAzureMonitorProfileMetricsArgs{
Enabled: pulumi.Bool(false),
KubeStateMetrics: &containerservice.ManagedClusterAzureMonitorProfileKubeStateMetricsArgs{
MetricAnnotationsAllowList: pulumi.String("string"),
MetricLabelsAllowlist: pulumi.String("string"),
},
},
},
BootstrapProfile: &containerservice.ManagedClusterBootstrapProfileArgs{
ArtifactSource: pulumi.String("string"),
ContainerRegistryId: pulumi.String("string"),
},
DisableLocalAccounts: pulumi.Bool(false),
DiskEncryptionSetID: pulumi.String("string"),
DnsPrefix: pulumi.String("string"),
EnableRBAC: pulumi.Bool(false),
ExtendedLocation: &containerservice.ExtendedLocationArgs{
Name: pulumi.String("string"),
Type: pulumi.String("string"),
},
FqdnSubdomain: pulumi.String("string"),
HttpProxyConfig: &containerservice.ManagedClusterHTTPProxyConfigArgs{
HttpProxy: pulumi.String("string"),
HttpsProxy: pulumi.String("string"),
NoProxy: pulumi.StringArray{
pulumi.String("string"),
},
TrustedCa: pulumi.String("string"),
},
Identity: &containerservice.ManagedClusterIdentityArgs{
DelegatedResources: containerservice.DelegatedResourceMap{
"string": &containerservice.DelegatedResourceArgs{
Location: pulumi.String("string"),
ReferralResource: pulumi.String("string"),
ResourceId: pulumi.String("string"),
TenantId: pulumi.String("string"),
},
},
Type: containerservice.ResourceIdentityTypeSystemAssigned,
UserAssignedIdentities: pulumi.StringArray{
pulumi.String("string"),
},
},
IdentityProfile: containerservice.UserAssignedIdentityMap{
"string": &containerservice.UserAssignedIdentityArgs{
ClientId: pulumi.String("string"),
ObjectId: pulumi.String("string"),
ResourceId: pulumi.String("string"),
},
},
AadProfile: &containerservice.ManagedClusterAADProfileArgs{
AdminGroupObjectIDs: pulumi.StringArray{
pulumi.String("string"),
},
ClientAppID: pulumi.String("string"),
EnableAzureRBAC: pulumi.Bool(false),
Managed: pulumi.Bool(false),
ServerAppID: pulumi.String("string"),
ServerAppSecret: pulumi.String("string"),
TenantID: pulumi.String("string"),
},
Kind: pulumi.String("string"),
KubernetesVersion: pulumi.String("string"),
AgentPoolProfiles: containerservice.ManagedClusterAgentPoolProfileArray{
&containerservice.ManagedClusterAgentPoolProfileArgs{
Name: pulumi.String("string"),
AvailabilityZones: pulumi.StringArray{
pulumi.String("string"),
},
CapacityReservationGroupID: pulumi.String("string"),
Count: pulumi.Int(0),
CreationData: &containerservice.CreationDataArgs{
SourceResourceId: pulumi.String("string"),
},
EnableAutoScaling: pulumi.Bool(false),
EnableEncryptionAtHost: pulumi.Bool(false),
EnableFIPS: pulumi.Bool(false),
EnableNodePublicIP: pulumi.Bool(false),
EnableUltraSSD: pulumi.Bool(false),
GatewayProfile: &containerservice.AgentPoolGatewayProfileArgs{
PublicIPPrefixSize: pulumi.Int(0),
},
GpuInstanceProfile: pulumi.String("string"),
GpuProfile: &containerservice.GPUProfileArgs{
Driver: pulumi.String("string"),
},
HostGroupID: pulumi.String("string"),
KubeletConfig: &containerservice.KubeletConfigArgs{
AllowedUnsafeSysctls: pulumi.StringArray{
pulumi.String("string"),
},
ContainerLogMaxFiles: pulumi.Int(0),
ContainerLogMaxSizeMB: pulumi.Int(0),
CpuCfsQuota: pulumi.Bool(false),
CpuCfsQuotaPeriod: pulumi.String("string"),
CpuManagerPolicy: pulumi.String("string"),
FailSwapOn: pulumi.Bool(false),
ImageGcHighThreshold: pulumi.Int(0),
ImageGcLowThreshold: pulumi.Int(0),
PodMaxPids: pulumi.Int(0),
TopologyManagerPolicy: pulumi.String("string"),
},
KubeletDiskType: pulumi.String("string"),
LinuxOSConfig: &containerservice.LinuxOSConfigArgs{
SwapFileSizeMB: pulumi.Int(0),
Sysctls: &containerservice.SysctlConfigArgs{
FsAioMaxNr: pulumi.Int(0),
FsFileMax: pulumi.Int(0),
FsInotifyMaxUserWatches: pulumi.Int(0),
FsNrOpen: pulumi.Int(0),
KernelThreadsMax: pulumi.Int(0),
NetCoreNetdevMaxBacklog: pulumi.Int(0),
NetCoreOptmemMax: pulumi.Int(0),
NetCoreRmemDefault: pulumi.Int(0),
NetCoreRmemMax: pulumi.Int(0),
NetCoreSomaxconn: pulumi.Int(0),
NetCoreWmemDefault: pulumi.Int(0),
NetCoreWmemMax: pulumi.Int(0),
NetIpv4IpLocalPortRange: pulumi.String("string"),
NetIpv4NeighDefaultGcThresh1: pulumi.Int(0),
NetIpv4NeighDefaultGcThresh2: pulumi.Int(0),
NetIpv4NeighDefaultGcThresh3: pulumi.Int(0),
NetIpv4TcpFinTimeout: pulumi.Int(0),
NetIpv4TcpKeepaliveProbes: pulumi.Int(0),
NetIpv4TcpKeepaliveTime: pulumi.Int(0),
NetIpv4TcpMaxSynBacklog: pulumi.Int(0),
NetIpv4TcpMaxTwBuckets: pulumi.Int(0),
NetIpv4TcpTwReuse: pulumi.Bool(false),
NetIpv4TcpkeepaliveIntvl: pulumi.Int(0),
NetNetfilterNfConntrackBuckets: pulumi.Int(0),
NetNetfilterNfConntrackMax: pulumi.Int(0),
VmMaxMapCount: pulumi.Int(0),
VmSwappiness: pulumi.Int(0),
VmVfsCachePressure: pulumi.Int(0),
},
TransparentHugePageDefrag: pulumi.String("string"),
TransparentHugePageEnabled: pulumi.String("string"),
},
LocalDNSProfile: &containerservice.LocalDNSProfileArgs{
KubeDNSOverrides: containerservice.LocalDNSOverrideMap{
"string": &containerservice.LocalDNSOverrideArgs{
CacheDurationInSeconds: pulumi.Int(0),
ForwardDestination: pulumi.String("string"),
ForwardPolicy: pulumi.String("string"),
MaxConcurrent: pulumi.Int(0),
Protocol: pulumi.String("string"),
QueryLogging: pulumi.String("string"),
ServeStale: pulumi.String("string"),
ServeStaleDurationInSeconds: pulumi.Int(0),
},
},
Mode: pulumi.String("string"),
VnetDNSOverrides: containerservice.LocalDNSOverrideMap{
"string": &containerservice.LocalDNSOverrideArgs{
CacheDurationInSeconds: pulumi.Int(0),
ForwardDestination: pulumi.String("string"),
ForwardPolicy: pulumi.String("string"),
MaxConcurrent: pulumi.Int(0),
Protocol: pulumi.String("string"),
QueryLogging: pulumi.String("string"),
ServeStale: pulumi.String("string"),
ServeStaleDurationInSeconds: pulumi.Int(0),
},
},
},
MaxCount: pulumi.Int(0),
MaxPods: pulumi.Int(0),
MessageOfTheDay: pulumi.String("string"),
MinCount: pulumi.Int(0),
Mode: pulumi.String("string"),
NetworkProfile: &containerservice.AgentPoolNetworkProfileArgs{
AllowedHostPorts: containerservice.PortRangeArray{
&containerservice.PortRangeArgs{
PortEnd: pulumi.Int(0),
PortStart: pulumi.Int(0),
Protocol: pulumi.String("string"),
},
},
ApplicationSecurityGroups: pulumi.StringArray{
pulumi.String("string"),
},
NodePublicIPTags: containerservice.IPTagArray{
&containerservice.IPTagArgs{
IpTagType: pulumi.String("string"),
Tag: pulumi.String("string"),
},
},
},
NodeLabels: pulumi.StringMap{
"string": pulumi.String("string"),
},
NodePublicIPPrefixID: pulumi.String("string"),
NodeTaints: pulumi.StringArray{
pulumi.String("string"),
},
OrchestratorVersion: pulumi.String("string"),
OsDiskSizeGB: pulumi.Int(0),
OsDiskType: pulumi.String("string"),
OsSKU: pulumi.String("string"),
OsType: pulumi.String("string"),
PodIPAllocationMode: pulumi.String("string"),
PodSubnetID: pulumi.String("string"),
PowerState: &containerservice.PowerStateArgs{
Code: pulumi.String("string"),
},
ProximityPlacementGroupID: pulumi.String("string"),
ScaleDownMode: pulumi.String("string"),
ScaleSetEvictionPolicy: pulumi.String("string"),
ScaleSetPriority: pulumi.String("string"),
SecurityProfile: &containerservice.AgentPoolSecurityProfileArgs{
EnableSecureBoot: pulumi.Bool(false),
EnableVTPM: pulumi.Bool(false),
SshAccess: pulumi.String("string"),
},
SpotMaxPrice: pulumi.Float64(0),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
Type: pulumi.String("string"),
UpgradeSettings: &containerservice.AgentPoolUpgradeSettingsArgs{
DrainTimeoutInMinutes: pulumi.Int(0),
MaxSurge: pulumi.String("string"),
MaxUnavailable: pulumi.String("string"),
NodeSoakDurationInMinutes: pulumi.Int(0),
UndrainableNodeBehavior: pulumi.String("string"),
},
VirtualMachineNodesStatus: containerservice.VirtualMachineNodesArray{
&containerservice.VirtualMachineNodesArgs{
Count: pulumi.Int(0),
Size: pulumi.String("string"),
},
},
VirtualMachinesProfile: &containerservice.VirtualMachinesProfileArgs{
Scale: &containerservice.ScaleProfileArgs{
Manual: containerservice.ManualScaleProfileArray{
&containerservice.ManualScaleProfileArgs{
Count: pulumi.Int(0),
Size: pulumi.String("string"),
},
},
},
},
VmSize: pulumi.String("string"),
VnetSubnetID: pulumi.String("string"),
WindowsProfile: &containerservice.AgentPoolWindowsProfileArgs{
DisableOutboundNat: pulumi.Bool(false),
},
WorkloadRuntime: pulumi.String("string"),
},
},
LinuxProfile: &containerservice.ContainerServiceLinuxProfileArgs{
AdminUsername: pulumi.String("string"),
Ssh: &containerservice.ContainerServiceSshConfigurationArgs{
PublicKeys: containerservice.ContainerServiceSshPublicKeyArray{
&containerservice.ContainerServiceSshPublicKeyArgs{
KeyData: pulumi.String("string"),
},
},
},
},
IngressProfile: &containerservice.ManagedClusterIngressProfileArgs{
WebAppRouting: &containerservice.ManagedClusterIngressProfileWebAppRoutingArgs{
DnsZoneResourceIds: pulumi.StringArray{
pulumi.String("string"),
},
Enabled: pulumi.Bool(false),
Nginx: &containerservice.ManagedClusterIngressProfileNginxArgs{
DefaultIngressControllerType: pulumi.String("string"),
},
},
},
NetworkProfile: &containerservice.ContainerServiceNetworkProfileArgs{
AdvancedNetworking: &containerservice.AdvancedNetworkingArgs{
Enabled: pulumi.Bool(false),
Observability: &containerservice.AdvancedNetworkingObservabilityArgs{
Enabled: pulumi.Bool(false),
},
Security: &containerservice.AdvancedNetworkingSecurityArgs{
AdvancedNetworkPolicies: pulumi.String("string"),
Enabled: pulumi.Bool(false),
},
},
DnsServiceIP: pulumi.String("string"),
IpFamilies: pulumi.StringArray{
pulumi.String("string"),
},
LoadBalancerProfile: &containerservice.ManagedClusterLoadBalancerProfileArgs{
AllocatedOutboundPorts: pulumi.Int(0),
BackendPoolType: pulumi.String("string"),
EnableMultipleStandardLoadBalancers: pulumi.Bool(false),
IdleTimeoutInMinutes: pulumi.Int(0),
ManagedOutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs{
Count: pulumi.Int(0),
CountIPv6: pulumi.Int(0),
},
OutboundIPPrefixes: &containerservice.ManagedClusterLoadBalancerProfileOutboundIPPrefixesArgs{
PublicIPPrefixes: containerservice.ResourceReferenceArray{
&containerservice.ResourceReferenceArgs{
Id: pulumi.String("string"),
},
},
},
OutboundIPs: &containerservice.ManagedClusterLoadBalancerProfileOutboundIPsArgs{
PublicIPs: containerservice.ResourceReferenceArray{
&containerservice.ResourceReferenceArgs{
Id: pulumi.String("string"),
},
},
},
},
LoadBalancerSku: pulumi.String("string"),
NatGatewayProfile: &containerservice.ManagedClusterNATGatewayProfileArgs{
IdleTimeoutInMinutes: pulumi.Int(0),
ManagedOutboundIPProfile: &containerservice.ManagedClusterManagedOutboundIPProfileArgs{
Count: pulumi.Int(0),
},
},
NetworkDataplane: pulumi.String("string"),
NetworkMode: pulumi.String("string"),
NetworkPlugin: pulumi.String("string"),
NetworkPluginMode: pulumi.String("string"),
NetworkPolicy: pulumi.String("string"),
OutboundType: pulumi.String("string"),
PodCidr: pulumi.String("string"),
PodCidrs: pulumi.StringArray{
pulumi.String("string"),
},
ServiceCidr: pulumi.String("string"),
ServiceCidrs: pulumi.StringArray{
pulumi.String("string"),
},
StaticEgressGatewayProfile: &containerservice.ManagedClusterStaticEgressGatewayProfileArgs{
Enabled: pulumi.Bool(false),
},
},
NodeProvisioningProfile: &containerservice.ManagedClusterNodeProvisioningProfileArgs{
DefaultNodePools: pulumi.String("string"),
Mode: pulumi.String("string"),
},
NodeResourceGroup: pulumi.String("string"),
NodeResourceGroupProfile: &containerservice.ManagedClusterNodeResourceGroupProfileArgs{
RestrictionLevel: pulumi.String("string"),
},
OidcIssuerProfile: &containerservice.ManagedClusterOIDCIssuerProfileArgs{
Enabled: pulumi.Bool(false),
},
PodIdentityProfile: &containerservice.ManagedClusterPodIdentityProfileArgs{
AllowNetworkPluginKubenet: pulumi.Bool(false),
Enabled: pulumi.Bool(false),
UserAssignedIdentities: containerservice.ManagedClusterPodIdentityArray{
&containerservice.ManagedClusterPodIdentityArgs{
Identity: &containerservice.UserAssignedIdentityArgs{
ClientId: pulumi.String("string"),
ObjectId: pulumi.String("string"),
ResourceId: pulumi.String("string"),
},
Name: pulumi.String("string"),
Namespace: pulumi.String("string"),
BindingSelector: pulumi.String("string"),
},
},
UserAssignedIdentityExceptions: containerservice.ManagedClusterPodIdentityExceptionArray{
&containerservice.ManagedClusterPodIdentityExceptionArgs{
Name: pulumi.String("string"),
Namespace: pulumi.String("string"),
PodLabels: pulumi.StringMap{
"string": pulumi.String("string"),
},
},
},
},
PrivateLinkResources: containerservice.PrivateLinkResourceArray{
&containerservice.PrivateLinkResourceArgs{
GroupId: pulumi.String("string"),
Id: pulumi.String("string"),
Name: pulumi.String("string"),
RequiredMembers: pulumi.StringArray{
pulumi.String("string"),
},
Type: pulumi.String("string"),
},
},
PublicNetworkAccess: pulumi.String("string"),
AddonProfiles: containerservice.ManagedClusterAddonProfileMap{
"string": &containerservice.ManagedClusterAddonProfileArgs{
Enabled: pulumi.Bool(false),
Config: pulumi.StringMap{
"string": pulumi.String("string"),
},
},
},
ResourceName: pulumi.String("string"),
SecurityProfile: &containerservice.ManagedClusterSecurityProfileArgs{
AzureKeyVaultKms: &containerservice.AzureKeyVaultKmsArgs{
Enabled: pulumi.Bool(false),
KeyId: pulumi.String("string"),
KeyVaultNetworkAccess: pulumi.String("string"),
KeyVaultResourceId: pulumi.String("string"),
},
CustomCATrustCertificates: pulumi.StringArray{
pulumi.String("string"),
},
Defender: &containerservice.ManagedClusterSecurityProfileDefenderArgs{
LogAnalyticsWorkspaceResourceId: pulumi.String("string"),
SecurityMonitoring: &containerservice.ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs{
Enabled: pulumi.Bool(false),
},
},
ImageCleaner: &containerservice.ManagedClusterSecurityProfileImageCleanerArgs{
Enabled: pulumi.Bool(false),
IntervalHours: pulumi.Int(0),
},
WorkloadIdentity: &containerservice.ManagedClusterSecurityProfileWorkloadIdentityArgs{
Enabled: pulumi.Bool(false),
},
},
ServiceMeshProfile: &containerservice.ServiceMeshProfileArgs{
Mode: pulumi.String("string"),
Istio: &containerservice.IstioServiceMeshArgs{
CertificateAuthority: &containerservice.IstioCertificateAuthorityArgs{
Plugin: &containerservice.IstioPluginCertificateAuthorityArgs{
CertChainObjectName: pulumi.String("string"),
CertObjectName: pulumi.String("string"),
KeyObjectName: pulumi.String("string"),
KeyVaultId: pulumi.String("string"),
RootCertObjectName: pulumi.String("string"),
},
},
Components: &containerservice.IstioComponentsArgs{
EgressGateways: containerservice.IstioEgressGatewayArray{
&containerservice.IstioEgressGatewayArgs{
Enabled: pulumi.Bool(false),
Name: pulumi.String("string"),
GatewayConfigurationName: pulumi.String("string"),
Namespace: pulumi.String("string"),
},
},
IngressGateways: containerservice.IstioIngressGatewayArray{
&containerservice.IstioIngressGatewayArgs{
Enabled: pulumi.Bool(false),
Mode: pulumi.String("string"),
},
},
},
Revisions: pulumi.StringArray{
pulumi.String("string"),
},
},
},
ServicePrincipalProfile: &containerservice.ManagedClusterServicePrincipalProfileArgs{
ClientId: pulumi.String("string"),
Secret: pulumi.String("string"),
},
Sku: &containerservice.ManagedClusterSKUArgs{
Name: pulumi.String("string"),
Tier: pulumi.String("string"),
},
StorageProfile: &containerservice.ManagedClusterStorageProfileArgs{
BlobCSIDriver: &containerservice.ManagedClusterStorageProfileBlobCSIDriverArgs{
Enabled: pulumi.Bool(false),
},
DiskCSIDriver: &containerservice.ManagedClusterStorageProfileDiskCSIDriverArgs{
Enabled: pulumi.Bool(false),
},
FileCSIDriver: &containerservice.ManagedClusterStorageProfileFileCSIDriverArgs{
Enabled: pulumi.Bool(false),
},
SnapshotController: &containerservice.ManagedClusterStorageProfileSnapshotControllerArgs{
Enabled: pulumi.Bool(false),
},
},
SupportPlan: pulumi.String("string"),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
UpgradeSettings: &containerservice.ClusterUpgradeSettingsArgs{
OverrideSettings: &containerservice.UpgradeOverrideSettingsArgs{
ForceUpgrade: pulumi.Bool(false),
Until: pulumi.String("string"),
},
},
WindowsProfile: &containerservice.ManagedClusterWindowsProfileArgs{
AdminUsername: pulumi.String("string"),
AdminPassword: pulumi.String("string"),
EnableCSIProxy: pulumi.Bool(false),
GmsaProfile: &containerservice.WindowsGmsaProfileArgs{
DnsServer: pulumi.String("string"),
Enabled: pulumi.Bool(false),
RootDomainName: pulumi.String("string"),
},
LicenseType: pulumi.String("string"),
},
WorkloadAutoScalerProfile: &containerservice.ManagedClusterWorkloadAutoScalerProfileArgs{
Keda: &containerservice.ManagedClusterWorkloadAutoScalerProfileKedaArgs{
Enabled: pulumi.Bool(false),
},
VerticalPodAutoscaler: &containerservice.ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerArgs{
Enabled: pulumi.Bool(false),
},
},
})
resource "azure-native_containerservice_managedcluster" "managedClusterResource" {
resource_group_name = "string"
location = "string"
metrics_profile = {
cost_analysis = {
enabled = false
}
}
ai_toolchain_operator_profile = {
enabled = false
}
api_server_access_profile = {
authorized_ip_ranges = ["string"]
disable_run_command = false
enable_private_cluster = false
enable_private_cluster_public_fqdn = false
enable_vnet_integration = false
private_dns_zone = "string"
subnet_id = "string"
}
auto_scaler_profile = {
balance_similar_node_groups = "string"
daemonset_eviction_for_empty_nodes = false
daemonset_eviction_for_occupied_nodes = false
expander = "string"
ignore_daemonsets_utilization = false
max_empty_bulk_delete = "string"
max_graceful_termination_sec = "string"
max_node_provision_time = "string"
max_total_unready_percentage = "string"
new_pod_scale_up_delay = "string"
ok_total_unready_count = "string"
scale_down_delay_after_add = "string"
scale_down_delay_after_delete = "string"
scale_down_delay_after_failure = "string"
scale_down_unneeded_time = "string"
scale_down_unready_time = "string"
scale_down_utilization_threshold = "string"
scan_interval = "string"
skip_nodes_with_local_storage = "string"
skip_nodes_with_system_pods = "string"
}
auto_upgrade_profile = {
node_os_upgrade_channel = "string"
upgrade_channel = "string"
}
azure_monitor_profile = {
metrics = {
enabled = false
kube_state_metrics = {
metric_annotations_allow_list = "string"
metric_labels_allowlist = "string"
}
}
}
bootstrap_profile = {
artifact_source = "string"
container_registry_id = "string"
}
disable_local_accounts = false
disk_encryption_set_id = "string"
dns_prefix = "string"
enable_rbac = false
extended_location = {
name = "string"
type = "string"
}
fqdn_subdomain = "string"
http_proxy_config = {
http_proxy = "string"
https_proxy = "string"
no_proxy = ["string"]
trusted_ca = "string"
}
identity = {
delegated_resources = {
"string" = {
location = "string"
referral_resource = "string"
resource_id = "string"
tenant_id = "string"
}
}
type = "SystemAssigned"
user_assigned_identities = ["string"]
}
identity_profile = {
"string" = {
client_id = "string"
object_id = "string"
resource_id = "string"
}
}
aad_profile = {
admin_group_object_i_ds = ["string"]
client_app_id = "string"
enable_azure_rbac = false
managed = false
server_app_id = "string"
server_app_secret = "string"
tenant_id = "string"
}
kind = "string"
kubernetes_version = "string"
agent_pool_profiles {
name = "string"
availability_zones = ["string"]
capacity_reservation_group_id = "string"
count = 0
creation_data = {
source_resource_id = "string"
}
enable_auto_scaling = false
enable_encryption_at_host = false
enable_fips = false
enable_node_public_ip = false
enable_ultra_ssd = false
gateway_profile = {
public_ip_prefix_size = 0
}
gpu_instance_profile = "string"
gpu_profile = {
driver = "string"
}
host_group_id = "string"
kubelet_config = {
allowed_unsafe_sysctls = ["string"]
container_log_max_files = 0
container_log_max_size_mb = 0
cpu_cfs_quota = false
cpu_cfs_quota_period = "string"
cpu_manager_policy = "string"
fail_swap_on = false
image_gc_high_threshold = 0
image_gc_low_threshold = 0
pod_max_pids = 0
topology_manager_policy = "string"
}
kubelet_disk_type = "string"
linux_os_config = {
swap_file_size_mb = 0
sysctls = {
fs_aio_max_nr = 0
fs_file_max = 0
fs_inotify_max_user_watches = 0
fs_nr_open = 0
kernel_threads_max = 0
net_core_netdev_max_backlog = 0
net_core_optmem_max = 0
net_core_rmem_default = 0
net_core_rmem_max = 0
net_core_somaxconn = 0
net_core_wmem_default = 0
net_core_wmem_max = 0
net_ipv4_ip_local_port_range = "string"
net_ipv4_neigh_default_gc_thresh1 = 0
net_ipv4_neigh_default_gc_thresh2 = 0
net_ipv4_neigh_default_gc_thresh3 = 0
net_ipv4_tcp_fin_timeout = 0
net_ipv4_tcp_keepalive_probes = 0
net_ipv4_tcp_keepalive_time = 0
net_ipv4_tcp_max_syn_backlog = 0
net_ipv4_tcp_max_tw_buckets = 0
net_ipv4_tcp_tw_reuse = false
net_ipv4_tcpkeepalive_intvl = 0
net_netfilter_nf_conntrack_buckets = 0
net_netfilter_nf_conntrack_max = 0
vm_max_map_count = 0
vm_swappiness = 0
vm_vfs_cache_pressure = 0
}
transparent_huge_page_defrag = "string"
transparent_huge_page_enabled = "string"
}
local_dns_profile = {
kube_dns_overrides = {
"string" = {
cache_duration_in_seconds = 0
forward_destination = "string"
forward_policy = "string"
max_concurrent = 0
protocol = "string"
query_logging = "string"
serve_stale = "string"
serve_stale_duration_in_seconds = 0
}
}
mode = "string"
vnet_dns_overrides = {
"string" = {
cache_duration_in_seconds = 0
forward_destination = "string"
forward_policy = "string"
max_concurrent = 0
protocol = "string"
query_logging = "string"
serve_stale = "string"
serve_stale_duration_in_seconds = 0
}
}
}
max_count = 0
max_pods = 0
message_of_the_day = "string"
min_count = 0
mode = "string"
network_profile = {
allowed_host_ports = [{
"portEnd" = 0
"portStart" = 0
"protocol" = "string"
}]
application_security_groups = ["string"]
node_public_ip_tags = [{
"ipTagType" = "string"
"tag" = "string"
}]
}
node_labels = {
"string" = "string"
}
node_public_ip_prefix_id = "string"
node_taints = ["string"]
orchestrator_version = "string"
os_disk_size_gb = 0
os_disk_type = "string"
os_sku = "string"
os_type = "string"
pod_ip_allocation_mode = "string"
pod_subnet_id = "string"
power_state = {
code = "string"
}
proximity_placement_group_id = "string"
scale_down_mode = "string"
scale_set_eviction_policy = "string"
scale_set_priority = "string"
security_profile = {
enable_secure_boot = false
enable_vtpm = false
ssh_access = "string"
}
spot_max_price = 0
tags = {
"string" = "string"
}
type = "string"
upgrade_settings = {
drain_timeout_in_minutes = 0
max_surge = "string"
max_unavailable = "string"
node_soak_duration_in_minutes = 0
undrainable_node_behavior = "string"
}
virtual_machine_nodes_status {
count = 0
size = "string"
}
virtual_machines_profile = {
scale = {
manual = [{
"count" = 0
"size" = "string"
}]
}
}
vm_size = "string"
vnet_subnet_id = "string"
windows_profile = {
disable_outbound_nat = false
}
workload_runtime = "string"
}
linux_profile = {
admin_username = "string"
ssh = {
public_keys = [{
"keyData" = "string"
}]
}
}
ingress_profile = {
web_app_routing = {
dns_zone_resource_ids = ["string"]
enabled = false
nginx = {
default_ingress_controller_type = "string"
}
}
}
network_profile = {
advanced_networking = {
enabled = false
observability = {
enabled = false
}
security = {
advanced_network_policies = "string"
enabled = false
}
}
dns_service_ip = "string"
ip_families = ["string"]
load_balancer_profile = {
allocated_outbound_ports = 0
backend_pool_type = "string"
enable_multiple_standard_load_balancers = false
idle_timeout_in_minutes = 0
managed_outbound_i_ps = {
count = 0
count_i_pv6 = 0
}
outbound_ip_prefixes = {
public_ip_prefixes = [{
"id" = "string"
}]
}
outbound_i_ps = {
public_i_ps = [{
"id" = "string"
}]
}
}
load_balancer_sku = "string"
nat_gateway_profile = {
idle_timeout_in_minutes = 0
managed_outbound_ip_profile = {
count = 0
}
}
network_dataplane = "string"
network_mode = "string"
network_plugin = "string"
network_plugin_mode = "string"
network_policy = "string"
outbound_type = "string"
pod_cidr = "string"
pod_cidrs = ["string"]
service_cidr = "string"
service_cidrs = ["string"]
static_egress_gateway_profile = {
enabled = false
}
}
node_provisioning_profile = {
default_node_pools = "string"
mode = "string"
}
node_resource_group = "string"
node_resource_group_profile = {
restriction_level = "string"
}
oidc_issuer_profile = {
enabled = false
}
pod_identity_profile = {
allow_network_plugin_kubenet = false
enabled = false
user_assigned_identities = [{
"identity" = {
"clientId" = "string"
"objectId" = "string"
"resourceId" = "string"
}
"name" = "string"
"namespace" = "string"
"bindingSelector" = "string"
}]
user_assigned_identity_exceptions = [{
"name" = "string"
"namespace" = "string"
"podLabels" = {
"string" = "string"
}
}]
}
private_link_resources {
group_id = "string"
id = "string"
name = "string"
required_members = ["string"]
type = "string"
}
public_network_access = "string"
addon_profiles = {
"string" = {
enabled = false
config = {
"string" = "string"
}
}
}
resource_name = "string"
security_profile = {
azure_key_vault_kms = {
enabled = false
key_id = "string"
key_vault_network_access = "string"
key_vault_resource_id = "string"
}
custom_ca_trust_certificates = ["string"]
defender = {
log_analytics_workspace_resource_id = "string"
security_monitoring = {
enabled = false
}
}
image_cleaner = {
enabled = false
interval_hours = 0
}
workload_identity = {
enabled = false
}
}
service_mesh_profile = {
mode = "string"
istio = {
certificate_authority = {
plugin = {
cert_chain_object_name = "string"
cert_object_name = "string"
key_object_name = "string"
key_vault_id = "string"
root_cert_object_name = "string"
}
}
components = {
egress_gateways = [{
"enabled" = false
"name" = "string"
"gatewayConfigurationName" = "string"
"namespace" = "string"
}]
ingress_gateways = [{
"enabled" = false
"mode" = "string"
}]
}
revisions = ["string"]
}
}
service_principal_profile = {
client_id = "string"
secret = "string"
}
sku = {
name = "string"
tier = "string"
}
storage_profile = {
blob_csi_driver = {
enabled = false
}
disk_csi_driver = {
enabled = false
}
file_csi_driver = {
enabled = false
}
snapshot_controller = {
enabled = false
}
}
support_plan = "string"
tags = {
"string" = "string"
}
upgrade_settings = {
override_settings = {
force_upgrade = false
until = "string"
}
}
windows_profile = {
admin_username = "string"
admin_password = "string"
enable_csi_proxy = false
gmsa_profile = {
dns_server = "string"
enabled = false
root_domain_name = "string"
}
license_type = "string"
}
workload_auto_scaler_profile = {
keda = {
enabled = false
}
vertical_pod_autoscaler = {
enabled = false
}
}
}
var managedClusterResource = new com.pulumi.azurenative.containerservice.ManagedCluster("managedClusterResource", com.pulumi.azurenative.containerservice.ManagedClusterArgs.builder()
.resourceGroupName("string")
.location("string")
.metricsProfile(ManagedClusterMetricsProfileArgs.builder()
.costAnalysis(ManagedClusterCostAnalysisArgs.builder()
.enabled(false)
.build())
.build())
.aiToolchainOperatorProfile(ManagedClusterAIToolchainOperatorProfileArgs.builder()
.enabled(false)
.build())
.apiServerAccessProfile(ManagedClusterAPIServerAccessProfileArgs.builder()
.authorizedIPRanges("string")
.disableRunCommand(false)
.enablePrivateCluster(false)
.enablePrivateClusterPublicFQDN(false)
.enableVnetIntegration(false)
.privateDNSZone("string")
.subnetId("string")
.build())
.autoScalerProfile(ManagedClusterPropertiesAutoScalerProfileArgs.builder()
.balanceSimilarNodeGroups("string")
.daemonsetEvictionForEmptyNodes(false)
.daemonsetEvictionForOccupiedNodes(false)
.expander("string")
.ignoreDaemonsetsUtilization(false)
.maxEmptyBulkDelete("string")
.maxGracefulTerminationSec("string")
.maxNodeProvisionTime("string")
.maxTotalUnreadyPercentage("string")
.newPodScaleUpDelay("string")
.okTotalUnreadyCount("string")
.scaleDownDelayAfterAdd("string")
.scaleDownDelayAfterDelete("string")
.scaleDownDelayAfterFailure("string")
.scaleDownUnneededTime("string")
.scaleDownUnreadyTime("string")
.scaleDownUtilizationThreshold("string")
.scanInterval("string")
.skipNodesWithLocalStorage("string")
.skipNodesWithSystemPods("string")
.build())
.autoUpgradeProfile(ManagedClusterAutoUpgradeProfileArgs.builder()
.nodeOSUpgradeChannel("string")
.upgradeChannel("string")
.build())
.azureMonitorProfile(ManagedClusterAzureMonitorProfileArgs.builder()
.metrics(ManagedClusterAzureMonitorProfileMetricsArgs.builder()
.enabled(false)
.kubeStateMetrics(ManagedClusterAzureMonitorProfileKubeStateMetricsArgs.builder()
.metricAnnotationsAllowList("string")
.metricLabelsAllowlist("string")
.build())
.build())
.build())
.bootstrapProfile(ManagedClusterBootstrapProfileArgs.builder()
.artifactSource("string")
.containerRegistryId("string")
.build())
.disableLocalAccounts(false)
.diskEncryptionSetID("string")
.dnsPrefix("string")
.enableRBAC(false)
.extendedLocation(ExtendedLocationArgs.builder()
.name("string")
.type("string")
.build())
.fqdnSubdomain("string")
.httpProxyConfig(ManagedClusterHTTPProxyConfigArgs.builder()
.httpProxy("string")
.httpsProxy("string")
.noProxy("string")
.trustedCa("string")
.build())
.identity(ManagedClusterIdentityArgs.builder()
.delegatedResources(Map.of("string", DelegatedResourceArgs.builder()
.location("string")
.referralResource("string")
.resourceId("string")
.tenantId("string")
.build()))
.type("SystemAssigned")
.userAssignedIdentities("string")
.build())
.identityProfile(Map.of("string", UserAssignedIdentityArgs.builder()
.clientId("string")
.objectId("string")
.resourceId("string")
.build()))
.aadProfile(ManagedClusterAADProfileArgs.builder()
.adminGroupObjectIDs("string")
.clientAppID("string")
.enableAzureRBAC(false)
.managed(false)
.serverAppID("string")
.serverAppSecret("string")
.tenantID("string")
.build())
.kind("string")
.kubernetesVersion("string")
.agentPoolProfiles(ManagedClusterAgentPoolProfileArgs.builder()
.name("string")
.availabilityZones("string")
.capacityReservationGroupID("string")
.count(0)
.creationData(CreationDataArgs.builder()
.sourceResourceId("string")
.build())
.enableAutoScaling(false)
.enableEncryptionAtHost(false)
.enableFIPS(false)
.enableNodePublicIP(false)
.enableUltraSSD(false)
.gatewayProfile(AgentPoolGatewayProfileArgs.builder()
.publicIPPrefixSize(0)
.build())
.gpuInstanceProfile("string")
.gpuProfile(GPUProfileArgs.builder()
.driver("string")
.build())
.hostGroupID("string")
.kubeletConfig(KubeletConfigArgs.builder()
.allowedUnsafeSysctls("string")
.containerLogMaxFiles(0)
.containerLogMaxSizeMB(0)
.cpuCfsQuota(false)
.cpuCfsQuotaPeriod("string")
.cpuManagerPolicy("string")
.failSwapOn(false)
.imageGcHighThreshold(0)
.imageGcLowThreshold(0)
.podMaxPids(0)
.topologyManagerPolicy("string")
.build())
.kubeletDiskType("string")
.linuxOSConfig(LinuxOSConfigArgs.builder()
.swapFileSizeMB(0)
.sysctls(SysctlConfigArgs.builder()
.fsAioMaxNr(0)
.fsFileMax(0)
.fsInotifyMaxUserWatches(0)
.fsNrOpen(0)
.kernelThreadsMax(0)
.netCoreNetdevMaxBacklog(0)
.netCoreOptmemMax(0)
.netCoreRmemDefault(0)
.netCoreRmemMax(0)
.netCoreSomaxconn(0)
.netCoreWmemDefault(0)
.netCoreWmemMax(0)
.netIpv4IpLocalPortRange("string")
.netIpv4NeighDefaultGcThresh1(0)
.netIpv4NeighDefaultGcThresh2(0)
.netIpv4NeighDefaultGcThresh3(0)
.netIpv4TcpFinTimeout(0)
.netIpv4TcpKeepaliveProbes(0)
.netIpv4TcpKeepaliveTime(0)
.netIpv4TcpMaxSynBacklog(0)
.netIpv4TcpMaxTwBuckets(0)
.netIpv4TcpTwReuse(false)
.netIpv4TcpkeepaliveIntvl(0)
.netNetfilterNfConntrackBuckets(0)
.netNetfilterNfConntrackMax(0)
.vmMaxMapCount(0)
.vmSwappiness(0)
.vmVfsCachePressure(0)
.build())
.transparentHugePageDefrag("string")
.transparentHugePageEnabled("string")
.build())
.localDNSProfile(LocalDNSProfileArgs.builder()
.kubeDNSOverrides(Map.of("string", LocalDNSOverrideArgs.builder()
.cacheDurationInSeconds(0)
.forwardDestination("string")
.forwardPolicy("string")
.maxConcurrent(0)
.protocol("string")
.queryLogging("string")
.serveStale("string")
.serveStaleDurationInSeconds(0)
.build()))
.mode("string")
.vnetDNSOverrides(Map.of("string", LocalDNSOverrideArgs.builder()
.cacheDurationInSeconds(0)
.forwardDestination("string")
.forwardPolicy("string")
.maxConcurrent(0)
.protocol("string")
.queryLogging("string")
.serveStale("string")
.serveStaleDurationInSeconds(0)
.build()))
.build())
.maxCount(0)
.maxPods(0)
.messageOfTheDay("string")
.minCount(0)
.mode("string")
.networkProfile(AgentPoolNetworkProfileArgs.builder()
.allowedHostPorts(PortRangeArgs.builder()
.portEnd(0)
.portStart(0)
.protocol("string")
.build())
.applicationSecurityGroups("string")
.nodePublicIPTags(IPTagArgs.builder()
.ipTagType("string")
.tag("string")
.build())
.build())
.nodeLabels(Map.of("string", "string"))
.nodePublicIPPrefixID("string")
.nodeTaints("string")
.orchestratorVersion("string")
.osDiskSizeGB(0)
.osDiskType("string")
.osSKU("string")
.osType("string")
.podIPAllocationMode("string")
.podSubnetID("string")
.powerState(PowerStateArgs.builder()
.code("string")
.build())
.proximityPlacementGroupID("string")
.scaleDownMode("string")
.scaleSetEvictionPolicy("string")
.scaleSetPriority("string")
.securityProfile(AgentPoolSecurityProfileArgs.builder()
.enableSecureBoot(false)
.enableVTPM(false)
.sshAccess("string")
.build())
.spotMaxPrice(0.0)
.tags(Map.of("string", "string"))
.type("string")
.upgradeSettings(AgentPoolUpgradeSettingsArgs.builder()
.drainTimeoutInMinutes(0)
.maxSurge("string")
.maxUnavailable("string")
.nodeSoakDurationInMinutes(0)
.undrainableNodeBehavior("string")
.build())
.virtualMachineNodesStatus(VirtualMachineNodesArgs.builder()
.count(0)
.size("string")
.build())
.virtualMachinesProfile(VirtualMachinesProfileArgs.builder()
.scale(ScaleProfileArgs.builder()
.manual(ManualScaleProfileArgs.builder()
.count(0)
.size("string")
.build())
.build())
.build())
.vmSize("string")
.vnetSubnetID("string")
.windowsProfile(AgentPoolWindowsProfileArgs.builder()
.disableOutboundNat(false)
.build())
.workloadRuntime("string")
.build())
.linuxProfile(ContainerServiceLinuxProfileArgs.builder()
.adminUsername("string")
.ssh(ContainerServiceSshConfigurationArgs.builder()
.publicKeys(ContainerServiceSshPublicKeyArgs.builder()
.keyData("string")
.build())
.build())
.build())
.ingressProfile(ManagedClusterIngressProfileArgs.builder()
.webAppRouting(ManagedClusterIngressProfileWebAppRoutingArgs.builder()
.dnsZoneResourceIds("string")
.enabled(false)
.nginx(ManagedClusterIngressProfileNginxArgs.builder()
.defaultIngressControllerType("string")
.build())
.build())
.build())
.networkProfile(ContainerServiceNetworkProfileArgs.builder()
.advancedNetworking(AdvancedNetworkingArgs.builder()
.enabled(false)
.observability(AdvancedNetworkingObservabilityArgs.builder()
.enabled(false)
.build())
.security(AdvancedNetworkingSecurityArgs.builder()
.advancedNetworkPolicies("string")
.enabled(false)
.build())
.build())
.dnsServiceIP("string")
.ipFamilies("string")
.loadBalancerProfile(ManagedClusterLoadBalancerProfileArgs.builder()
.allocatedOutboundPorts(0)
.backendPoolType("string")
.enableMultipleStandardLoadBalancers(false)
.idleTimeoutInMinutes(0)
.managedOutboundIPs(ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs.builder()
.count(0)
.countIPv6(0)
.build())
.outboundIPPrefixes(ManagedClusterLoadBalancerProfileOutboundIPPrefixesArgs.builder()
.publicIPPrefixes(ResourceReferenceArgs.builder()
.id("string")
.build())
.build())
.outboundIPs(ManagedClusterLoadBalancerProfileOutboundIPsArgs.builder()
.publicIPs(ResourceReferenceArgs.builder()
.id("string")
.build())
.build())
.build())
.loadBalancerSku("string")
.natGatewayProfile(ManagedClusterNATGatewayProfileArgs.builder()
.idleTimeoutInMinutes(0)
.managedOutboundIPProfile(ManagedClusterManagedOutboundIPProfileArgs.builder()
.count(0)
.build())
.build())
.networkDataplane("string")
.networkMode("string")
.networkPlugin("string")
.networkPluginMode("string")
.networkPolicy("string")
.outboundType("string")
.podCidr("string")
.podCidrs("string")
.serviceCidr("string")
.serviceCidrs("string")
.staticEgressGatewayProfile(ManagedClusterStaticEgressGatewayProfileArgs.builder()
.enabled(false)
.build())
.build())
.nodeProvisioningProfile(ManagedClusterNodeProvisioningProfileArgs.builder()
.defaultNodePools("string")
.mode("string")
.build())
.nodeResourceGroup("string")
.nodeResourceGroupProfile(ManagedClusterNodeResourceGroupProfileArgs.builder()
.restrictionLevel("string")
.build())
.oidcIssuerProfile(ManagedClusterOIDCIssuerProfileArgs.builder()
.enabled(false)
.build())
.podIdentityProfile(ManagedClusterPodIdentityProfileArgs.builder()
.allowNetworkPluginKubenet(false)
.enabled(false)
.userAssignedIdentities(ManagedClusterPodIdentityArgs.builder()
.identity(UserAssignedIdentityArgs.builder()
.clientId("string")
.objectId("string")
.resourceId("string")
.build())
.name("string")
.namespace("string")
.bindingSelector("string")
.build())
.userAssignedIdentityExceptions(ManagedClusterPodIdentityExceptionArgs.builder()
.name("string")
.namespace("string")
.podLabels(Map.of("string", "string"))
.build())
.build())
.privateLinkResources(PrivateLinkResourceArgs.builder()
.groupId("string")
.id("string")
.name("string")
.requiredMembers("string")
.type("string")
.build())
.publicNetworkAccess("string")
.addonProfiles(Map.of("string", ManagedClusterAddonProfileArgs.builder()
.enabled(false)
.config(Map.of("string", "string"))
.build()))
.resourceName("string")
.securityProfile(ManagedClusterSecurityProfileArgs.builder()
.azureKeyVaultKms(AzureKeyVaultKmsArgs.builder()
.enabled(false)
.keyId("string")
.keyVaultNetworkAccess("string")
.keyVaultResourceId("string")
.build())
.customCATrustCertificates("string")
.defender(ManagedClusterSecurityProfileDefenderArgs.builder()
.logAnalyticsWorkspaceResourceId("string")
.securityMonitoring(ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs.builder()
.enabled(false)
.build())
.build())
.imageCleaner(ManagedClusterSecurityProfileImageCleanerArgs.builder()
.enabled(false)
.intervalHours(0)
.build())
.workloadIdentity(ManagedClusterSecurityProfileWorkloadIdentityArgs.builder()
.enabled(false)
.build())
.build())
.serviceMeshProfile(ServiceMeshProfileArgs.builder()
.mode("string")
.istio(IstioServiceMeshArgs.builder()
.certificateAuthority(IstioCertificateAuthorityArgs.builder()
.plugin(IstioPluginCertificateAuthorityArgs.builder()
.certChainObjectName("string")
.certObjectName("string")
.keyObjectName("string")
.keyVaultId("string")
.rootCertObjectName("string")
.build())
.build())
.components(IstioComponentsArgs.builder()
.egressGateways(IstioEgressGatewayArgs.builder()
.enabled(false)
.name("string")
.gatewayConfigurationName("string")
.namespace("string")
.build())
.ingressGateways(IstioIngressGatewayArgs.builder()
.enabled(false)
.mode("string")
.build())
.build())
.revisions("string")
.build())
.build())
.servicePrincipalProfile(ManagedClusterServicePrincipalProfileArgs.builder()
.clientId("string")
.secret("string")
.build())
.sku(ManagedClusterSKUArgs.builder()
.name("string")
.tier("string")
.build())
.storageProfile(ManagedClusterStorageProfileArgs.builder()
.blobCSIDriver(ManagedClusterStorageProfileBlobCSIDriverArgs.builder()
.enabled(false)
.build())
.diskCSIDriver(ManagedClusterStorageProfileDiskCSIDriverArgs.builder()
.enabled(false)
.build())
.fileCSIDriver(ManagedClusterStorageProfileFileCSIDriverArgs.builder()
.enabled(false)
.build())
.snapshotController(ManagedClusterStorageProfileSnapshotControllerArgs.builder()
.enabled(false)
.build())
.build())
.supportPlan("string")
.tags(Map.of("string", "string"))
.upgradeSettings(ClusterUpgradeSettingsArgs.builder()
.overrideSettings(UpgradeOverrideSettingsArgs.builder()
.forceUpgrade(false)
.until("string")
.build())
.build())
.windowsProfile(ManagedClusterWindowsProfileArgs.builder()
.adminUsername("string")
.adminPassword("string")
.enableCSIProxy(false)
.gmsaProfile(WindowsGmsaProfileArgs.builder()
.dnsServer("string")
.enabled(false)
.rootDomainName("string")
.build())
.licenseType("string")
.build())
.workloadAutoScalerProfile(ManagedClusterWorkloadAutoScalerProfileArgs.builder()
.keda(ManagedClusterWorkloadAutoScalerProfileKedaArgs.builder()
.enabled(false)
.build())
.verticalPodAutoscaler(ManagedClusterWorkloadAutoScalerProfileVerticalPodAutoscalerArgs.builder()
.enabled(false)
.build())
.build())
.build());
managed_cluster_resource = azure_native.containerservice.ManagedCluster("managedClusterResource",
resource_group_name="string",
location="string",
metrics_profile={
"cost_analysis": {
"enabled": False,
},
},
ai_toolchain_operator_profile={
"enabled": False,
},
api_server_access_profile={
"authorized_ip_ranges": ["string"],
"disable_run_command": False,
"enable_private_cluster": False,
"enable_private_cluster_public_fqdn": False,
"enable_vnet_integration": False,
"private_dns_zone": "string",
"subnet_id": "string",
},
auto_scaler_profile={
"balance_similar_node_groups": "string",
"daemonset_eviction_for_empty_nodes": False,
"daemonset_eviction_for_occupied_nodes": False,
"expander": "string",
"ignore_daemonsets_utilization": False,
"max_empty_bulk_delete": "string",
"max_graceful_termination_sec": "string",
"max_node_provision_time": "string",
"max_total_unready_percentage": "string",
"new_pod_scale_up_delay": "string",
"ok_total_unready_count": "string",
"scale_down_delay_after_add": "string",
"scale_down_delay_after_delete": "string",
"scale_down_delay_after_failure": "string",
"scale_down_unneeded_time": "string",
"scale_down_unready_time": "string",
"scale_down_utilization_threshold": "string",
"scan_interval": "string",
"skip_nodes_with_local_storage": "string",
"skip_nodes_with_system_pods": "string",
},
auto_upgrade_profile={
"node_os_upgrade_channel": "string",
"upgrade_channel": "string",
},
azure_monitor_profile={
"metrics": {
"enabled": False,
"kube_state_metrics": {
"metric_annotations_allow_list": "string",
"metric_labels_allowlist": "string",
},
},
},
bootstrap_profile={
"artifact_source": "string",
"container_registry_id": "string",
},
disable_local_accounts=False,
disk_encryption_set_id="string",
dns_prefix="string",
enable_rbac=False,
extended_location={
"name": "string",
"type": "string",
},
fqdn_subdomain="string",
http_proxy_config={
"http_proxy": "string",
"https_proxy": "string",
"no_proxy": ["string"],
"trusted_ca": "string",
},
identity={
"delegated_resources": {
"string": {
"location": "string",
"referral_resource": "string",
"resource_id": "string",
"tenant_id": "string",
},
},
"type": azure_native.containerservice.ResourceIdentityType.SYSTEM_ASSIGNED,
"user_assigned_identities": ["string"],
},
identity_profile={
"string": {
"client_id": "string",
"object_id": "string",
"resource_id": "string",
},
},
aad_profile={
"admin_group_object_ids": ["string"],
"client_app_id": "string",
"enable_azure_rbac": False,
"managed": False,
"server_app_id": "string",
"server_app_secret": "string",
"tenant_id": "string",
},
kind="string",
kubernetes_version="string",
agent_pool_profiles=[{
"name": "string",
"availability_zones": ["string"],
"capacity_reservation_group_id": "string",
"count": 0,
"creation_data": {
"source_resource_id": "string",
},
"enable_auto_scaling": False,
"enable_encryption_at_host": False,
"enable_fips": False,
"enable_node_public_ip": False,
"enable_ultra_ssd": False,
"gateway_profile": {
"public_ip_prefix_size": 0,
},
"gpu_instance_profile": "string",
"gpu_profile": {
"driver": "string",
},
"host_group_id": "string",
"kubelet_config": {
"allowed_unsafe_sysctls": ["string"],
"container_log_max_files": 0,
"container_log_max_size_mb": 0,
"cpu_cfs_quota": False,
"cpu_cfs_quota_period": "string",
"cpu_manager_policy": "string",
"fail_swap_on": False,
"image_gc_high_threshold": 0,
"image_gc_low_threshold": 0,
"pod_max_pids": 0,
"topology_manager_policy": "string",
},
"kubelet_disk_type": "string",
"linux_os_config": {
"swap_file_size_mb": 0,
"sysctls": {
"fs_aio_max_nr": 0,
"fs_file_max": 0,
"fs_inotify_max_user_watches": 0,
"fs_nr_open": 0,
"kernel_threads_max": 0,
"net_core_netdev_max_backlog": 0,
"net_core_optmem_max": 0,
"net_core_rmem_default": 0,
"net_core_rmem_max": 0,
"net_core_somaxconn": 0,
"net_core_wmem_default": 0,
"net_core_wmem_max": 0,
"net_ipv4_ip_local_port_range": "string",
"net_ipv4_neigh_default_gc_thresh1": 0,
"net_ipv4_neigh_default_gc_thresh2": 0,
"net_ipv4_neigh_default_gc_thresh3": 0,
"net_ipv4_tcp_fin_timeout": 0,
"net_ipv4_tcp_keepalive_probes": 0,
"net_ipv4_tcp_keepalive_time": 0,
"net_ipv4_tcp_max_syn_backlog": 0,
"net_ipv4_tcp_max_tw_buckets": 0,
"net_ipv4_tcp_tw_reuse": False,
"net_ipv4_tcpkeepalive_intvl": 0,
"net_netfilter_nf_conntrack_buckets": 0,
"net_netfilter_nf_conntrack_max": 0,
"vm_max_map_count": 0,
"vm_swappiness": 0,
"vm_vfs_cache_pressure": 0,
},
"transparent_huge_page_defrag": "string",
"transparent_huge_page_enabled": "string",
},
"local_dns_profile": {
"kube_dns_overrides": {
"string": {
"cache_duration_in_seconds": 0,
"forward_destination": "string",
"forward_policy": "string",
"max_concurrent": 0,
"protocol": "string",
"query_logging": "string",
"serve_stale": "string",
"serve_stale_duration_in_seconds": 0,
},
},
"mode": "string",
"vnet_dns_overrides": {
"string": {
"cache_duration_in_seconds": 0,
"forward_destination": "string",
"forward_policy": "string",
"max_concurrent": 0,
"protocol": "string",
"query_logging": "string",
"serve_stale": "string",
"serve_stale_duration_in_seconds": 0,
},
},
},
"max_count": 0,
"max_pods": 0,
"message_of_the_day": "string",
"min_count": 0,
"mode": "string",
"network_profile": {
"allowed_host_ports": [{
"port_end": 0,
"port_start": 0,
"protocol": "string",
}],
"application_security_groups": ["string"],
"node_public_ip_tags": [{
"ip_tag_type": "string",
"tag": "string",
}],
},
"node_labels": {
"string": "string",
},
"node_public_ip_prefix_id": "string",
"node_taints": ["string"],
"orchestrator_version": "string",
"os_disk_size_gb": 0,
"os_disk_type": "string",
"os_sku": "string",
"os_type": "string",
"pod_ip_allocation_mode": "string",
"pod_subnet_id": "string",
"power_state": {
"code": "string",
},
"proximity_placement_group_id": "string",
"scale_down_mode": "string",
"scale_set_eviction_policy": "string",
"scale_set_priority": "string",
"security_profile": {
"enable_secure_boot": False,
"enable_vtpm": False,
"ssh_access": "string",
},
"spot_max_price": float(0),
"tags": {
"string": "string",
},
"type": "string",
"upgrade_settings": {
"drain_timeout_in_minutes": 0,
"max_surge": "string",
"max_unavailable": "string",
"node_soak_duration_in_minutes": 0,
"undrainable_node_behavior": "string",
},
"virtual_machine_nodes_status": [{
"count": 0,
"size": "string",
}],
"virtual_machines_profile": {
"scale": {
"manual": [{
"count": 0,
"size": "string",
}],
},
},
"vm_size": "string",
"vnet_subnet_id": "string",
"windows_profile": {
"disable_outbound_nat": False,
},
"workload_runtime": "string",
}],
linux_profile={
"admin_username": "string",
"ssh": {
"public_keys": [{
"key_data": "string",
}],
},
},
ingress_profile={
"web_app_routing": {
"dns_zone_resource_ids": ["string"],
"enabled": False,
"nginx": {
"default_ingress_controller_type": "string",
},
},
},
network_profile={
"advanced_networking": {
"enabled": False,
"observability": {
"enabled": False,
},
"security": {
"advanced_network_policies": "string",
"enabled": False,
},
},
"dns_service_ip": "string",
"ip_families": ["string"],
"load_balancer_profile": {
"allocated_outbound_ports": 0,
"backend_pool_type": "string",
"enable_multiple_standard_load_balancers": False,
"idle_timeout_in_minutes": 0,
"managed_outbound_ips": {
"count": 0,
"count_i_pv6": 0,
},
"outbound_ip_prefixes": {
"public_ip_prefixes": [{
"id": "string",
}],
},
"outbound_ips": {
"public_ips": [{
"id": "string",
}],
},
},
"load_balancer_sku": "string",
"nat_gateway_profile": {
"idle_timeout_in_minutes": 0,
"managed_outbound_ip_profile": {
"count": 0,
},
},
"network_dataplane": "string",
"network_mode": "string",
"network_plugin": "string",
"network_plugin_mode": "string",
"network_policy": "string",
"outbound_type": "string",
"pod_cidr": "string",
"pod_cidrs": ["string"],
"service_cidr": "string",
"service_cidrs": ["string"],
"static_egress_gateway_profile": {
"enabled": False,
},
},
node_provisioning_profile={
"default_node_pools": "string",
"mode": "string",
},
node_resource_group="string",
node_resource_group_profile={
"restriction_level": "string",
},
oidc_issuer_profile={
"enabled": False,
},
pod_identity_profile={
"allow_network_plugin_kubenet": False,
"enabled": False,
"user_assigned_identities": [{
"identity": {
"client_id": "string",
"object_id": "string",
"resource_id": "string",
},
"name": "string",
"namespace": "string",
"binding_selector": "string",
}],
"user_assigned_identity_exceptions": [{
"name": "string",
"namespace": "string",
"pod_labels": {
"string": "string",
},
}],
},
private_link_resources=[{
"group_id": "string",
"id": "string",
"name": "string",
"required_members": ["string"],
"type": "string",
}],
public_network_access="string",
addon_profiles={
"string": {
"enabled": False,
"config": {
"string": "string",
},
},
},
resource_name_="string",
security_profile={
"azure_key_vault_kms": {
"enabled": False,
"key_id": "string",
"key_vault_network_access": "string",
"key_vault_resource_id": "string",
},
"custom_ca_trust_certificates": ["string"],
"defender": {
"log_analytics_workspace_resource_id": "string",
"security_monitoring": {
"enabled": False,
},
},
"image_cleaner": {
"enabled": False,
"interval_hours": 0,
},
"workload_identity": {
"enabled": False,
},
},
service_mesh_profile={
"mode": "string",
"istio": {
"certificate_authority": {
"plugin": {
"cert_chain_object_name": "string",
"cert_object_name": "string",
"key_object_name": "string",
"key_vault_id": "string",
"root_cert_object_name": "string",
},
},
"components": {
"egress_gateways": [{
"enabled": False,
"name": "string",
"gateway_configuration_name": "string",
"namespace": "string",
}],
"ingress_gateways": [{
"enabled": False,
"mode": "string",
}],
},
"revisions": ["string"],
},
},
service_principal_profile={
"client_id": "string",
"secret": "string",
},
sku={
"name": "string",
"tier": "string",
},
storage_profile={
"blob_csi_driver": {
"enabled": False,
},
"disk_csi_driver": {
"enabled": False,
},
"file_csi_driver": {
"enabled": False,
},
"snapshot_controller": {
"enabled": False,
},
},
support_plan="string",
tags={
"string": "string",
},
upgrade_settings={
"override_settings": {
"force_upgrade": False,
"until": "string",
},
},
windows_profile={
"admin_username": "string",
"admin_password": "string",
"enable_csi_proxy": False,
"gmsa_profile": {
"dns_server": "string",
"enabled": False,
"root_domain_name": "string",
},
"license_type": "string",
},
workload_auto_scaler_profile={
"keda": {
"enabled": False,
},
"vertical_pod_autoscaler": {
"enabled": False,
},
})
const managedClusterResource = new azure_native.containerservice.ManagedCluster("managedClusterResource", {
resourceGroupName: "string",
location: "string",
metricsProfile: {
costAnalysis: {
enabled: false,
},
},
aiToolchainOperatorProfile: {
enabled: false,
},
apiServerAccessProfile: {
authorizedIPRanges: ["string"],
disableRunCommand: false,
enablePrivateCluster: false,
enablePrivateClusterPublicFQDN: false,
enableVnetIntegration: false,
privateDNSZone: "string",
subnetId: "string",
},
autoScalerProfile: {
balanceSimilarNodeGroups: "string",
daemonsetEvictionForEmptyNodes: false,
daemonsetEvictionForOccupiedNodes: false,
expander: "string",
ignoreDaemonsetsUtilization: false,
maxEmptyBulkDelete: "string",
maxGracefulTerminationSec: "string",
maxNodeProvisionTime: "string",
maxTotalUnreadyPercentage: "string",
newPodScaleUpDelay: "string",
okTotalUnreadyCount: "string",
scaleDownDelayAfterAdd: "string",
scaleDownDelayAfterDelete: "string",
scaleDownDelayAfterFailure: "string",
scaleDownUnneededTime: "string",
scaleDownUnreadyTime: "string",
scaleDownUtilizationThreshold: "string",
scanInterval: "string",
skipNodesWithLocalStorage: "string",
skipNodesWithSystemPods: "string",
},
autoUpgradeProfile: {
nodeOSUpgradeChannel: "string",
upgradeChannel: "string",
},
azureMonitorProfile: {
metrics: {
enabled: false,
kubeStateMetrics: {
metricAnnotationsAllowList: "string",
metricLabelsAllowlist: "string",
},
},
},
bootstrapProfile: {
artifactSource: "string",
containerRegistryId: "string",
},
disableLocalAccounts: false,
diskEncryptionSetID: "string",
dnsPrefix: "string",
enableRBAC: false,
extendedLocation: {
name: "string",
type: "string",
},
fqdnSubdomain: "string",
httpProxyConfig: {
httpProxy: "string",
httpsProxy: "string",
noProxy: ["string"],
trustedCa: "string",
},
identity: {
delegatedResources: {
string: {
location: "string",
referralResource: "string",
resourceId: "string",
tenantId: "string",
},
},
type: azure_native.containerservice.ResourceIdentityType.SystemAssigned,
userAssignedIdentities: ["string"],
},
identityProfile: {
string: {
clientId: "string",
objectId: "string",
resourceId: "string",
},
},
aadProfile: {
adminGroupObjectIDs: ["string"],
clientAppID: "string",
enableAzureRBAC: false,
managed: false,
serverAppID: "string",
serverAppSecret: "string",
tenantID: "string",
},
kind: "string",
kubernetesVersion: "string",
agentPoolProfiles: [{
name: "string",
availabilityZones: ["string"],
capacityReservationGroupID: "string",
count: 0,
creationData: {
sourceResourceId: "string",
},
enableAutoScaling: false,
enableEncryptionAtHost: false,
enableFIPS: false,
enableNodePublicIP: false,
enableUltraSSD: false,
gatewayProfile: {
publicIPPrefixSize: 0,
},
gpuInstanceProfile: "string",
gpuProfile: {
driver: "string",
},
hostGroupID: "string",
kubeletConfig: {
allowedUnsafeSysctls: ["string"],
containerLogMaxFiles: 0,
containerLogMaxSizeMB: 0,
cpuCfsQuota: false,
cpuCfsQuotaPeriod: "string",
cpuManagerPolicy: "string",
failSwapOn: false,
imageGcHighThreshold: 0,
imageGcLowThreshold: 0,
podMaxPids: 0,
topologyManagerPolicy: "string",
},
kubeletDiskType: "string",
linuxOSConfig: {
swapFileSizeMB: 0,
sysctls: {
fsAioMaxNr: 0,
fsFileMax: 0,
fsInotifyMaxUserWatches: 0,
fsNrOpen: 0,
kernelThreadsMax: 0,
netCoreNetdevMaxBacklog: 0,
netCoreOptmemMax: 0,
netCoreRmemDefault: 0,
netCoreRmemMax: 0,
netCoreSomaxconn: 0,
netCoreWmemDefault: 0,
netCoreWmemMax: 0,
netIpv4IpLocalPortRange: "string",
netIpv4NeighDefaultGcThresh1: 0,
netIpv4NeighDefaultGcThresh2: 0,
netIpv4NeighDefaultGcThresh3: 0,
netIpv4TcpFinTimeout: 0,
netIpv4TcpKeepaliveProbes: 0,
netIpv4TcpKeepaliveTime: 0,
netIpv4TcpMaxSynBacklog: 0,
netIpv4TcpMaxTwBuckets: 0,
netIpv4TcpTwReuse: false,
netIpv4TcpkeepaliveIntvl: 0,
netNetfilterNfConntrackBuckets: 0,
netNetfilterNfConntrackMax: 0,
vmMaxMapCount: 0,
vmSwappiness: 0,
vmVfsCachePressure: 0,
},
transparentHugePageDefrag: "string",
transparentHugePageEnabled: "string",
},
localDNSProfile: {
kubeDNSOverrides: {
string: {
cacheDurationInSeconds: 0,
forwardDestination: "string",
forwardPolicy: "string",
maxConcurrent: 0,
protocol: "string",
queryLogging: "string",
serveStale: "string",
serveStaleDurationInSeconds: 0,
},
},
mode: "string",
vnetDNSOverrides: {
string: {
cacheDurationInSeconds: 0,
forwardDestination: "string",
forwardPolicy: "string",
maxConcurrent: 0,
protocol: "string",
queryLogging: "string",
serveStale: "string",
serveStaleDurationInSeconds: 0,
},
},
},
maxCount: 0,
maxPods: 0,
messageOfTheDay: "string",
minCount: 0,
mode: "string",
networkProfile: {
allowedHostPorts: [{
portEnd: 0,
portStart: 0,
protocol: "string",
}],
applicationSecurityGroups: ["string"],
nodePublicIPTags: [{
ipTagType: "string",
tag: "string",
}],
},
nodeLabels: {
string: "string",
},
nodePublicIPPrefixID: "string",
nodeTaints: ["string"],
orchestratorVersion: "string",
osDiskSizeGB: 0,
osDiskType: "string",
osSKU: "string",
osType: "string",
podIPAllocationMode: "string",
podSubnetID: "string",
powerState: {
code: "string",
},
proximityPlacementGroupID: "string",
scaleDownMode: "string",
scaleSetEvictionPolicy: "string",
scaleSetPriority: "string",
securityProfile: {
enableSecureBoot: false,
enableVTPM: false,
sshAccess: "string",
},
spotMaxPrice: 0,
tags: {
string: "string",
},
type: "string",
upgradeSettings: {
drainTimeoutInMinutes: 0,
maxSurge: "string",
maxUnavailable: "string",
nodeSoakDurationInMinutes: 0,
undrainableNodeBehavior: "string",
},
virtualMachineNodesStatus: [{
count: 0,
size: "string",
}],
virtualMachinesProfile: {
scale: {
manual: [{
count: 0,
size: "string",
}],
},
},
vmSize: "string",
vnetSubnetID: "string",
windowsProfile: {
disableOutboundNat: false,
},
workloadRuntime: "string",
}],
linuxProfile: {
adminUsername: "string",
ssh: {
publicKeys: [{
keyData: "string",
}],
},
},
ingressProfile: {
webAppRouting: {
dnsZoneResourceIds: ["string"],
enabled: false,
nginx: {
defaultIngressControllerType: "string",
},
},
},
networkProfile: {
advancedNetworking: {
enabled: false,
observability: {
enabled: false,
},
security: {
advancedNetworkPolicies: "string",
enabled: false,
},
},
dnsServiceIP: "string",
ipFamilies: ["string"],
loadBalancerProfile: {
allocatedOutboundPorts: 0,
backendPoolType: "string",
enableMultipleStandardLoadBalancers: false,
idleTimeoutInMinutes: 0,
managedOutboundIPs: {
count: 0,
countIPv6: 0,
},
outboundIPPrefixes: {
publicIPPrefixes: [{
id: "string",
}],
},
outboundIPs: {
publicIPs: [{
id: "string",
}],
},
},
loadBalancerSku: "string",
natGatewayProfile: {
idleTimeoutInMinutes: 0,
managedOutboundIPProfile: {
count: 0,
},
},
networkDataplane: "string",
networkMode: "string",
networkPlugin: "string",
networkPluginMode: "string",
networkPolicy: "string",
outboundType: "string",
podCidr: "string",
podCidrs: ["string"],
serviceCidr: "string",
serviceCidrs: ["string"],
staticEgressGatewayProfile: {
enabled: false,
},
},
nodeProvisioningProfile: {
defaultNodePools: "string",
mode: "string",
},
nodeResourceGroup: "string",
nodeResourceGroupProfile: {
restrictionLevel: "string",
},
oidcIssuerProfile: {
enabled: false,
},
podIdentityProfile: {
allowNetworkPluginKubenet: false,
enabled: false,
userAssignedIdentities: [{
identity: {
clientId: "string",
objectId: "string",
resourceId: "string",
},
name: "string",
namespace: "string",
bindingSelector: "string",
}],
userAssignedIdentityExceptions: [{
name: "string",
namespace: "string",
podLabels: {
string: "string",
},
}],
},
privateLinkResources: [{
groupId: "string",
id: "string",
name: "string",
requiredMembers: ["string"],
type: "string",
}],
publicNetworkAccess: "string",
addonProfiles: {
string: {
enabled: false,
config: {
string: "string",
},
},
},
resourceName: "string",
securityProfile: {
azureKeyVaultKms: {
enabled: false,
keyId: "string",
keyVaultNetworkAccess: "string",
keyVaultResourceId: "string",
},
customCATrustCertificates: ["string"],
defender: {
logAnalyticsWorkspaceResourceId: "string",
securityMonitoring: {
enabled: false,
},
},
imageCleaner: {
enabled: false,
intervalHours: 0,
},
workloadIdentity: {
enabled: false,
},
},
serviceMeshProfile: {
mode: "string",
istio: {
certificateAuthority: {
plugin: {
certChainObjectName: "string",
certObjectName: "string",
keyObjectName: "string",
keyVaultId: "string",
rootCertObjectName: "string",
},
},
components: {
egressGateways: [{
enabled: false,
name: "string",
gatewayConfigurationName: "string",
namespace: "string",
}],
ingressGateways: [{
enabled: false,
mode: "string",
}],
},
revisions: ["string"],
},
},
servicePrincipalProfile: {
clientId: "string",
secret: "string",
},
sku: {
name: "string",
tier: "string",
},
storageProfile: {
blobCSIDriver: {
enabled: false,
},
diskCSIDriver: {
enabled: false,
},
fileCSIDriver: {
enabled: false,
},
snapshotController: {
enabled: false,
},
},
supportPlan: "string",
tags: {
string: "string",
},
upgradeSettings: {
overrideSettings: {
forceUpgrade: false,
until: "string",
},
},
windowsProfile: {
adminUsername: "string",
adminPassword: "string",
enableCSIProxy: false,
gmsaProfile: {
dnsServer: "string",
enabled: false,
rootDomainName: "string",
},
licenseType: "string",
},
workloadAutoScalerProfile: {
keda: {
enabled: false,
},
verticalPodAutoscaler: {
enabled: false,
},
},
});
type: azure-native:containerservice:ManagedCluster
properties:
aadProfile:
adminGroupObjectIDs:
- string
clientAppID: string
enableAzureRBAC: false
managed: false
serverAppID: string
serverAppSecret: string
tenantID: string
addonProfiles:
string:
config:
string: string
enabled: false
agentPoolProfiles:
- availabilityZones:
- string
capacityReservationGroupID: string
count: 0
creationData:
sourceResourceId: string
enableAutoScaling: false
enableEncryptionAtHost: false
enableFIPS: false
enableNodePublicIP: false
enableUltraSSD: false
gatewayProfile:
publicIPPrefixSize: 0
gpuInstanceProfile: string
gpuProfile:
driver: string
hostGroupID: string
kubeletConfig:
allowedUnsafeSysctls:
- string
containerLogMaxFiles: 0
containerLogMaxSizeMB: 0
cpuCfsQuota: false
cpuCfsQuotaPeriod: string
cpuManagerPolicy: string
failSwapOn: false
imageGcHighThreshold: 0
imageGcLowThreshold: 0
podMaxPids: 0
topologyManagerPolicy: string
kubeletDiskType: string
linuxOSConfig:
swapFileSizeMB: 0
sysctls:
fsAioMaxNr: 0
fsFileMax: 0
fsInotifyMaxUserWatches: 0
fsNrOpen: 0
kernelThreadsMax: 0
netCoreNetdevMaxBacklog: 0
netCoreOptmemMax: 0
netCoreRmemDefault: 0
netCoreRmemMax: 0
netCoreSomaxconn: 0
netCoreWmemDefault: 0
netCoreWmemMax: 0
netIpv4IpLocalPortRange: string
netIpv4NeighDefaultGcThresh1: 0
netIpv4NeighDefaultGcThresh2: 0
netIpv4NeighDefaultGcThresh3: 0
netIpv4TcpFinTimeout: 0
netIpv4TcpKeepaliveProbes: 0
netIpv4TcpKeepaliveTime: 0
netIpv4TcpMaxSynBacklog: 0
netIpv4TcpMaxTwBuckets: 0
netIpv4TcpTwReuse: false
netIpv4TcpkeepaliveIntvl: 0
netNetfilterNfConntrackBuckets: 0
netNetfilterNfConntrackMax: 0
vmMaxMapCount: 0
vmSwappiness: 0
vmVfsCachePressure: 0
transparentHugePageDefrag: string
transparentHugePageEnabled: string
localDNSProfile:
kubeDNSOverrides:
string:
cacheDurationInSeconds: 0
forwardDestination: string
forwardPolicy: string
maxConcurrent: 0
protocol: string
queryLogging: string
serveStale: string
serveStaleDurationInSeconds: 0
mode: string
vnetDNSOverrides:
string:
cacheDurationInSeconds: 0
forwardDestination: string
forwardPolicy: string
maxConcurrent: 0
protocol: string
queryLogging: string
serveStale: string
serveStaleDurationInSeconds: 0
maxCount: 0
maxPods: 0
messageOfTheDay: string
minCount: 0
mode: string
name: string
networkProfile:
allowedHostPorts:
- portEnd: 0
portStart: 0
protocol: string
applicationSecurityGroups:
- string
nodePublicIPTags:
- ipTagType: string
tag: string
nodeLabels:
string: string
nodePublicIPPrefixID: string
nodeTaints:
- string
orchestratorVersion: string
osDiskSizeGB: 0
osDiskType: string
osSKU: string
osType: string
podIPAllocationMode: string
podSubnetID: string
powerState:
code: string
proximityPlacementGroupID: string
scaleDownMode: string
scaleSetEvictionPolicy: string
scaleSetPriority: string
securityProfile:
enableSecureBoot: false
enableVTPM: false
sshAccess: string
spotMaxPrice: 0
tags:
string: string
type: string
upgradeSettings:
drainTimeoutInMinutes: 0
maxSurge: string
maxUnavailable: string
nodeSoakDurationInMinutes: 0
undrainableNodeBehavior: string
virtualMachineNodesStatus:
- count: 0
size: string
virtualMachinesProfile:
scale:
manual:
- count: 0
size: string
vmSize: string
vnetSubnetID: string
windowsProfile:
disableOutboundNat: false
workloadRuntime: string
aiToolchainOperatorProfile:
enabled: false
apiServerAccessProfile:
authorizedIPRanges:
- string
disableRunCommand: false
enablePrivateCluster: false
enablePrivateClusterPublicFQDN: false
enableVnetIntegration: false
privateDNSZone: string
subnetId: string
autoScalerProfile:
balanceSimilarNodeGroups: string
daemonsetEvictionForEmptyNodes: false
daemonsetEvictionForOccupiedNodes: false
expander: string
ignoreDaemonsetsUtilization: false
maxEmptyBulkDelete: string
maxGracefulTerminationSec: string
maxNodeProvisionTime: string
maxTotalUnreadyPercentage: string
newPodScaleUpDelay: string
okTotalUnreadyCount: string
scaleDownDelayAfterAdd: string
scaleDownDelayAfterDelete: string
scaleDownDelayAfterFailure: string
scaleDownUnneededTime: string
scaleDownUnreadyTime: string
scaleDownUtilizationThreshold: string
scanInterval: string
skipNodesWithLocalStorage: string
skipNodesWithSystemPods: string
autoUpgradeProfile:
nodeOSUpgradeChannel: string
upgradeChannel: string
azureMonitorProfile:
metrics:
enabled: false
kubeStateMetrics:
metricAnnotationsAllowList: string
metricLabelsAllowlist: string
bootstrapProfile:
artifactSource: string
containerRegistryId: string
disableLocalAccounts: false
diskEncryptionSetID: string
dnsPrefix: string
enableRBAC: false
extendedLocation:
name: string
type: string
fqdnSubdomain: string
httpProxyConfig:
httpProxy: string
httpsProxy: string
noProxy:
- string
trustedCa: string
identity:
delegatedResources:
string:
location: string
referralResource: string
resourceId: string
tenantId: string
type: SystemAssigned
userAssignedIdentities:
- string
identityProfile:
string:
clientId: string
objectId: string
resourceId: string
ingressProfile:
webAppRouting:
dnsZoneResourceIds:
- string
enabled: false
nginx:
defaultIngressControllerType: string
kind: string
kubernetesVersion: string
linuxProfile:
adminUsername: string
ssh:
publicKeys:
- keyData: string
location: string
metricsProfile:
costAnalysis:
enabled: false
networkProfile:
advancedNetworking:
enabled: false
observability:
enabled: false
security:
advancedNetworkPolicies: string
enabled: false
dnsServiceIP: string
ipFamilies:
- string
loadBalancerProfile:
allocatedOutboundPorts: 0
backendPoolType: string
enableMultipleStandardLoadBalancers: false
idleTimeoutInMinutes: 0
managedOutboundIPs:
count: 0
countIPv6: 0
outboundIPPrefixes:
publicIPPrefixes:
- id: string
outboundIPs:
publicIPs:
- id: string
loadBalancerSku: string
natGatewayProfile:
idleTimeoutInMinutes: 0
managedOutboundIPProfile:
count: 0
networkDataplane: string
networkMode: string
networkPlugin: string
networkPluginMode: string
networkPolicy: string
outboundType: string
podCidr: string
podCidrs:
- string
serviceCidr: string
serviceCidrs:
- string
staticEgressGatewayProfile:
enabled: false
nodeProvisioningProfile:
defaultNodePools: string
mode: string
nodeResourceGroup: string
nodeResourceGroupProfile:
restrictionLevel: string
oidcIssuerProfile:
enabled: false
podIdentityProfile:
allowNetworkPluginKubenet: false
enabled: false
userAssignedIdentities:
- bindingSelector: string
identity:
clientId: string
objectId: string
resourceId: string
name: string
namespace: string
userAssignedIdentityExceptions:
- name: string
namespace: string
podLabels:
string: string
privateLinkResources:
- groupId: string
id: string
name: string
requiredMembers:
- string
type: string
publicNetworkAccess: string
resourceGroupName: string
resourceName: string
securityProfile:
azureKeyVaultKms:
enabled: false
keyId: string
keyVaultNetworkAccess: string
keyVaultResourceId: string
customCATrustCertificates:
- string
defender:
logAnalyticsWorkspaceResourceId: string
securityMonitoring:
enabled: false
imageCleaner:
enabled: false
intervalHours: 0
workloadIdentity:
enabled: false
serviceMeshProfile:
istio:
certificateAuthority:
plugin:
certChainObjectName: string
certObjectName: string
keyObjectName: string
keyVaultId: string
rootCertObjectName: string
components:
egressGateways:
- enabled: false
gatewayConfigurationName: string
name: string
namespace: string
ingressGateways:
- enabled: false
mode: string
revisions:
- string
mode: string
servicePrincipalProfile:
clientId: string
secret: string
sku:
name: string
tier: string
storageProfile:
blobCSIDriver:
enabled: false
diskCSIDriver:
enabled: false
fileCSIDriver:
enabled: false
snapshotController:
enabled: false
supportPlan: string
tags:
string: string
upgradeSettings:
overrideSettings:
forceUpgrade: false
until: string
windowsProfile:
adminPassword: string
adminUsername: string
enableCSIProxy: false
gmsaProfile:
dnsServer: string
enabled: false
rootDomainName: string
licenseType: string
workloadAutoScalerProfile:
keda:
enabled: false
verticalPodAutoscaler:
enabled: false
ManagedCluster Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The ManagedCluster resource accepts the following input properties:
- Resource
Group stringName - The name of the resource group. The name is case insensitive.
- Aad
Profile Pulumi.Azure Native. Container Service. Inputs. Managed Cluster AADProfile - The Azure Active Directory configuration.
- Addon
Profiles Dictionary<string, Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Addon Profile Args> - The profile of managed cluster add-on.
- Agent
Pool List<Pulumi.Profiles Azure Native. Container Service. Inputs. Managed Cluster Agent Pool Profile> - The agent pool properties.
- Ai
Toolchain Pulumi.Operator Profile Azure Native. Container Service. Inputs. Managed Cluster AIToolchain Operator Profile - AI toolchain operator settings that apply to the whole cluster.
- Api
Server Pulumi.Access Profile Azure Native. Container Service. Inputs. Managed Cluster APIServer Access Profile - The access profile for managed cluster API server.
- Auto
Scaler Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Properties Auto Scaler Profile - Parameters to be applied to the cluster-autoscaler when enabled
- Auto
Upgrade Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Auto Upgrade Profile - The auto upgrade configuration.
- Azure
Monitor Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Azure Monitor Profile - Azure Monitor addon profiles for monitoring the managed cluster.
- Bootstrap
Profile Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Bootstrap Profile - Profile of the cluster bootstrap configuration.
- Disable
Local boolAccounts - If local accounts should be disabled on the Managed Cluster. If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
- Disk
Encryption stringSet ID - The Resource ID of the disk encryption set to use for enabling encryption at rest. This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
- Dns
Prefix string - The DNS prefix of the Managed Cluster. This cannot be updated once the Managed Cluster has been created.
- Enable
RBAC bool - Whether to enable Kubernetes Role-Based Access Control.
- Extended
Location Pulumi.Azure Native. Container Service. Inputs. Extended Location - The extended location of the Virtual Machine.
- Fqdn
Subdomain string - The FQDN subdomain of the private cluster with custom private dns zone. This cannot be updated once the Managed Cluster has been created.
- Http
Proxy Pulumi.Config Azure Native. Container Service. Inputs. Managed Cluster HTTPProxy Config - Configurations for provisioning the cluster with HTTP proxy servers.
- Identity
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Identity - The identity of the managed cluster, if configured.
- Identity
Profile Dictionary<string, Pulumi.Azure Native. Container Service. Inputs. User Assigned Identity Args> - The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
- Ingress
Profile Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Ingress Profile - Ingress profile for the managed cluster.
- Kind string
- This is primarily used to expose different UI experiences in the portal for different kinds
- Kubernetes
Version string - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
- Linux
Profile Pulumi.Azure Native. Container Service. Inputs. Container Service Linux Profile - The profile for Linux VMs in the Managed Cluster.
- Location string
- The geo-location where the resource lives
- Metrics
Profile Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Metrics Profile - Optional cluster metrics configuration.
- Network
Profile Pulumi.Azure Native. Container Service. Inputs. Container Service Network Profile - The network configuration profile.
- Node
Provisioning Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Node Provisioning Profile - Node provisioning settings that apply to the whole cluster.
- Node
Resource stringGroup - The name of the resource group containing agent pool nodes.
- Node
Resource Pulumi.Group Profile Azure Native. Container Service. Inputs. Managed Cluster Node Resource Group Profile - Profile of the node resource group configuration.
- Oidc
Issuer Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster OIDCIssuer Profile - The OIDC issuer profile of the Managed Cluster.
- Pod
Identity Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Profile - The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on AAD pod identity integration.
- Private
Link List<Pulumi.Resources Azure Native. Container Service. Inputs. Private Link Resource> - Private link resources associated with the cluster.
- Public
Network string | Pulumi.Access Azure Native. Container Service. Public Network Access - PublicNetworkAccess of the managedCluster. Allow or deny public network access for AKS
- Resource
Name string - The name of the managed cluster resource.
- Security
Profile Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile - Security profile for the managed cluster.
- Service
Mesh Pulumi.Profile Azure Native. Container Service. Inputs. Service Mesh Profile - Service mesh profile for a managed cluster.
- Service
Principal Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Service Principal Profile - Information about a service principal identity for the cluster to use for manipulating Azure APIs.
- Sku
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster SKU - The managed cluster SKU.
- Storage
Profile Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile - Storage profile for the managed cluster.
- Support
Plan string | Pulumi.Azure Native. Container Service. Kubernetes Support Plan - The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
- Dictionary<string, string>
- Resource tags.
- Upgrade
Settings Pulumi.Azure Native. Container Service. Inputs. Cluster Upgrade Settings - Settings for upgrading a cluster.
- Windows
Profile Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Windows Profile - The profile for Windows VMs in the Managed Cluster.
- Workload
Auto Pulumi.Scaler Profile Azure Native. Container Service. Inputs. Managed Cluster Workload Auto Scaler Profile - Workload Auto-scaler profile for the managed cluster.
- Resource
Group stringName - The name of the resource group. The name is case insensitive.
- Aad
Profile ManagedCluster AADProfile Args - The Azure Active Directory configuration.
- Addon
Profiles map[string]ManagedCluster Addon Profile Args - The profile of managed cluster add-on.
- Agent
Pool []ManagedProfiles Cluster Agent Pool Profile Args - The agent pool properties.
- Ai
Toolchain ManagedOperator Profile Cluster AIToolchain Operator Profile Args - AI toolchain operator settings that apply to the whole cluster.
- Api
Server ManagedAccess Profile Cluster APIServer Access Profile Args - The access profile for managed cluster API server.
- Auto
Scaler ManagedProfile Cluster Properties Auto Scaler Profile Args - Parameters to be applied to the cluster-autoscaler when enabled
- Auto
Upgrade ManagedProfile Cluster Auto Upgrade Profile Args - The auto upgrade configuration.
- Azure
Monitor ManagedProfile Cluster Azure Monitor Profile Args - Azure Monitor addon profiles for monitoring the managed cluster.
- Bootstrap
Profile ManagedCluster Bootstrap Profile Args - Profile of the cluster bootstrap configuration.
- Disable
Local boolAccounts - If local accounts should be disabled on the Managed Cluster. If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
- Disk
Encryption stringSet ID - The Resource ID of the disk encryption set to use for enabling encryption at rest. This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
- Dns
Prefix string - The DNS prefix of the Managed Cluster. This cannot be updated once the Managed Cluster has been created.
- Enable
RBAC bool - Whether to enable Kubernetes Role-Based Access Control.
- Extended
Location ExtendedLocation Args - The extended location of the Virtual Machine.
- Fqdn
Subdomain string - The FQDN subdomain of the private cluster with custom private dns zone. This cannot be updated once the Managed Cluster has been created.
- Http
Proxy ManagedConfig Cluster HTTPProxy Config Args - Configurations for provisioning the cluster with HTTP proxy servers.
- Identity
Managed
Cluster Identity Args - The identity of the managed cluster, if configured.
- Identity
Profile map[string]UserAssigned Identity Args - The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
- Ingress
Profile ManagedCluster Ingress Profile Args - Ingress profile for the managed cluster.
- Kind string
- This is primarily used to expose different UI experiences in the portal for different kinds
- Kubernetes
Version string - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
- Linux
Profile ContainerService Linux Profile Args - The profile for Linux VMs in the Managed Cluster.
- Location string
- The geo-location where the resource lives
- Metrics
Profile ManagedCluster Metrics Profile Args - Optional cluster metrics configuration.
- Network
Profile ContainerService Network Profile Args - The network configuration profile.
- Node
Provisioning ManagedProfile Cluster Node Provisioning Profile Args - Node provisioning settings that apply to the whole cluster.
- Node
Resource stringGroup - The name of the resource group containing agent pool nodes.
- Node
Resource ManagedGroup Profile Cluster Node Resource Group Profile Args - Profile of the node resource group configuration.
- Oidc
Issuer ManagedProfile Cluster OIDCIssuer Profile Args - The OIDC issuer profile of the Managed Cluster.
- Pod
Identity ManagedProfile Cluster Pod Identity Profile Args - The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on AAD pod identity integration.
- Private
Link []PrivateResources Link Resource Args - Private link resources associated with the cluster.
- Public
Network string | PublicAccess Network Access - PublicNetworkAccess of the managedCluster. Allow or deny public network access for AKS
- Resource
Name string - The name of the managed cluster resource.
- Security
Profile ManagedCluster Security Profile Args - Security profile for the managed cluster.
- Service
Mesh ServiceProfile Mesh Profile Args - Service mesh profile for a managed cluster.
- Service
Principal ManagedProfile Cluster Service Principal Profile Args - Information about a service principal identity for the cluster to use for manipulating Azure APIs.
- Sku
Managed
Cluster SKUArgs - The managed cluster SKU.
- Storage
Profile ManagedCluster Storage Profile Args - Storage profile for the managed cluster.
- Support
Plan string | KubernetesSupport Plan - The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
- map[string]string
- Resource tags.
- Upgrade
Settings ClusterUpgrade Settings Args - Settings for upgrading a cluster.
- Windows
Profile ManagedCluster Windows Profile Args - The profile for Windows VMs in the Managed Cluster.
- Workload
Auto ManagedScaler Profile Cluster Workload Auto Scaler Profile Args - Workload Auto-scaler profile for the managed cluster.
- resource_
group_ stringname - The name of the resource group. The name is case insensitive.
- aad_
profile object - The Azure Active Directory configuration.
- addon_
profiles map(object) - The profile of managed cluster add-on.
- agent_
pool_ list(object)profiles - The agent pool properties.
- ai_
toolchain_ objectoperator_ profile - AI toolchain operator settings that apply to the whole cluster.
- api_
server_ objectaccess_ profile - The access profile for managed cluster API server.
- auto_
scaler_ objectprofile - Parameters to be applied to the cluster-autoscaler when enabled
- auto_
upgrade_ objectprofile - The auto upgrade configuration.
- azure_
monitor_ objectprofile - Azure Monitor addon profiles for monitoring the managed cluster.
- bootstrap_
profile object - Profile of the cluster bootstrap configuration.
- disable_
local_ boolaccounts - If local accounts should be disabled on the Managed Cluster. If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
- disk_
encryption_ stringset_ id - The Resource ID of the disk encryption set to use for enabling encryption at rest. This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
- dns_
prefix string - The DNS prefix of the Managed Cluster. This cannot be updated once the Managed Cluster has been created.
- enable_
rbac bool - Whether to enable Kubernetes Role-Based Access Control.
- extended_
location object - The extended location of the Virtual Machine.
- fqdn_
subdomain string - The FQDN subdomain of the private cluster with custom private dns zone. This cannot be updated once the Managed Cluster has been created.
- http_
proxy_ objectconfig - Configurations for provisioning the cluster with HTTP proxy servers.
- identity object
- The identity of the managed cluster, if configured.
- identity_
profile map(object) - The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
- ingress_
profile object - Ingress profile for the managed cluster.
- kind string
- This is primarily used to expose different UI experiences in the portal for different kinds
- kubernetes_
version string - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
- linux_
profile object - The profile for Linux VMs in the Managed Cluster.
- location string
- The geo-location where the resource lives
- metrics_
profile object - Optional cluster metrics configuration.
- network_
profile object - The network configuration profile.
- node_
provisioning_ objectprofile - Node provisioning settings that apply to the whole cluster.
- node_
resource_ stringgroup - The name of the resource group containing agent pool nodes.
- node_
resource_ objectgroup_ profile - Profile of the node resource group configuration.
- oidc_
issuer_ objectprofile - The OIDC issuer profile of the Managed Cluster.
- pod_
identity_ objectprofile - The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on AAD pod identity integration.
- private_
link_ list(object)resources - Private link resources associated with the cluster.
- public_
network_ string | "Enabled" | "Disabled"access - PublicNetworkAccess of the managedCluster. Allow or deny public network access for AKS
- resource_
name string - The name of the managed cluster resource.
- security_
profile object - Security profile for the managed cluster.
- service_
mesh_ objectprofile - Service mesh profile for a managed cluster.
- service_
principal_ objectprofile - Information about a service principal identity for the cluster to use for manipulating Azure APIs.
- sku object
- The managed cluster SKU.
- storage_
profile object - Storage profile for the managed cluster.
- support_
plan string | "KubernetesOfficial" | "AKSLong Term Support" - The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
- map(string)
- Resource tags.
- upgrade_
settings object - Settings for upgrading a cluster.
- windows_
profile object - The profile for Windows VMs in the Managed Cluster.
- workload_
auto_ objectscaler_ profile - Workload Auto-scaler profile for the managed cluster.
- resource
Group StringName - The name of the resource group. The name is case insensitive.
- aad
Profile ManagedCluster AADProfile - The Azure Active Directory configuration.
- addon
Profiles Map<String,ManagedCluster Addon Profile Args> - The profile of managed cluster add-on.
- agent
Pool List<ManagedProfiles Cluster Agent Pool Profile> - The agent pool properties.
- ai
Toolchain ManagedOperator Profile Cluster AIToolchain Operator Profile - AI toolchain operator settings that apply to the whole cluster.
- api
Server ManagedAccess Profile Cluster APIServer Access Profile - The access profile for managed cluster API server.
- auto
Scaler ManagedProfile Cluster Properties Auto Scaler Profile - Parameters to be applied to the cluster-autoscaler when enabled
- auto
Upgrade ManagedProfile Cluster Auto Upgrade Profile - The auto upgrade configuration.
- azure
Monitor ManagedProfile Cluster Azure Monitor Profile - Azure Monitor addon profiles for monitoring the managed cluster.
- bootstrap
Profile ManagedCluster Bootstrap Profile - Profile of the cluster bootstrap configuration.
- disable
Local BooleanAccounts - If local accounts should be disabled on the Managed Cluster. If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
- disk
Encryption StringSet ID - The Resource ID of the disk encryption set to use for enabling encryption at rest. This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
- dns
Prefix String - The DNS prefix of the Managed Cluster. This cannot be updated once the Managed Cluster has been created.
- enable
RBAC Boolean - Whether to enable Kubernetes Role-Based Access Control.
- extended
Location ExtendedLocation - The extended location of the Virtual Machine.
- fqdn
Subdomain String - The FQDN subdomain of the private cluster with custom private dns zone. This cannot be updated once the Managed Cluster has been created.
- http
Proxy ManagedConfig Cluster HTTPProxy Config - Configurations for provisioning the cluster with HTTP proxy servers.
- identity
Managed
Cluster Identity - The identity of the managed cluster, if configured.
- identity
Profile Map<String,UserAssigned Identity Args> - The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
- ingress
Profile ManagedCluster Ingress Profile - Ingress profile for the managed cluster.
- kind String
- This is primarily used to expose different UI experiences in the portal for different kinds
- kubernetes
Version String - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
- linux
Profile ContainerService Linux Profile - The profile for Linux VMs in the Managed Cluster.
- location String
- The geo-location where the resource lives
- metrics
Profile ManagedCluster Metrics Profile - Optional cluster metrics configuration.
- network
Profile ContainerService Network Profile - The network configuration profile.
- node
Provisioning ManagedProfile Cluster Node Provisioning Profile - Node provisioning settings that apply to the whole cluster.
- node
Resource StringGroup - The name of the resource group containing agent pool nodes.
- node
Resource ManagedGroup Profile Cluster Node Resource Group Profile - Profile of the node resource group configuration.
- oidc
Issuer ManagedProfile Cluster OIDCIssuer Profile - The OIDC issuer profile of the Managed Cluster.
- pod
Identity ManagedProfile Cluster Pod Identity Profile - The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on AAD pod identity integration.
- private
Link List<PrivateResources Link Resource> - Private link resources associated with the cluster.
- public
Network String | PublicAccess Network Access - PublicNetworkAccess of the managedCluster. Allow or deny public network access for AKS
- resource
Name String - The name of the managed cluster resource.
- security
Profile ManagedCluster Security Profile - Security profile for the managed cluster.
- service
Mesh ServiceProfile Mesh Profile - Service mesh profile for a managed cluster.
- service
Principal ManagedProfile Cluster Service Principal Profile - Information about a service principal identity for the cluster to use for manipulating Azure APIs.
- sku
Managed
Cluster SKU - The managed cluster SKU.
- storage
Profile ManagedCluster Storage Profile - Storage profile for the managed cluster.
- support
Plan String | KubernetesSupport Plan - The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
- Map<String,String>
- Resource tags.
- upgrade
Settings ClusterUpgrade Settings - Settings for upgrading a cluster.
- windows
Profile ManagedCluster Windows Profile - The profile for Windows VMs in the Managed Cluster.
- workload
Auto ManagedScaler Profile Cluster Workload Auto Scaler Profile - Workload Auto-scaler profile for the managed cluster.
- resource
Group stringName - The name of the resource group. The name is case insensitive.
- aad
Profile ManagedCluster AADProfile - The Azure Active Directory configuration.
- addon
Profiles {[key: string]: ManagedCluster Addon Profile Args} - The profile of managed cluster add-on.
- agent
Pool ManagedProfiles Cluster Agent Pool Profile[] - The agent pool properties.
- ai
Toolchain ManagedOperator Profile Cluster AIToolchain Operator Profile - AI toolchain operator settings that apply to the whole cluster.
- api
Server ManagedAccess Profile Cluster APIServer Access Profile - The access profile for managed cluster API server.
- auto
Scaler ManagedProfile Cluster Properties Auto Scaler Profile - Parameters to be applied to the cluster-autoscaler when enabled
- auto
Upgrade ManagedProfile Cluster Auto Upgrade Profile - The auto upgrade configuration.
- azure
Monitor ManagedProfile Cluster Azure Monitor Profile - Azure Monitor addon profiles for monitoring the managed cluster.
- bootstrap
Profile ManagedCluster Bootstrap Profile - Profile of the cluster bootstrap configuration.
- disable
Local booleanAccounts - If local accounts should be disabled on the Managed Cluster. If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
- disk
Encryption stringSet ID - The Resource ID of the disk encryption set to use for enabling encryption at rest. This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
- dns
Prefix string - The DNS prefix of the Managed Cluster. This cannot be updated once the Managed Cluster has been created.
- enable
RBAC boolean - Whether to enable Kubernetes Role-Based Access Control.
- extended
Location ExtendedLocation - The extended location of the Virtual Machine.
- fqdn
Subdomain string - The FQDN subdomain of the private cluster with custom private dns zone. This cannot be updated once the Managed Cluster has been created.
- http
Proxy ManagedConfig Cluster HTTPProxy Config - Configurations for provisioning the cluster with HTTP proxy servers.
- identity
Managed
Cluster Identity - The identity of the managed cluster, if configured.
- identity
Profile {[key: string]: UserAssigned Identity Args} - The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
- ingress
Profile ManagedCluster Ingress Profile - Ingress profile for the managed cluster.
- kind string
- This is primarily used to expose different UI experiences in the portal for different kinds
- kubernetes
Version string - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
- linux
Profile ContainerService Linux Profile - The profile for Linux VMs in the Managed Cluster.
- location string
- The geo-location where the resource lives
- metrics
Profile ManagedCluster Metrics Profile - Optional cluster metrics configuration.
- network
Profile ContainerService Network Profile - The network configuration profile.
- node
Provisioning ManagedProfile Cluster Node Provisioning Profile - Node provisioning settings that apply to the whole cluster.
- node
Resource stringGroup - The name of the resource group containing agent pool nodes.
- node
Resource ManagedGroup Profile Cluster Node Resource Group Profile - Profile of the node resource group configuration.
- oidc
Issuer ManagedProfile Cluster OIDCIssuer Profile - The OIDC issuer profile of the Managed Cluster.
- pod
Identity ManagedProfile Cluster Pod Identity Profile - The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on AAD pod identity integration.
- private
Link PrivateResources Link Resource[] - Private link resources associated with the cluster.
- public
Network string | PublicAccess Network Access - PublicNetworkAccess of the managedCluster. Allow or deny public network access for AKS
- resource
Name string - The name of the managed cluster resource.
- security
Profile ManagedCluster Security Profile - Security profile for the managed cluster.
- service
Mesh ServiceProfile Mesh Profile - Service mesh profile for a managed cluster.
- service
Principal ManagedProfile Cluster Service Principal Profile - Information about a service principal identity for the cluster to use for manipulating Azure APIs.
- sku
Managed
Cluster SKU - The managed cluster SKU.
- storage
Profile ManagedCluster Storage Profile - Storage profile for the managed cluster.
- support
Plan string | KubernetesSupport Plan - The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
- {[key: string]: string}
- Resource tags.
- upgrade
Settings ClusterUpgrade Settings - Settings for upgrading a cluster.
- windows
Profile ManagedCluster Windows Profile - The profile for Windows VMs in the Managed Cluster.
- workload
Auto ManagedScaler Profile Cluster Workload Auto Scaler Profile - Workload Auto-scaler profile for the managed cluster.
- resource_
group_ strname - The name of the resource group. The name is case insensitive.
- aad_
profile ManagedCluster AADProfile Args - The Azure Active Directory configuration.
- addon_
profiles Mapping[str, ManagedCluster Addon Profile Args] - The profile of managed cluster add-on.
- agent_
pool_ Sequence[Managedprofiles Cluster Agent Pool Profile Args] - The agent pool properties.
- ai_
toolchain_ Managedoperator_ profile Cluster AIToolchain Operator Profile Args - AI toolchain operator settings that apply to the whole cluster.
- api_
server_ Managedaccess_ profile Cluster APIServer Access Profile Args - The access profile for managed cluster API server.
- auto_
scaler_ Managedprofile Cluster Properties Auto Scaler Profile Args - Parameters to be applied to the cluster-autoscaler when enabled
- auto_
upgrade_ Managedprofile Cluster Auto Upgrade Profile Args - The auto upgrade configuration.
- azure_
monitor_ Managedprofile Cluster Azure Monitor Profile Args - Azure Monitor addon profiles for monitoring the managed cluster.
- bootstrap_
profile ManagedCluster Bootstrap Profile Args - Profile of the cluster bootstrap configuration.
- disable_
local_ boolaccounts - If local accounts should be disabled on the Managed Cluster. If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
- disk_
encryption_ strset_ id - The Resource ID of the disk encryption set to use for enabling encryption at rest. This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
- dns_
prefix str - The DNS prefix of the Managed Cluster. This cannot be updated once the Managed Cluster has been created.
- enable_
rbac bool - Whether to enable Kubernetes Role-Based Access Control.
- extended_
location ExtendedLocation Args - The extended location of the Virtual Machine.
- fqdn_
subdomain str - The FQDN subdomain of the private cluster with custom private dns zone. This cannot be updated once the Managed Cluster has been created.
- http_
proxy_ Managedconfig Cluster HTTPProxy Config Args - Configurations for provisioning the cluster with HTTP proxy servers.
- identity
Managed
Cluster Identity Args - The identity of the managed cluster, if configured.
- identity_
profile Mapping[str, UserAssigned Identity Args] - The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
- ingress_
profile ManagedCluster Ingress Profile Args - Ingress profile for the managed cluster.
- kind str
- This is primarily used to expose different UI experiences in the portal for different kinds
- kubernetes_
version str - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
- linux_
profile ContainerService Linux Profile Args - The profile for Linux VMs in the Managed Cluster.
- location str
- The geo-location where the resource lives
- metrics_
profile ManagedCluster Metrics Profile Args - Optional cluster metrics configuration.
- network_
profile ContainerService Network Profile Args - The network configuration profile.
- node_
provisioning_ Managedprofile Cluster Node Provisioning Profile Args - Node provisioning settings that apply to the whole cluster.
- node_
resource_ strgroup - The name of the resource group containing agent pool nodes.
- node_
resource_ Managedgroup_ profile Cluster Node Resource Group Profile Args - Profile of the node resource group configuration.
- oidc_
issuer_ Managedprofile Cluster OIDCIssuer Profile Args - The OIDC issuer profile of the Managed Cluster.
- pod_
identity_ Managedprofile Cluster Pod Identity Profile Args - The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on AAD pod identity integration.
- private_
link_ Sequence[Privateresources Link Resource Args] - Private link resources associated with the cluster.
- public_
network_ str | Publicaccess Network Access - PublicNetworkAccess of the managedCluster. Allow or deny public network access for AKS
- resource_
name str - The name of the managed cluster resource.
- security_
profile ManagedCluster Security Profile Args - Security profile for the managed cluster.
- service_
mesh_ Serviceprofile Mesh Profile Args - Service mesh profile for a managed cluster.
- service_
principal_ Managedprofile Cluster Service Principal Profile Args - Information about a service principal identity for the cluster to use for manipulating Azure APIs.
- sku
Managed
Cluster SKUArgs - The managed cluster SKU.
- storage_
profile ManagedCluster Storage Profile Args - Storage profile for the managed cluster.
- support_
plan str | KubernetesSupport Plan - The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
- Mapping[str, str]
- Resource tags.
- upgrade_
settings ClusterUpgrade Settings Args - Settings for upgrading a cluster.
- windows_
profile ManagedCluster Windows Profile Args - The profile for Windows VMs in the Managed Cluster.
- workload_
auto_ Managedscaler_ profile Cluster Workload Auto Scaler Profile Args - Workload Auto-scaler profile for the managed cluster.
- resource
Group StringName - The name of the resource group. The name is case insensitive.
- aad
Profile Property Map - The Azure Active Directory configuration.
- addon
Profiles Map<Property Map> - The profile of managed cluster add-on.
- agent
Pool List<Property Map>Profiles - The agent pool properties.
- ai
Toolchain Property MapOperator Profile - AI toolchain operator settings that apply to the whole cluster.
- api
Server Property MapAccess Profile - The access profile for managed cluster API server.
- auto
Scaler Property MapProfile - Parameters to be applied to the cluster-autoscaler when enabled
- auto
Upgrade Property MapProfile - The auto upgrade configuration.
- azure
Monitor Property MapProfile - Azure Monitor addon profiles for monitoring the managed cluster.
- bootstrap
Profile Property Map - Profile of the cluster bootstrap configuration.
- disable
Local BooleanAccounts - If local accounts should be disabled on the Managed Cluster. If set to true, getting static credentials will be disabled for this cluster. This must only be used on Managed Clusters that are AAD enabled. For more details see disable local accounts.
- disk
Encryption StringSet ID - The Resource ID of the disk encryption set to use for enabling encryption at rest. This is of the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/diskEncryptionSets/{encryptionSetName}'
- dns
Prefix String - The DNS prefix of the Managed Cluster. This cannot be updated once the Managed Cluster has been created.
- enable
RBAC Boolean - Whether to enable Kubernetes Role-Based Access Control.
- extended
Location Property Map - The extended location of the Virtual Machine.
- fqdn
Subdomain String - The FQDN subdomain of the private cluster with custom private dns zone. This cannot be updated once the Managed Cluster has been created.
- http
Proxy Property MapConfig - Configurations for provisioning the cluster with HTTP proxy servers.
- identity Property Map
- The identity of the managed cluster, if configured.
- identity
Profile Map<Property Map> - The user identity associated with the managed cluster. This identity will be used by the kubelet. Only one user assigned identity is allowed. The only accepted key is "kubeletidentity", with value of "resourceId": "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}".
- ingress
Profile Property Map - Ingress profile for the managed cluster.
- kind String
- This is primarily used to expose different UI experiences in the portal for different kinds
- kubernetes
Version String - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. When you upgrade a supported AKS cluster, Kubernetes minor versions cannot be skipped. All upgrades must be performed sequentially by major version number. For example, upgrades between 1.14.x -> 1.15.x or 1.15.x -> 1.16.x are allowed, however 1.14.x -> 1.16.x is not allowed. See upgrading an AKS cluster for more details.
- linux
Profile Property Map - The profile for Linux VMs in the Managed Cluster.
- location String
- The geo-location where the resource lives
- metrics
Profile Property Map - Optional cluster metrics configuration.
- network
Profile Property Map - The network configuration profile.
- node
Provisioning Property MapProfile - Node provisioning settings that apply to the whole cluster.
- node
Resource StringGroup - The name of the resource group containing agent pool nodes.
- node
Resource Property MapGroup Profile - Profile of the node resource group configuration.
- oidc
Issuer Property MapProfile - The OIDC issuer profile of the Managed Cluster.
- pod
Identity Property MapProfile - The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on AAD pod identity integration.
- private
Link List<Property Map>Resources - Private link resources associated with the cluster.
- public
Network String | "Enabled" | "Disabled"Access - PublicNetworkAccess of the managedCluster. Allow or deny public network access for AKS
- resource
Name String - The name of the managed cluster resource.
- security
Profile Property Map - Security profile for the managed cluster.
- service
Mesh Property MapProfile - Service mesh profile for a managed cluster.
- service
Principal Property MapProfile - Information about a service principal identity for the cluster to use for manipulating Azure APIs.
- sku Property Map
- The managed cluster SKU.
- storage
Profile Property Map - Storage profile for the managed cluster.
- support
Plan String | "KubernetesOfficial" | "AKSLong Term Support" - The support plan for the Managed Cluster. If unspecified, the default is 'KubernetesOfficial'.
- Map<String>
- Resource tags.
- upgrade
Settings Property Map - Settings for upgrading a cluster.
- windows
Profile Property Map - The profile for Windows VMs in the Managed Cluster.
- workload
Auto Property MapScaler Profile - Workload Auto-scaler profile for the managed cluster.
Outputs
All input properties are implicitly available as output properties. Additionally, the ManagedCluster resource produces the following output properties:
- Azure
Api stringVersion - The Azure API version of the resource.
- Azure
Portal stringFQDN - The special FQDN used by the Azure Portal to access the Managed Cluster. This FQDN is for use only by the Azure Portal and should not be used by other clients. The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
- Current
Kubernetes stringVersion - The version of Kubernetes the Managed Cluster is running. If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
- ETag string
- Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- Fqdn string
- The FQDN of the master pool.
- Id string
- The provider-assigned unique ID for this managed resource.
- Max
Agent intPools - The max number of agent pools for the managed cluster.
- Name string
- The name of the resource
- Power
State Pulumi.Azure Native. Container Service. Outputs. Power State Response - The Power State of the cluster.
- Private
FQDN string - The FQDN of private cluster.
- Provisioning
State string - The current provisioning state.
- Resource
UID string - The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
- System
Data Pulumi.Azure Native. Container Service. Outputs. System Data Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- Type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Status
Pulumi.
Azure Native. Container Service. Outputs. Managed Cluster Status Response - Contains read-only information about the Managed Cluster.
- Azure
Api stringVersion - The Azure API version of the resource.
- Azure
Portal stringFQDN - The special FQDN used by the Azure Portal to access the Managed Cluster. This FQDN is for use only by the Azure Portal and should not be used by other clients. The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
- Current
Kubernetes stringVersion - The version of Kubernetes the Managed Cluster is running. If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
- ETag string
- Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- Fqdn string
- The FQDN of the master pool.
- Id string
- The provider-assigned unique ID for this managed resource.
- Max
Agent intPools - The max number of agent pools for the managed cluster.
- Name string
- The name of the resource
- Power
State PowerState Response - The Power State of the cluster.
- Private
FQDN string - The FQDN of private cluster.
- Provisioning
State string - The current provisioning state.
- Resource
UID string - The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
- System
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- Type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Status
Managed
Cluster Status Response - Contains read-only information about the Managed Cluster.
- azure_
api_ stringversion - The Azure API version of the resource.
- azure_
portal_ stringfqdn - The special FQDN used by the Azure Portal to access the Managed Cluster. This FQDN is for use only by the Azure Portal and should not be used by other clients. The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
- current_
kubernetes_ stringversion - The version of Kubernetes the Managed Cluster is running. If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e_
tag string - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- fqdn string
- The FQDN of the master pool.
- id string
- The provider-assigned unique ID for this managed resource.
- max_
agent_ numberpools - The max number of agent pools for the managed cluster.
- name string
- The name of the resource
- power_
state object - The Power State of the cluster.
- private_
fqdn string - The FQDN of private cluster.
- provisioning_
state string - The current provisioning state.
- resource_
uid string - The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
- system_
data object - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- status object
- Contains read-only information about the Managed Cluster.
- azure
Api StringVersion - The Azure API version of the resource.
- azure
Portal StringFQDN - The special FQDN used by the Azure Portal to access the Managed Cluster. This FQDN is for use only by the Azure Portal and should not be used by other clients. The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
- current
Kubernetes StringVersion - The version of Kubernetes the Managed Cluster is running. If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e
Tag String - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- fqdn String
- The FQDN of the master pool.
- id String
- The provider-assigned unique ID for this managed resource.
- max
Agent IntegerPools - The max number of agent pools for the managed cluster.
- name String
- The name of the resource
- power
State PowerState Response - The Power State of the cluster.
- private
FQDN String - The FQDN of private cluster.
- provisioning
State String - The current provisioning state.
- resource
UID String - The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
- system
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type String
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- status
Managed
Cluster Status Response - Contains read-only information about the Managed Cluster.
- azure
Api stringVersion - The Azure API version of the resource.
- azure
Portal stringFQDN - The special FQDN used by the Azure Portal to access the Managed Cluster. This FQDN is for use only by the Azure Portal and should not be used by other clients. The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
- current
Kubernetes stringVersion - The version of Kubernetes the Managed Cluster is running. If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e
Tag string - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- fqdn string
- The FQDN of the master pool.
- id string
- The provider-assigned unique ID for this managed resource.
- max
Agent numberPools - The max number of agent pools for the managed cluster.
- name string
- The name of the resource
- power
State PowerState Response - The Power State of the cluster.
- private
FQDN string - The FQDN of private cluster.
- provisioning
State string - The current provisioning state.
- resource
UID string - The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
- system
Data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- status
Managed
Cluster Status Response - Contains read-only information about the Managed Cluster.
- azure_
api_ strversion - The Azure API version of the resource.
- azure_
portal_ strfqdn - The special FQDN used by the Azure Portal to access the Managed Cluster. This FQDN is for use only by the Azure Portal and should not be used by other clients. The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
- current_
kubernetes_ strversion - The version of Kubernetes the Managed Cluster is running. If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e_
tag str - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- fqdn str
- The FQDN of the master pool.
- id str
- The provider-assigned unique ID for this managed resource.
- max_
agent_ intpools - The max number of agent pools for the managed cluster.
- name str
- The name of the resource
- power_
state PowerState Response - The Power State of the cluster.
- private_
fqdn str - The FQDN of private cluster.
- provisioning_
state str - The current provisioning state.
- resource_
uid str - The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
- system_
data SystemData Response - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type str
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- status
Managed
Cluster Status Response - Contains read-only information about the Managed Cluster.
- azure
Api StringVersion - The Azure API version of the resource.
- azure
Portal StringFQDN - The special FQDN used by the Azure Portal to access the Managed Cluster. This FQDN is for use only by the Azure Portal and should not be used by other clients. The Azure Portal requires certain Cross-Origin Resource Sharing (CORS) headers to be sent in some responses, which Kubernetes APIServer doesn't handle by default. This special FQDN supports CORS, allowing the Azure Portal to function properly.
- current
Kubernetes StringVersion - The version of Kubernetes the Managed Cluster is running. If kubernetesVersion was a fully specified version <major.minor.patch>, this field will be exactly equal to it. If kubernetesVersion was <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e
Tag String - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- fqdn String
- The FQDN of the master pool.
- id String
- The provider-assigned unique ID for this managed resource.
- max
Agent NumberPools - The max number of agent pools for the managed cluster.
- name String
- The name of the resource
- power
State Property Map - The Power State of the cluster.
- private
FQDN String - The FQDN of private cluster.
- provisioning
State String - The current provisioning state.
- resource
UID String - The resourceUID uniquely identifies ManagedClusters that reuse ARM ResourceIds (i.e: create, delete, create sequence)
- system
Data Property Map - Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type String
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- status Property Map
- Contains read-only information about the Managed Cluster.
Supporting Types
AdvancedNetworkPolicies, AdvancedNetworkPoliciesArgs
- L7
L7Enable Layer7 network policies (FQDN, HTTP/S, Kafka). This option is a superset of the FQDN option.- FQDN
FQDNEnable FQDN based network policies- None
NoneDisable Layer 7 network policies (FQDN, HTTP/S, Kafka)
- Advanced
Network Policies L7 L7Enable Layer7 network policies (FQDN, HTTP/S, Kafka). This option is a superset of the FQDN option.- Advanced
Network Policies FQDN FQDNEnable FQDN based network policies- Advanced
Network Policies None NoneDisable Layer 7 network policies (FQDN, HTTP/S, Kafka)
- "L7"
L7Enable Layer7 network policies (FQDN, HTTP/S, Kafka). This option is a superset of the FQDN option.- "FQDN"
FQDNEnable FQDN based network policies- "None"
NoneDisable Layer 7 network policies (FQDN, HTTP/S, Kafka)
- L7
L7Enable Layer7 network policies (FQDN, HTTP/S, Kafka). This option is a superset of the FQDN option.- FQDN
FQDNEnable FQDN based network policies- None
NoneDisable Layer 7 network policies (FQDN, HTTP/S, Kafka)
- L7
L7Enable Layer7 network policies (FQDN, HTTP/S, Kafka). This option is a superset of the FQDN option.- FQDN
FQDNEnable FQDN based network policies- None
NoneDisable Layer 7 network policies (FQDN, HTTP/S, Kafka)
- L7
L7Enable Layer7 network policies (FQDN, HTTP/S, Kafka). This option is a superset of the FQDN option.- FQDN
FQDNEnable FQDN based network policies- NONE
NoneDisable Layer 7 network policies (FQDN, HTTP/S, Kafka)
- "L7"
L7Enable Layer7 network policies (FQDN, HTTP/S, Kafka). This option is a superset of the FQDN option.- "FQDN"
FQDNEnable FQDN based network policies- "None"
NoneDisable Layer 7 network policies (FQDN, HTTP/S, Kafka)
AdvancedNetworking, AdvancedNetworkingArgs
Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.- Enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- Observability
Pulumi.
Azure Native. Container Service. Inputs. Advanced Networking Observability - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- Security
Pulumi.
Azure Native. Container Service. Inputs. Advanced Networking Security - Security profile to enable security features on cilium based cluster.
- Enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- Observability
Advanced
Networking Observability - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- Security
Advanced
Networking Security - Security profile to enable security features on cilium based cluster.
- enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability object
- Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security object
- Security profile to enable security features on cilium based cluster.
- enabled Boolean
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability
Advanced
Networking Observability - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security
Advanced
Networking Security - Security profile to enable security features on cilium based cluster.
- enabled boolean
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability
Advanced
Networking Observability - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security
Advanced
Networking Security - Security profile to enable security features on cilium based cluster.
- enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability
Advanced
Networking Observability - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security
Advanced
Networking Security - Security profile to enable security features on cilium based cluster.
- enabled Boolean
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability Property Map
- Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security Property Map
- Security profile to enable security features on cilium based cluster.
AdvancedNetworkingObservability, AdvancedNetworkingObservabilityArgs
Observability profile to enable advanced network metrics and flow logs with historical contexts.- Enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- Enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled Boolean
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled boolean
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled Boolean
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
AdvancedNetworkingObservabilityResponse, AdvancedNetworkingObservabilityResponseArgs
Observability profile to enable advanced network metrics and flow logs with historical contexts.- Enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- Enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled Boolean
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled boolean
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled bool
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
- enabled Boolean
- Indicates the enablement of Advanced Networking observability functionalities on clusters.
AdvancedNetworkingResponse, AdvancedNetworkingResponseArgs
Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.- Enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- Observability
Pulumi.
Azure Native. Container Service. Inputs. Advanced Networking Observability Response - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- Security
Pulumi.
Azure Native. Container Service. Inputs. Advanced Networking Security Response - Security profile to enable security features on cilium based cluster.
- Enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- Observability
Advanced
Networking Observability Response - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- Security
Advanced
Networking Security Response - Security profile to enable security features on cilium based cluster.
- enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability object
- Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security object
- Security profile to enable security features on cilium based cluster.
- enabled Boolean
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability
Advanced
Networking Observability Response - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security
Advanced
Networking Security Response - Security profile to enable security features on cilium based cluster.
- enabled boolean
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability
Advanced
Networking Observability Response - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security
Advanced
Networking Security Response - Security profile to enable security features on cilium based cluster.
- enabled bool
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability
Advanced
Networking Observability Response - Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security
Advanced
Networking Security Response - Security profile to enable security features on cilium based cluster.
- enabled Boolean
- Indicates the enablement of Advanced Networking functionalities of observability and security on AKS clusters. When this is set to true, all observability and security features will be set to enabled unless explicitly disabled. If not specified, the default is false.
- observability Property Map
- Observability profile to enable advanced network metrics and flow logs with historical contexts.
- security Property Map
- Security profile to enable security features on cilium based cluster.
AdvancedNetworkingSecurity, AdvancedNetworkingSecurityArgs
Security profile to enable security features on cilium based cluster.- Advanced
Network string | Pulumi.Policies Azure Native. Container Service. Advanced Network Policies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- Enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- Advanced
Network string | AdvancedPolicies Network Policies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- Enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- advanced_
network_ string | "L7" | "FQDN" | "None"policies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- advanced
Network String | AdvancedPolicies Network Policies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- enabled Boolean
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- advanced
Network string | AdvancedPolicies Network Policies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- enabled boolean
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- advanced_
network_ str | Advancedpolicies Network Policies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- advanced
Network String | "L7" | "FQDN" | "None"Policies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- enabled Boolean
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
AdvancedNetworkingSecurityResponse, AdvancedNetworkingSecurityResponseArgs
Security profile to enable security features on cilium based cluster.- Advanced
Network stringPolicies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- Enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- Advanced
Network stringPolicies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- Enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- advanced_
network_ stringpolicies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- advanced
Network StringPolicies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- enabled Boolean
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- advanced
Network stringPolicies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- enabled boolean
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- advanced_
network_ strpolicies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- enabled bool
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
- advanced
Network StringPolicies - Enable advanced network policies. This allows users to configure Layer 7 network policies (FQDN, HTTP, Kafka). Policies themselves must be configured via the Cilium Network Policy resources, see https://docs.cilium.io/en/latest/security/policy/index.html. This can be enabled only on cilium-based clusters. If not specified, the default value is FQDN if security.enabled is set to true.
- enabled Boolean
- This feature allows user to configure network policy based on DNS (FQDN) names. It can be enabled only on cilium based clusters. If not specified, the default is false.
AgentPoolGatewayProfile, AgentPoolGatewayProfileArgs
Profile of the managed cluster gateway agent pool.- Public
IPPrefix intSize - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
- Public
IPPrefix intSize - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
- public_
ip_ numberprefix_ size - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
- public
IPPrefix IntegerSize - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
- public
IPPrefix numberSize - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
- public_
ip_ intprefix_ size - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
- public
IPPrefix NumberSize - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
AgentPoolGatewayProfileResponse, AgentPoolGatewayProfileResponseArgs
Profile of the managed cluster gateway agent pool.- Public
IPPrefix intSize - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
- Public
IPPrefix intSize - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
- public_
ip_ numberprefix_ size - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
- public
IPPrefix IntegerSize - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
- public
IPPrefix numberSize - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
- public_
ip_ intprefix_ size - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
- public
IPPrefix NumberSize - The Gateway agent pool associates one public IPPrefix for each static egress gateway to provide public egress. The size of Public IPPrefix should be selected by the user. Each node in the agent pool is assigned with one IP from the IPPrefix. The IPPrefix size thus serves as a cap on the size of the Gateway agent pool. Due to Azure public IPPrefix size limitation, the valid value range is [28, 31] (/31 = 2 nodes/IPs, /30 = 4 nodes/IPs, /29 = 8 nodes/IPs, /28 = 16 nodes/IPs). The default value is 31.
AgentPoolMode, AgentPoolModeArgs
- System
SystemSystem agent pools are primarily for hosting critical system pods such as CoreDNS and metrics-server. System agent pools osType must be Linux. System agent pools VM SKU must have at least 2vCPUs and 4GB of memory.- User
UserUser agent pools are primarily for hosting your application pods.- Gateway
GatewayGateway agent pools are dedicated to providing static egress IPs to pods. For more details, see https://aka.ms/aks/static-egress-gateway.
- Agent
Pool Mode System SystemSystem agent pools are primarily for hosting critical system pods such as CoreDNS and metrics-server. System agent pools osType must be Linux. System agent pools VM SKU must have at least 2vCPUs and 4GB of memory.- Agent
Pool Mode User UserUser agent pools are primarily for hosting your application pods.- Agent
Pool Mode Gateway GatewayGateway agent pools are dedicated to providing static egress IPs to pods. For more details, see https://aka.ms/aks/static-egress-gateway.
- "System"
SystemSystem agent pools are primarily for hosting critical system pods such as CoreDNS and metrics-server. System agent pools osType must be Linux. System agent pools VM SKU must have at least 2vCPUs and 4GB of memory.- "User"
UserUser agent pools are primarily for hosting your application pods.- "Gateway"
GatewayGateway agent pools are dedicated to providing static egress IPs to pods. For more details, see https://aka.ms/aks/static-egress-gateway.
- System
SystemSystem agent pools are primarily for hosting critical system pods such as CoreDNS and metrics-server. System agent pools osType must be Linux. System agent pools VM SKU must have at least 2vCPUs and 4GB of memory.- User
UserUser agent pools are primarily for hosting your application pods.- Gateway
GatewayGateway agent pools are dedicated to providing static egress IPs to pods. For more details, see https://aka.ms/aks/static-egress-gateway.
- System
SystemSystem agent pools are primarily for hosting critical system pods such as CoreDNS and metrics-server. System agent pools osType must be Linux. System agent pools VM SKU must have at least 2vCPUs and 4GB of memory.- User
UserUser agent pools are primarily for hosting your application pods.- Gateway
GatewayGateway agent pools are dedicated to providing static egress IPs to pods. For more details, see https://aka.ms/aks/static-egress-gateway.
- SYSTEM
SystemSystem agent pools are primarily for hosting critical system pods such as CoreDNS and metrics-server. System agent pools osType must be Linux. System agent pools VM SKU must have at least 2vCPUs and 4GB of memory.- USER
UserUser agent pools are primarily for hosting your application pods.- GATEWAY
GatewayGateway agent pools are dedicated to providing static egress IPs to pods. For more details, see https://aka.ms/aks/static-egress-gateway.
- "System"
SystemSystem agent pools are primarily for hosting critical system pods such as CoreDNS and metrics-server. System agent pools osType must be Linux. System agent pools VM SKU must have at least 2vCPUs and 4GB of memory.- "User"
UserUser agent pools are primarily for hosting your application pods.- "Gateway"
GatewayGateway agent pools are dedicated to providing static egress IPs to pods. For more details, see https://aka.ms/aks/static-egress-gateway.
AgentPoolNetworkProfile, AgentPoolNetworkProfileArgs
Network settings of an agent pool.- Allowed
Host List<Pulumi.Ports Azure Native. Container Service. Inputs. Port Range> - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- Application
Security List<string>Groups - The IDs of the application security groups which agent pool will associate when created.
-
List<Pulumi.
Azure Native. Container Service. Inputs. IPTag> - IPTags of instance-level public IPs.
- Allowed
Host []PortPorts Range - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- Application
Security []stringGroups - The IDs of the application security groups which agent pool will associate when created.
- []IPTag
- IPTags of instance-level public IPs.
- allowed_
host_ list(object)ports - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application_
security_ list(string)groups - The IDs of the application security groups which agent pool will associate when created.
- list(object)
- IPTags of instance-level public IPs.
- allowed
Host List<PortPorts Range> - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application
Security List<String>Groups - The IDs of the application security groups which agent pool will associate when created.
- List<IPTag>
- IPTags of instance-level public IPs.
- allowed
Host PortPorts Range[] - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application
Security string[]Groups - The IDs of the application security groups which agent pool will associate when created.
- IPTag[]
- IPTags of instance-level public IPs.
- allowed_
host_ Sequence[Portports Range] - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application_
security_ Sequence[str]groups - The IDs of the application security groups which agent pool will associate when created.
- Sequence[IPTag]
- IPTags of instance-level public IPs.
- allowed
Host List<Property Map>Ports - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application
Security List<String>Groups - The IDs of the application security groups which agent pool will associate when created.
- List<Property Map>
- IPTags of instance-level public IPs.
AgentPoolNetworkProfileResponse, AgentPoolNetworkProfileResponseArgs
Network settings of an agent pool.- Allowed
Host List<Pulumi.Ports Azure Native. Container Service. Inputs. Port Range Response> - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- Application
Security List<string>Groups - The IDs of the application security groups which agent pool will associate when created.
-
List<Pulumi.
Azure Native. Container Service. Inputs. IPTag Response> - IPTags of instance-level public IPs.
- Allowed
Host []PortPorts Range Response - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- Application
Security []stringGroups - The IDs of the application security groups which agent pool will associate when created.
-
[]IPTag
Response - IPTags of instance-level public IPs.
- allowed_
host_ list(object)ports - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application_
security_ list(string)groups - The IDs of the application security groups which agent pool will associate when created.
- list(object)
- IPTags of instance-level public IPs.
- allowed
Host List<PortPorts Range Response> - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application
Security List<String>Groups - The IDs of the application security groups which agent pool will associate when created.
-
List<IPTag
Response> - IPTags of instance-level public IPs.
- allowed
Host PortPorts Range Response[] - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application
Security string[]Groups - The IDs of the application security groups which agent pool will associate when created.
-
IPTag
Response[] - IPTags of instance-level public IPs.
- allowed_
host_ Sequence[Portports Range Response] - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application_
security_ Sequence[str]groups - The IDs of the application security groups which agent pool will associate when created.
-
Sequence[IPTag
Response] - IPTags of instance-level public IPs.
- allowed
Host List<Property Map>Ports - The port ranges that are allowed to access. The specified ranges are allowed to overlap.
- application
Security List<String>Groups - The IDs of the application security groups which agent pool will associate when created.
- List<Property Map>
- IPTags of instance-level public IPs.
AgentPoolSSHAccess, AgentPoolSSHAccessArgs
- Local
User LocalUserCan SSH onto the node as a local user using private key.- Disabled
DisabledSSH service will be turned off on the node.
- Agent
Pool SSHAccess Local User LocalUserCan SSH onto the node as a local user using private key.- Agent
Pool SSHAccess Disabled DisabledSSH service will be turned off on the node.
- "Local
User" LocalUserCan SSH onto the node as a local user using private key.- "Disabled"
DisabledSSH service will be turned off on the node.
- Local
User LocalUserCan SSH onto the node as a local user using private key.- Disabled
DisabledSSH service will be turned off on the node.
- Local
User LocalUserCan SSH onto the node as a local user using private key.- Disabled
DisabledSSH service will be turned off on the node.
- LOCAL_USER
LocalUserCan SSH onto the node as a local user using private key.- DISABLED
DisabledSSH service will be turned off on the node.
- "Local
User" LocalUserCan SSH onto the node as a local user using private key.- "Disabled"
DisabledSSH service will be turned off on the node.
AgentPoolSecurityProfile, AgentPoolSecurityProfileArgs
The security settings of an agent pool.- Enable
Secure boolBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Enable
VTPM bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Ssh
Access string | Pulumi.Azure Native. Container Service. Agent Pool SSHAccess - SSH access method of an agent pool.
- Enable
Secure boolBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Enable
VTPM bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Ssh
Access string | AgentPool SSHAccess - SSH access method of an agent pool.
- enable_
secure_ boolboot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable_
vtpm bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- ssh_
access string | "LocalUser" | "Disabled" - SSH access method of an agent pool.
- enable
Secure BooleanBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
VTPM Boolean - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- ssh
Access String | AgentPool SSHAccess - SSH access method of an agent pool.
- enable
Secure booleanBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
VTPM boolean - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- ssh
Access string | AgentPool SSHAccess - SSH access method of an agent pool.
- enable_
secure_ boolboot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable_
vtpm bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- ssh_
access str | AgentPool SSHAccess - SSH access method of an agent pool.
- enable
Secure BooleanBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
VTPM Boolean - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- ssh
Access String | "LocalUser" | "Disabled" - SSH access method of an agent pool.
AgentPoolSecurityProfileResponse, AgentPoolSecurityProfileResponseArgs
The security settings of an agent pool.- Enable
Secure boolBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Enable
VTPM bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Ssh
Access string - SSH access method of an agent pool.
- Enable
Secure boolBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Enable
VTPM bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- Ssh
Access string - SSH access method of an agent pool.
- enable_
secure_ boolboot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable_
vtpm bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- ssh_
access string - SSH access method of an agent pool.
- enable
Secure BooleanBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
VTPM Boolean - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- ssh
Access String - SSH access method of an agent pool.
- enable
Secure booleanBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
VTPM boolean - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- ssh
Access string - SSH access method of an agent pool.
- enable_
secure_ boolboot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable_
vtpm bool - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- ssh_
access str - SSH access method of an agent pool.
- enable
Secure BooleanBoot - Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- enable
VTPM Boolean - vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false.
- ssh
Access String - SSH access method of an agent pool.
AgentPoolStatusResponse, AgentPoolStatusResponseArgs
Contains read-only information about the Agent Pool.- Provisioning
Error Pulumi.Azure Native. Container Service. Inputs. Error Detail Response - The error detail information of the agent pool. Preserves the detailed info of failure. If there was no error, this field is omitted.
- Provisioning
Error ErrorDetail Response - The error detail information of the agent pool. Preserves the detailed info of failure. If there was no error, this field is omitted.
- provisioning_
error object - The error detail information of the agent pool. Preserves the detailed info of failure. If there was no error, this field is omitted.
- provisioning
Error ErrorDetail Response - The error detail information of the agent pool. Preserves the detailed info of failure. If there was no error, this field is omitted.
- provisioning
Error ErrorDetail Response - The error detail information of the agent pool. Preserves the detailed info of failure. If there was no error, this field is omitted.
- provisioning_
error ErrorDetail Response - The error detail information of the agent pool. Preserves the detailed info of failure. If there was no error, this field is omitted.
- provisioning
Error Property Map - The error detail information of the agent pool. Preserves the detailed info of failure. If there was no error, this field is omitted.
AgentPoolType, AgentPoolTypeArgs
- Virtual
Machine Scale Sets VirtualMachineScaleSetsCreate an Agent Pool backed by a Virtual Machine Scale Set.- Availability
Set AvailabilitySetUse of this is strongly discouraged.- Virtual
Machines VirtualMachinesCreate an Agent Pool backed by a Single Instance VM orchestration mode.
- Agent
Pool Type Virtual Machine Scale Sets VirtualMachineScaleSetsCreate an Agent Pool backed by a Virtual Machine Scale Set.- Agent
Pool Type Availability Set AvailabilitySetUse of this is strongly discouraged.- Agent
Pool Type Virtual Machines VirtualMachinesCreate an Agent Pool backed by a Single Instance VM orchestration mode.
- "Virtual
Machine Scale Sets" VirtualMachineScaleSetsCreate an Agent Pool backed by a Virtual Machine Scale Set.- "Availability
Set" AvailabilitySetUse of this is strongly discouraged.- "Virtual
Machines" VirtualMachinesCreate an Agent Pool backed by a Single Instance VM orchestration mode.
- Virtual
Machine Scale Sets VirtualMachineScaleSetsCreate an Agent Pool backed by a Virtual Machine Scale Set.- Availability
Set AvailabilitySetUse of this is strongly discouraged.- Virtual
Machines VirtualMachinesCreate an Agent Pool backed by a Single Instance VM orchestration mode.
- Virtual
Machine Scale Sets VirtualMachineScaleSetsCreate an Agent Pool backed by a Virtual Machine Scale Set.- Availability
Set AvailabilitySetUse of this is strongly discouraged.- Virtual
Machines VirtualMachinesCreate an Agent Pool backed by a Single Instance VM orchestration mode.
- VIRTUAL_MACHINE_SCALE_SETS
VirtualMachineScaleSetsCreate an Agent Pool backed by a Virtual Machine Scale Set.- AVAILABILITY_SET
AvailabilitySetUse of this is strongly discouraged.- VIRTUAL_MACHINES
VirtualMachinesCreate an Agent Pool backed by a Single Instance VM orchestration mode.
- "Virtual
Machine Scale Sets" VirtualMachineScaleSetsCreate an Agent Pool backed by a Virtual Machine Scale Set.- "Availability
Set" AvailabilitySetUse of this is strongly discouraged.- "Virtual
Machines" VirtualMachinesCreate an Agent Pool backed by a Single Instance VM orchestration mode.
AgentPoolUpgradeSettings, AgentPoolUpgradeSettingsArgs
Settings for upgrading an agentpool- Drain
Timeout intIn Minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- Max
Surge string - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- string
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- Node
Soak intDuration In Minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- Undrainable
Node string | Pulumi.Behavior Azure Native. Container Service. Undrainable Node Behavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
- Drain
Timeout intIn Minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- Max
Surge string - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- string
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- Node
Soak intDuration In Minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- Undrainable
Node string | UndrainableBehavior Node Behavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
- drain_
timeout_ numberin_ minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max_
surge string - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- string
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- node_
soak_ numberduration_ in_ minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- undrainable_
node_ string | "Cordon" | "Schedule"behavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
- drain
Timeout IntegerIn Minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max
Surge String - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- String
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- node
Soak IntegerDuration In Minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- undrainable
Node String | UndrainableBehavior Node Behavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
- drain
Timeout numberIn Minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max
Surge string - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- string
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- node
Soak numberDuration In Minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- undrainable
Node string | UndrainableBehavior Node Behavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
- drain_
timeout_ intin_ minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max_
surge str - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- str
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- node_
soak_ intduration_ in_ minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- undrainable_
node_ str | Undrainablebehavior Node Behavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
- drain
Timeout NumberIn Minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max
Surge String - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- String
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- node
Soak NumberDuration In Minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- undrainable
Node String | "Cordon" | "Schedule"Behavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
AgentPoolUpgradeSettingsResponse, AgentPoolUpgradeSettingsResponseArgs
Settings for upgrading an agentpool- Drain
Timeout intIn Minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- Max
Surge string - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- string
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- Node
Soak intDuration In Minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- Undrainable
Node stringBehavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
- Drain
Timeout intIn Minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- Max
Surge string - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- string
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- Node
Soak intDuration In Minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- Undrainable
Node stringBehavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
- drain_
timeout_ numberin_ minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max_
surge string - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- string
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- node_
soak_ numberduration_ in_ minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- undrainable_
node_ stringbehavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
- drain
Timeout IntegerIn Minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max
Surge String - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- String
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- node
Soak IntegerDuration In Minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- undrainable
Node StringBehavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
- drain
Timeout numberIn Minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max
Surge string - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- string
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- node
Soak numberDuration In Minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- undrainable
Node stringBehavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
- drain_
timeout_ intin_ minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max_
surge str - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- str
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- node_
soak_ intduration_ in_ minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- undrainable_
node_ strbehavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
- drain
Timeout NumberIn Minutes - The drain timeout for a node. The amount of time (in minutes) to wait on eviction of pods and graceful termination per node. This eviction wait time honors waiting on pod disruption budgets. If this time is exceeded, the upgrade fails. If not specified, the default is 30 minutes.
- max
Surge String - The maximum number or percentage of nodes that are surged during upgrade. This can either be set to an integer (e.g. '5') or a percentage (e.g. '50%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 10%. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- String
- The maximum number or percentage of nodes that can be simultaneously unavailable during upgrade. This can either be set to an integer (e.g. '1') or a percentage (e.g. '5%'). If a percentage is specified, it is the percentage of the total agent pool size at the time of the upgrade. For percentages, fractional nodes are rounded up. If not specified, the default is 0. For more information, including best practices, see: https://learn.microsoft.com/en-us/azure/aks/upgrade-cluster
- node
Soak NumberDuration In Minutes - The soak duration for a node. The amount of time (in minutes) to wait after draining a node and before reimaging it and moving on to next node. If not specified, the default is 0 minutes.
- undrainable
Node StringBehavior - Defines the behavior for undrainable nodes during upgrade. The most common cause of undrainable nodes is Pod Disruption Budgets (PDBs), but other issues, such as pod termination grace period is exceeding the remaining per-node drain timeout or pod is still being in a running state, can also cause undrainable nodes.
AgentPoolWindowsProfile, AgentPoolWindowsProfileArgs
The Windows agent pool's specific profile.- Disable
Outbound boolNat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- Disable
Outbound boolNat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable_
outbound_ boolnat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable
Outbound BooleanNat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable
Outbound booleanNat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable_
outbound_ boolnat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable
Outbound BooleanNat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
AgentPoolWindowsProfileResponse, AgentPoolWindowsProfileResponseArgs
The Windows agent pool's specific profile.- Disable
Outbound boolNat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- Disable
Outbound boolNat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable_
outbound_ boolnat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable
Outbound BooleanNat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable
Outbound booleanNat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable_
outbound_ boolnat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
- disable
Outbound BooleanNat - Whether to disable OutboundNAT in windows nodes. The default value is false. Outbound NAT can only be disabled if the cluster outboundType is NAT Gateway and the Windows agent pool does not have node public IP enabled.
ArtifactSource, ArtifactSourceArgs
- Cache
Cachepull images from Azure Container Registry with cache- Direct
Directpull images from Microsoft Artifact Registry
- Artifact
Source Cache Cachepull images from Azure Container Registry with cache- Artifact
Source Direct Directpull images from Microsoft Artifact Registry
- "Cache"
Cachepull images from Azure Container Registry with cache- "Direct"
Directpull images from Microsoft Artifact Registry
- Cache
Cachepull images from Azure Container Registry with cache- Direct
Directpull images from Microsoft Artifact Registry
- Cache
Cachepull images from Azure Container Registry with cache- Direct
Directpull images from Microsoft Artifact Registry
- CACHE
Cachepull images from Azure Container Registry with cache- DIRECT
Directpull images from Microsoft Artifact Registry
- "Cache"
Cachepull images from Azure Container Registry with cache- "Direct"
Directpull images from Microsoft Artifact Registry
AzureKeyVaultKms, AzureKeyVaultKmsArgs
Azure Key Vault key management service settings for the security profile.- Enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- Key
Id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- Key
Vault string | Pulumi.Network Access Azure Native. Container Service. Key Vault Network Access Types - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - Key
Vault stringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- Enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- Key
Id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- Key
Vault string | KeyNetwork Access Vault Network Access Types - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - Key
Vault stringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- key_
id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key_
vault_ string | "Public" | "Private"network_ access - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key_
vault_ stringresource_ id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled Boolean
- Whether to enable Azure Key Vault key management service. The default is false.
- key
Id String - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key
Vault String | KeyNetwork Access Vault Network Access Types - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key
Vault StringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled boolean
- Whether to enable Azure Key Vault key management service. The default is false.
- key
Id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key
Vault string | KeyNetwork Access Vault Network Access Types - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key
Vault stringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- key_
id str - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key_
vault_ str | Keynetwork_ access Vault Network Access Types - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key_
vault_ strresource_ id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled Boolean
- Whether to enable Azure Key Vault key management service. The default is false.
- key
Id String - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key
Vault String | "Public" | "Private"Network Access - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key
Vault StringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
AzureKeyVaultKmsResponse, AzureKeyVaultKmsResponseArgs
Azure Key Vault key management service settings for the security profile.- Enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- Key
Id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- Key
Vault stringNetwork Access - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - Key
Vault stringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- Enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- Key
Id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- Key
Vault stringNetwork Access - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - Key
Vault stringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- key_
id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key_
vault_ stringnetwork_ access - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key_
vault_ stringresource_ id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled Boolean
- Whether to enable Azure Key Vault key management service. The default is false.
- key
Id String - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key
Vault StringNetwork Access - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key
Vault StringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled boolean
- Whether to enable Azure Key Vault key management service. The default is false.
- key
Id string - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key
Vault stringNetwork Access - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key
Vault stringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled bool
- Whether to enable Azure Key Vault key management service. The default is false.
- key_
id str - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key_
vault_ strnetwork_ access - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key_
vault_ strresource_ id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
- enabled Boolean
- Whether to enable Azure Key Vault key management service. The default is false.
- key
Id String - Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.
- key
Vault StringNetwork Access - Network access of the key vault. Network access of key vault. The possible values are
PublicandPrivate.Publicmeans the key vault allows public access from all networks.Privatemeans the key vault disables public access and enables private link. The default value isPublic. - key
Vault StringResource Id - Resource ID of key vault. When keyVaultNetworkAccess is
Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess isPublic, leave the field empty.
BackendPoolType, BackendPoolTypeArgs
- Node
IPConfiguration NodeIPConfigurationThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.- Node
IP NodeIPThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- Backend
Pool Type Node IPConfiguration NodeIPConfigurationThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.- Backend
Pool Type Node IP NodeIPThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- "Node
IPConfiguration" NodeIPConfigurationThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.- "Node
IP" NodeIPThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- Node
IPConfiguration NodeIPConfigurationThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.- Node
IP NodeIPThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- Node
IPConfiguration NodeIPConfigurationThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.- Node
IP NodeIPThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- NODE_IP_CONFIGURATION
NodeIPConfigurationThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.- NODE_IP
NodeIPThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
- "Node
IPConfiguration" NodeIPConfigurationThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.- "Node
IP" NodeIPThe type of the managed inbound Load Balancer BackendPool. https://cloud-provider-azure.sigs.k8s.io/topics/loadbalancer/#configure-load-balancer-backend.
ClusterUpgradeSettings, ClusterUpgradeSettingsArgs
Settings for upgrading a cluster.- Override
Settings Pulumi.Azure Native. Container Service. Inputs. Upgrade Override Settings - Settings for overrides.
- Override
Settings UpgradeOverride Settings - Settings for overrides.
- override_
settings object - Settings for overrides.
- override
Settings UpgradeOverride Settings - Settings for overrides.
- override
Settings UpgradeOverride Settings - Settings for overrides.
- override_
settings UpgradeOverride Settings - Settings for overrides.
- override
Settings Property Map - Settings for overrides.
ClusterUpgradeSettingsResponse, ClusterUpgradeSettingsResponseArgs
Settings for upgrading a cluster.- Override
Settings Pulumi.Azure Native. Container Service. Inputs. Upgrade Override Settings Response - Settings for overrides.
- Override
Settings UpgradeOverride Settings Response - Settings for overrides.
- override_
settings object - Settings for overrides.
- override
Settings UpgradeOverride Settings Response - Settings for overrides.
- override
Settings UpgradeOverride Settings Response - Settings for overrides.
- override_
settings UpgradeOverride Settings Response - Settings for overrides.
- override
Settings Property Map - Settings for overrides.
Code, CodeArgs
- Running
RunningThe cluster is running.- Stopped
StoppedThe cluster is stopped.
- Code
Running RunningThe cluster is running.- Code
Stopped StoppedThe cluster is stopped.
- "Running"
RunningThe cluster is running.- "Stopped"
StoppedThe cluster is stopped.
- Running
RunningThe cluster is running.- Stopped
StoppedThe cluster is stopped.
- Running
RunningThe cluster is running.- Stopped
StoppedThe cluster is stopped.
- RUNNING
RunningThe cluster is running.- STOPPED
StoppedThe cluster is stopped.
- "Running"
RunningThe cluster is running.- "Stopped"
StoppedThe cluster is stopped.
ContainerServiceLinuxProfile, ContainerServiceLinuxProfileArgs
Profile for Linux VMs in the container service cluster.- Admin
Username string - The administrator username to use for Linux VMs.
- Ssh
Pulumi.
Azure Native. Container Service. Inputs. Container Service Ssh Configuration - The SSH configuration for Linux-based VMs running on Azure.
- Admin
Username string - The administrator username to use for Linux VMs.
- Ssh
Container
Service Ssh Configuration - The SSH configuration for Linux-based VMs running on Azure.
- admin_
username string - The administrator username to use for Linux VMs.
- ssh object
- The SSH configuration for Linux-based VMs running on Azure.
- admin
Username String - The administrator username to use for Linux VMs.
- ssh
Container
Service Ssh Configuration - The SSH configuration for Linux-based VMs running on Azure.
- admin
Username string - The administrator username to use for Linux VMs.
- ssh
Container
Service Ssh Configuration - The SSH configuration for Linux-based VMs running on Azure.
- admin_
username str - The administrator username to use for Linux VMs.
- ssh
Container
Service Ssh Configuration - The SSH configuration for Linux-based VMs running on Azure.
- admin
Username String - The administrator username to use for Linux VMs.
- ssh Property Map
- The SSH configuration for Linux-based VMs running on Azure.
ContainerServiceLinuxProfileResponse, ContainerServiceLinuxProfileResponseArgs
Profile for Linux VMs in the container service cluster.- Admin
Username string - The administrator username to use for Linux VMs.
- Ssh
Pulumi.
Azure Native. Container Service. Inputs. Container Service Ssh Configuration Response - The SSH configuration for Linux-based VMs running on Azure.
- Admin
Username string - The administrator username to use for Linux VMs.
- Ssh
Container
Service Ssh Configuration Response - The SSH configuration for Linux-based VMs running on Azure.
- admin_
username string - The administrator username to use for Linux VMs.
- ssh object
- The SSH configuration for Linux-based VMs running on Azure.
- admin
Username String - The administrator username to use for Linux VMs.
- ssh
Container
Service Ssh Configuration Response - The SSH configuration for Linux-based VMs running on Azure.
- admin
Username string - The administrator username to use for Linux VMs.
- ssh
Container
Service Ssh Configuration Response - The SSH configuration for Linux-based VMs running on Azure.
- admin_
username str - The administrator username to use for Linux VMs.
- ssh
Container
Service Ssh Configuration Response - The SSH configuration for Linux-based VMs running on Azure.
- admin
Username String - The administrator username to use for Linux VMs.
- ssh Property Map
- The SSH configuration for Linux-based VMs running on Azure.
ContainerServiceNetworkProfile, ContainerServiceNetworkProfileArgs
Profile of network configuration.- Advanced
Networking Pulumi.Azure Native. Container Service. Inputs. Advanced Networking - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- Dns
Service stringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- Ip
Families List<Union<string, Pulumi.Azure Native. Container Service. Ip Family>> - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- Load
Balancer Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile - Profile of the cluster load balancer.
- Load
Balancer string | Pulumi.Sku Azure Native. Container Service. Load Balancer Sku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- Nat
Gateway Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster NATGateway Profile - Profile of the cluster NAT gateway.
- Network
Dataplane string | Pulumi.Azure Native. Container Service. Network Dataplane - Network dataplane used in the Kubernetes cluster.
- Network
Mode string | Pulumi.Azure Native. Container Service. Network Mode - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- Network
Plugin string | Pulumi.Azure Native. Container Service. Network Plugin - Network plugin used for building the Kubernetes network.
- Network
Plugin string | Pulumi.Mode Azure Native. Container Service. Network Plugin Mode - The mode the network plugin should use.
- Network
Policy string | Pulumi.Azure Native. Container Service. Network Policy - Network policy used for building the Kubernetes network.
- Outbound
Type string | Pulumi.Azure Native. Container Service. Outbound Type - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- Pod
Cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- Pod
Cidrs List<string> - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- Service
Cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- Service
Cidrs List<string> - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- Static
Egress Pulumi.Gateway Profile Azure Native. Container Service. Inputs. Managed Cluster Static Egress Gateway Profile - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
- Advanced
Networking AdvancedNetworking - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- Dns
Service stringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- Ip
Families []string - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- Load
Balancer ManagedProfile Cluster Load Balancer Profile - Profile of the cluster load balancer.
- Load
Balancer string | LoadSku Balancer Sku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- Nat
Gateway ManagedProfile Cluster NATGateway Profile - Profile of the cluster NAT gateway.
- Network
Dataplane string | NetworkDataplane - Network dataplane used in the Kubernetes cluster.
- Network
Mode string | NetworkMode - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- Network
Plugin string | NetworkPlugin - Network plugin used for building the Kubernetes network.
- Network
Plugin string | NetworkMode Plugin Mode - The mode the network plugin should use.
- Network
Policy string | NetworkPolicy - Network policy used for building the Kubernetes network.
- Outbound
Type string | OutboundType - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- Pod
Cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- Pod
Cidrs []string - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- Service
Cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- Service
Cidrs []string - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- Static
Egress ManagedGateway Profile Cluster Static Egress Gateway Profile - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
- advanced_
networking object - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns_
service_ stringip - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip_
families list(string | "IPv4" | "IPv6") - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load_
balancer_ objectprofile - Profile of the cluster load balancer.
- load_
balancer_ string | "standard" | "basic"sku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat_
gateway_ objectprofile - Profile of the cluster NAT gateway.
- network_
dataplane string | "azure" | "cilium" - Network dataplane used in the Kubernetes cluster.
- network_
mode string | "transparent" | "bridge" - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- network_
plugin string | "azure" | "kubenet" | "none" - Network plugin used for building the Kubernetes network.
- network_
plugin_ string | "overlay"mode - The mode the network plugin should use.
- network_
policy string | "none" | "calico" | "azure" | "cilium" - Network policy used for building the Kubernetes network.
- outbound_
type string | "loadBalancer" | "user Defined Routing" | "managed NATGateway" | "user Assigned NATGateway" | "none" - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod_
cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod_
cidrs list(string) - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service_
cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service_
cidrs list(string) - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- static_
egress_ objectgateway_ profile - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
- advanced
Networking AdvancedNetworking - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns
Service StringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip
Families List<Either<String,IpFamily>> - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load
Balancer ManagedProfile Cluster Load Balancer Profile - Profile of the cluster load balancer.
- load
Balancer String | LoadSku Balancer Sku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat
Gateway ManagedProfile Cluster NATGateway Profile - Profile of the cluster NAT gateway.
- network
Dataplane String | NetworkDataplane - Network dataplane used in the Kubernetes cluster.
- network
Mode String | NetworkMode - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- network
Plugin String | NetworkPlugin - Network plugin used for building the Kubernetes network.
- network
Plugin String | NetworkMode Plugin Mode - The mode the network plugin should use.
- network
Policy String | NetworkPolicy - Network policy used for building the Kubernetes network.
- outbound
Type String | OutboundType - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod
Cidr String - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod
Cidrs List<String> - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service
Cidr String - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service
Cidrs List<String> - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- static
Egress ManagedGateway Profile Cluster Static Egress Gateway Profile - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
- advanced
Networking AdvancedNetworking - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns
Service stringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip
Families (string | IpFamily)[] - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load
Balancer ManagedProfile Cluster Load Balancer Profile - Profile of the cluster load balancer.
- load
Balancer string | LoadSku Balancer Sku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat
Gateway ManagedProfile Cluster NATGateway Profile - Profile of the cluster NAT gateway.
- network
Dataplane string | NetworkDataplane - Network dataplane used in the Kubernetes cluster.
- network
Mode string | NetworkMode - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- network
Plugin string | NetworkPlugin - Network plugin used for building the Kubernetes network.
- network
Plugin string | NetworkMode Plugin Mode - The mode the network plugin should use.
- network
Policy string | NetworkPolicy - Network policy used for building the Kubernetes network.
- outbound
Type string | OutboundType - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod
Cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod
Cidrs string[] - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service
Cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service
Cidrs string[] - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- static
Egress ManagedGateway Profile Cluster Static Egress Gateway Profile - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
- advanced_
networking AdvancedNetworking - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns_
service_ strip - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip_
families Sequence[Union[str, IpFamily]] - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load_
balancer_ Managedprofile Cluster Load Balancer Profile - Profile of the cluster load balancer.
- load_
balancer_ str | Loadsku Balancer Sku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat_
gateway_ Managedprofile Cluster NATGateway Profile - Profile of the cluster NAT gateway.
- network_
dataplane str | NetworkDataplane - Network dataplane used in the Kubernetes cluster.
- network_
mode str | NetworkMode - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- network_
plugin str | NetworkPlugin - Network plugin used for building the Kubernetes network.
- network_
plugin_ str | Networkmode Plugin Mode - The mode the network plugin should use.
- network_
policy str | NetworkPolicy - Network policy used for building the Kubernetes network.
- outbound_
type str | OutboundType - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod_
cidr str - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod_
cidrs Sequence[str] - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service_
cidr str - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service_
cidrs Sequence[str] - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- static_
egress_ Managedgateway_ profile Cluster Static Egress Gateway Profile - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
- advanced
Networking Property Map - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns
Service StringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip
Families List<String | "IPv4" | "IPv6"> - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load
Balancer Property MapProfile - Profile of the cluster load balancer.
- load
Balancer String | "standard" | "basic"Sku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat
Gateway Property MapProfile - Profile of the cluster NAT gateway.
- network
Dataplane String | "azure" | "cilium" - Network dataplane used in the Kubernetes cluster.
- network
Mode String | "transparent" | "bridge" - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- network
Plugin String | "azure" | "kubenet" | "none" - Network plugin used for building the Kubernetes network.
- network
Plugin String | "overlay"Mode - The mode the network plugin should use.
- network
Policy String | "none" | "calico" | "azure" | "cilium" - Network policy used for building the Kubernetes network.
- outbound
Type String | "loadBalancer" | "user Defined Routing" | "managed NATGateway" | "user Assigned NATGateway" | "none" - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod
Cidr String - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod
Cidrs List<String> - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service
Cidr String - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service
Cidrs List<String> - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- static
Egress Property MapGateway Profile - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
ContainerServiceNetworkProfileResponse, ContainerServiceNetworkProfileResponseArgs
Profile of network configuration.- Advanced
Networking Pulumi.Azure Native. Container Service. Inputs. Advanced Networking Response - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- Dns
Service stringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- Ip
Families List<string> - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- Load
Balancer Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Response - Profile of the cluster load balancer.
- Load
Balancer stringSku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- Nat
Gateway Pulumi.Profile Azure Native. Container Service. Inputs. Managed Cluster NATGateway Profile Response - Profile of the cluster NAT gateway.
- Network
Dataplane string - Network dataplane used in the Kubernetes cluster.
- Network
Mode string - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- Network
Plugin string - Network plugin used for building the Kubernetes network.
- Network
Plugin stringMode - The mode the network plugin should use.
- Network
Policy string - Network policy used for building the Kubernetes network.
- Outbound
Type string - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- Pod
Cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- Pod
Cidrs List<string> - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- Service
Cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- Service
Cidrs List<string> - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- Static
Egress Pulumi.Gateway Profile Azure Native. Container Service. Inputs. Managed Cluster Static Egress Gateway Profile Response - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
- Advanced
Networking AdvancedNetworking Response - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- Dns
Service stringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- Ip
Families []string - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- Load
Balancer ManagedProfile Cluster Load Balancer Profile Response - Profile of the cluster load balancer.
- Load
Balancer stringSku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- Nat
Gateway ManagedProfile Cluster NATGateway Profile Response - Profile of the cluster NAT gateway.
- Network
Dataplane string - Network dataplane used in the Kubernetes cluster.
- Network
Mode string - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- Network
Plugin string - Network plugin used for building the Kubernetes network.
- Network
Plugin stringMode - The mode the network plugin should use.
- Network
Policy string - Network policy used for building the Kubernetes network.
- Outbound
Type string - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- Pod
Cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- Pod
Cidrs []string - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- Service
Cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- Service
Cidrs []string - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- Static
Egress ManagedGateway Profile Cluster Static Egress Gateway Profile Response - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
- advanced_
networking object - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns_
service_ stringip - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip_
families list(string) - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load_
balancer_ objectprofile - Profile of the cluster load balancer.
- load_
balancer_ stringsku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat_
gateway_ objectprofile - Profile of the cluster NAT gateway.
- network_
dataplane string - Network dataplane used in the Kubernetes cluster.
- network_
mode string - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- network_
plugin string - Network plugin used for building the Kubernetes network.
- network_
plugin_ stringmode - The mode the network plugin should use.
- network_
policy string - Network policy used for building the Kubernetes network.
- outbound_
type string - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod_
cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod_
cidrs list(string) - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service_
cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service_
cidrs list(string) - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- static_
egress_ objectgateway_ profile - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
- advanced
Networking AdvancedNetworking Response - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns
Service StringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip
Families List<String> - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load
Balancer ManagedProfile Cluster Load Balancer Profile Response - Profile of the cluster load balancer.
- load
Balancer StringSku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat
Gateway ManagedProfile Cluster NATGateway Profile Response - Profile of the cluster NAT gateway.
- network
Dataplane String - Network dataplane used in the Kubernetes cluster.
- network
Mode String - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- network
Plugin String - Network plugin used for building the Kubernetes network.
- network
Plugin StringMode - The mode the network plugin should use.
- network
Policy String - Network policy used for building the Kubernetes network.
- outbound
Type String - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod
Cidr String - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod
Cidrs List<String> - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service
Cidr String - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service
Cidrs List<String> - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- static
Egress ManagedGateway Profile Cluster Static Egress Gateway Profile Response - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
- advanced
Networking AdvancedNetworking Response - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns
Service stringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip
Families string[] - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load
Balancer ManagedProfile Cluster Load Balancer Profile Response - Profile of the cluster load balancer.
- load
Balancer stringSku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat
Gateway ManagedProfile Cluster NATGateway Profile Response - Profile of the cluster NAT gateway.
- network
Dataplane string - Network dataplane used in the Kubernetes cluster.
- network
Mode string - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- network
Plugin string - Network plugin used for building the Kubernetes network.
- network
Plugin stringMode - The mode the network plugin should use.
- network
Policy string - Network policy used for building the Kubernetes network.
- outbound
Type string - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod
Cidr string - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod
Cidrs string[] - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service
Cidr string - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service
Cidrs string[] - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- static
Egress ManagedGateway Profile Cluster Static Egress Gateway Profile Response - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
- advanced_
networking AdvancedNetworking Response - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns_
service_ strip - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip_
families Sequence[str] - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load_
balancer_ Managedprofile Cluster Load Balancer Profile Response - Profile of the cluster load balancer.
- load_
balancer_ strsku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat_
gateway_ Managedprofile Cluster NATGateway Profile Response - Profile of the cluster NAT gateway.
- network_
dataplane str - Network dataplane used in the Kubernetes cluster.
- network_
mode str - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- network_
plugin str - Network plugin used for building the Kubernetes network.
- network_
plugin_ strmode - The mode the network plugin should use.
- network_
policy str - Network policy used for building the Kubernetes network.
- outbound_
type str - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod_
cidr str - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod_
cidrs Sequence[str] - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service_
cidr str - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service_
cidrs Sequence[str] - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- static_
egress_ Managedgateway_ profile Cluster Static Egress Gateway Profile Response - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
- advanced
Networking Property Map - Advanced Networking profile for enabling observability and security feature suite on a cluster. For more information see aka.ms/aksadvancednetworking.
- dns
Service StringIP - An IP address assigned to the Kubernetes DNS service. It must be within the Kubernetes service address range specified in serviceCidr.
- ip
Families List<String> - The IP families used to specify IP versions available to the cluster. IP families are used to determine single-stack or dual-stack clusters. For single-stack, the expected value is IPv4. For dual-stack, the expected values are IPv4 and IPv6.
- load
Balancer Property MapProfile - Profile of the cluster load balancer.
- load
Balancer StringSku - The load balancer sku for the managed cluster. The default is 'standard'. See Azure Load Balancer SKUs for more information about the differences between load balancer SKUs.
- nat
Gateway Property MapProfile - Profile of the cluster NAT gateway.
- network
Dataplane String - Network dataplane used in the Kubernetes cluster.
- network
Mode String - The network mode Azure CNI is configured with. This cannot be specified if networkPlugin is anything other than 'azure'.
- network
Plugin String - Network plugin used for building the Kubernetes network.
- network
Plugin StringMode - The mode the network plugin should use.
- network
Policy String - Network policy used for building the Kubernetes network.
- outbound
Type String - The outbound (egress) routing method. This can only be set at cluster creation time and cannot be changed later. For more information see egress outbound type.
- pod
Cidr String - A CIDR notation IP range from which to assign pod IPs when kubenet is used.
- pod
Cidrs List<String> - The CIDR notation IP ranges from which to assign pod IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking.
- service
Cidr String - A CIDR notation IP range from which to assign service cluster IPs. It must not overlap with any Subnet IP ranges.
- service
Cidrs List<String> - The CIDR notation IP ranges from which to assign service cluster IPs. One IPv4 CIDR is expected for single-stack networking. Two CIDRs, one for each IP family (IPv4/IPv6), is expected for dual-stack networking. They must not overlap with any Subnet IP ranges.
- static
Egress Property MapGateway Profile - The profile for Static Egress Gateway addon. For more details about Static Egress Gateway, see https://aka.ms/aks/static-egress-gateway.
ContainerServiceSshConfiguration, ContainerServiceSshConfigurationArgs
SSH configuration for Linux-based VMs running on Azure.- Public
Keys List<Pulumi.Azure Native. Container Service. Inputs. Container Service Ssh Public Key> - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- Public
Keys []ContainerService Ssh Public Key - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public_
keys list(object) - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public
Keys List<ContainerService Ssh Public Key> - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public
Keys ContainerService Ssh Public Key[] - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public_
keys Sequence[ContainerService Ssh Public Key] - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public
Keys List<Property Map> - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
ContainerServiceSshConfigurationResponse, ContainerServiceSshConfigurationResponseArgs
SSH configuration for Linux-based VMs running on Azure.- Public
Keys List<Pulumi.Azure Native. Container Service. Inputs. Container Service Ssh Public Key Response> - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- Public
Keys []ContainerService Ssh Public Key Response - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public_
keys list(object) - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public
Keys List<ContainerService Ssh Public Key Response> - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public
Keys ContainerService Ssh Public Key Response[] - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public_
keys Sequence[ContainerService Ssh Public Key Response] - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
- public
Keys List<Property Map> - The list of SSH public keys used to authenticate with Linux-based VMs. A maximum of 1 key may be specified.
ContainerServiceSshPublicKey, ContainerServiceSshPublicKeyArgs
Contains information about SSH certificate public key data.- Key
Data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- Key
Data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key_
data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key
Data String - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key
Data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key_
data str - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key
Data String - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
ContainerServiceSshPublicKeyResponse, ContainerServiceSshPublicKeyResponseArgs
Contains information about SSH certificate public key data.- Key
Data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- Key
Data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key_
data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key
Data String - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key
Data string - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key_
data str - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
- key
Data String - Certificate public key used to authenticate with VMs through SSH. The certificate must be in PEM format with or without headers.
CreationData, CreationDataArgs
Data used when creating a target resource from a source resource.- Source
Resource stringId - This is the ARM ID of the source object to be used to create the target object.
- Source
Resource stringId - This is the ARM ID of the source object to be used to create the target object.
- source_
resource_ stringid - This is the ARM ID of the source object to be used to create the target object.
- source
Resource StringId - This is the ARM ID of the source object to be used to create the target object.
- source
Resource stringId - This is the ARM ID of the source object to be used to create the target object.
- source_
resource_ strid - This is the ARM ID of the source object to be used to create the target object.
- source
Resource StringId - This is the ARM ID of the source object to be used to create the target object.
CreationDataResponse, CreationDataResponseArgs
Data used when creating a target resource from a source resource.- Source
Resource stringId - This is the ARM ID of the source object to be used to create the target object.
- Source
Resource stringId - This is the ARM ID of the source object to be used to create the target object.
- source_
resource_ stringid - This is the ARM ID of the source object to be used to create the target object.
- source
Resource StringId - This is the ARM ID of the source object to be used to create the target object.
- source
Resource stringId - This is the ARM ID of the source object to be used to create the target object.
- source_
resource_ strid - This is the ARM ID of the source object to be used to create the target object.
- source
Resource StringId - This is the ARM ID of the source object to be used to create the target object.
DelegatedResource, DelegatedResourceArgs
Delegated resource properties - internal use only.- Location string
- The source resource location - internal use only.
- Referral
Resource string - The delegation id of the referral delegation (optional) - internal use only.
- Resource
Id string - The ARM resource id of the delegated resource - internal use only.
- Tenant
Id string - The tenant id of the delegated resource - internal use only.
- Location string
- The source resource location - internal use only.
- Referral
Resource string - The delegation id of the referral delegation (optional) - internal use only.
- Resource
Id string - The ARM resource id of the delegated resource - internal use only.
- Tenant
Id string - The tenant id of the delegated resource - internal use only.
- location string
- The source resource location - internal use only.
- referral_
resource string - The delegation id of the referral delegation (optional) - internal use only.
- resource_
id string - The ARM resource id of the delegated resource - internal use only.
- tenant_
id string - The tenant id of the delegated resource - internal use only.
- location String
- The source resource location - internal use only.
- referral
Resource String - The delegation id of the referral delegation (optional) - internal use only.
- resource
Id String - The ARM resource id of the delegated resource - internal use only.
- tenant
Id String - The tenant id of the delegated resource - internal use only.
- location string
- The source resource location - internal use only.
- referral
Resource string - The delegation id of the referral delegation (optional) - internal use only.
- resource
Id string - The ARM resource id of the delegated resource - internal use only.
- tenant
Id string - The tenant id of the delegated resource - internal use only.
- location str
- The source resource location - internal use only.
- referral_
resource str - The delegation id of the referral delegation (optional) - internal use only.
- resource_
id str - The ARM resource id of the delegated resource - internal use only.
- tenant_
id str - The tenant id of the delegated resource - internal use only.
- location String
- The source resource location - internal use only.
- referral
Resource String - The delegation id of the referral delegation (optional) - internal use only.
- resource
Id String - The ARM resource id of the delegated resource - internal use only.
- tenant
Id String - The tenant id of the delegated resource - internal use only.
DelegatedResourceResponse, DelegatedResourceResponseArgs
Delegated resource properties - internal use only.- Location string
- The source resource location - internal use only.
- Referral
Resource string - The delegation id of the referral delegation (optional) - internal use only.
- Resource
Id string - The ARM resource id of the delegated resource - internal use only.
- Tenant
Id string - The tenant id of the delegated resource - internal use only.
- Location string
- The source resource location - internal use only.
- Referral
Resource string - The delegation id of the referral delegation (optional) - internal use only.
- Resource
Id string - The ARM resource id of the delegated resource - internal use only.
- Tenant
Id string - The tenant id of the delegated resource - internal use only.
- location string
- The source resource location - internal use only.
- referral_
resource string - The delegation id of the referral delegation (optional) - internal use only.
- resource_
id string - The ARM resource id of the delegated resource - internal use only.
- tenant_
id string - The tenant id of the delegated resource - internal use only.
- location String
- The source resource location - internal use only.
- referral
Resource String - The delegation id of the referral delegation (optional) - internal use only.
- resource
Id String - The ARM resource id of the delegated resource - internal use only.
- tenant
Id String - The tenant id of the delegated resource - internal use only.
- location string
- The source resource location - internal use only.
- referral
Resource string - The delegation id of the referral delegation (optional) - internal use only.
- resource
Id string - The ARM resource id of the delegated resource - internal use only.
- tenant
Id string - The tenant id of the delegated resource - internal use only.
- location str
- The source resource location - internal use only.
- referral_
resource str - The delegation id of the referral delegation (optional) - internal use only.
- resource_
id str - The ARM resource id of the delegated resource - internal use only.
- tenant_
id str - The tenant id of the delegated resource - internal use only.
- location String
- The source resource location - internal use only.
- referral
Resource String - The delegation id of the referral delegation (optional) - internal use only.
- resource
Id String - The ARM resource id of the delegated resource - internal use only.
- tenant
Id String - The tenant id of the delegated resource - internal use only.
ErrorAdditionalInfoResponse, ErrorAdditionalInfoResponseArgs
The resource management error additional info.ErrorDetailResponse, ErrorDetailResponseArgs
The error detail.- Additional
Info List<Pulumi.Azure Native. Container Service. Inputs. Error Additional Info Response> - The error additional info.
- Code string
- The error code.
- Details
List<Pulumi.
Azure Native. Container Service. Inputs. Error Detail Response> - The error details.
- Message string
- The error message.
- Target string
- The error target.
- Additional
Info []ErrorAdditional Info Response - The error additional info.
- Code string
- The error code.
- Details
[]Error
Detail Response - The error details.
- Message string
- The error message.
- Target string
- The error target.
- additional_
info list(object) - The error additional info.
- code string
- The error code.
- details list(object)
- The error details.
- message string
- The error message.
- target string
- The error target.
- additional
Info List<ErrorAdditional Info Response> - The error additional info.
- code String
- The error code.
- details
List<Error
Detail Response> - The error details.
- message String
- The error message.
- target String
- The error target.
- additional
Info ErrorAdditional Info Response[] - The error additional info.
- code string
- The error code.
- details
Error
Detail Response[] - The error details.
- message string
- The error message.
- target string
- The error target.
- additional_
info Sequence[ErrorAdditional Info Response] - The error additional info.
- code str
- The error code.
- details
Sequence[Error
Detail Response] - The error details.
- message str
- The error message.
- target str
- The error target.
- additional
Info List<Property Map> - The error additional info.
- code String
- The error code.
- details List<Property Map>
- The error details.
- message String
- The error message.
- target String
- The error target.
Expander, ExpanderArgs
- Least_
waste least-wasteSelects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. This is useful when you have different classes of nodes, for example, high CPU or high memory nodes, and only want to expand those when there are pending pods that need a lot of those resources.- Most_
pods most-podsSelects the node group that would be able to schedule the most pods when scaling up. This is useful when you are using nodeSelector to make sure certain pods land on certain nodes. Note that this won't cause the autoscaler to select bigger nodes vs. smaller, as it can add multiple smaller nodes at once.- Priority
prioritySelects the node group that has the highest priority assigned by the user. It's configuration is described in more details here.- Random
randomUsed when you don't have a particular need for the node groups to scale differently.
- Expander_Least_Waste
least-wasteSelects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. This is useful when you have different classes of nodes, for example, high CPU or high memory nodes, and only want to expand those when there are pending pods that need a lot of those resources.- Expander_Most_Pods
most-podsSelects the node group that would be able to schedule the most pods when scaling up. This is useful when you are using nodeSelector to make sure certain pods land on certain nodes. Note that this won't cause the autoscaler to select bigger nodes vs. smaller, as it can add multiple smaller nodes at once.- Expander
Priority prioritySelects the node group that has the highest priority assigned by the user. It's configuration is described in more details here.- Expander
Random randomUsed when you don't have a particular need for the node groups to scale differently.
- "least-waste"
least-wasteSelects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. This is useful when you have different classes of nodes, for example, high CPU or high memory nodes, and only want to expand those when there are pending pods that need a lot of those resources.- "most-pods"
most-podsSelects the node group that would be able to schedule the most pods when scaling up. This is useful when you are using nodeSelector to make sure certain pods land on certain nodes. Note that this won't cause the autoscaler to select bigger nodes vs. smaller, as it can add multiple smaller nodes at once.- "priority"
prioritySelects the node group that has the highest priority assigned by the user. It's configuration is described in more details here.- "random"
randomUsed when you don't have a particular need for the node groups to scale differently.
- Leastwaste
least-wasteSelects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. This is useful when you have different classes of nodes, for example, high CPU or high memory nodes, and only want to expand those when there are pending pods that need a lot of those resources.- Mostpods
most-podsSelects the node group that would be able to schedule the most pods when scaling up. This is useful when you are using nodeSelector to make sure certain pods land on certain nodes. Note that this won't cause the autoscaler to select bigger nodes vs. smaller, as it can add multiple smaller nodes at once.- Priority
prioritySelects the node group that has the highest priority assigned by the user. It's configuration is described in more details here.- Random
randomUsed when you don't have a particular need for the node groups to scale differently.
- Least_
waste least-wasteSelects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. This is useful when you have different classes of nodes, for example, high CPU or high memory nodes, and only want to expand those when there are pending pods that need a lot of those resources.- Most_
pods most-podsSelects the node group that would be able to schedule the most pods when scaling up. This is useful when you are using nodeSelector to make sure certain pods land on certain nodes. Note that this won't cause the autoscaler to select bigger nodes vs. smaller, as it can add multiple smaller nodes at once.- Priority
prioritySelects the node group that has the highest priority assigned by the user. It's configuration is described in more details here.- Random
randomUsed when you don't have a particular need for the node groups to scale differently.
- LEAST_WASTE
least-wasteSelects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. This is useful when you have different classes of nodes, for example, high CPU or high memory nodes, and only want to expand those when there are pending pods that need a lot of those resources.- MOST_PODS
most-podsSelects the node group that would be able to schedule the most pods when scaling up. This is useful when you are using nodeSelector to make sure certain pods land on certain nodes. Note that this won't cause the autoscaler to select bigger nodes vs. smaller, as it can add multiple smaller nodes at once.- PRIORITY
prioritySelects the node group that has the highest priority assigned by the user. It's configuration is described in more details here.- RANDOM
randomUsed when you don't have a particular need for the node groups to scale differently.
- "least-waste"
least-wasteSelects the node group that will have the least idle CPU (if tied, unused memory) after scale-up. This is useful when you have different classes of nodes, for example, high CPU or high memory nodes, and only want to expand those when there are pending pods that need a lot of those resources.- "most-pods"
most-podsSelects the node group that would be able to schedule the most pods when scaling up. This is useful when you are using nodeSelector to make sure certain pods land on certain nodes. Note that this won't cause the autoscaler to select bigger nodes vs. smaller, as it can add multiple smaller nodes at once.- "priority"
prioritySelects the node group that has the highest priority assigned by the user. It's configuration is described in more details here.- "random"
randomUsed when you don't have a particular need for the node groups to scale differently.
ExtendedLocation, ExtendedLocationArgs
The complex type of the extended location.- Name string
- The name of the extended location.
- Type
string | Pulumi.
Azure Native. Container Service. Extended Location Types - The type of the extended location.
- Name string
- The name of the extended location.
- Type
string | Extended
Location Types - The type of the extended location.
- name string
- The name of the extended location.
- type
string | "Edge
Zone" - The type of the extended location.
- name String
- The name of the extended location.
- type
String | Extended
Location Types - The type of the extended location.
- name string
- The name of the extended location.
- type
string | Extended
Location Types - The type of the extended location.
- name str
- The name of the extended location.
- type
str | Extended
Location Types - The type of the extended location.
- name String
- The name of the extended location.
- type
String | "Edge
Zone" - The type of the extended location.
ExtendedLocationResponse, ExtendedLocationResponseArgs
The complex type of the extended location.ExtendedLocationTypes, ExtendedLocationTypesArgs
- Edge
Zone EdgeZone
- Extended
Location Types Edge Zone EdgeZone
- "Edge
Zone" EdgeZone
- Edge
Zone EdgeZone
- Edge
Zone EdgeZone
- EDGE_ZONE
EdgeZone
- "Edge
Zone" EdgeZone
GPUDriver, GPUDriverArgs
- Install
InstallInstall driver.- None
NoneSkip driver install.
- GPUDriver
Install InstallInstall driver.- GPUDriver
None NoneSkip driver install.
- "Install"
InstallInstall driver.- "None"
NoneSkip driver install.
- Install
InstallInstall driver.- None
NoneSkip driver install.
- Install
InstallInstall driver.- None
NoneSkip driver install.
- INSTALL
InstallInstall driver.- NONE
NoneSkip driver install.
- "Install"
InstallInstall driver.- "None"
NoneSkip driver install.
GPUInstanceProfile, GPUInstanceProfileArgs
- MIG1g
MIG1g- MIG2g
MIG2g- MIG3g
MIG3g- MIG4g
MIG4g- MIG7g
MIG7g
- GPUInstance
Profile MIG1g MIG1g- GPUInstance
Profile MIG2g MIG2g- GPUInstance
Profile MIG3g MIG3g- GPUInstance
Profile MIG4g MIG4g- GPUInstance
Profile MIG7g MIG7g
- "MIG1g"
MIG1g- "MIG2g"
MIG2g- "MIG3g"
MIG3g- "MIG4g"
MIG4g- "MIG7g"
MIG7g
- MIG1g
MIG1g- MIG2g
MIG2g- MIG3g
MIG3g- MIG4g
MIG4g- MIG7g
MIG7g
- MIG1g
MIG1g- MIG2g
MIG2g- MIG3g
MIG3g- MIG4g
MIG4g- MIG7g
MIG7g
- MIG1G
MIG1g- MIG2G
MIG2g- MIG3G
MIG3g- MIG4G
MIG4g- MIG7G
MIG7g
- "MIG1g"
MIG1g- "MIG2g"
MIG2g- "MIG3g"
MIG3g- "MIG4g"
MIG4g- "MIG7g"
MIG7g
GPUProfile, GPUProfileArgs
GPU settings for the Agent Pool.- Driver
string | Pulumi.
Azure Native. Container Service. GPUDriver - Whether to install GPU drivers. When it's not specified, default is Install.
- driver string | "Install" | "None"
- Whether to install GPU drivers. When it's not specified, default is Install.
- driver String | "Install" | "None"
- Whether to install GPU drivers. When it's not specified, default is Install.
GPUProfileResponse, GPUProfileResponseArgs
GPU settings for the Agent Pool.- Driver string
- Whether to install GPU drivers. When it's not specified, default is Install.
- Driver string
- Whether to install GPU drivers. When it's not specified, default is Install.
- driver string
- Whether to install GPU drivers. When it's not specified, default is Install.
- driver String
- Whether to install GPU drivers. When it's not specified, default is Install.
- driver string
- Whether to install GPU drivers. When it's not specified, default is Install.
- driver str
- Whether to install GPU drivers. When it's not specified, default is Install.
- driver String
- Whether to install GPU drivers. When it's not specified, default is Install.
IPTag, IPTagArgs
Contains the IPTag associated with the object.- ip_
tag_ stringtype - The IP tag type. Example: RoutingPreference.
- tag string
- The value of the IP tag associated with the public IP. Example: Internet.
- ip_
tag_ strtype - The IP tag type. Example: RoutingPreference.
- tag str
- The value of the IP tag associated with the public IP. Example: Internet.
IPTagResponse, IPTagResponseArgs
Contains the IPTag associated with the object.- ip_
tag_ stringtype - The IP tag type. Example: RoutingPreference.
- tag string
- The value of the IP tag associated with the public IP. Example: Internet.
- ip_
tag_ strtype - The IP tag type. Example: RoutingPreference.
- tag str
- The value of the IP tag associated with the public IP. Example: Internet.
IpFamily, IpFamilyArgs
- IPv4
IPv4- IPv6
IPv6
- Ip
Family IPv4 IPv4- Ip
Family IPv6 IPv6
- "IPv4"
IPv4- "IPv6"
IPv6
- IPv4
IPv4- IPv6
IPv6
- IPv4
IPv4- IPv6
IPv6
- I_PV4
IPv4- I_PV6
IPv6
- "IPv4"
IPv4- "IPv6"
IPv6
IstioCertificateAuthority, IstioCertificateAuthorityArgs
Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca- Plugin
Pulumi.
Azure Native. Container Service. Inputs. Istio Plugin Certificate Authority - Plugin certificates information for Service Mesh.
- Plugin
Istio
Plugin Certificate Authority - Plugin certificates information for Service Mesh.
- plugin
Istio
Plugin Certificate Authority - Plugin certificates information for Service Mesh.
- plugin
Istio
Plugin Certificate Authority - Plugin certificates information for Service Mesh.
- plugin
Istio
Plugin Certificate Authority - Plugin certificates information for Service Mesh.
- plugin Property Map
- Plugin certificates information for Service Mesh.
IstioCertificateAuthorityResponse, IstioCertificateAuthorityResponseArgs
Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca- Plugin
Pulumi.
Azure Native. Container Service. Inputs. Istio Plugin Certificate Authority Response - Plugin certificates information for Service Mesh.
- Plugin
Istio
Plugin Certificate Authority Response - Plugin certificates information for Service Mesh.
- plugin
Istio
Plugin Certificate Authority Response - Plugin certificates information for Service Mesh.
- plugin
Istio
Plugin Certificate Authority Response - Plugin certificates information for Service Mesh.
- plugin
Istio
Plugin Certificate Authority Response - Plugin certificates information for Service Mesh.
- plugin Property Map
- Plugin certificates information for Service Mesh.
IstioComponents, IstioComponentsArgs
Istio components configuration.- Egress
Gateways List<Pulumi.Azure Native. Container Service. Inputs. Istio Egress Gateway> - Istio egress gateways.
- Ingress
Gateways List<Pulumi.Azure Native. Container Service. Inputs. Istio Ingress Gateway> - Istio ingress gateways.
- Egress
Gateways []IstioEgress Gateway - Istio egress gateways.
- Ingress
Gateways []IstioIngress Gateway - Istio ingress gateways.
- egress_
gateways list(object) - Istio egress gateways.
- ingress_
gateways list(object) - Istio ingress gateways.
- egress
Gateways List<IstioEgress Gateway> - Istio egress gateways.
- ingress
Gateways List<IstioIngress Gateway> - Istio ingress gateways.
- egress
Gateways IstioEgress Gateway[] - Istio egress gateways.
- ingress
Gateways IstioIngress Gateway[] - Istio ingress gateways.
- egress_
gateways Sequence[IstioEgress Gateway] - Istio egress gateways.
- ingress_
gateways Sequence[IstioIngress Gateway] - Istio ingress gateways.
- egress
Gateways List<Property Map> - Istio egress gateways.
- ingress
Gateways List<Property Map> - Istio ingress gateways.
IstioComponentsResponse, IstioComponentsResponseArgs
Istio components configuration.- Egress
Gateways List<Pulumi.Azure Native. Container Service. Inputs. Istio Egress Gateway Response> - Istio egress gateways.
- Ingress
Gateways List<Pulumi.Azure Native. Container Service. Inputs. Istio Ingress Gateway Response> - Istio ingress gateways.
- Egress
Gateways []IstioEgress Gateway Response - Istio egress gateways.
- Ingress
Gateways []IstioIngress Gateway Response - Istio ingress gateways.
- egress_
gateways list(object) - Istio egress gateways.
- ingress_
gateways list(object) - Istio ingress gateways.
- egress
Gateways List<IstioEgress Gateway Response> - Istio egress gateways.
- ingress
Gateways List<IstioIngress Gateway Response> - Istio ingress gateways.
- egress
Gateways IstioEgress Gateway Response[] - Istio egress gateways.
- ingress
Gateways IstioIngress Gateway Response[] - Istio ingress gateways.
- egress_
gateways Sequence[IstioEgress Gateway Response] - Istio egress gateways.
- ingress_
gateways Sequence[IstioIngress Gateway Response] - Istio ingress gateways.
- egress
Gateways List<Property Map> - Istio egress gateways.
- ingress
Gateways List<Property Map> - Istio ingress gateways.
IstioEgressGateway, IstioEgressGatewayArgs
Istio egress gateway configuration.- Enabled bool
- Whether to enable the egress gateway.
- Name string
- Name of the Istio add-on egress gateway.
- Gateway
Configuration stringName - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- Namespace string
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
- Enabled bool
- Whether to enable the egress gateway.
- Name string
- Name of the Istio add-on egress gateway.
- Gateway
Configuration stringName - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- Namespace string
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
- enabled bool
- Whether to enable the egress gateway.
- name string
- Name of the Istio add-on egress gateway.
- gateway_
configuration_ stringname - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- namespace string
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
- enabled Boolean
- Whether to enable the egress gateway.
- name String
- Name of the Istio add-on egress gateway.
- gateway
Configuration StringName - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- namespace String
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
- enabled boolean
- Whether to enable the egress gateway.
- name string
- Name of the Istio add-on egress gateway.
- gateway
Configuration stringName - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- namespace string
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
- enabled bool
- Whether to enable the egress gateway.
- name str
- Name of the Istio add-on egress gateway.
- gateway_
configuration_ strname - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- namespace str
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
- enabled Boolean
- Whether to enable the egress gateway.
- name String
- Name of the Istio add-on egress gateway.
- gateway
Configuration StringName - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- namespace String
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
IstioEgressGatewayResponse, IstioEgressGatewayResponseArgs
Istio egress gateway configuration.- Enabled bool
- Whether to enable the egress gateway.
- Name string
- Name of the Istio add-on egress gateway.
- Gateway
Configuration stringName - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- Namespace string
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
- Enabled bool
- Whether to enable the egress gateway.
- Name string
- Name of the Istio add-on egress gateway.
- Gateway
Configuration stringName - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- Namespace string
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
- enabled bool
- Whether to enable the egress gateway.
- name string
- Name of the Istio add-on egress gateway.
- gateway_
configuration_ stringname - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- namespace string
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
- enabled Boolean
- Whether to enable the egress gateway.
- name String
- Name of the Istio add-on egress gateway.
- gateway
Configuration StringName - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- namespace String
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
- enabled boolean
- Whether to enable the egress gateway.
- name string
- Name of the Istio add-on egress gateway.
- gateway
Configuration stringName - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- namespace string
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
- enabled bool
- Whether to enable the egress gateway.
- name str
- Name of the Istio add-on egress gateway.
- gateway_
configuration_ strname - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- namespace str
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
- enabled Boolean
- Whether to enable the egress gateway.
- name String
- Name of the Istio add-on egress gateway.
- gateway
Configuration StringName - Name of the gateway configuration custom resource for the Istio add-on egress gateway. Must be specified when enabling the Istio egress gateway. Must be deployed in the same namespace that the Istio egress gateway will be deployed in.
- namespace String
- Namespace that the Istio add-on egress gateway should be deployed in. If unspecified, the default is aks-istio-egress.
IstioIngressGateway, IstioIngressGatewayArgs
Istio ingress gateway configuration. For now, we support up to one external ingress gateway named aks-istio-ingressgateway-external and one internal ingress gateway named aks-istio-ingressgateway-internal.- Enabled bool
- Whether to enable the ingress gateway.
- Mode
string | Pulumi.
Azure Native. Container Service. Istio Ingress Gateway Mode - Mode of an ingress gateway.
- Enabled bool
- Whether to enable the ingress gateway.
- Mode
string | Istio
Ingress Gateway Mode - Mode of an ingress gateway.
- enabled bool
- Whether to enable the ingress gateway.
- mode string | "External" | "Internal"
- Mode of an ingress gateway.
- enabled Boolean
- Whether to enable the ingress gateway.
- mode
String | Istio
Ingress Gateway Mode - Mode of an ingress gateway.
- enabled boolean
- Whether to enable the ingress gateway.
- mode
string | Istio
Ingress Gateway Mode - Mode of an ingress gateway.
- enabled bool
- Whether to enable the ingress gateway.
- mode
str | Istio
Ingress Gateway Mode - Mode of an ingress gateway.
- enabled Boolean
- Whether to enable the ingress gateway.
- mode String | "External" | "Internal"
- Mode of an ingress gateway.
IstioIngressGatewayMode, IstioIngressGatewayModeArgs
- External
ExternalThe ingress gateway is assigned a public IP address and is publicly accessible.- Internal
InternalThe ingress gateway is assigned an internal IP address and cannot is accessed publicly.
- Istio
Ingress Gateway Mode External ExternalThe ingress gateway is assigned a public IP address and is publicly accessible.- Istio
Ingress Gateway Mode Internal InternalThe ingress gateway is assigned an internal IP address and cannot is accessed publicly.
- "External"
ExternalThe ingress gateway is assigned a public IP address and is publicly accessible.- "Internal"
InternalThe ingress gateway is assigned an internal IP address and cannot is accessed publicly.
- External
ExternalThe ingress gateway is assigned a public IP address and is publicly accessible.- Internal
InternalThe ingress gateway is assigned an internal IP address and cannot is accessed publicly.
- External
ExternalThe ingress gateway is assigned a public IP address and is publicly accessible.- Internal
InternalThe ingress gateway is assigned an internal IP address and cannot is accessed publicly.
- EXTERNAL
ExternalThe ingress gateway is assigned a public IP address and is publicly accessible.- INTERNAL
InternalThe ingress gateway is assigned an internal IP address and cannot is accessed publicly.
- "External"
ExternalThe ingress gateway is assigned a public IP address and is publicly accessible.- "Internal"
InternalThe ingress gateway is assigned an internal IP address and cannot is accessed publicly.
IstioIngressGatewayResponse, IstioIngressGatewayResponseArgs
Istio ingress gateway configuration. For now, we support up to one external ingress gateway named aks-istio-ingressgateway-external and one internal ingress gateway named aks-istio-ingressgateway-internal.IstioPluginCertificateAuthority, IstioPluginCertificateAuthorityArgs
Plugin certificates information for Service Mesh.- Cert
Chain stringObject Name - Certificate chain object name in Azure Key Vault.
- Cert
Object stringName - Intermediate certificate object name in Azure Key Vault.
- Key
Object stringName - Intermediate certificate private key object name in Azure Key Vault.
- Key
Vault stringId - The resource ID of the Key Vault.
- Root
Cert stringObject Name - Root certificate object name in Azure Key Vault.
- Cert
Chain stringObject Name - Certificate chain object name in Azure Key Vault.
- Cert
Object stringName - Intermediate certificate object name in Azure Key Vault.
- Key
Object stringName - Intermediate certificate private key object name in Azure Key Vault.
- Key
Vault stringId - The resource ID of the Key Vault.
- Root
Cert stringObject Name - Root certificate object name in Azure Key Vault.
- cert_
chain_ stringobject_ name - Certificate chain object name in Azure Key Vault.
- cert_
object_ stringname - Intermediate certificate object name in Azure Key Vault.
- key_
object_ stringname - Intermediate certificate private key object name in Azure Key Vault.
- key_
vault_ stringid - The resource ID of the Key Vault.
- root_
cert_ stringobject_ name - Root certificate object name in Azure Key Vault.
- cert
Chain StringObject Name - Certificate chain object name in Azure Key Vault.
- cert
Object StringName - Intermediate certificate object name in Azure Key Vault.
- key
Object StringName - Intermediate certificate private key object name in Azure Key Vault.
- key
Vault StringId - The resource ID of the Key Vault.
- root
Cert StringObject Name - Root certificate object name in Azure Key Vault.
- cert
Chain stringObject Name - Certificate chain object name in Azure Key Vault.
- cert
Object stringName - Intermediate certificate object name in Azure Key Vault.
- key
Object stringName - Intermediate certificate private key object name in Azure Key Vault.
- key
Vault stringId - The resource ID of the Key Vault.
- root
Cert stringObject Name - Root certificate object name in Azure Key Vault.
- cert_
chain_ strobject_ name - Certificate chain object name in Azure Key Vault.
- cert_
object_ strname - Intermediate certificate object name in Azure Key Vault.
- key_
object_ strname - Intermediate certificate private key object name in Azure Key Vault.
- key_
vault_ strid - The resource ID of the Key Vault.
- root_
cert_ strobject_ name - Root certificate object name in Azure Key Vault.
- cert
Chain StringObject Name - Certificate chain object name in Azure Key Vault.
- cert
Object StringName - Intermediate certificate object name in Azure Key Vault.
- key
Object StringName - Intermediate certificate private key object name in Azure Key Vault.
- key
Vault StringId - The resource ID of the Key Vault.
- root
Cert StringObject Name - Root certificate object name in Azure Key Vault.
IstioPluginCertificateAuthorityResponse, IstioPluginCertificateAuthorityResponseArgs
Plugin certificates information for Service Mesh.- Cert
Chain stringObject Name - Certificate chain object name in Azure Key Vault.
- Cert
Object stringName - Intermediate certificate object name in Azure Key Vault.
- Key
Object stringName - Intermediate certificate private key object name in Azure Key Vault.
- Key
Vault stringId - The resource ID of the Key Vault.
- Root
Cert stringObject Name - Root certificate object name in Azure Key Vault.
- Cert
Chain stringObject Name - Certificate chain object name in Azure Key Vault.
- Cert
Object stringName - Intermediate certificate object name in Azure Key Vault.
- Key
Object stringName - Intermediate certificate private key object name in Azure Key Vault.
- Key
Vault stringId - The resource ID of the Key Vault.
- Root
Cert stringObject Name - Root certificate object name in Azure Key Vault.
- cert_
chain_ stringobject_ name - Certificate chain object name in Azure Key Vault.
- cert_
object_ stringname - Intermediate certificate object name in Azure Key Vault.
- key_
object_ stringname - Intermediate certificate private key object name in Azure Key Vault.
- key_
vault_ stringid - The resource ID of the Key Vault.
- root_
cert_ stringobject_ name - Root certificate object name in Azure Key Vault.
- cert
Chain StringObject Name - Certificate chain object name in Azure Key Vault.
- cert
Object StringName - Intermediate certificate object name in Azure Key Vault.
- key
Object StringName - Intermediate certificate private key object name in Azure Key Vault.
- key
Vault StringId - The resource ID of the Key Vault.
- root
Cert StringObject Name - Root certificate object name in Azure Key Vault.
- cert
Chain stringObject Name - Certificate chain object name in Azure Key Vault.
- cert
Object stringName - Intermediate certificate object name in Azure Key Vault.
- key
Object stringName - Intermediate certificate private key object name in Azure Key Vault.
- key
Vault stringId - The resource ID of the Key Vault.
- root
Cert stringObject Name - Root certificate object name in Azure Key Vault.
- cert_
chain_ strobject_ name - Certificate chain object name in Azure Key Vault.
- cert_
object_ strname - Intermediate certificate object name in Azure Key Vault.
- key_
object_ strname - Intermediate certificate private key object name in Azure Key Vault.
- key_
vault_ strid - The resource ID of the Key Vault.
- root_
cert_ strobject_ name - Root certificate object name in Azure Key Vault.
- cert
Chain StringObject Name - Certificate chain object name in Azure Key Vault.
- cert
Object StringName - Intermediate certificate object name in Azure Key Vault.
- key
Object StringName - Intermediate certificate private key object name in Azure Key Vault.
- key
Vault StringId - The resource ID of the Key Vault.
- root
Cert StringObject Name - Root certificate object name in Azure Key Vault.
IstioServiceMesh, IstioServiceMeshArgs
Istio service mesh configuration.-
Pulumi.
Azure Native. Container Service. Inputs. Istio Certificate Authority - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- Components
Pulumi.
Azure Native. Container Service. Inputs. Istio Components - Istio components configuration.
- Revisions List<string>
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- Components
Istio
Components - Istio components configuration.
- Revisions []string
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
- object
- Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components object
- Istio components configuration.
- revisions list(string)
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components
Istio
Components - Istio components configuration.
- revisions List<String>
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components
Istio
Components - Istio components configuration.
- revisions string[]
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components
Istio
Components - Istio components configuration.
- revisions Sequence[str]
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
- Property Map
- Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components Property Map
- Istio components configuration.
- revisions List<String>
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
IstioServiceMeshResponse, IstioServiceMeshResponseArgs
Istio service mesh configuration.-
Pulumi.
Azure Native. Container Service. Inputs. Istio Certificate Authority Response - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- Components
Pulumi.
Azure Native. Container Service. Inputs. Istio Components Response - Istio components configuration.
- Revisions List<string>
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority Response - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- Components
Istio
Components Response - Istio components configuration.
- Revisions []string
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
- object
- Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components object
- Istio components configuration.
- revisions list(string)
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority Response - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components
Istio
Components Response - Istio components configuration.
- revisions List<String>
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority Response - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components
Istio
Components Response - Istio components configuration.
- revisions string[]
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
-
Istio
Certificate Authority Response - Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components
Istio
Components Response - Istio components configuration.
- revisions Sequence[str]
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
- Property Map
- Istio Service Mesh Certificate Authority (CA) configuration. For now, we only support plugin certificates as described here https://aka.ms/asm-plugin-ca
- components Property Map
- Istio components configuration.
- revisions List<String>
- The list of revisions of the Istio control plane. When an upgrade is not in progress, this holds one value. When canary upgrade is in progress, this can only hold two consecutive values. For more information, see: https://learn.microsoft.com/en-us/azure/aks/istio-upgrade
KeyVaultNetworkAccessTypes, KeyVaultNetworkAccessTypesArgs
- Public
Public- Private
Private
- Key
Vault Network Access Types Public Public- Key
Vault Network Access Types Private Private
- "Public"
Public- "Private"
Private
- Public
Public- Private
Private
- Public
Public- Private
Private
- PUBLIC
Public- PRIVATE
Private
- "Public"
Public- "Private"
Private
KubeletConfig, KubeletConfigArgs
Kubelet configurations of agent nodes. See AKS custom node configuration for more details.- Allowed
Unsafe List<string>Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - Container
Log intMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- Container
Log intMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- Cpu
Cfs boolQuota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- Cpu
Cfs stringQuota Period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- Cpu
Manager stringPolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- Fail
Swap boolOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- Image
Gc intHigh Threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- Image
Gc intLow Threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- Pod
Max intPids - The maximum number of processes per pod.
- Topology
Manager stringPolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- Allowed
Unsafe []stringSysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - Container
Log intMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- Container
Log intMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- Cpu
Cfs boolQuota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- Cpu
Cfs stringQuota Period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- Cpu
Manager stringPolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- Fail
Swap boolOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- Image
Gc intHigh Threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- Image
Gc intLow Threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- Pod
Max intPids - The maximum number of processes per pod.
- Topology
Manager stringPolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed_
unsafe_ list(string)sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container_
log_ numbermax_ files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container_
log_ numbermax_ size_ mb - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu_
cfs_ boolquota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- cpu_
cfs_ stringquota_ period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu_
manager_ stringpolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail_
swap_ boolon - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image_
gc_ numberhigh_ threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- image_
gc_ numberlow_ threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod_
max_ numberpids - The maximum number of processes per pod.
- topology_
manager_ stringpolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed
Unsafe List<String>Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container
Log IntegerMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container
Log IntegerMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu
Cfs BooleanQuota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- cpu
Cfs StringQuota Period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu
Manager StringPolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail
Swap BooleanOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image
Gc IntegerHigh Threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- image
Gc IntegerLow Threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod
Max IntegerPids - The maximum number of processes per pod.
- topology
Manager StringPolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed
Unsafe string[]Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container
Log numberMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container
Log numberMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu
Cfs booleanQuota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- cpu
Cfs stringQuota Period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu
Manager stringPolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail
Swap booleanOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image
Gc numberHigh Threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- image
Gc numberLow Threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod
Max numberPids - The maximum number of processes per pod.
- topology
Manager stringPolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed_
unsafe_ Sequence[str]sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container_
log_ intmax_ files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container_
log_ intmax_ size_ mb - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu_
cfs_ boolquota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- cpu_
cfs_ strquota_ period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu_
manager_ strpolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail_
swap_ boolon - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image_
gc_ inthigh_ threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- image_
gc_ intlow_ threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod_
max_ intpids - The maximum number of processes per pod.
- topology_
manager_ strpolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed
Unsafe List<String>Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container
Log NumberMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container
Log NumberMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu
Cfs BooleanQuota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- cpu
Cfs StringQuota Period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu
Manager StringPolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail
Swap BooleanOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image
Gc NumberHigh Threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- image
Gc NumberLow Threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod
Max NumberPids - The maximum number of processes per pod.
- topology
Manager StringPolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
KubeletConfigResponse, KubeletConfigResponseArgs
Kubelet configurations of agent nodes. See AKS custom node configuration for more details.- Allowed
Unsafe List<string>Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - Container
Log intMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- Container
Log intMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- Cpu
Cfs boolQuota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- Cpu
Cfs stringQuota Period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- Cpu
Manager stringPolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- Fail
Swap boolOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- Image
Gc intHigh Threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- Image
Gc intLow Threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- Pod
Max intPids - The maximum number of processes per pod.
- Topology
Manager stringPolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- Allowed
Unsafe []stringSysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - Container
Log intMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- Container
Log intMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- Cpu
Cfs boolQuota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- Cpu
Cfs stringQuota Period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- Cpu
Manager stringPolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- Fail
Swap boolOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- Image
Gc intHigh Threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- Image
Gc intLow Threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- Pod
Max intPids - The maximum number of processes per pod.
- Topology
Manager stringPolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed_
unsafe_ list(string)sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container_
log_ numbermax_ files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container_
log_ numbermax_ size_ mb - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu_
cfs_ boolquota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- cpu_
cfs_ stringquota_ period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu_
manager_ stringpolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail_
swap_ boolon - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image_
gc_ numberhigh_ threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- image_
gc_ numberlow_ threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod_
max_ numberpids - The maximum number of processes per pod.
- topology_
manager_ stringpolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed
Unsafe List<String>Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container
Log IntegerMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container
Log IntegerMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu
Cfs BooleanQuota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- cpu
Cfs StringQuota Period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu
Manager StringPolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail
Swap BooleanOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image
Gc IntegerHigh Threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- image
Gc IntegerLow Threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod
Max IntegerPids - The maximum number of processes per pod.
- topology
Manager StringPolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed
Unsafe string[]Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container
Log numberMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container
Log numberMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu
Cfs booleanQuota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- cpu
Cfs stringQuota Period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu
Manager stringPolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail
Swap booleanOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image
Gc numberHigh Threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- image
Gc numberLow Threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod
Max numberPids - The maximum number of processes per pod.
- topology
Manager stringPolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed_
unsafe_ Sequence[str]sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container_
log_ intmax_ files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container_
log_ intmax_ size_ mb - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu_
cfs_ boolquota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- cpu_
cfs_ strquota_ period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu_
manager_ strpolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail_
swap_ boolon - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image_
gc_ inthigh_ threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- image_
gc_ intlow_ threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod_
max_ intpids - The maximum number of processes per pod.
- topology_
manager_ strpolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
- allowed
Unsafe List<String>Sysctls - Allowed list of unsafe sysctls or unsafe sysctl patterns (ending in
*). - container
Log NumberMax Files - The maximum number of container log files that can be present for a container. The number must be ≥ 2.
- container
Log NumberMax Size MB - The maximum size (e.g. 10Mi) of container log file before it is rotated.
- cpu
Cfs BooleanQuota - If CPU CFS quota enforcement is enabled for containers that specify CPU limits. The default is true.
- cpu
Cfs StringQuota Period - The CPU CFS quota period value. The default is '100ms.' Valid values are a sequence of decimal numbers with an optional fraction and a unit suffix. For example: '300ms', '2h45m'. Supported units are 'ns', 'us', 'ms', 's', 'm', and 'h'.
- cpu
Manager StringPolicy - The CPU Manager policy to use. The default is 'none'. See Kubernetes CPU management policies for more information. Allowed values are 'none' and 'static'.
- fail
Swap BooleanOn - If set to true it will make the Kubelet fail to start if swap is enabled on the node.
- image
Gc NumberHigh Threshold - The percent of disk usage after which image garbage collection is always run. To disable image garbage collection, set to 100. The default is 85%
- image
Gc NumberLow Threshold - The percent of disk usage before which image garbage collection is never run. This cannot be set higher than imageGcHighThreshold. The default is 80%
- pod
Max NumberPids - The maximum number of processes per pod.
- topology
Manager StringPolicy - The Topology Manager policy to use. For more information see Kubernetes Topology Manager. The default is 'none'. Allowed values are 'none', 'best-effort', 'restricted', and 'single-numa-node'.
KubeletDiskType, KubeletDiskTypeArgs
- OS
OSKubelet will use the OS disk for its data.- Temporary
TemporaryKubelet will use the temporary disk for its data.
- Kubelet
Disk Type OS OSKubelet will use the OS disk for its data.- Kubelet
Disk Type Temporary TemporaryKubelet will use the temporary disk for its data.
- "OS"
OSKubelet will use the OS disk for its data.- "Temporary"
TemporaryKubelet will use the temporary disk for its data.
- OS
OSKubelet will use the OS disk for its data.- Temporary
TemporaryKubelet will use the temporary disk for its data.
- OS
OSKubelet will use the OS disk for its data.- Temporary
TemporaryKubelet will use the temporary disk for its data.
- OS
OSKubelet will use the OS disk for its data.- TEMPORARY
TemporaryKubelet will use the temporary disk for its data.
- "OS"
OSKubelet will use the OS disk for its data.- "Temporary"
TemporaryKubelet will use the temporary disk for its data.
KubernetesSupportPlan, KubernetesSupportPlanArgs
- Kubernetes
Official KubernetesOfficialSupport for the version is the same as for the open source Kubernetes offering. Official Kubernetes open source community support versions for 1 year after release.- AKSLong
Term Support AKSLongTermSupportSupport for the version extended past the KubernetesOfficial support of 1 year. AKS continues to patch CVEs for another 1 year, for a total of 2 years of support.
- Kubernetes
Support Plan Kubernetes Official KubernetesOfficialSupport for the version is the same as for the open source Kubernetes offering. Official Kubernetes open source community support versions for 1 year after release.- Kubernetes
Support Plan AKSLong Term Support AKSLongTermSupportSupport for the version extended past the KubernetesOfficial support of 1 year. AKS continues to patch CVEs for another 1 year, for a total of 2 years of support.
- "Kubernetes
Official" KubernetesOfficialSupport for the version is the same as for the open source Kubernetes offering. Official Kubernetes open source community support versions for 1 year after release.- "AKSLong
Term Support" AKSLongTermSupportSupport for the version extended past the KubernetesOfficial support of 1 year. AKS continues to patch CVEs for another 1 year, for a total of 2 years of support.
- Kubernetes
Official KubernetesOfficialSupport for the version is the same as for the open source Kubernetes offering. Official Kubernetes open source community support versions for 1 year after release.- AKSLong
Term Support AKSLongTermSupportSupport for the version extended past the KubernetesOfficial support of 1 year. AKS continues to patch CVEs for another 1 year, for a total of 2 years of support.
- Kubernetes
Official KubernetesOfficialSupport for the version is the same as for the open source Kubernetes offering. Official Kubernetes open source community support versions for 1 year after release.- AKSLong
Term Support AKSLongTermSupportSupport for the version extended past the KubernetesOfficial support of 1 year. AKS continues to patch CVEs for another 1 year, for a total of 2 years of support.
- KUBERNETES_OFFICIAL
KubernetesOfficialSupport for the version is the same as for the open source Kubernetes offering. Official Kubernetes open source community support versions for 1 year after release.- AKS_LONG_TERM_SUPPORT
AKSLongTermSupportSupport for the version extended past the KubernetesOfficial support of 1 year. AKS continues to patch CVEs for another 1 year, for a total of 2 years of support.
- "Kubernetes
Official" KubernetesOfficialSupport for the version is the same as for the open source Kubernetes offering. Official Kubernetes open source community support versions for 1 year after release.- "AKSLong
Term Support" AKSLongTermSupportSupport for the version extended past the KubernetesOfficial support of 1 year. AKS continues to patch CVEs for another 1 year, for a total of 2 years of support.
LicenseType, LicenseTypeArgs
- None
NoneNo additional licensing is applied.- Windows_Server
Windows_ServerEnables Azure Hybrid User Benefits for Windows VMs.
- License
Type None NoneNo additional licensing is applied.- License
Type_Windows_Server Windows_ServerEnables Azure Hybrid User Benefits for Windows VMs.
- "None"
NoneNo additional licensing is applied.- "Windows_Server"
Windows_ServerEnables Azure Hybrid User Benefits for Windows VMs.
- None
NoneNo additional licensing is applied.- Windows_Server
Windows_ServerEnables Azure Hybrid User Benefits for Windows VMs.
- None
NoneNo additional licensing is applied.- Windows_Server
Windows_ServerEnables Azure Hybrid User Benefits for Windows VMs.
- NONE
NoneNo additional licensing is applied.- WINDOWS_SERVER
Windows_ServerEnables Azure Hybrid User Benefits for Windows VMs.
- "None"
NoneNo additional licensing is applied.- "Windows_Server"
Windows_ServerEnables Azure Hybrid User Benefits for Windows VMs.
LinuxOSConfig, LinuxOSConfigArgs
OS configurations of Linux agent nodes. See AKS custom node configuration for more details.- Swap
File intSize MB - The size in MB of a swap file that will be created on each node.
- Sysctls
Pulumi.
Azure Native. Container Service. Inputs. Sysctl Config - Sysctl settings for Linux agent nodes.
- Transparent
Huge stringPage Defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- Transparent
Huge stringPage Enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- Swap
File intSize MB - The size in MB of a swap file that will be created on each node.
- Sysctls
Sysctl
Config - Sysctl settings for Linux agent nodes.
- Transparent
Huge stringPage Defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- Transparent
Huge stringPage Enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap_
file_ numbersize_ mb - The size in MB of a swap file that will be created on each node.
- sysctls object
- Sysctl settings for Linux agent nodes.
- transparent_
huge_ stringpage_ defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent_
huge_ stringpage_ enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap
File IntegerSize MB - The size in MB of a swap file that will be created on each node.
- sysctls
Sysctl
Config - Sysctl settings for Linux agent nodes.
- transparent
Huge StringPage Defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent
Huge StringPage Enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap
File numberSize MB - The size in MB of a swap file that will be created on each node.
- sysctls
Sysctl
Config - Sysctl settings for Linux agent nodes.
- transparent
Huge stringPage Defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent
Huge stringPage Enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap_
file_ intsize_ mb - The size in MB of a swap file that will be created on each node.
- sysctls
Sysctl
Config - Sysctl settings for Linux agent nodes.
- transparent_
huge_ strpage_ defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent_
huge_ strpage_ enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap
File NumberSize MB - The size in MB of a swap file that will be created on each node.
- sysctls Property Map
- Sysctl settings for Linux agent nodes.
- transparent
Huge StringPage Defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent
Huge StringPage Enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
LinuxOSConfigResponse, LinuxOSConfigResponseArgs
OS configurations of Linux agent nodes. See AKS custom node configuration for more details.- Swap
File intSize MB - The size in MB of a swap file that will be created on each node.
- Sysctls
Pulumi.
Azure Native. Container Service. Inputs. Sysctl Config Response - Sysctl settings for Linux agent nodes.
- Transparent
Huge stringPage Defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- Transparent
Huge stringPage Enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- Swap
File intSize MB - The size in MB of a swap file that will be created on each node.
- Sysctls
Sysctl
Config Response - Sysctl settings for Linux agent nodes.
- Transparent
Huge stringPage Defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- Transparent
Huge stringPage Enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap_
file_ numbersize_ mb - The size in MB of a swap file that will be created on each node.
- sysctls object
- Sysctl settings for Linux agent nodes.
- transparent_
huge_ stringpage_ defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent_
huge_ stringpage_ enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap
File IntegerSize MB - The size in MB of a swap file that will be created on each node.
- sysctls
Sysctl
Config Response - Sysctl settings for Linux agent nodes.
- transparent
Huge StringPage Defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent
Huge StringPage Enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap
File numberSize MB - The size in MB of a swap file that will be created on each node.
- sysctls
Sysctl
Config Response - Sysctl settings for Linux agent nodes.
- transparent
Huge stringPage Defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent
Huge stringPage Enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap_
file_ intsize_ mb - The size in MB of a swap file that will be created on each node.
- sysctls
Sysctl
Config Response - Sysctl settings for Linux agent nodes.
- transparent_
huge_ strpage_ defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent_
huge_ strpage_ enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
- swap
File NumberSize MB - The size in MB of a swap file that will be created on each node.
- sysctls Property Map
- Sysctl settings for Linux agent nodes.
- transparent
Huge StringPage Defrag - Whether the kernel should make aggressive use of memory compaction to make more hugepages available. Valid values are 'always', 'defer', 'defer+madvise', 'madvise' and 'never'. The default is 'madvise'. For more information see Transparent Hugepages.
- transparent
Huge StringPage Enabled - Whether transparent hugepages are enabled. Valid values are 'always', 'madvise', and 'never'. The default is 'always'. For more information see Transparent Hugepages.
LoadBalancerSku, LoadBalancerSkuArgs
- Standard
standardUse a a standard Load Balancer. This is the recommended Load Balancer SKU. For more information about on working with the load balancer in the managed cluster, see the standard Load Balancer article.- Basic
basicUse a basic Load Balancer with limited functionality.
- Load
Balancer Sku Standard standardUse a a standard Load Balancer. This is the recommended Load Balancer SKU. For more information about on working with the load balancer in the managed cluster, see the standard Load Balancer article.- Load
Balancer Sku Basic basicUse a basic Load Balancer with limited functionality.
- "standard"
standardUse a a standard Load Balancer. This is the recommended Load Balancer SKU. For more information about on working with the load balancer in the managed cluster, see the standard Load Balancer article.- "basic"
basicUse a basic Load Balancer with limited functionality.
- Standard
standardUse a a standard Load Balancer. This is the recommended Load Balancer SKU. For more information about on working with the load balancer in the managed cluster, see the standard Load Balancer article.- Basic
basicUse a basic Load Balancer with limited functionality.
- Standard
standardUse a a standard Load Balancer. This is the recommended Load Balancer SKU. For more information about on working with the load balancer in the managed cluster, see the standard Load Balancer article.- Basic
basicUse a basic Load Balancer with limited functionality.
- STANDARD
standardUse a a standard Load Balancer. This is the recommended Load Balancer SKU. For more information about on working with the load balancer in the managed cluster, see the standard Load Balancer article.- BASIC
basicUse a basic Load Balancer with limited functionality.
- "standard"
standardUse a a standard Load Balancer. This is the recommended Load Balancer SKU. For more information about on working with the load balancer in the managed cluster, see the standard Load Balancer article.- "basic"
basicUse a basic Load Balancer with limited functionality.
LocalDNSForwardDestination, LocalDNSForwardDestinationArgs
- Cluster
Core DNS ClusterCoreDNSForward DNS queries from localDNS to cluster CoreDNS.- Vnet
DNS VnetDNSForward DNS queries from localDNS to DNS server configured in the VNET. A VNET can have multiple DNS servers configured.
- Local
DNSForward Destination Cluster Core DNS ClusterCoreDNSForward DNS queries from localDNS to cluster CoreDNS.- Local
DNSForward Destination Vnet DNS VnetDNSForward DNS queries from localDNS to DNS server configured in the VNET. A VNET can have multiple DNS servers configured.
- "Cluster
Core DNS" ClusterCoreDNSForward DNS queries from localDNS to cluster CoreDNS.- "Vnet
DNS" VnetDNSForward DNS queries from localDNS to DNS server configured in the VNET. A VNET can have multiple DNS servers configured.
- Cluster
Core DNS ClusterCoreDNSForward DNS queries from localDNS to cluster CoreDNS.- Vnet
DNS VnetDNSForward DNS queries from localDNS to DNS server configured in the VNET. A VNET can have multiple DNS servers configured.
- Cluster
Core DNS ClusterCoreDNSForward DNS queries from localDNS to cluster CoreDNS.- Vnet
DNS VnetDNSForward DNS queries from localDNS to DNS server configured in the VNET. A VNET can have multiple DNS servers configured.
- CLUSTER_CORE_DNS
ClusterCoreDNSForward DNS queries from localDNS to cluster CoreDNS.- VNET_DNS
VnetDNSForward DNS queries from localDNS to DNS server configured in the VNET. A VNET can have multiple DNS servers configured.
- "Cluster
Core DNS" ClusterCoreDNSForward DNS queries from localDNS to cluster CoreDNS.- "Vnet
DNS" VnetDNSForward DNS queries from localDNS to DNS server configured in the VNET. A VNET can have multiple DNS servers configured.
LocalDNSForwardPolicy, LocalDNSForwardPolicyArgs
- Sequential
SequentialImplements sequential upstream DNS server selection. See forward plugin for more information.- Round
Robin RoundRobinImplements round robin upstream DNS server selection. See forward plugin for more information.- Random
RandomImplements random upstream DNS server selection. See forward plugin for more information.
- Local
DNSForward Policy Sequential SequentialImplements sequential upstream DNS server selection. See forward plugin for more information.- Local
DNSForward Policy Round Robin RoundRobinImplements round robin upstream DNS server selection. See forward plugin for more information.- Local
DNSForward Policy Random RandomImplements random upstream DNS server selection. See forward plugin for more information.
- "Sequential"
SequentialImplements sequential upstream DNS server selection. See forward plugin for more information.- "Round
Robin" RoundRobinImplements round robin upstream DNS server selection. See forward plugin for more information.- "Random"
RandomImplements random upstream DNS server selection. See forward plugin for more information.
- Sequential
SequentialImplements sequential upstream DNS server selection. See forward plugin for more information.- Round
Robin RoundRobinImplements round robin upstream DNS server selection. See forward plugin for more information.- Random
RandomImplements random upstream DNS server selection. See forward plugin for more information.
- Sequential
SequentialImplements sequential upstream DNS server selection. See forward plugin for more information.- Round
Robin RoundRobinImplements round robin upstream DNS server selection. See forward plugin for more information.- Random
RandomImplements random upstream DNS server selection. See forward plugin for more information.
- SEQUENTIAL
SequentialImplements sequential upstream DNS server selection. See forward plugin for more information.- ROUND_ROBIN
RoundRobinImplements round robin upstream DNS server selection. See forward plugin for more information.- RANDOM
RandomImplements random upstream DNS server selection. See forward plugin for more information.
- "Sequential"
SequentialImplements sequential upstream DNS server selection. See forward plugin for more information.- "Round
Robin" RoundRobinImplements round robin upstream DNS server selection. See forward plugin for more information.- "Random"
RandomImplements random upstream DNS server selection. See forward plugin for more information.
LocalDNSMode, LocalDNSModeArgs
- Preferred
PreferredIf the current orchestrator version supports this feature, prefer enabling localDNS.- Required
RequiredEnable localDNS.- Disabled
DisabledDisable localDNS.
- Local
DNSMode Preferred PreferredIf the current orchestrator version supports this feature, prefer enabling localDNS.- Local
DNSMode Required RequiredEnable localDNS.- Local
DNSMode Disabled DisabledDisable localDNS.
- "Preferred"
PreferredIf the current orchestrator version supports this feature, prefer enabling localDNS.- "Required"
RequiredEnable localDNS.- "Disabled"
DisabledDisable localDNS.
- Preferred
PreferredIf the current orchestrator version supports this feature, prefer enabling localDNS.- Required
RequiredEnable localDNS.- Disabled
DisabledDisable localDNS.
- Preferred
PreferredIf the current orchestrator version supports this feature, prefer enabling localDNS.- Required
RequiredEnable localDNS.- Disabled
DisabledDisable localDNS.
- PREFERRED
PreferredIf the current orchestrator version supports this feature, prefer enabling localDNS.- REQUIRED
RequiredEnable localDNS.- DISABLED
DisabledDisable localDNS.
- "Preferred"
PreferredIf the current orchestrator version supports this feature, prefer enabling localDNS.- "Required"
RequiredEnable localDNS.- "Disabled"
DisabledDisable localDNS.
LocalDNSOverride, LocalDNSOverrideArgs
Overrides for localDNS profile.- Cache
Duration intIn Seconds - Cache max TTL in seconds. See cache plugin for more information.
- Forward
Destination string | Pulumi.Azure Native. Container Service. Local DNSForward Destination - Destination server for DNS queries to be forwarded from localDNS.
- Forward
Policy string | Pulumi.Azure Native. Container Service. Local DNSForward Policy - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- Max
Concurrent int - Maximum number of concurrent queries. See forward plugin for more information.
- Protocol
string | Pulumi.
Azure Native. Container Service. Local DNSProtocol - Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- Query
Logging string | Pulumi.Azure Native. Container Service. Local DNSQuery Logging - Log level for DNS queries in localDNS.
- Serve
Stale string | Pulumi.Azure Native. Container Service. Local DNSServe Stale - Policy for serving stale data. See cache plugin for more information.
- Serve
Stale intDuration In Seconds - Serve stale duration in seconds. See cache plugin for more information.
- Cache
Duration intIn Seconds - Cache max TTL in seconds. See cache plugin for more information.
- Forward
Destination string | LocalDNSForward Destination - Destination server for DNS queries to be forwarded from localDNS.
- Forward
Policy string | LocalDNSForward Policy - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- Max
Concurrent int - Maximum number of concurrent queries. See forward plugin for more information.
- Protocol
string | Local
DNSProtocol - Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- Query
Logging string | LocalDNSQuery Logging - Log level for DNS queries in localDNS.
- Serve
Stale string | LocalDNSServe Stale - Policy for serving stale data. See cache plugin for more information.
- Serve
Stale intDuration In Seconds - Serve stale duration in seconds. See cache plugin for more information.
- cache_
duration_ numberin_ seconds - Cache max TTL in seconds. See cache plugin for more information.
- forward_
destination string | "ClusterCore DNS" | "Vnet DNS" - Destination server for DNS queries to be forwarded from localDNS.
- forward_
policy string | "Sequential" | "RoundRobin" | "Random" - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- max_
concurrent number - Maximum number of concurrent queries. See forward plugin for more information.
- protocol
string | "Prefer
UDP" | "Force TCP" - Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- query_
logging string | "Error" | "Log" - Log level for DNS queries in localDNS.
- serve_
stale string | "Verify" | "Immediate" | "Disable" - Policy for serving stale data. See cache plugin for more information.
- serve_
stale_ numberduration_ in_ seconds - Serve stale duration in seconds. See cache plugin for more information.
- cache
Duration IntegerIn Seconds - Cache max TTL in seconds. See cache plugin for more information.
- forward
Destination String | LocalDNSForward Destination - Destination server for DNS queries to be forwarded from localDNS.
- forward
Policy String | LocalDNSForward Policy - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- max
Concurrent Integer - Maximum number of concurrent queries. See forward plugin for more information.
- protocol
String | Local
DNSProtocol - Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- query
Logging String | LocalDNSQuery Logging - Log level for DNS queries in localDNS.
- serve
Stale String | LocalDNSServe Stale - Policy for serving stale data. See cache plugin for more information.
- serve
Stale IntegerDuration In Seconds - Serve stale duration in seconds. See cache plugin for more information.
- cache
Duration numberIn Seconds - Cache max TTL in seconds. See cache plugin for more information.
- forward
Destination string | LocalDNSForward Destination - Destination server for DNS queries to be forwarded from localDNS.
- forward
Policy string | LocalDNSForward Policy - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- max
Concurrent number - Maximum number of concurrent queries. See forward plugin for more information.
- protocol
string | Local
DNSProtocol - Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- query
Logging string | LocalDNSQuery Logging - Log level for DNS queries in localDNS.
- serve
Stale string | LocalDNSServe Stale - Policy for serving stale data. See cache plugin for more information.
- serve
Stale numberDuration In Seconds - Serve stale duration in seconds. See cache plugin for more information.
- cache_
duration_ intin_ seconds - Cache max TTL in seconds. See cache plugin for more information.
- forward_
destination str | LocalDNSForward Destination - Destination server for DNS queries to be forwarded from localDNS.
- forward_
policy str | LocalDNSForward Policy - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- max_
concurrent int - Maximum number of concurrent queries. See forward plugin for more information.
- protocol
str | Local
DNSProtocol - Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- query_
logging str | LocalDNSQuery Logging - Log level for DNS queries in localDNS.
- serve_
stale str | LocalDNSServe Stale - Policy for serving stale data. See cache plugin for more information.
- serve_
stale_ intduration_ in_ seconds - Serve stale duration in seconds. See cache plugin for more information.
- cache
Duration NumberIn Seconds - Cache max TTL in seconds. See cache plugin for more information.
- forward
Destination String | "ClusterCore DNS" | "Vnet DNS" - Destination server for DNS queries to be forwarded from localDNS.
- forward
Policy String | "Sequential" | "RoundRobin" | "Random" - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- max
Concurrent Number - Maximum number of concurrent queries. See forward plugin for more information.
- protocol
String | "Prefer
UDP" | "Force TCP" - Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- query
Logging String | "Error" | "Log" - Log level for DNS queries in localDNS.
- serve
Stale String | "Verify" | "Immediate" | "Disable" - Policy for serving stale data. See cache plugin for more information.
- serve
Stale NumberDuration In Seconds - Serve stale duration in seconds. See cache plugin for more information.
LocalDNSOverrideResponse, LocalDNSOverrideResponseArgs
Overrides for localDNS profile.- Cache
Duration intIn Seconds - Cache max TTL in seconds. See cache plugin for more information.
- Forward
Destination string - Destination server for DNS queries to be forwarded from localDNS.
- Forward
Policy string - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- Max
Concurrent int - Maximum number of concurrent queries. See forward plugin for more information.
- Protocol string
- Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- Query
Logging string - Log level for DNS queries in localDNS.
- Serve
Stale string - Policy for serving stale data. See cache plugin for more information.
- Serve
Stale intDuration In Seconds - Serve stale duration in seconds. See cache plugin for more information.
- Cache
Duration intIn Seconds - Cache max TTL in seconds. See cache plugin for more information.
- Forward
Destination string - Destination server for DNS queries to be forwarded from localDNS.
- Forward
Policy string - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- Max
Concurrent int - Maximum number of concurrent queries. See forward plugin for more information.
- Protocol string
- Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- Query
Logging string - Log level for DNS queries in localDNS.
- Serve
Stale string - Policy for serving stale data. See cache plugin for more information.
- Serve
Stale intDuration In Seconds - Serve stale duration in seconds. See cache plugin for more information.
- cache_
duration_ numberin_ seconds - Cache max TTL in seconds. See cache plugin for more information.
- forward_
destination string - Destination server for DNS queries to be forwarded from localDNS.
- forward_
policy string - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- max_
concurrent number - Maximum number of concurrent queries. See forward plugin for more information.
- protocol string
- Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- query_
logging string - Log level for DNS queries in localDNS.
- serve_
stale string - Policy for serving stale data. See cache plugin for more information.
- serve_
stale_ numberduration_ in_ seconds - Serve stale duration in seconds. See cache plugin for more information.
- cache
Duration IntegerIn Seconds - Cache max TTL in seconds. See cache plugin for more information.
- forward
Destination String - Destination server for DNS queries to be forwarded from localDNS.
- forward
Policy String - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- max
Concurrent Integer - Maximum number of concurrent queries. See forward plugin for more information.
- protocol String
- Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- query
Logging String - Log level for DNS queries in localDNS.
- serve
Stale String - Policy for serving stale data. See cache plugin for more information.
- serve
Stale IntegerDuration In Seconds - Serve stale duration in seconds. See cache plugin for more information.
- cache
Duration numberIn Seconds - Cache max TTL in seconds. See cache plugin for more information.
- forward
Destination string - Destination server for DNS queries to be forwarded from localDNS.
- forward
Policy string - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- max
Concurrent number - Maximum number of concurrent queries. See forward plugin for more information.
- protocol string
- Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- query
Logging string - Log level for DNS queries in localDNS.
- serve
Stale string - Policy for serving stale data. See cache plugin for more information.
- serve
Stale numberDuration In Seconds - Serve stale duration in seconds. See cache plugin for more information.
- cache_
duration_ intin_ seconds - Cache max TTL in seconds. See cache plugin for more information.
- forward_
destination str - Destination server for DNS queries to be forwarded from localDNS.
- forward_
policy str - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- max_
concurrent int - Maximum number of concurrent queries. See forward plugin for more information.
- protocol str
- Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- query_
logging str - Log level for DNS queries in localDNS.
- serve_
stale str - Policy for serving stale data. See cache plugin for more information.
- serve_
stale_ intduration_ in_ seconds - Serve stale duration in seconds. See cache plugin for more information.
- cache
Duration NumberIn Seconds - Cache max TTL in seconds. See cache plugin for more information.
- forward
Destination String - Destination server for DNS queries to be forwarded from localDNS.
- forward
Policy String - Forward policy for selecting upstream DNS server. See forward plugin for more information.
- max
Concurrent Number - Maximum number of concurrent queries. See forward plugin for more information.
- protocol String
- Enforce TCP or prefer UDP protocol for connections from localDNS to upstream DNS server.
- query
Logging String - Log level for DNS queries in localDNS.
- serve
Stale String - Policy for serving stale data. See cache plugin for more information.
- serve
Stale NumberDuration In Seconds - Serve stale duration in seconds. See cache plugin for more information.
LocalDNSProfile, LocalDNSProfileArgs
Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.- Kube
DNSOverrides Dictionary<string, Pulumi.Azure Native. Container Service. Inputs. Local DNSOverride> - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- Mode
string | Pulumi.
Azure Native. Container Service. Local DNSMode - Mode of enablement for localDNS.
- Vnet
DNSOverrides Dictionary<string, Pulumi.Azure Native. Container Service. Inputs. Local DNSOverride> - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
- Kube
DNSOverrides map[string]LocalDNSOverride - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- Mode
string | Local
DNSMode - Mode of enablement for localDNS.
- Vnet
DNSOverrides map[string]LocalDNSOverride - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
- kube_
dns_ map(object)overrides - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- mode string | "Preferred" | "Required" | "Disabled"
- Mode of enablement for localDNS.
- vnet_
dns_ map(object)overrides - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
- kube
DNSOverrides Map<String,LocalDNSOverride> - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- mode
String | Local
DNSMode - Mode of enablement for localDNS.
- vnet
DNSOverrides Map<String,LocalDNSOverride> - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
- kube
DNSOverrides {[key: string]: LocalDNSOverride} - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- mode
string | Local
DNSMode - Mode of enablement for localDNS.
- vnet
DNSOverrides {[key: string]: LocalDNSOverride} - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
- kube_
dns_ Mapping[str, Localoverrides DNSOverride] - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- mode
str | Local
DNSMode - Mode of enablement for localDNS.
- vnet_
dns_ Mapping[str, Localoverrides DNSOverride] - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
- kube
DNSOverrides Map<Property Map> - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- mode String | "Preferred" | "Required" | "Disabled"
- Mode of enablement for localDNS.
- vnet
DNSOverrides Map<Property Map> - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
LocalDNSProfileResponse, LocalDNSProfileResponseArgs
Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.- State string
- System-generated state of localDNS.
- Kube
DNSOverrides Dictionary<string, Pulumi.Azure Native. Container Service. Inputs. Local DNSOverride Response> - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- Mode string
- Mode of enablement for localDNS.
- Vnet
DNSOverrides Dictionary<string, Pulumi.Azure Native. Container Service. Inputs. Local DNSOverride Response> - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
- State string
- System-generated state of localDNS.
- Kube
DNSOverrides map[string]LocalDNSOverride Response - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- Mode string
- Mode of enablement for localDNS.
- Vnet
DNSOverrides map[string]LocalDNSOverride Response - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
- state string
- System-generated state of localDNS.
- kube_
dns_ map(object)overrides - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- mode string
- Mode of enablement for localDNS.
- vnet_
dns_ map(object)overrides - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
- state String
- System-generated state of localDNS.
- kube
DNSOverrides Map<String,LocalDNSOverride Response> - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- mode String
- Mode of enablement for localDNS.
- vnet
DNSOverrides Map<String,LocalDNSOverride Response> - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
- state string
- System-generated state of localDNS.
- kube
DNSOverrides {[key: string]: LocalDNSOverride Response} - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- mode string
- Mode of enablement for localDNS.
- vnet
DNSOverrides {[key: string]: LocalDNSOverride Response} - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
- state str
- System-generated state of localDNS.
- kube_
dns_ Mapping[str, Localoverrides DNSOverride Response] - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- mode str
- Mode of enablement for localDNS.
- vnet_
dns_ Mapping[str, Localoverrides DNSOverride Response] - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
- state String
- System-generated state of localDNS.
- kube
DNSOverrides Map<Property Map> - KubeDNS overrides apply to DNS traffic from pods with dnsPolicy:ClusterFirst (referred to as KubeDNS traffic).
- mode String
- Mode of enablement for localDNS.
- vnet
DNSOverrides Map<Property Map> - VnetDNS overrides apply to DNS traffic from pods with dnsPolicy:default or kubelet (referred to as VnetDNS traffic).
LocalDNSProtocol, LocalDNSProtocolArgs
- Prefer
UDP PreferUDPPrefer UDP protocol for connections from localDNS to upstream DNS server.- Force
TCP ForceTCPEnforce TCP protocol for connections from localDNS to upstream DNS server.
- Local
DNSProtocol Prefer UDP PreferUDPPrefer UDP protocol for connections from localDNS to upstream DNS server.- Local
DNSProtocol Force TCP ForceTCPEnforce TCP protocol for connections from localDNS to upstream DNS server.
- "Prefer
UDP" PreferUDPPrefer UDP protocol for connections from localDNS to upstream DNS server.- "Force
TCP" ForceTCPEnforce TCP protocol for connections from localDNS to upstream DNS server.
- Prefer
UDP PreferUDPPrefer UDP protocol for connections from localDNS to upstream DNS server.- Force
TCP ForceTCPEnforce TCP protocol for connections from localDNS to upstream DNS server.
- Prefer
UDP PreferUDPPrefer UDP protocol for connections from localDNS to upstream DNS server.- Force
TCP ForceTCPEnforce TCP protocol for connections from localDNS to upstream DNS server.
- PREFER_UDP
PreferUDPPrefer UDP protocol for connections from localDNS to upstream DNS server.- FORCE_TCP
ForceTCPEnforce TCP protocol for connections from localDNS to upstream DNS server.
- "Prefer
UDP" PreferUDPPrefer UDP protocol for connections from localDNS to upstream DNS server.- "Force
TCP" ForceTCPEnforce TCP protocol for connections from localDNS to upstream DNS server.
LocalDNSQueryLogging, LocalDNSQueryLoggingArgs
- Error
ErrorEnables error logging in localDNS. See errors plugin for more information.- Log
LogEnables query logging in localDNS. See log plugin for more information.
- Local
DNSQuery Logging Error ErrorEnables error logging in localDNS. See errors plugin for more information.- Local
DNSQuery Logging Log LogEnables query logging in localDNS. See log plugin for more information.
- "Error"
ErrorEnables error logging in localDNS. See errors plugin for more information.- "Log"
LogEnables query logging in localDNS. See log plugin for more information.
- Error
ErrorEnables error logging in localDNS. See errors plugin for more information.- Log
LogEnables query logging in localDNS. See log plugin for more information.
- Error
ErrorEnables error logging in localDNS. See errors plugin for more information.- Log
LogEnables query logging in localDNS. See log plugin for more information.
- ERROR
ErrorEnables error logging in localDNS. See errors plugin for more information.- LOG
LogEnables query logging in localDNS. See log plugin for more information.
- "Error"
ErrorEnables error logging in localDNS. See errors plugin for more information.- "Log"
LogEnables query logging in localDNS. See log plugin for more information.
LocalDNSServeStale, LocalDNSServeStaleArgs
- Verify
VerifyServe stale data with verification. First verify that an entry is still unavailable from the source before sending the expired entry to the client. See cache plugin for more information.- Immediate
ImmediateServe stale data immediately. Send the expired entry to the client before checking to see if the entry is available from the source. See cache plugin for more information.- Disable
DisableDisable serving stale data.
- Local
DNSServe Stale Verify VerifyServe stale data with verification. First verify that an entry is still unavailable from the source before sending the expired entry to the client. See cache plugin for more information.- Local
DNSServe Stale Immediate ImmediateServe stale data immediately. Send the expired entry to the client before checking to see if the entry is available from the source. See cache plugin for more information.- Local
DNSServe Stale Disable DisableDisable serving stale data.
- "Verify"
VerifyServe stale data with verification. First verify that an entry is still unavailable from the source before sending the expired entry to the client. See cache plugin for more information.- "Immediate"
ImmediateServe stale data immediately. Send the expired entry to the client before checking to see if the entry is available from the source. See cache plugin for more information.- "Disable"
DisableDisable serving stale data.
- Verify
VerifyServe stale data with verification. First verify that an entry is still unavailable from the source before sending the expired entry to the client. See cache plugin for more information.- Immediate
ImmediateServe stale data immediately. Send the expired entry to the client before checking to see if the entry is available from the source. See cache plugin for more information.- Disable
DisableDisable serving stale data.
- Verify
VerifyServe stale data with verification. First verify that an entry is still unavailable from the source before sending the expired entry to the client. See cache plugin for more information.- Immediate
ImmediateServe stale data immediately. Send the expired entry to the client before checking to see if the entry is available from the source. See cache plugin for more information.- Disable
DisableDisable serving stale data.
- VERIFY
VerifyServe stale data with verification. First verify that an entry is still unavailable from the source before sending the expired entry to the client. See cache plugin for more information.- IMMEDIATE
ImmediateServe stale data immediately. Send the expired entry to the client before checking to see if the entry is available from the source. See cache plugin for more information.- DISABLE
DisableDisable serving stale data.
- "Verify"
VerifyServe stale data with verification. First verify that an entry is still unavailable from the source before sending the expired entry to the client. See cache plugin for more information.- "Immediate"
ImmediateServe stale data immediately. Send the expired entry to the client before checking to see if the entry is available from the source. See cache plugin for more information.- "Disable"
DisableDisable serving stale data.
ManagedClusterAADProfile, ManagedClusterAADProfileArgs
AADProfile specifies attributes for Azure Active Directory integration. For more details see managed AAD on AKS.- Admin
Group List<string>Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- Client
App stringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Enable
Azure boolRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- Managed bool
- Whether to enable managed AAD.
- Server
App stringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Server
App stringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- Tenant
ID string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- Admin
Group []stringObject IDs - The list of AAD group object IDs that will have admin role of the cluster.
- Client
App stringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Enable
Azure boolRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- Managed bool
- Whether to enable managed AAD.
- Server
App stringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Server
App stringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- Tenant
ID string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin_
group_ list(string)object_ i_ ds - The list of AAD group object IDs that will have admin role of the cluster.
- client_
app_ stringid - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable_
azure_ boolrbac - Whether to enable Azure RBAC for Kubernetes authorization.
- managed bool
- Whether to enable managed AAD.
- server_
app_ stringid - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server_
app_ stringsecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant_
id string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin
Group List<String>Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- client
App StringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable
Azure BooleanRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- managed Boolean
- Whether to enable managed AAD.
- server
App StringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server
App StringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant
ID String - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin
Group string[]Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- client
App stringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable
Azure booleanRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- managed boolean
- Whether to enable managed AAD.
- server
App stringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server
App stringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant
ID string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin_
group_ Sequence[str]object_ ids - The list of AAD group object IDs that will have admin role of the cluster.
- client_
app_ strid - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable_
azure_ boolrbac - Whether to enable Azure RBAC for Kubernetes authorization.
- managed bool
- Whether to enable managed AAD.
- server_
app_ strid - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server_
app_ strsecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant_
id str - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin
Group List<String>Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- client
App StringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable
Azure BooleanRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- managed Boolean
- Whether to enable managed AAD.
- server
App StringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server
App StringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant
ID String - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
ManagedClusterAADProfileResponse, ManagedClusterAADProfileResponseArgs
AADProfile specifies attributes for Azure Active Directory integration. For more details see managed AAD on AKS.- Admin
Group List<string>Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- Client
App stringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Enable
Azure boolRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- Managed bool
- Whether to enable managed AAD.
- Server
App stringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Server
App stringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- Tenant
ID string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- Admin
Group []stringObject IDs - The list of AAD group object IDs that will have admin role of the cluster.
- Client
App stringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Enable
Azure boolRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- Managed bool
- Whether to enable managed AAD.
- Server
App stringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- Server
App stringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- Tenant
ID string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin_
group_ list(string)object_ i_ ds - The list of AAD group object IDs that will have admin role of the cluster.
- client_
app_ stringid - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable_
azure_ boolrbac - Whether to enable Azure RBAC for Kubernetes authorization.
- managed bool
- Whether to enable managed AAD.
- server_
app_ stringid - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server_
app_ stringsecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant_
id string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin
Group List<String>Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- client
App StringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable
Azure BooleanRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- managed Boolean
- Whether to enable managed AAD.
- server
App StringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server
App StringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant
ID String - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin
Group string[]Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- client
App stringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable
Azure booleanRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- managed boolean
- Whether to enable managed AAD.
- server
App stringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server
App stringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant
ID string - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin_
group_ Sequence[str]object_ ids - The list of AAD group object IDs that will have admin role of the cluster.
- client_
app_ strid - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable_
azure_ boolrbac - Whether to enable Azure RBAC for Kubernetes authorization.
- managed bool
- Whether to enable managed AAD.
- server_
app_ strid - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server_
app_ strsecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant_
id str - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
- admin
Group List<String>Object IDs - The list of AAD group object IDs that will have admin role of the cluster.
- client
App StringID - (DEPRECATED) The client AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- enable
Azure BooleanRBAC - Whether to enable Azure RBAC for Kubernetes authorization.
- managed Boolean
- Whether to enable managed AAD.
- server
App StringID - (DEPRECATED) The server AAD application ID. Learn more at https://aka.ms/aks/aad-legacy.
- server
App StringSecret - (DEPRECATED) The server AAD application secret. Learn more at https://aka.ms/aks/aad-legacy.
- tenant
ID String - The AAD tenant ID to use for authentication. If not specified, will use the tenant of the deployment subscription.
ManagedClusterAIToolchainOperatorProfile, ManagedClusterAIToolchainOperatorProfileArgs
When enabling the operator, a set of AKS managed CRDs and controllers will be installed in the cluster. The operator automates the deployment of OSS models for inference and/or training purposes. It provides a set of preset models and enables distributed inference against them.- Enabled bool
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
- Enabled bool
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
- enabled bool
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
- enabled Boolean
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
- enabled boolean
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
- enabled bool
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
- enabled Boolean
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
ManagedClusterAIToolchainOperatorProfileResponse, ManagedClusterAIToolchainOperatorProfileResponseArgs
When enabling the operator, a set of AKS managed CRDs and controllers will be installed in the cluster. The operator automates the deployment of OSS models for inference and/or training purposes. It provides a set of preset models and enables distributed inference against them.- Enabled bool
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
- Enabled bool
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
- enabled bool
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
- enabled Boolean
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
- enabled boolean
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
- enabled bool
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
- enabled Boolean
- Whether to enable AI toolchain operator to the cluster. Indicates if AI toolchain operator enabled or not.
ManagedClusterAPIServerAccessProfile, ManagedClusterAPIServerAccessProfileArgs
Access profile for managed cluster API server.- List<string>
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- Disable
Run boolCommand - Whether to disable run command for the cluster or not.
- Enable
Private boolCluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- Enable
Private boolCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- Enable
Vnet boolIntegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- Private
DNSZone string - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- Subnet
Id string - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
- []string
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- Disable
Run boolCommand - Whether to disable run command for the cluster or not.
- Enable
Private boolCluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- Enable
Private boolCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- Enable
Vnet boolIntegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- Private
DNSZone string - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- Subnet
Id string - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
- list(string)
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable_
run_ boolcommand - Whether to disable run command for the cluster or not.
- enable_
private_ boolcluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- enable_
private_ boolcluster_ public_ fqdn - Whether to create additional public FQDN for private cluster or not.
- enable_
vnet_ boolintegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- private_
dns_ stringzone - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- subnet_
id string - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
- List<String>
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable
Run BooleanCommand - Whether to disable run command for the cluster or not.
- enable
Private BooleanCluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- enable
Private BooleanCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- enable
Vnet BooleanIntegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- private
DNSZone String - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- subnet
Id String - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
- string[]
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable
Run booleanCommand - Whether to disable run command for the cluster or not.
- enable
Private booleanCluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- enable
Private booleanCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- enable
Vnet booleanIntegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- private
DNSZone string - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- subnet
Id string - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
- Sequence[str]
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable_
run_ boolcommand - Whether to disable run command for the cluster or not.
- enable_
private_ boolcluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- enable_
private_ boolcluster_ public_ fqdn - Whether to create additional public FQDN for private cluster or not.
- enable_
vnet_ boolintegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- private_
dns_ strzone - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- subnet_
id str - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
- List<String>
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable
Run BooleanCommand - Whether to disable run command for the cluster or not.
- enable
Private BooleanCluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- enable
Private BooleanCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- enable
Vnet BooleanIntegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- private
DNSZone String - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- subnet
Id String - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
ManagedClusterAPIServerAccessProfileResponse, ManagedClusterAPIServerAccessProfileResponseArgs
Access profile for managed cluster API server.- List<string>
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- Disable
Run boolCommand - Whether to disable run command for the cluster or not.
- Enable
Private boolCluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- Enable
Private boolCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- Enable
Vnet boolIntegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- Private
DNSZone string - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- Subnet
Id string - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
- []string
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- Disable
Run boolCommand - Whether to disable run command for the cluster or not.
- Enable
Private boolCluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- Enable
Private boolCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- Enable
Vnet boolIntegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- Private
DNSZone string - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- Subnet
Id string - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
- list(string)
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable_
run_ boolcommand - Whether to disable run command for the cluster or not.
- enable_
private_ boolcluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- enable_
private_ boolcluster_ public_ fqdn - Whether to create additional public FQDN for private cluster or not.
- enable_
vnet_ boolintegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- private_
dns_ stringzone - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- subnet_
id string - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
- List<String>
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable
Run BooleanCommand - Whether to disable run command for the cluster or not.
- enable
Private BooleanCluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- enable
Private BooleanCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- enable
Vnet BooleanIntegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- private
DNSZone String - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- subnet
Id String - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
- string[]
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable
Run booleanCommand - Whether to disable run command for the cluster or not.
- enable
Private booleanCluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- enable
Private booleanCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- enable
Vnet booleanIntegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- private
DNSZone string - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- subnet
Id string - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
- Sequence[str]
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable_
run_ boolcommand - Whether to disable run command for the cluster or not.
- enable_
private_ boolcluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- enable_
private_ boolcluster_ public_ fqdn - Whether to create additional public FQDN for private cluster or not.
- enable_
vnet_ boolintegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- private_
dns_ strzone - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- subnet_
id str - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
- List<String>
- The IP ranges authorized to access the Kubernetes API server. IP ranges are specified in CIDR format, e.g. 137.117.106.88/29. This feature is not compatible with clusters that use Public IP Per Node, or clusters that are using a Basic Load Balancer. For more information see API server authorized IP ranges.
- disable
Run BooleanCommand - Whether to disable run command for the cluster or not.
- enable
Private BooleanCluster - Whether to create the cluster as a private cluster or not. For more details, see Creating a private AKS cluster.
- enable
Private BooleanCluster Public FQDN - Whether to create additional public FQDN for private cluster or not.
- enable
Vnet BooleanIntegration - Whether to enable apiserver vnet integration for the cluster or not. See aka.ms/AksVnetIntegration for more details.
- private
DNSZone String - The private DNS zone mode for the cluster. The default is System. For more details see configure private DNS zone. Allowed values are 'system' and 'none'.
- subnet
Id String - The subnet to be used when apiserver vnet integration is enabled. It is required when creating a new cluster with BYO Vnet, or when updating an existing cluster to enable apiserver vnet integration.
ManagedClusterAddonProfile, ManagedClusterAddonProfileArgs
A Kubernetes add-on profile for a managed cluster.ManagedClusterAddonProfileResponse, ManagedClusterAddonProfileResponseArgs
A Kubernetes add-on profile for a managed cluster.- Enabled bool
- Whether the add-on is enabled or not.
- Identity
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Addon Profile Response Identity - Information of user assigned identity used by this add-on.
- Config Dictionary<string, string>
- Key-value pairs for configuring an add-on.
- Enabled bool
- Whether the add-on is enabled or not.
- Identity
Managed
Cluster Addon Profile Response Identity - Information of user assigned identity used by this add-on.
- Config map[string]string
- Key-value pairs for configuring an add-on.
- enabled Boolean
- Whether the add-on is enabled or not.
- identity
Managed
Cluster Addon Profile Response Identity - Information of user assigned identity used by this add-on.
- config Map<String,String>
- Key-value pairs for configuring an add-on.
- enabled boolean
- Whether the add-on is enabled or not.
- identity
Managed
Cluster Addon Profile Response Identity - Information of user assigned identity used by this add-on.
- config {[key: string]: string}
- Key-value pairs for configuring an add-on.
- enabled bool
- Whether the add-on is enabled or not.
- identity
Managed
Cluster Addon Profile Response Identity - Information of user assigned identity used by this add-on.
- config Mapping[str, str]
- Key-value pairs for configuring an add-on.
- enabled Boolean
- Whether the add-on is enabled or not.
- identity Property Map
- Information of user assigned identity used by this add-on.
- config Map<String>
- Key-value pairs for configuring an add-on.
ManagedClusterAddonProfileResponseIdentity, ManagedClusterAddonProfileResponseIdentityArgs
Information of user assigned identity used by this add-on.- Client
Id string - The client ID of the user assigned identity.
- Object
Id string - The object ID of the user assigned identity.
- Resource
Id string - The resource ID of the user assigned identity.
- Client
Id string - The client ID of the user assigned identity.
- Object
Id string - The object ID of the user assigned identity.
- Resource
Id string - The resource ID of the user assigned identity.
- client_
id string - The client ID of the user assigned identity.
- object_
id string - The object ID of the user assigned identity.
- resource_
id string - The resource ID of the user assigned identity.
- client
Id String - The client ID of the user assigned identity.
- object
Id String - The object ID of the user assigned identity.
- resource
Id String - The resource ID of the user assigned identity.
- client
Id string - The client ID of the user assigned identity.
- object
Id string - The object ID of the user assigned identity.
- resource
Id string - The resource ID of the user assigned identity.
- client_
id str - The client ID of the user assigned identity.
- object_
id str - The object ID of the user assigned identity.
- resource_
id str - The resource ID of the user assigned identity.
- client
Id String - The client ID of the user assigned identity.
- object
Id String - The object ID of the user assigned identity.
- resource
Id String - The resource ID of the user assigned identity.
ManagedClusterAgentPoolProfile, ManagedClusterAgentPoolProfileArgs
Profile for the container service agent pool.- Name string
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- Availability
Zones List<string> - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- Capacity
Reservation stringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- Count int
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- Creation
Data Pulumi.Azure Native. Container Service. Inputs. Creation Data - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- Enable
Auto boolScaling - Whether to enable auto-scaler
- Enable
Encryption boolAt Host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- Enable
FIPS bool - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- Enable
Node boolPublic IP - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- Enable
Ultra boolSSD - Whether to enable UltraSSD
- Gateway
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Gateway Profile - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- Gpu
Instance string | Pulumi.Profile Azure Native. Container Service. GPUInstance Profile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- Gpu
Profile Pulumi.Azure Native. Container Service. Inputs. GPUProfile - GPU settings for the Agent Pool.
- Host
Group stringID - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- Kubelet
Config Pulumi.Azure Native. Container Service. Inputs. Kubelet Config - The Kubelet configuration on the agent pool nodes.
- Kubelet
Disk string | Pulumi.Type Azure Native. Container Service. Kubelet Disk Type - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- Linux
OSConfig Pulumi.Azure Native. Container Service. Inputs. Linux OSConfig - The OS configuration of Linux agent nodes.
- Local
DNSProfile Pulumi.Azure Native. Container Service. Inputs. Local DNSProfile - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- Max
Count int - The maximum number of nodes for auto-scaling
- Max
Pods int - The maximum number of pods that can run on a node.
- Message
Of stringThe Day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- Min
Count int - The minimum number of nodes for auto-scaling
- Mode
string | Pulumi.
Azure Native. Container Service. Agent Pool Mode - The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- Network
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Network Profile - Network-related settings of an agent pool.
- Node
Labels Dictionary<string, string> - The node labels to be persisted across all nodes in agent pool.
- Node
Public stringIPPrefix ID - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- Node
Taints List<string> - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- Orchestrator
Version string - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- Os
Disk intSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- Os
Disk string | Pulumi.Type Azure Native. Container Service. OSDisk Type - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- Os
SKU string | Pulumi.Azure Native. Container Service. OSSKU - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- Os
Type string | Pulumi.Azure Native. Container Service. OSType - The operating system type. The default is Linux.
- Pod
IPAllocation string | Pulumi.Mode Azure Native. Container Service. Pod IPAllocation Mode - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- Pod
Subnet stringID - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Power
State Pulumi.Azure Native. Container Service. Inputs. Power State - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- Proximity
Placement stringGroup ID - The ID for Proximity Placement Group.
- Scale
Down string | Pulumi.Mode Azure Native. Container Service. Scale Down Mode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- Scale
Set string | Pulumi.Eviction Policy Azure Native. Container Service. Scale Set Eviction Policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- Scale
Set string | Pulumi.Priority Azure Native. Container Service. Scale Set Priority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- Security
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Security Profile - The security settings of an agent pool.
- Spot
Max doublePrice - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Dictionary<string, string>
- The tags to be persisted on the agent pool virtual machine scale set.
- Type
string | Pulumi.
Azure Native. Container Service. Agent Pool Type - The type of Agent Pool.
- Upgrade
Settings Pulumi.Azure Native. Container Service. Inputs. Agent Pool Upgrade Settings - Settings for upgrading the agentpool
- Virtual
Machine List<Pulumi.Nodes Status Azure Native. Container Service. Inputs. Virtual Machine Nodes> - The status of nodes in a VirtualMachines agent pool.
- Virtual
Machines Pulumi.Profile Azure Native. Container Service. Inputs. Virtual Machines Profile - Specifications on VirtualMachines agent pool.
- Vm
Size string - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- Vnet
Subnet stringID - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Windows
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Windows Profile - The Windows agent pool's specific profile.
- Workload
Runtime string | Pulumi.Azure Native. Container Service. Workload Runtime - Determines the type of workload a node can run.
- Name string
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- Availability
Zones []string - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- Capacity
Reservation stringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- Count int
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- Creation
Data CreationData - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- Enable
Auto boolScaling - Whether to enable auto-scaler
- Enable
Encryption boolAt Host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- Enable
FIPS bool - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- Enable
Node boolPublic IP - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- Enable
Ultra boolSSD - Whether to enable UltraSSD
- Gateway
Profile AgentPool Gateway Profile - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- Gpu
Instance string | GPUInstanceProfile Profile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- Gpu
Profile GPUProfile - GPU settings for the Agent Pool.
- Host
Group stringID - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- Kubelet
Config KubeletConfig - The Kubelet configuration on the agent pool nodes.
- Kubelet
Disk string | KubeletType Disk Type - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- Linux
OSConfig LinuxOSConfig - The OS configuration of Linux agent nodes.
- Local
DNSProfile LocalDNSProfile - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- Max
Count int - The maximum number of nodes for auto-scaling
- Max
Pods int - The maximum number of pods that can run on a node.
- Message
Of stringThe Day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- Min
Count int - The minimum number of nodes for auto-scaling
- Mode
string | Agent
Pool Mode - The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- Network
Profile AgentPool Network Profile - Network-related settings of an agent pool.
- Node
Labels map[string]string - The node labels to be persisted across all nodes in agent pool.
- Node
Public stringIPPrefix ID - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- Node
Taints []string - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- Orchestrator
Version string - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- Os
Disk intSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- Os
Disk string | OSDiskType Type - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- Os
SKU string | OSSKU - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- Os
Type string | OSType - The operating system type. The default is Linux.
- Pod
IPAllocation string | PodMode IPAllocation Mode - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- Pod
Subnet stringID - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Power
State PowerState - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- Proximity
Placement stringGroup ID - The ID for Proximity Placement Group.
- Scale
Down string | ScaleMode Down Mode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- Scale
Set string | ScaleEviction Policy Set Eviction Policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- Scale
Set string | ScalePriority Set Priority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- Security
Profile AgentPool Security Profile - The security settings of an agent pool.
- Spot
Max float64Price - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- map[string]string
- The tags to be persisted on the agent pool virtual machine scale set.
- Type
string | Agent
Pool Type - The type of Agent Pool.
- Upgrade
Settings AgentPool Upgrade Settings - Settings for upgrading the agentpool
- Virtual
Machine []VirtualNodes Status Machine Nodes - The status of nodes in a VirtualMachines agent pool.
- Virtual
Machines VirtualProfile Machines Profile - Specifications on VirtualMachines agent pool.
- Vm
Size string - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- Vnet
Subnet stringID - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Windows
Profile AgentPool Windows Profile - The Windows agent pool's specific profile.
- Workload
Runtime string | WorkloadRuntime - Determines the type of workload a node can run.
- name string
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- availability_
zones list(string) - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity_
reservation_ stringgroup_ id - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count number
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation_
data object - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable_
auto_ boolscaling - Whether to enable auto-scaler
- enable_
encryption_ boolat_ host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable_
fips bool - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- enable_
node_ boolpublic_ ip - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable_
ultra_ boolssd - Whether to enable UltraSSD
- gateway_
profile object - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- gpu_
instance_ string | "MIG1g" | "MIG2g" | "MIG3g" | "MIG4g" | "MIG7g"profile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- gpu_
profile object - GPU settings for the Agent Pool.
- host_
group_ stringid - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet_
config object - The Kubelet configuration on the agent pool nodes.
- kubelet_
disk_ string | "OS" | "Temporary"type - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux_
os_ objectconfig - The OS configuration of Linux agent nodes.
- local_
dns_ objectprofile - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- max_
count number - The maximum number of nodes for auto-scaling
- max_
pods number - The maximum number of pods that can run on a node.
- message_
of_ stringthe_ day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min_
count number - The minimum number of nodes for auto-scaling
- mode string | "System" | "User" | "Gateway"
- The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network_
profile object - Network-related settings of an agent pool.
- node_
labels map(string) - The node labels to be persisted across all nodes in agent pool.
- node_
public_ stringip_ prefix_ id - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node_
taints list(string) - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator_
version string - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os_
disk_ numbersize_ gb - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os_
disk_ string | "Managed" | "Ephemeral"type - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os_
sku string | "Ubuntu" | "AzureLinux" | "Azure Linux3" | "CBLMariner" | "Windows2019" | "Windows2022" | "Ubuntu2204" - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os_
type string | "Linux" | "Windows" - The operating system type. The default is Linux.
- pod_
ip_ string | "Dynamicallocation_ mode Individual" | "Static Block" - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- pod_
subnet_ stringid - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power_
state object - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity_
placement_ stringgroup_ id - The ID for Proximity Placement Group.
- scale_
down_ string | "Delete" | "Deallocate"mode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale_
set_ string | "Delete" | "Deallocate"eviction_ policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale_
set_ string | "Spot" | "Regular"priority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security_
profile object - The security settings of an agent pool.
- spot_
max_ numberprice - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- map(string)
- The tags to be persisted on the agent pool virtual machine scale set.
- type
string | "Virtual
Machine Scale Sets" | "Availability Set" | "Virtual Machines" - The type of Agent Pool.
- upgrade_
settings object - Settings for upgrading the agentpool
- virtual_
machine_ list(object)nodes_ status - The status of nodes in a VirtualMachines agent pool.
- virtual_
machines_ objectprofile - Specifications on VirtualMachines agent pool.
- vm_
size string - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet_
subnet_ stringid - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows_
profile object - The Windows agent pool's specific profile.
- workload_
runtime string | "OCIContainer" | "WasmWasi" | "Kata Vm Isolation" - Determines the type of workload a node can run.
- name String
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- availability
Zones List<String> - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity
Reservation StringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count Integer
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation
Data CreationData - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable
Auto BooleanScaling - Whether to enable auto-scaler
- enable
Encryption BooleanAt Host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable
FIPS Boolean - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- enable
Node BooleanPublic IP - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable
Ultra BooleanSSD - Whether to enable UltraSSD
- gateway
Profile AgentPool Gateway Profile - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- gpu
Instance String | GPUInstanceProfile Profile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- gpu
Profile GPUProfile - GPU settings for the Agent Pool.
- host
Group StringID - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet
Config KubeletConfig - The Kubelet configuration on the agent pool nodes.
- kubelet
Disk String | KubeletType Disk Type - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux
OSConfig LinuxOSConfig - The OS configuration of Linux agent nodes.
- local
DNSProfile LocalDNSProfile - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- max
Count Integer - The maximum number of nodes for auto-scaling
- max
Pods Integer - The maximum number of pods that can run on a node.
- message
Of StringThe Day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min
Count Integer - The minimum number of nodes for auto-scaling
- mode
String | Agent
Pool Mode - The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network
Profile AgentPool Network Profile - Network-related settings of an agent pool.
- node
Labels Map<String,String> - The node labels to be persisted across all nodes in agent pool.
- node
Public StringIPPrefix ID - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node
Taints List<String> - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator
Version String - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os
Disk IntegerSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os
Disk String | OSDiskType Type - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os
SKU String | OSSKU - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os
Type String | OSType - The operating system type. The default is Linux.
- pod
IPAllocation String | PodMode IPAllocation Mode - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- pod
Subnet StringID - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power
State PowerState - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity
Placement StringGroup ID - The ID for Proximity Placement Group.
- scale
Down String | ScaleMode Down Mode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale
Set String | ScaleEviction Policy Set Eviction Policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale
Set String | ScalePriority Set Priority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security
Profile AgentPool Security Profile - The security settings of an agent pool.
- spot
Max DoublePrice - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Map<String,String>
- The tags to be persisted on the agent pool virtual machine scale set.
- type
String | Agent
Pool Type - The type of Agent Pool.
- upgrade
Settings AgentPool Upgrade Settings - Settings for upgrading the agentpool
- virtual
Machine List<VirtualNodes Status Machine Nodes> - The status of nodes in a VirtualMachines agent pool.
- virtual
Machines VirtualProfile Machines Profile - Specifications on VirtualMachines agent pool.
- vm
Size String - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet
Subnet StringID - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows
Profile AgentPool Windows Profile - The Windows agent pool's specific profile.
- workload
Runtime String | WorkloadRuntime - Determines the type of workload a node can run.
- name string
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- availability
Zones string[] - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity
Reservation stringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count number
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation
Data CreationData - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable
Auto booleanScaling - Whether to enable auto-scaler
- enable
Encryption booleanAt Host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable
FIPS boolean - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- enable
Node booleanPublic IP - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable
Ultra booleanSSD - Whether to enable UltraSSD
- gateway
Profile AgentPool Gateway Profile - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- gpu
Instance string | GPUInstanceProfile Profile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- gpu
Profile GPUProfile - GPU settings for the Agent Pool.
- host
Group stringID - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet
Config KubeletConfig - The Kubelet configuration on the agent pool nodes.
- kubelet
Disk string | KubeletType Disk Type - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux
OSConfig LinuxOSConfig - The OS configuration of Linux agent nodes.
- local
DNSProfile LocalDNSProfile - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- max
Count number - The maximum number of nodes for auto-scaling
- max
Pods number - The maximum number of pods that can run on a node.
- message
Of stringThe Day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min
Count number - The minimum number of nodes for auto-scaling
- mode
string | Agent
Pool Mode - The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network
Profile AgentPool Network Profile - Network-related settings of an agent pool.
- node
Labels {[key: string]: string} - The node labels to be persisted across all nodes in agent pool.
- node
Public stringIPPrefix ID - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node
Taints string[] - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator
Version string - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os
Disk numberSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os
Disk string | OSDiskType Type - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os
SKU string | OSSKU - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os
Type string | OSType - The operating system type. The default is Linux.
- pod
IPAllocation string | PodMode IPAllocation Mode - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- pod
Subnet stringID - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power
State PowerState - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity
Placement stringGroup ID - The ID for Proximity Placement Group.
- scale
Down string | ScaleMode Down Mode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale
Set string | ScaleEviction Policy Set Eviction Policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale
Set string | ScalePriority Set Priority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security
Profile AgentPool Security Profile - The security settings of an agent pool.
- spot
Max numberPrice - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- {[key: string]: string}
- The tags to be persisted on the agent pool virtual machine scale set.
- type
string | Agent
Pool Type - The type of Agent Pool.
- upgrade
Settings AgentPool Upgrade Settings - Settings for upgrading the agentpool
- virtual
Machine VirtualNodes Status Machine Nodes[] - The status of nodes in a VirtualMachines agent pool.
- virtual
Machines VirtualProfile Machines Profile - Specifications on VirtualMachines agent pool.
- vm
Size string - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet
Subnet stringID - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows
Profile AgentPool Windows Profile - The Windows agent pool's specific profile.
- workload
Runtime string | WorkloadRuntime - Determines the type of workload a node can run.
- name str
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- availability_
zones Sequence[str] - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity_
reservation_ strgroup_ id - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count int
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation_
data CreationData - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable_
auto_ boolscaling - Whether to enable auto-scaler
- enable_
encryption_ boolat_ host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable_
fips bool - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- enable_
node_ boolpublic_ ip - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable_
ultra_ boolssd - Whether to enable UltraSSD
- gateway_
profile AgentPool Gateway Profile - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- gpu_
instance_ str | GPUInstanceprofile Profile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- gpu_
profile GPUProfile - GPU settings for the Agent Pool.
- host_
group_ strid - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet_
config KubeletConfig - The Kubelet configuration on the agent pool nodes.
- kubelet_
disk_ str | Kubelettype Disk Type - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux_
os_ Linuxconfig OSConfig - The OS configuration of Linux agent nodes.
- local_
dns_ Localprofile DNSProfile - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- max_
count int - The maximum number of nodes for auto-scaling
- max_
pods int - The maximum number of pods that can run on a node.
- message_
of_ strthe_ day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min_
count int - The minimum number of nodes for auto-scaling
- mode
str | Agent
Pool Mode - The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network_
profile AgentPool Network Profile - Network-related settings of an agent pool.
- node_
labels Mapping[str, str] - The node labels to be persisted across all nodes in agent pool.
- node_
public_ strip_ prefix_ id - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node_
taints Sequence[str] - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator_
version str - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os_
disk_ intsize_ gb - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os_
disk_ str | OSDisktype Type - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os_
sku str | OSSKU - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os_
type str | OSType - The operating system type. The default is Linux.
- pod_
ip_ str | Podallocation_ mode IPAllocation Mode - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- pod_
subnet_ strid - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power_
state PowerState - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity_
placement_ strgroup_ id - The ID for Proximity Placement Group.
- scale_
down_ str | Scalemode Down Mode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale_
set_ str | Scaleeviction_ policy Set Eviction Policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale_
set_ str | Scalepriority Set Priority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security_
profile AgentPool Security Profile - The security settings of an agent pool.
- spot_
max_ floatprice - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Mapping[str, str]
- The tags to be persisted on the agent pool virtual machine scale set.
- type
str | Agent
Pool Type - The type of Agent Pool.
- upgrade_
settings AgentPool Upgrade Settings - Settings for upgrading the agentpool
- virtual_
machine_ Sequence[Virtualnodes_ status Machine Nodes] - The status of nodes in a VirtualMachines agent pool.
- virtual_
machines_ Virtualprofile Machines Profile - Specifications on VirtualMachines agent pool.
- vm_
size str - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet_
subnet_ strid - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows_
profile AgentPool Windows Profile - The Windows agent pool's specific profile.
- workload_
runtime str | WorkloadRuntime - Determines the type of workload a node can run.
- name String
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- availability
Zones List<String> - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity
Reservation StringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count Number
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation
Data Property Map - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable
Auto BooleanScaling - Whether to enable auto-scaler
- enable
Encryption BooleanAt Host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable
FIPS Boolean - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- enable
Node BooleanPublic IP - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable
Ultra BooleanSSD - Whether to enable UltraSSD
- gateway
Profile Property Map - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- gpu
Instance String | "MIG1g" | "MIG2g" | "MIG3g" | "MIG4g" | "MIG7g"Profile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- gpu
Profile Property Map - GPU settings for the Agent Pool.
- host
Group StringID - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet
Config Property Map - The Kubelet configuration on the agent pool nodes.
- kubelet
Disk String | "OS" | "Temporary"Type - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux
OSConfig Property Map - The OS configuration of Linux agent nodes.
- local
DNSProfile Property Map - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- max
Count Number - The maximum number of nodes for auto-scaling
- max
Pods Number - The maximum number of pods that can run on a node.
- message
Of StringThe Day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min
Count Number - The minimum number of nodes for auto-scaling
- mode String | "System" | "User" | "Gateway"
- The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network
Profile Property Map - Network-related settings of an agent pool.
- node
Labels Map<String> - The node labels to be persisted across all nodes in agent pool.
- node
Public StringIPPrefix ID - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node
Taints List<String> - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator
Version String - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os
Disk NumberSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os
Disk String | "Managed" | "Ephemeral"Type - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os
SKU String | "Ubuntu" | "AzureLinux" | "Azure Linux3" | "CBLMariner" | "Windows2019" | "Windows2022" | "Ubuntu2204" - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os
Type String | "Linux" | "Windows" - The operating system type. The default is Linux.
- pod
IPAllocation String | "DynamicMode Individual" | "Static Block" - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- pod
Subnet StringID - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power
State Property Map - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity
Placement StringGroup ID - The ID for Proximity Placement Group.
- scale
Down String | "Delete" | "Deallocate"Mode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale
Set String | "Delete" | "Deallocate"Eviction Policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale
Set String | "Spot" | "Regular"Priority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security
Profile Property Map - The security settings of an agent pool.
- spot
Max NumberPrice - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Map<String>
- The tags to be persisted on the agent pool virtual machine scale set.
- type
String | "Virtual
Machine Scale Sets" | "Availability Set" | "Virtual Machines" - The type of Agent Pool.
- upgrade
Settings Property Map - Settings for upgrading the agentpool
- virtual
Machine List<Property Map>Nodes Status - The status of nodes in a VirtualMachines agent pool.
- virtual
Machines Property MapProfile - Specifications on VirtualMachines agent pool.
- vm
Size String - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet
Subnet StringID - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows
Profile Property Map - The Windows agent pool's specific profile.
- workload
Runtime String | "OCIContainer" | "WasmWasi" | "Kata Vm Isolation" - Determines the type of workload a node can run.
ManagedClusterAgentPoolProfileResponse, ManagedClusterAgentPoolProfileResponseArgs
Profile for the container service agent pool.- Current
Orchestrator stringVersion - The version of Kubernetes the Agent Pool is running. If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
- ETag string
- Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- Name string
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- Node
Image stringVersion - The version of node image
- Provisioning
State string - The current deployment or provisioning state.
- Availability
Zones List<string> - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- Capacity
Reservation stringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- Count int
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- Creation
Data Pulumi.Azure Native. Container Service. Inputs. Creation Data Response - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- Enable
Auto boolScaling - Whether to enable auto-scaler
- Enable
Encryption boolAt Host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- Enable
FIPS bool - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- Enable
Node boolPublic IP - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- Enable
Ultra boolSSD - Whether to enable UltraSSD
- Gateway
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Gateway Profile Response - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- Gpu
Instance stringProfile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- Gpu
Profile Pulumi.Azure Native. Container Service. Inputs. GPUProfile Response - GPU settings for the Agent Pool.
- Host
Group stringID - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- Kubelet
Config Pulumi.Azure Native. Container Service. Inputs. Kubelet Config Response - The Kubelet configuration on the agent pool nodes.
- Kubelet
Disk stringType - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- Linux
OSConfig Pulumi.Azure Native. Container Service. Inputs. Linux OSConfig Response - The OS configuration of Linux agent nodes.
- Local
DNSProfile Pulumi.Azure Native. Container Service. Inputs. Local DNSProfile Response - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- Max
Count int - The maximum number of nodes for auto-scaling
- Max
Pods int - The maximum number of pods that can run on a node.
- Message
Of stringThe Day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- Min
Count int - The minimum number of nodes for auto-scaling
- Mode string
- The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- Network
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Network Profile Response - Network-related settings of an agent pool.
- Node
Labels Dictionary<string, string> - The node labels to be persisted across all nodes in agent pool.
- Node
Public stringIPPrefix ID - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- Node
Taints List<string> - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- Orchestrator
Version string - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- Os
Disk intSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- Os
Disk stringType - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- Os
SKU string - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- Os
Type string - The operating system type. The default is Linux.
- Pod
IPAllocation stringMode - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- Pod
Subnet stringID - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Power
State Pulumi.Azure Native. Container Service. Inputs. Power State Response - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- Proximity
Placement stringGroup ID - The ID for Proximity Placement Group.
- Scale
Down stringMode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- Scale
Set stringEviction Policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- Scale
Set stringPriority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- Security
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Security Profile Response - The security settings of an agent pool.
- Spot
Max doublePrice - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Status
Pulumi.
Azure Native. Container Service. Inputs. Agent Pool Status Response - Contains read-only information about the Agent Pool.
- Dictionary<string, string>
- The tags to be persisted on the agent pool virtual machine scale set.
- Type string
- The type of Agent Pool.
- Upgrade
Settings Pulumi.Azure Native. Container Service. Inputs. Agent Pool Upgrade Settings Response - Settings for upgrading the agentpool
- Virtual
Machine List<Pulumi.Nodes Status Azure Native. Container Service. Inputs. Virtual Machine Nodes Response> - The status of nodes in a VirtualMachines agent pool.
- Virtual
Machines Pulumi.Profile Azure Native. Container Service. Inputs. Virtual Machines Profile Response - Specifications on VirtualMachines agent pool.
- Vm
Size string - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- Vnet
Subnet stringID - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Windows
Profile Pulumi.Azure Native. Container Service. Inputs. Agent Pool Windows Profile Response - The Windows agent pool's specific profile.
- Workload
Runtime string - Determines the type of workload a node can run.
- Current
Orchestrator stringVersion - The version of Kubernetes the Agent Pool is running. If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
- ETag string
- Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- Name string
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- Node
Image stringVersion - The version of node image
- Provisioning
State string - The current deployment or provisioning state.
- Availability
Zones []string - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- Capacity
Reservation stringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- Count int
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- Creation
Data CreationData Response - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- Enable
Auto boolScaling - Whether to enable auto-scaler
- Enable
Encryption boolAt Host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- Enable
FIPS bool - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- Enable
Node boolPublic IP - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- Enable
Ultra boolSSD - Whether to enable UltraSSD
- Gateway
Profile AgentPool Gateway Profile Response - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- Gpu
Instance stringProfile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- Gpu
Profile GPUProfileResponse - GPU settings for the Agent Pool.
- Host
Group stringID - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- Kubelet
Config KubeletConfig Response - The Kubelet configuration on the agent pool nodes.
- Kubelet
Disk stringType - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- Linux
OSConfig LinuxOSConfig Response - The OS configuration of Linux agent nodes.
- Local
DNSProfile LocalDNSProfile Response - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- Max
Count int - The maximum number of nodes for auto-scaling
- Max
Pods int - The maximum number of pods that can run on a node.
- Message
Of stringThe Day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- Min
Count int - The minimum number of nodes for auto-scaling
- Mode string
- The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- Network
Profile AgentPool Network Profile Response - Network-related settings of an agent pool.
- Node
Labels map[string]string - The node labels to be persisted across all nodes in agent pool.
- Node
Public stringIPPrefix ID - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- Node
Taints []string - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- Orchestrator
Version string - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- Os
Disk intSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- Os
Disk stringType - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- Os
SKU string - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- Os
Type string - The operating system type. The default is Linux.
- Pod
IPAllocation stringMode - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- Pod
Subnet stringID - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Power
State PowerState Response - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- Proximity
Placement stringGroup ID - The ID for Proximity Placement Group.
- Scale
Down stringMode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- Scale
Set stringEviction Policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- Scale
Set stringPriority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- Security
Profile AgentPool Security Profile Response - The security settings of an agent pool.
- Spot
Max float64Price - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- Status
Agent
Pool Status Response - Contains read-only information about the Agent Pool.
- map[string]string
- The tags to be persisted on the agent pool virtual machine scale set.
- Type string
- The type of Agent Pool.
- Upgrade
Settings AgentPool Upgrade Settings Response - Settings for upgrading the agentpool
- Virtual
Machine []VirtualNodes Status Machine Nodes Response - The status of nodes in a VirtualMachines agent pool.
- Virtual
Machines VirtualProfile Machines Profile Response - Specifications on VirtualMachines agent pool.
- Vm
Size string - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- Vnet
Subnet stringID - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- Windows
Profile AgentPool Windows Profile Response - The Windows agent pool's specific profile.
- Workload
Runtime string - Determines the type of workload a node can run.
- current_
orchestrator_ stringversion - The version of Kubernetes the Agent Pool is running. If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e_
tag string - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- name string
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- node_
image_ stringversion - The version of node image
- provisioning_
state string - The current deployment or provisioning state.
- availability_
zones list(string) - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity_
reservation_ stringgroup_ id - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count number
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation_
data object - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable_
auto_ boolscaling - Whether to enable auto-scaler
- enable_
encryption_ boolat_ host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable_
fips bool - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- enable_
node_ boolpublic_ ip - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable_
ultra_ boolssd - Whether to enable UltraSSD
- gateway_
profile object - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- gpu_
instance_ stringprofile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- gpu_
profile object - GPU settings for the Agent Pool.
- host_
group_ stringid - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet_
config object - The Kubelet configuration on the agent pool nodes.
- kubelet_
disk_ stringtype - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux_
os_ objectconfig - The OS configuration of Linux agent nodes.
- local_
dns_ objectprofile - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- max_
count number - The maximum number of nodes for auto-scaling
- max_
pods number - The maximum number of pods that can run on a node.
- message_
of_ stringthe_ day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min_
count number - The minimum number of nodes for auto-scaling
- mode string
- The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network_
profile object - Network-related settings of an agent pool.
- node_
labels map(string) - The node labels to be persisted across all nodes in agent pool.
- node_
public_ stringip_ prefix_ id - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node_
taints list(string) - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator_
version string - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os_
disk_ numbersize_ gb - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os_
disk_ stringtype - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os_
sku string - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os_
type string - The operating system type. The default is Linux.
- pod_
ip_ stringallocation_ mode - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- pod_
subnet_ stringid - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power_
state object - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity_
placement_ stringgroup_ id - The ID for Proximity Placement Group.
- scale_
down_ stringmode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale_
set_ stringeviction_ policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale_
set_ stringpriority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security_
profile object - The security settings of an agent pool.
- spot_
max_ numberprice - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- status object
- Contains read-only information about the Agent Pool.
- map(string)
- The tags to be persisted on the agent pool virtual machine scale set.
- type string
- The type of Agent Pool.
- upgrade_
settings object - Settings for upgrading the agentpool
- virtual_
machine_ list(object)nodes_ status - The status of nodes in a VirtualMachines agent pool.
- virtual_
machines_ objectprofile - Specifications on VirtualMachines agent pool.
- vm_
size string - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet_
subnet_ stringid - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows_
profile object - The Windows agent pool's specific profile.
- workload_
runtime string - Determines the type of workload a node can run.
- current
Orchestrator StringVersion - The version of Kubernetes the Agent Pool is running. If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e
Tag String - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- name String
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- node
Image StringVersion - The version of node image
- provisioning
State String - The current deployment or provisioning state.
- availability
Zones List<String> - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity
Reservation StringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count Integer
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation
Data CreationData Response - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable
Auto BooleanScaling - Whether to enable auto-scaler
- enable
Encryption BooleanAt Host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable
FIPS Boolean - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- enable
Node BooleanPublic IP - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable
Ultra BooleanSSD - Whether to enable UltraSSD
- gateway
Profile AgentPool Gateway Profile Response - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- gpu
Instance StringProfile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- gpu
Profile GPUProfileResponse - GPU settings for the Agent Pool.
- host
Group StringID - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet
Config KubeletConfig Response - The Kubelet configuration on the agent pool nodes.
- kubelet
Disk StringType - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux
OSConfig LinuxOSConfig Response - The OS configuration of Linux agent nodes.
- local
DNSProfile LocalDNSProfile Response - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- max
Count Integer - The maximum number of nodes for auto-scaling
- max
Pods Integer - The maximum number of pods that can run on a node.
- message
Of StringThe Day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min
Count Integer - The minimum number of nodes for auto-scaling
- mode String
- The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network
Profile AgentPool Network Profile Response - Network-related settings of an agent pool.
- node
Labels Map<String,String> - The node labels to be persisted across all nodes in agent pool.
- node
Public StringIPPrefix ID - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node
Taints List<String> - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator
Version String - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os
Disk IntegerSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os
Disk StringType - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os
SKU String - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os
Type String - The operating system type. The default is Linux.
- pod
IPAllocation StringMode - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- pod
Subnet StringID - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power
State PowerState Response - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity
Placement StringGroup ID - The ID for Proximity Placement Group.
- scale
Down StringMode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale
Set StringEviction Policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale
Set StringPriority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security
Profile AgentPool Security Profile Response - The security settings of an agent pool.
- spot
Max DoublePrice - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- status
Agent
Pool Status Response - Contains read-only information about the Agent Pool.
- Map<String,String>
- The tags to be persisted on the agent pool virtual machine scale set.
- type String
- The type of Agent Pool.
- upgrade
Settings AgentPool Upgrade Settings Response - Settings for upgrading the agentpool
- virtual
Machine List<VirtualNodes Status Machine Nodes Response> - The status of nodes in a VirtualMachines agent pool.
- virtual
Machines VirtualProfile Machines Profile Response - Specifications on VirtualMachines agent pool.
- vm
Size String - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet
Subnet StringID - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows
Profile AgentPool Windows Profile Response - The Windows agent pool's specific profile.
- workload
Runtime String - Determines the type of workload a node can run.
- current
Orchestrator stringVersion - The version of Kubernetes the Agent Pool is running. If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e
Tag string - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- name string
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- node
Image stringVersion - The version of node image
- provisioning
State string - The current deployment or provisioning state.
- availability
Zones string[] - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity
Reservation stringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count number
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation
Data CreationData Response - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable
Auto booleanScaling - Whether to enable auto-scaler
- enable
Encryption booleanAt Host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable
FIPS boolean - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- enable
Node booleanPublic IP - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable
Ultra booleanSSD - Whether to enable UltraSSD
- gateway
Profile AgentPool Gateway Profile Response - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- gpu
Instance stringProfile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- gpu
Profile GPUProfileResponse - GPU settings for the Agent Pool.
- host
Group stringID - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet
Config KubeletConfig Response - The Kubelet configuration on the agent pool nodes.
- kubelet
Disk stringType - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux
OSConfig LinuxOSConfig Response - The OS configuration of Linux agent nodes.
- local
DNSProfile LocalDNSProfile Response - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- max
Count number - The maximum number of nodes for auto-scaling
- max
Pods number - The maximum number of pods that can run on a node.
- message
Of stringThe Day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min
Count number - The minimum number of nodes for auto-scaling
- mode string
- The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network
Profile AgentPool Network Profile Response - Network-related settings of an agent pool.
- node
Labels {[key: string]: string} - The node labels to be persisted across all nodes in agent pool.
- node
Public stringIPPrefix ID - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node
Taints string[] - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator
Version string - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os
Disk numberSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os
Disk stringType - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os
SKU string - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os
Type string - The operating system type. The default is Linux.
- pod
IPAllocation stringMode - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- pod
Subnet stringID - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power
State PowerState Response - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity
Placement stringGroup ID - The ID for Proximity Placement Group.
- scale
Down stringMode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale
Set stringEviction Policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale
Set stringPriority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security
Profile AgentPool Security Profile Response - The security settings of an agent pool.
- spot
Max numberPrice - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- status
Agent
Pool Status Response - Contains read-only information about the Agent Pool.
- {[key: string]: string}
- The tags to be persisted on the agent pool virtual machine scale set.
- type string
- The type of Agent Pool.
- upgrade
Settings AgentPool Upgrade Settings Response - Settings for upgrading the agentpool
- virtual
Machine VirtualNodes Status Machine Nodes Response[] - The status of nodes in a VirtualMachines agent pool.
- virtual
Machines VirtualProfile Machines Profile Response - Specifications on VirtualMachines agent pool.
- vm
Size string - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet
Subnet stringID - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows
Profile AgentPool Windows Profile Response - The Windows agent pool's specific profile.
- workload
Runtime string - Determines the type of workload a node can run.
- current_
orchestrator_ strversion - The version of Kubernetes the Agent Pool is running. If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e_
tag str - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- name str
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- node_
image_ strversion - The version of node image
- provisioning_
state str - The current deployment or provisioning state.
- availability_
zones Sequence[str] - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity_
reservation_ strgroup_ id - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count int
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation_
data CreationData Response - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable_
auto_ boolscaling - Whether to enable auto-scaler
- enable_
encryption_ boolat_ host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable_
fips bool - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- enable_
node_ boolpublic_ ip - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable_
ultra_ boolssd - Whether to enable UltraSSD
- gateway_
profile AgentPool Gateway Profile Response - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- gpu_
instance_ strprofile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- gpu_
profile GPUProfileResponse - GPU settings for the Agent Pool.
- host_
group_ strid - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet_
config KubeletConfig Response - The Kubelet configuration on the agent pool nodes.
- kubelet_
disk_ strtype - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux_
os_ Linuxconfig OSConfig Response - The OS configuration of Linux agent nodes.
- local_
dns_ Localprofile DNSProfile Response - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- max_
count int - The maximum number of nodes for auto-scaling
- max_
pods int - The maximum number of pods that can run on a node.
- message_
of_ strthe_ day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min_
count int - The minimum number of nodes for auto-scaling
- mode str
- The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network_
profile AgentPool Network Profile Response - Network-related settings of an agent pool.
- node_
labels Mapping[str, str] - The node labels to be persisted across all nodes in agent pool.
- node_
public_ strip_ prefix_ id - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node_
taints Sequence[str] - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator_
version str - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os_
disk_ intsize_ gb - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os_
disk_ strtype - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os_
sku str - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os_
type str - The operating system type. The default is Linux.
- pod_
ip_ strallocation_ mode - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- pod_
subnet_ strid - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power_
state PowerState Response - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity_
placement_ strgroup_ id - The ID for Proximity Placement Group.
- scale_
down_ strmode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale_
set_ streviction_ policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale_
set_ strpriority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security_
profile AgentPool Security Profile Response - The security settings of an agent pool.
- spot_
max_ floatprice - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- status
Agent
Pool Status Response - Contains read-only information about the Agent Pool.
- Mapping[str, str]
- The tags to be persisted on the agent pool virtual machine scale set.
- type str
- The type of Agent Pool.
- upgrade_
settings AgentPool Upgrade Settings Response - Settings for upgrading the agentpool
- virtual_
machine_ Sequence[Virtualnodes_ status Machine Nodes Response] - The status of nodes in a VirtualMachines agent pool.
- virtual_
machines_ Virtualprofile Machines Profile Response - Specifications on VirtualMachines agent pool.
- vm_
size str - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet_
subnet_ strid - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows_
profile AgentPool Windows Profile Response - The Windows agent pool's specific profile.
- workload_
runtime str - Determines the type of workload a node can run.
- current
Orchestrator StringVersion - The version of Kubernetes the Agent Pool is running. If orchestratorVersion is a fully specified version <major.minor.patch>, this field will be exactly equal to it. If orchestratorVersion is <major.minor>, this field will contain the full <major.minor.patch> version being used.
- e
Tag String - Unique read-only string used to implement optimistic concurrency. The eTag value will change when the resource is updated. Specify an if-match or if-none-match header with the eTag value for a subsequent request to enable optimistic concurrency per the normal eTag convention.
- name String
- Unique name of the agent pool profile in the context of the subscription and resource group. Windows agent pool names must be 6 characters or less.
- node
Image StringVersion - The version of node image
- provisioning
State String - The current deployment or provisioning state.
- availability
Zones List<String> - The list of Availability zones to use for nodes. This can only be specified if the AgentPoolType property is 'VirtualMachineScaleSets'.
- capacity
Reservation StringGroup ID - AKS will associate the specified agent pool with the Capacity Reservation Group.
- count Number
- Number of agents (VMs) to host docker containers. Allowed values must be in the range of 0 to 1000 (inclusive) for user pools and in the range of 1 to 1000 (inclusive) for system pools. The default value is 1.
- creation
Data Property Map - CreationData to be used to specify the source Snapshot ID if the node pool will be created/upgraded using a snapshot.
- enable
Auto BooleanScaling - Whether to enable auto-scaler
- enable
Encryption BooleanAt Host - Whether to enable host based OS and data drive encryption. This is only supported on certain VM sizes and in certain Azure regions. For more information, see: https://docs.microsoft.com/azure/aks/enable-host-encryption
- enable
FIPS Boolean - Whether to use a FIPS-enabled OS. See Add a FIPS-enabled node pool for more details.
- enable
Node BooleanPublic IP - Whether each node is allocated its own public IP. Some scenarios may require nodes in a node pool to receive their own dedicated public IP addresses. A common scenario is for gaming workloads, where a console needs to make a direct connection to a cloud virtual machine to minimize hops. For more information see assigning a public IP per node. The default is false.
- enable
Ultra BooleanSSD - Whether to enable UltraSSD
- gateway
Profile Property Map - Profile specific to a managed agent pool in Gateway mode. This field cannot be set if agent pool mode is not Gateway.
- gpu
Instance StringProfile - GPUInstanceProfile to be used to specify GPU MIG instance profile for supported GPU VM SKU.
- gpu
Profile Property Map - GPU settings for the Agent Pool.
- host
Group StringID - The fully qualified resource ID of the Dedicated Host Group to provision virtual machines from, used only in creation scenario and not allowed to changed once set. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Compute/hostGroups/{hostGroupName}. For more information see Azure dedicated hosts.
- kubelet
Config Property Map - The Kubelet configuration on the agent pool nodes.
- kubelet
Disk StringType - Determines the placement of emptyDir volumes, container runtime data root, and Kubelet ephemeral storage.
- linux
OSConfig Property Map - The OS configuration of Linux agent nodes.
- local
DNSProfile Property Map - Configures the per-node local DNS, with VnetDNS and KubeDNS overrides. LocalDNS helps improve performance and reliability of DNS resolution in an AKS cluster. For more details see aka.ms/aks/localdns.
- max
Count Number - The maximum number of nodes for auto-scaling
- max
Pods Number - The maximum number of pods that can run on a node.
- message
Of StringThe Day - Message of the day for Linux nodes, base64-encoded. A base64-encoded string which will be written to /etc/motd after decoding. This allows customization of the message of the day for Linux nodes. It must not be specified for Windows nodes. It must be a static string (i.e., will be printed raw and not be executed as a script).
- min
Count Number - The minimum number of nodes for auto-scaling
- mode String
- The mode of an agent pool. A cluster must have at least one 'System' Agent Pool at all times. For additional information on agent pool restrictions and best practices, see: https://docs.microsoft.com/azure/aks/use-system-pools
- network
Profile Property Map - Network-related settings of an agent pool.
- node
Labels Map<String> - The node labels to be persisted across all nodes in agent pool.
- node
Public StringIPPrefix ID - The public IP prefix ID which VM nodes should use IPs from. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/publicIPPrefixes/{publicIPPrefixName}
- node
Taints List<String> - The taints added to new nodes during node pool create and scale. For example, key=value:NoSchedule.
- orchestrator
Version String - The version of Kubernetes specified by the user. Both patch version <major.minor.patch> (e.g. 1.20.13) and <major.minor> (e.g. 1.20) are supported. When <major.minor> is specified, the latest supported GA patch version is chosen automatically. Updating the cluster with the same <major.minor> once it has been created (e.g. 1.14.x -> 1.14) will not trigger an upgrade, even if a newer patch version is available. As a best practice, you should upgrade all node pools in an AKS cluster to the same Kubernetes version. The node pool version must have the same major version as the control plane. The node pool minor version must be within two minor versions of the control plane version. The node pool version cannot be greater than the control plane version. For more information see upgrading a node pool.
- os
Disk NumberSize GB - OS Disk Size in GB to be used to specify the disk size for every machine in the master/agent pool. If you specify 0, it will apply the default osDisk size according to the vmSize specified.
- os
Disk StringType - The OS disk type to be used for machines in the agent pool. The default is 'Ephemeral' if the VM supports it and has a cache disk larger than the requested OSDiskSizeGB. Otherwise, defaults to 'Managed'. May not be changed after creation. For more information see Ephemeral OS.
- os
SKU String - Specifies the OS SKU used by the agent pool. The default is Ubuntu if OSType is Linux. The default is Windows2019 when Kubernetes <= 1.24 or Windows2022 when Kubernetes >= 1.25 if OSType is Windows.
- os
Type String - The operating system type. The default is Linux.
- pod
IPAllocation StringMode - Pod IP Allocation Mode. The IP allocation mode for pods in the agent pool. Must be used with podSubnetId. The default is 'DynamicIndividual'.
- pod
Subnet StringID - The ID of the subnet which pods will join when launched. If omitted, pod IPs are statically assigned on the node subnet (see vnetSubnetID for more details). This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- power
State Property Map - Whether the Agent Pool is running or stopped. When an Agent Pool is first created it is initially Running. The Agent Pool can be stopped by setting this field to Stopped. A stopped Agent Pool stops all of its VMs and does not accrue billing charges. An Agent Pool can only be stopped if it is Running and provisioning state is Succeeded
- proximity
Placement StringGroup ID - The ID for Proximity Placement Group.
- scale
Down StringMode - The scale down mode to use when scaling the Agent Pool. This also effects the cluster autoscaler behavior. If not specified, it defaults to Delete.
- scale
Set StringEviction Policy - The Virtual Machine Scale Set eviction policy to use. This cannot be specified unless the scaleSetPriority is 'Spot'. If not specified, the default is 'Delete'.
- scale
Set StringPriority - The Virtual Machine Scale Set priority. If not specified, the default is 'Regular'.
- security
Profile Property Map - The security settings of an agent pool.
- spot
Max NumberPrice - The max price (in US Dollars) you are willing to pay for spot instances. Possible values are any decimal value greater than zero or -1 which indicates default price to be up-to on-demand. Possible values are any decimal value greater than zero or -1 which indicates the willingness to pay any on-demand price. For more details on spot pricing, see spot VMs pricing
- status Property Map
- Contains read-only information about the Agent Pool.
- Map<String>
- The tags to be persisted on the agent pool virtual machine scale set.
- type String
- The type of Agent Pool.
- upgrade
Settings Property Map - Settings for upgrading the agentpool
- virtual
Machine List<Property Map>Nodes Status - The status of nodes in a VirtualMachines agent pool.
- virtual
Machines Property MapProfile - Specifications on VirtualMachines agent pool.
- vm
Size String - The size of the agent pool VMs. VM size availability varies by region. If a node contains insufficient compute resources (memory, cpu, etc) pods might fail to run correctly. For more details on restricted VM sizes, see: https://docs.microsoft.com/azure/aks/quotas-skus-regions
- vnet
Subnet StringID - The ID of the subnet which agent pool nodes and optionally pods will join on startup. If this is not specified, a VNET and subnet will be generated and used. If no podSubnetID is specified, this applies to nodes and pods, otherwise it applies to just nodes. This is of the form: /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/virtualNetworks/{virtualNetworkName}/subnets/{subnetName}
- windows
Profile Property Map - The Windows agent pool's specific profile.
- workload
Runtime String - Determines the type of workload a node can run.
ManagedClusterAutoUpgradeProfile, ManagedClusterAutoUpgradeProfileArgs
Auto upgrade profile for a managed cluster.- Node
OSUpgrade string | Pulumi.Channel Azure Native. Container Service. Node OSUpgrade Channel - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- Upgrade
Channel string | Pulumi.Azure Native. Container Service. Upgrade Channel - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
- Node
OSUpgrade string | NodeChannel OSUpgrade Channel - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- Upgrade
Channel string | UpgradeChannel - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
- node_
os_ string | "None" | "Unmanaged" | "Nodeupgrade_ channel Image" | "Security Patch" - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade_
channel string | "rapid" | "stable" | "patch" | "node-image" | "none" - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
- node
OSUpgrade String | NodeChannel OSUpgrade Channel - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade
Channel String | UpgradeChannel - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
- node
OSUpgrade string | NodeChannel OSUpgrade Channel - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade
Channel string | UpgradeChannel - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
- node_
os_ str | Nodeupgrade_ channel OSUpgrade Channel - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade_
channel str | UpgradeChannel - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
- node
OSUpgrade String | "None" | "Unmanaged" | "NodeChannel Image" | "Security Patch" - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade
Channel String | "rapid" | "stable" | "patch" | "node-image" | "none" - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
ManagedClusterAutoUpgradeProfileResponse, ManagedClusterAutoUpgradeProfileResponseArgs
Auto upgrade profile for a managed cluster.- Node
OSUpgrade stringChannel - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- Upgrade
Channel string - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
- Node
OSUpgrade stringChannel - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- Upgrade
Channel string - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
- node_
os_ stringupgrade_ channel - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade_
channel string - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
- node
OSUpgrade StringChannel - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade
Channel String - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
- node
OSUpgrade stringChannel - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade
Channel string - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
- node_
os_ strupgrade_ channel - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade_
channel str - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
- node
OSUpgrade StringChannel - Node OS Upgrade Channel. Manner in which the OS on your nodes is updated. The default is NodeImage.
- upgrade
Channel String - The upgrade channel for auto upgrade. The default is 'none'. For more information see setting the AKS cluster auto-upgrade channel.
ManagedClusterAzureMonitorProfile, ManagedClusterAzureMonitorProfileArgs
Azure Monitor addon profiles for monitoring the managed cluster.- Metrics
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Azure Monitor Profile Metrics - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- Metrics
Managed
Cluster Azure Monitor Profile Metrics - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics
Managed
Cluster Azure Monitor Profile Metrics - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics
Managed
Cluster Azure Monitor Profile Metrics - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics
Managed
Cluster Azure Monitor Profile Metrics - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics Property Map
- Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
ManagedClusterAzureMonitorProfileKubeStateMetrics, ManagedClusterAzureMonitorProfileKubeStateMetricsArgs
Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.- Metric
Annotations stringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- Metric
Labels stringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- Metric
Annotations stringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- Metric
Labels stringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric_
annotations_ stringallow_ list - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric_
labels_ stringallowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric
Annotations StringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric
Labels StringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric
Annotations stringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric
Labels stringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric_
annotations_ strallow_ list - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric_
labels_ strallowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric
Annotations StringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric
Labels StringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
ManagedClusterAzureMonitorProfileKubeStateMetricsResponse, ManagedClusterAzureMonitorProfileKubeStateMetricsResponseArgs
Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.- Metric
Annotations stringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- Metric
Labels stringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- Metric
Annotations stringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- Metric
Labels stringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric_
annotations_ stringallow_ list - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric_
labels_ stringallowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric
Annotations StringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric
Labels StringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric
Annotations stringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric
Labels stringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric_
annotations_ strallow_ list - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric_
labels_ strallowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
- metric
Annotations StringAllow List - Comma-separated list of Kubernetes annotation keys that will be used in the resource's labels metric (Example: 'namespaces=[kubernetes.io/team,...],pods=[kubernetes.io/team],...'). By default the metric contains only resource name and namespace labels.
- metric
Labels StringAllowlist - Comma-separated list of additional Kubernetes label keys that will be used in the resource's labels metric (Example: 'namespaces=[k8s-label-1,k8s-label-n,...],pods=[app],...'). By default the metric contains only resource name and namespace labels.
ManagedClusterAzureMonitorProfileMetrics, ManagedClusterAzureMonitorProfileMetricsArgs
Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.- Enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- Kube
State Pulumi.Metrics Azure Native. Container Service. Inputs. Managed Cluster Azure Monitor Profile Kube State Metrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- Enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- Kube
State ManagedMetrics Cluster Azure Monitor Profile Kube State Metrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube_
state_ objectmetrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled Boolean
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube
State ManagedMetrics Cluster Azure Monitor Profile Kube State Metrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled boolean
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube
State ManagedMetrics Cluster Azure Monitor Profile Kube State Metrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube_
state_ Managedmetrics Cluster Azure Monitor Profile Kube State Metrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled Boolean
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube
State Property MapMetrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
ManagedClusterAzureMonitorProfileMetricsResponse, ManagedClusterAzureMonitorProfileMetricsResponseArgs
Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.- Enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- Kube
State Pulumi.Metrics Azure Native. Container Service. Inputs. Managed Cluster Azure Monitor Profile Kube State Metrics Response - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- Enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- Kube
State ManagedMetrics Cluster Azure Monitor Profile Kube State Metrics Response - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube_
state_ objectmetrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled Boolean
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube
State ManagedMetrics Cluster Azure Monitor Profile Kube State Metrics Response - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled boolean
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube
State ManagedMetrics Cluster Azure Monitor Profile Kube State Metrics Response - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled bool
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube_
state_ Managedmetrics Cluster Azure Monitor Profile Kube State Metrics Response - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
- enabled Boolean
- Whether to enable or disable the Azure Managed Prometheus addon for Prometheus monitoring. See aka.ms/AzureManagedPrometheus-aks-enable for details on enabling and disabling.
- kube
State Property MapMetrics - Kube State Metrics profile for the Azure Managed Prometheus addon. These optional settings are for the kube-state-metrics pod that is deployed with the addon. See aka.ms/AzureManagedPrometheus-optional-parameters for details.
ManagedClusterAzureMonitorProfileResponse, ManagedClusterAzureMonitorProfileResponseArgs
Azure Monitor addon profiles for monitoring the managed cluster.- Metrics
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Azure Monitor Profile Metrics Response - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- Metrics
Managed
Cluster Azure Monitor Profile Metrics Response - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics
Managed
Cluster Azure Monitor Profile Metrics Response - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics
Managed
Cluster Azure Monitor Profile Metrics Response - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics
Managed
Cluster Azure Monitor Profile Metrics Response - Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
- metrics Property Map
- Metrics profile for the Azure Monitor managed service for Prometheus addon. Collect out-of-the-box Kubernetes infrastructure metrics to send to an Azure Monitor Workspace and configure additional scraping for custom targets. See aka.ms/AzureManagedPrometheus for an overview.
ManagedClusterBootstrapProfile, ManagedClusterBootstrapProfileArgs
The bootstrap profile.- Artifact
Source string | Pulumi.Azure Native. Container Service. Artifact Source - The artifact source. The source where the artifacts are downloaded from.
- Container
Registry stringId - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
- Artifact
Source string | ArtifactSource - The artifact source. The source where the artifacts are downloaded from.
- Container
Registry stringId - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
- artifact_
source string | "Cache" | "Direct" - The artifact source. The source where the artifacts are downloaded from.
- container_
registry_ stringid - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
- artifact
Source String | ArtifactSource - The artifact source. The source where the artifacts are downloaded from.
- container
Registry StringId - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
- artifact
Source string | ArtifactSource - The artifact source. The source where the artifacts are downloaded from.
- container
Registry stringId - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
- artifact_
source str | ArtifactSource - The artifact source. The source where the artifacts are downloaded from.
- container_
registry_ strid - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
- artifact
Source String | "Cache" | "Direct" - The artifact source. The source where the artifacts are downloaded from.
- container
Registry StringId - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
ManagedClusterBootstrapProfileResponse, ManagedClusterBootstrapProfileResponseArgs
The bootstrap profile.- Artifact
Source string - The artifact source. The source where the artifacts are downloaded from.
- Container
Registry stringId - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
- Artifact
Source string - The artifact source. The source where the artifacts are downloaded from.
- Container
Registry stringId - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
- artifact_
source string - The artifact source. The source where the artifacts are downloaded from.
- container_
registry_ stringid - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
- artifact
Source String - The artifact source. The source where the artifacts are downloaded from.
- container
Registry StringId - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
- artifact
Source string - The artifact source. The source where the artifacts are downloaded from.
- container
Registry stringId - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
- artifact_
source str - The artifact source. The source where the artifacts are downloaded from.
- container_
registry_ strid - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
- artifact
Source String - The artifact source. The source where the artifacts are downloaded from.
- container
Registry StringId - The resource Id of Azure Container Registry. The registry must have private network access, premium SKU and zone redundancy.
ManagedClusterCostAnalysis, ManagedClusterCostAnalysisArgs
The cost analysis configuration for the cluster- Enabled bool
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- Enabled bool
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled bool
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled Boolean
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled boolean
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled bool
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled Boolean
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
ManagedClusterCostAnalysisResponse, ManagedClusterCostAnalysisResponseArgs
The cost analysis configuration for the cluster- Enabled bool
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- Enabled bool
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled bool
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled Boolean
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled boolean
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled bool
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
- enabled Boolean
- Whether to enable cost analysis. The Managed Cluster sku.tier must be set to 'Standard' or 'Premium' to enable this feature. Enabling this will add Kubernetes Namespace and Deployment details to the Cost Analysis views in the Azure portal. If not specified, the default is false. For more information see aka.ms/aks/docs/cost-analysis.
ManagedClusterHTTPProxyConfig, ManagedClusterHTTPProxyConfigArgs
Cluster HTTP proxy configuration.- Http
Proxy string - The HTTP proxy server endpoint to use.
- Https
Proxy string - The HTTPS proxy server endpoint to use.
- No
Proxy List<string> - The endpoints that should not go through proxy.
- Trusted
Ca string - Alternative CA cert to use for connecting to proxy servers.
- Http
Proxy string - The HTTP proxy server endpoint to use.
- Https
Proxy string - The HTTPS proxy server endpoint to use.
- No
Proxy []string - The endpoints that should not go through proxy.
- Trusted
Ca string - Alternative CA cert to use for connecting to proxy servers.
- http_
proxy string - The HTTP proxy server endpoint to use.
- https_
proxy string - The HTTPS proxy server endpoint to use.
- no_
proxy list(string) - The endpoints that should not go through proxy.
- trusted_
ca string - Alternative CA cert to use for connecting to proxy servers.
- http
Proxy String - The HTTP proxy server endpoint to use.
- https
Proxy String - The HTTPS proxy server endpoint to use.
- no
Proxy List<String> - The endpoints that should not go through proxy.
- trusted
Ca String - Alternative CA cert to use for connecting to proxy servers.
- http
Proxy string - The HTTP proxy server endpoint to use.
- https
Proxy string - The HTTPS proxy server endpoint to use.
- no
Proxy string[] - The endpoints that should not go through proxy.
- trusted
Ca string - Alternative CA cert to use for connecting to proxy servers.
- http_
proxy str - The HTTP proxy server endpoint to use.
- https_
proxy str - The HTTPS proxy server endpoint to use.
- no_
proxy Sequence[str] - The endpoints that should not go through proxy.
- trusted_
ca str - Alternative CA cert to use for connecting to proxy servers.
- http
Proxy String - The HTTP proxy server endpoint to use.
- https
Proxy String - The HTTPS proxy server endpoint to use.
- no
Proxy List<String> - The endpoints that should not go through proxy.
- trusted
Ca String - Alternative CA cert to use for connecting to proxy servers.
ManagedClusterHTTPProxyConfigResponse, ManagedClusterHTTPProxyConfigResponseArgs
Cluster HTTP proxy configuration.- Http
Proxy string - The HTTP proxy server endpoint to use.
- Https
Proxy string - The HTTPS proxy server endpoint to use.
- No
Proxy List<string> - The endpoints that should not go through proxy.
- Trusted
Ca string - Alternative CA cert to use for connecting to proxy servers.
- Http
Proxy string - The HTTP proxy server endpoint to use.
- Https
Proxy string - The HTTPS proxy server endpoint to use.
- No
Proxy []string - The endpoints that should not go through proxy.
- Trusted
Ca string - Alternative CA cert to use for connecting to proxy servers.
- http_
proxy string - The HTTP proxy server endpoint to use.
- https_
proxy string - The HTTPS proxy server endpoint to use.
- no_
proxy list(string) - The endpoints that should not go through proxy.
- trusted_
ca string - Alternative CA cert to use for connecting to proxy servers.
- http
Proxy String - The HTTP proxy server endpoint to use.
- https
Proxy String - The HTTPS proxy server endpoint to use.
- no
Proxy List<String> - The endpoints that should not go through proxy.
- trusted
Ca String - Alternative CA cert to use for connecting to proxy servers.
- http
Proxy string - The HTTP proxy server endpoint to use.
- https
Proxy string - The HTTPS proxy server endpoint to use.
- no
Proxy string[] - The endpoints that should not go through proxy.
- trusted
Ca string - Alternative CA cert to use for connecting to proxy servers.
- http_
proxy str - The HTTP proxy server endpoint to use.
- https_
proxy str - The HTTPS proxy server endpoint to use.
- no_
proxy Sequence[str] - The endpoints that should not go through proxy.
- trusted_
ca str - Alternative CA cert to use for connecting to proxy servers.
- http
Proxy String - The HTTP proxy server endpoint to use.
- https
Proxy String - The HTTPS proxy server endpoint to use.
- no
Proxy List<String> - The endpoints that should not go through proxy.
- trusted
Ca String - Alternative CA cert to use for connecting to proxy servers.
ManagedClusterIdentity, ManagedClusterIdentityArgs
Identity for the managed cluster.- Delegated
Resources Dictionary<string, Pulumi.Azure Native. Container Service. Inputs. Delegated Resource> - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- Type
Pulumi.
Azure Native. Container Service. Resource Identity Type - The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- User
Assigned List<string>Identities - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- Delegated
Resources map[string]DelegatedResource - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- Type
Resource
Identity Type - The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- User
Assigned []stringIdentities - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- delegated_
resources map(object) - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type
"System
Assigned" | "User Assigned" | "None" - The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- user_
assigned_ list(string)identities - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- delegated
Resources Map<String,DelegatedResource> - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type
Resource
Identity Type - The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- user
Assigned List<String>Identities - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- delegated
Resources {[key: string]: DelegatedResource} - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type
Resource
Identity Type - The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- user
Assigned string[]Identities - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- delegated_
resources Mapping[str, DelegatedResource] - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type
Resource
Identity Type - The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- user_
assigned_ Sequence[str]identities - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- delegated
Resources Map<Property Map> - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type
"System
Assigned" | "User Assigned" | "None" - The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- user
Assigned List<String>Identities - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
ManagedClusterIdentityResponse, ManagedClusterIdentityResponseArgs
Identity for the managed cluster.- Principal
Id string - The principal id of the system assigned identity which is used by master components.
- Tenant
Id string - The tenant id of the system assigned identity which is used by master components.
- Delegated
Resources Dictionary<string, Pulumi.Azure Native. Container Service. Inputs. Delegated Resource Response> - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- Type string
- The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- User
Assigned Dictionary<string, Pulumi.Identities Azure Native. Container Service. Inputs. Managed Cluster Identity Response User Assigned Identities> - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- Principal
Id string - The principal id of the system assigned identity which is used by master components.
- Tenant
Id string - The tenant id of the system assigned identity which is used by master components.
- Delegated
Resources map[string]DelegatedResource Response - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- Type string
- The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- User
Assigned map[string]ManagedIdentities Cluster Identity Response User Assigned Identities - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- principal_
id string - The principal id of the system assigned identity which is used by master components.
- tenant_
id string - The tenant id of the system assigned identity which is used by master components.
- delegated_
resources map(object) - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type string
- The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- user_
assigned_ map(object)identities - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- principal
Id String - The principal id of the system assigned identity which is used by master components.
- tenant
Id String - The tenant id of the system assigned identity which is used by master components.
- delegated
Resources Map<String,DelegatedResource Response> - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type String
- The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- user
Assigned Map<String,ManagedIdentities Cluster Identity Response User Assigned Identities> - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- principal
Id string - The principal id of the system assigned identity which is used by master components.
- tenant
Id string - The tenant id of the system assigned identity which is used by master components.
- delegated
Resources {[key: string]: DelegatedResource Response} - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type string
- The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- user
Assigned {[key: string]: ManagedIdentities Cluster Identity Response User Assigned Identities} - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- principal_
id str - The principal id of the system assigned identity which is used by master components.
- tenant_
id str - The tenant id of the system assigned identity which is used by master components.
- delegated_
resources Mapping[str, DelegatedResource Response] - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type str
- The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- user_
assigned_ Mapping[str, Managedidentities Cluster Identity Response User Assigned Identities] - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
- principal
Id String - The principal id of the system assigned identity which is used by master components.
- tenant
Id String - The tenant id of the system assigned identity which is used by master components.
- delegated
Resources Map<Property Map> - The delegated identity resources assigned to this managed cluster. This can only be set by another Azure Resource Provider, and managed cluster only accept one delegated identity resource. Internal use only.
- type String
- The type of identity used for the managed cluster. For more information see use managed identities in AKS.
- user
Assigned Map<Property Map>Identities - The user identity associated with the managed cluster. This identity will be used in control plane. Only one user assigned identity is allowed. The keys must be ARM resource IDs in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}'.
ManagedClusterIdentityResponseUserAssignedIdentities, ManagedClusterIdentityResponseUserAssignedIdentitiesArgs
- Client
Id string - The client id of user assigned identity.
- Principal
Id string - The principal id of user assigned identity.
- Client
Id string - The client id of user assigned identity.
- Principal
Id string - The principal id of user assigned identity.
- client_
id string - The client id of user assigned identity.
- principal_
id string - The principal id of user assigned identity.
- client
Id String - The client id of user assigned identity.
- principal
Id String - The principal id of user assigned identity.
- client
Id string - The client id of user assigned identity.
- principal
Id string - The principal id of user assigned identity.
- client_
id str - The client id of user assigned identity.
- principal_
id str - The principal id of user assigned identity.
- client
Id String - The client id of user assigned identity.
- principal
Id String - The principal id of user assigned identity.
ManagedClusterIngressProfile, ManagedClusterIngressProfileArgs
Ingress profile for the container service cluster.- Web
App Pulumi.Routing Azure Native. Container Service. Inputs. Managed Cluster Ingress Profile Web App Routing - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- Web
App ManagedRouting Cluster Ingress Profile Web App Routing - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web_
app_ objectrouting - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web
App ManagedRouting Cluster Ingress Profile Web App Routing - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web
App ManagedRouting Cluster Ingress Profile Web App Routing - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web_
app_ Managedrouting Cluster Ingress Profile Web App Routing - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web
App Property MapRouting - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
ManagedClusterIngressProfileNginx, ManagedClusterIngressProfileNginxArgs
- Default
Ingress string | Pulumi.Controller Type Azure Native. Container Service. Nginx Ingress Controller Type - Ingress type for the default NginxIngressController custom resource
- Default
Ingress string | NginxController Type Ingress Controller Type - Ingress type for the default NginxIngressController custom resource
- default_
ingress_ string | "Annotationcontroller_ type Controlled" | "External" | "Internal" | "None" - Ingress type for the default NginxIngressController custom resource
- default
Ingress String | NginxController Type Ingress Controller Type - Ingress type for the default NginxIngressController custom resource
- default
Ingress string | NginxController Type Ingress Controller Type - Ingress type for the default NginxIngressController custom resource
- default_
ingress_ str | Nginxcontroller_ type Ingress Controller Type - Ingress type for the default NginxIngressController custom resource
- default
Ingress String | "AnnotationController Type Controlled" | "External" | "Internal" | "None" - Ingress type for the default NginxIngressController custom resource
ManagedClusterIngressProfileNginxResponse, ManagedClusterIngressProfileNginxResponseArgs
- Default
Ingress stringController Type - Ingress type for the default NginxIngressController custom resource
- Default
Ingress stringController Type - Ingress type for the default NginxIngressController custom resource
- default_
ingress_ stringcontroller_ type - Ingress type for the default NginxIngressController custom resource
- default
Ingress StringController Type - Ingress type for the default NginxIngressController custom resource
- default
Ingress stringController Type - Ingress type for the default NginxIngressController custom resource
- default_
ingress_ strcontroller_ type - Ingress type for the default NginxIngressController custom resource
- default
Ingress StringController Type - Ingress type for the default NginxIngressController custom resource
ManagedClusterIngressProfileResponse, ManagedClusterIngressProfileResponseArgs
Ingress profile for the container service cluster.- Web
App Pulumi.Routing Azure Native. Container Service. Inputs. Managed Cluster Ingress Profile Web App Routing Response - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- Web
App ManagedRouting Cluster Ingress Profile Web App Routing Response - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web_
app_ objectrouting - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web
App ManagedRouting Cluster Ingress Profile Web App Routing Response - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web
App ManagedRouting Cluster Ingress Profile Web App Routing Response - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web_
app_ Managedrouting Cluster Ingress Profile Web App Routing Response - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
- web
App Property MapRouting - App Routing settings for the ingress profile. You can find an overview and onboarding guide for this feature at https://learn.microsoft.com/en-us/azure/aks/app-routing?tabs=default%2Cdeploy-app-default.
ManagedClusterIngressProfileWebAppRouting, ManagedClusterIngressProfileWebAppRoutingArgs
Application Routing add-on settings for the ingress profile.- Dns
Zone List<string>Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- Enabled bool
- Whether to enable the Application Routing add-on.
- Nginx
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Ingress Profile Nginx - Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
- Dns
Zone []stringResource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- Enabled bool
- Whether to enable the Application Routing add-on.
- Nginx
Managed
Cluster Ingress Profile Nginx - Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
- dns_
zone_ list(string)resource_ ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled bool
- Whether to enable the Application Routing add-on.
- nginx object
- Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
- dns
Zone List<String>Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled Boolean
- Whether to enable the Application Routing add-on.
- nginx
Managed
Cluster Ingress Profile Nginx - Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
- dns
Zone string[]Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled boolean
- Whether to enable the Application Routing add-on.
- nginx
Managed
Cluster Ingress Profile Nginx - Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
- dns_
zone_ Sequence[str]resource_ ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled bool
- Whether to enable the Application Routing add-on.
- nginx
Managed
Cluster Ingress Profile Nginx - Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
- dns
Zone List<String>Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled Boolean
- Whether to enable the Application Routing add-on.
- nginx Property Map
- Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
ManagedClusterIngressProfileWebAppRoutingResponse, ManagedClusterIngressProfileWebAppRoutingResponseArgs
Application Routing add-on settings for the ingress profile.- Identity
Pulumi.
Azure Native. Container Service. Inputs. User Assigned Identity Response - Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
- Dns
Zone List<string>Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- Enabled bool
- Whether to enable the Application Routing add-on.
- Nginx
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Ingress Profile Nginx Response - Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
- Identity
User
Assigned Identity Response - Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
- Dns
Zone []stringResource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- Enabled bool
- Whether to enable the Application Routing add-on.
- Nginx
Managed
Cluster Ingress Profile Nginx Response - Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
- identity object
- Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
- dns_
zone_ list(string)resource_ ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled bool
- Whether to enable the Application Routing add-on.
- nginx object
- Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
- identity
User
Assigned Identity Response - Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
- dns
Zone List<String>Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled Boolean
- Whether to enable the Application Routing add-on.
- nginx
Managed
Cluster Ingress Profile Nginx Response - Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
- identity
User
Assigned Identity Response - Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
- dns
Zone string[]Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled boolean
- Whether to enable the Application Routing add-on.
- nginx
Managed
Cluster Ingress Profile Nginx Response - Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
- identity
User
Assigned Identity Response - Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
- dns_
zone_ Sequence[str]resource_ ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled bool
- Whether to enable the Application Routing add-on.
- nginx
Managed
Cluster Ingress Profile Nginx Response - Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
- identity Property Map
- Managed identity of the Application Routing add-on. This is the identity that should be granted permissions, for example, to manage the associated Azure DNS resource and get certificates from Azure Key Vault. See this overview of the add-on for more instructions.
- dns
Zone List<String>Resource Ids - Resource IDs of the DNS zones to be associated with the Application Routing add-on. Used only when Application Routing add-on is enabled. Public and private DNS zones can be in different resource groups, but all public DNS zones must be in the same resource group and all private DNS zones must be in the same resource group.
- enabled Boolean
- Whether to enable the Application Routing add-on.
- nginx Property Map
- Configuration for the default NginxIngressController. See more at https://learn.microsoft.com/en-us/azure/aks/app-routing-nginx-configuration#the-default-nginx-ingress-controller.
ManagedClusterLoadBalancerProfile, ManagedClusterLoadBalancerProfileArgs
Profile of the managed cluster load balancer.- Allocated
Outbound intPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- Backend
Pool string | Pulumi.Type Azure Native. Container Service. Backend Pool Type - The type of the managed inbound Load Balancer BackendPool.
- Enable
Multiple boolStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- Managed
Outbound Pulumi.IPs Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- Outbound
IPPrefixes Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- Outbound
IPs Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- Allocated
Outbound intPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- Backend
Pool string | BackendType Pool Type - The type of the managed inbound Load Balancer BackendPool.
- Enable
Multiple boolStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- Managed
Outbound ManagedIPs Cluster Load Balancer Profile Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- Outbound
IPPrefixes ManagedCluster Load Balancer Profile Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- Outbound
IPs ManagedCluster Load Balancer Profile Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- allocated_
outbound_ numberports - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend_
pool_ string | "Nodetype IPConfiguration" | "Node IP" - The type of the managed inbound Load Balancer BackendPool.
- enable_
multiple_ boolstandard_ load_ balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle_
timeout_ numberin_ minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed_
outbound_ objecti_ ps - Desired managed outbound IPs for the cluster load balancer.
- outbound_
i_ objectps - Desired outbound IP resources for the cluster load balancer.
- outbound_
ip_ objectprefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- allocated
Outbound IntegerPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend
Pool String | BackendType Pool Type - The type of the managed inbound Load Balancer BackendPool.
- enable
Multiple BooleanStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle
Timeout IntegerIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed
Outbound ManagedIPs Cluster Load Balancer Profile Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- outbound
IPPrefixes ManagedCluster Load Balancer Profile Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound
IPs ManagedCluster Load Balancer Profile Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- allocated
Outbound numberPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend
Pool string | BackendType Pool Type - The type of the managed inbound Load Balancer BackendPool.
- enable
Multiple booleanStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle
Timeout numberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed
Outbound ManagedIPs Cluster Load Balancer Profile Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- outbound
IPPrefixes ManagedCluster Load Balancer Profile Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound
IPs ManagedCluster Load Balancer Profile Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- allocated_
outbound_ intports - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend_
pool_ str | Backendtype Pool Type - The type of the managed inbound Load Balancer BackendPool.
- enable_
multiple_ boolstandard_ load_ balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle_
timeout_ intin_ minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed_
outbound_ Managedips Cluster Load Balancer Profile Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- outbound_
ip_ Managedprefixes Cluster Load Balancer Profile Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound_
ips ManagedCluster Load Balancer Profile Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- allocated
Outbound NumberPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend
Pool String | "NodeType IPConfiguration" | "Node IP" - The type of the managed inbound Load Balancer BackendPool.
- enable
Multiple BooleanStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle
Timeout NumberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed
Outbound Property MapIPs - Desired managed outbound IPs for the cluster load balancer.
- outbound
IPPrefixes Property Map - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound
IPs Property Map - Desired outbound IP resources for the cluster load balancer.
ManagedClusterLoadBalancerProfileManagedOutboundIPs, ManagedClusterLoadBalancerProfileManagedOutboundIPsArgs
Desired managed outbound IPs for the cluster load balancer.- Count int
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- Count
IPv6 int - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- Count int
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- Count
IPv6 int - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count number
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count_
i_ numberpv6 - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count Integer
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count
IPv6 Integer - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count number
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count
IPv6 number - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count int
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count_
i_ intpv6 - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count Number
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count
IPv6 Number - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
ManagedClusterLoadBalancerProfileOutboundIPPrefixes, ManagedClusterLoadBalancerProfileOutboundIPPrefixesArgs
Desired outbound IP Prefix resources for the cluster load balancer.- Public
IPPrefixes List<Pulumi.Azure Native. Container Service. Inputs. Resource Reference> - A list of public IP prefix resources.
- Public
IPPrefixes []ResourceReference - A list of public IP prefix resources.
- public_
ip_ list(object)prefixes - A list of public IP prefix resources.
- public
IPPrefixes List<ResourceReference> - A list of public IP prefix resources.
- public
IPPrefixes ResourceReference[] - A list of public IP prefix resources.
- public_
ip_ Sequence[Resourceprefixes Reference] - A list of public IP prefix resources.
- public
IPPrefixes List<Property Map> - A list of public IP prefix resources.
ManagedClusterLoadBalancerProfileOutboundIPs, ManagedClusterLoadBalancerProfileOutboundIPsArgs
Desired outbound IP resources for the cluster load balancer.- Public
IPs List<Pulumi.Azure Native. Container Service. Inputs. Resource Reference> - A list of public IP resources.
- Public
IPs []ResourceReference - A list of public IP resources.
- public_
i_ list(object)ps - A list of public IP resources.
- public
IPs List<ResourceReference> - A list of public IP resources.
- public
IPs ResourceReference[] - A list of public IP resources.
- public_
ips Sequence[ResourceReference] - A list of public IP resources.
- public
IPs List<Property Map> - A list of public IP resources.
ManagedClusterLoadBalancerProfileResponse, ManagedClusterLoadBalancerProfileResponseArgs
Profile of the managed cluster load balancer.- Effective
Outbound List<Pulumi.IPs Azure Native. Container Service. Inputs. Resource Reference Response> - The effective outbound IP resources of the cluster load balancer.
- Allocated
Outbound intPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- Backend
Pool stringType - The type of the managed inbound Load Balancer BackendPool.
- Enable
Multiple boolStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- Managed
Outbound Pulumi.IPs Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Response Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- Outbound
IPPrefixes Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Response Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- Outbound
IPs Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Load Balancer Profile Response Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- Effective
Outbound []ResourceIPs Reference Response - The effective outbound IP resources of the cluster load balancer.
- Allocated
Outbound intPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- Backend
Pool stringType - The type of the managed inbound Load Balancer BackendPool.
- Enable
Multiple boolStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- Managed
Outbound ManagedIPs Cluster Load Balancer Profile Response Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- Outbound
IPPrefixes ManagedCluster Load Balancer Profile Response Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- Outbound
IPs ManagedCluster Load Balancer Profile Response Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- effective_
outbound_ list(object)i_ ps - The effective outbound IP resources of the cluster load balancer.
- allocated_
outbound_ numberports - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend_
pool_ stringtype - The type of the managed inbound Load Balancer BackendPool.
- enable_
multiple_ boolstandard_ load_ balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle_
timeout_ numberin_ minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed_
outbound_ objecti_ ps - Desired managed outbound IPs for the cluster load balancer.
- outbound_
i_ objectps - Desired outbound IP resources for the cluster load balancer.
- outbound_
ip_ objectprefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- effective
Outbound List<ResourceIPs Reference Response> - The effective outbound IP resources of the cluster load balancer.
- allocated
Outbound IntegerPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend
Pool StringType - The type of the managed inbound Load Balancer BackendPool.
- enable
Multiple BooleanStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle
Timeout IntegerIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed
Outbound ManagedIPs Cluster Load Balancer Profile Response Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- outbound
IPPrefixes ManagedCluster Load Balancer Profile Response Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound
IPs ManagedCluster Load Balancer Profile Response Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- effective
Outbound ResourceIPs Reference Response[] - The effective outbound IP resources of the cluster load balancer.
- allocated
Outbound numberPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend
Pool stringType - The type of the managed inbound Load Balancer BackendPool.
- enable
Multiple booleanStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle
Timeout numberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed
Outbound ManagedIPs Cluster Load Balancer Profile Response Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- outbound
IPPrefixes ManagedCluster Load Balancer Profile Response Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound
IPs ManagedCluster Load Balancer Profile Response Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- effective_
outbound_ Sequence[Resourceips Reference Response] - The effective outbound IP resources of the cluster load balancer.
- allocated_
outbound_ intports - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend_
pool_ strtype - The type of the managed inbound Load Balancer BackendPool.
- enable_
multiple_ boolstandard_ load_ balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle_
timeout_ intin_ minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed_
outbound_ Managedips Cluster Load Balancer Profile Response Managed Outbound IPs - Desired managed outbound IPs for the cluster load balancer.
- outbound_
ip_ Managedprefixes Cluster Load Balancer Profile Response Outbound IPPrefixes - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound_
ips ManagedCluster Load Balancer Profile Response Outbound IPs - Desired outbound IP resources for the cluster load balancer.
- effective
Outbound List<Property Map>IPs - The effective outbound IP resources of the cluster load balancer.
- allocated
Outbound NumberPorts - The desired number of allocated SNAT ports per VM. Allowed values are in the range of 0 to 64000 (inclusive). The default value is 0 which results in Azure dynamically allocating ports.
- backend
Pool StringType - The type of the managed inbound Load Balancer BackendPool.
- enable
Multiple BooleanStandard Load Balancers - Enable multiple standard load balancers per AKS cluster or not.
- idle
Timeout NumberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 30 minutes.
- managed
Outbound Property MapIPs - Desired managed outbound IPs for the cluster load balancer.
- outbound
IPPrefixes Property Map - Desired outbound IP Prefix resources for the cluster load balancer.
- outbound
IPs Property Map - Desired outbound IP resources for the cluster load balancer.
ManagedClusterLoadBalancerProfileResponseManagedOutboundIPs, ManagedClusterLoadBalancerProfileResponseManagedOutboundIPsArgs
Desired managed outbound IPs for the cluster load balancer.- Count int
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- Count
IPv6 int - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- Count int
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- Count
IPv6 int - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count number
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count_
i_ numberpv6 - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count Integer
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count
IPv6 Integer - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count number
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count
IPv6 number - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count int
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count_
i_ intpv6 - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
- count Number
- The desired number of IPv4 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 1.
- count
IPv6 Number - The desired number of IPv6 outbound IPs created/managed by Azure for the cluster load balancer. Allowed values must be in the range of 1 to 100 (inclusive). The default value is 0 for single-stack and 1 for dual-stack.
ManagedClusterLoadBalancerProfileResponseOutboundIPPrefixes, ManagedClusterLoadBalancerProfileResponseOutboundIPPrefixesArgs
Desired outbound IP Prefix resources for the cluster load balancer.- Public
IPPrefixes List<Pulumi.Azure Native. Container Service. Inputs. Resource Reference Response> - A list of public IP prefix resources.
- Public
IPPrefixes []ResourceReference Response - A list of public IP prefix resources.
- public_
ip_ list(object)prefixes - A list of public IP prefix resources.
- public
IPPrefixes List<ResourceReference Response> - A list of public IP prefix resources.
- public
IPPrefixes ResourceReference Response[] - A list of public IP prefix resources.
- public_
ip_ Sequence[Resourceprefixes Reference Response] - A list of public IP prefix resources.
- public
IPPrefixes List<Property Map> - A list of public IP prefix resources.
ManagedClusterLoadBalancerProfileResponseOutboundIPs, ManagedClusterLoadBalancerProfileResponseOutboundIPsArgs
Desired outbound IP resources for the cluster load balancer.- Public
IPs List<Pulumi.Azure Native. Container Service. Inputs. Resource Reference Response> - A list of public IP resources.
- Public
IPs []ResourceReference Response - A list of public IP resources.
- public_
i_ list(object)ps - A list of public IP resources.
- public
IPs List<ResourceReference Response> - A list of public IP resources.
- public
IPs ResourceReference Response[] - A list of public IP resources.
- public_
ips Sequence[ResourceReference Response] - A list of public IP resources.
- public
IPs List<Property Map> - A list of public IP resources.
ManagedClusterManagedOutboundIPProfile, ManagedClusterManagedOutboundIPProfileArgs
Profile of the managed outbound IP resources of the managed cluster.- Count int
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- Count int
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count number
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count Integer
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count number
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count int
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count Number
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
ManagedClusterManagedOutboundIPProfileResponse, ManagedClusterManagedOutboundIPProfileResponseArgs
Profile of the managed outbound IP resources of the managed cluster.- Count int
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- Count int
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count number
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count Integer
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count number
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count int
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
- count Number
- The desired number of outbound IPs created/managed by Azure. Allowed values must be in the range of 1 to 16 (inclusive). The default value is 1.
ManagedClusterMetricsProfile, ManagedClusterMetricsProfileArgs
The metrics profile for the ManagedCluster.- Cost
Analysis Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Cost Analysis - The configuration for detailed per-Kubernetes resource cost analysis.
- Cost
Analysis ManagedCluster Cost Analysis - The configuration for detailed per-Kubernetes resource cost analysis.
- cost_
analysis object - The configuration for detailed per-Kubernetes resource cost analysis.
- cost
Analysis ManagedCluster Cost Analysis - The configuration for detailed per-Kubernetes resource cost analysis.
- cost
Analysis ManagedCluster Cost Analysis - The configuration for detailed per-Kubernetes resource cost analysis.
- cost_
analysis ManagedCluster Cost Analysis - The configuration for detailed per-Kubernetes resource cost analysis.
- cost
Analysis Property Map - The configuration for detailed per-Kubernetes resource cost analysis.
ManagedClusterMetricsProfileResponse, ManagedClusterMetricsProfileResponseArgs
The metrics profile for the ManagedCluster.- Cost
Analysis Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Cost Analysis Response - The configuration for detailed per-Kubernetes resource cost analysis.
- Cost
Analysis ManagedCluster Cost Analysis Response - The configuration for detailed per-Kubernetes resource cost analysis.
- cost_
analysis object - The configuration for detailed per-Kubernetes resource cost analysis.
- cost
Analysis ManagedCluster Cost Analysis Response - The configuration for detailed per-Kubernetes resource cost analysis.
- cost
Analysis ManagedCluster Cost Analysis Response - The configuration for detailed per-Kubernetes resource cost analysis.
- cost_
analysis ManagedCluster Cost Analysis Response - The configuration for detailed per-Kubernetes resource cost analysis.
- cost
Analysis Property Map - The configuration for detailed per-Kubernetes resource cost analysis.
ManagedClusterNATGatewayProfile, ManagedClusterNATGatewayProfileArgs
Profile of the managed cluster NAT gateway.- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- Managed
Outbound Pulumi.IPProfile Azure Native. Container Service. Inputs. Managed Cluster Managed Outbound IPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- Managed
Outbound ManagedIPProfile Cluster Managed Outbound IPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
- idle_
timeout_ numberin_ minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed_
outbound_ objectip_ profile - Profile of the managed outbound IP resources of the cluster NAT gateway.
- idle
Timeout IntegerIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed
Outbound ManagedIPProfile Cluster Managed Outbound IPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
- idle
Timeout numberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed
Outbound ManagedIPProfile Cluster Managed Outbound IPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
- idle_
timeout_ intin_ minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed_
outbound_ Managedip_ profile Cluster Managed Outbound IPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
- idle
Timeout NumberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed
Outbound Property MapIPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
ManagedClusterNATGatewayProfileResponse, ManagedClusterNATGatewayProfileResponseArgs
Profile of the managed cluster NAT gateway.- Effective
Outbound List<Pulumi.IPs Azure Native. Container Service. Inputs. Resource Reference Response> - The effective outbound IP resources of the cluster NAT gateway.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- Managed
Outbound Pulumi.IPProfile Azure Native. Container Service. Inputs. Managed Cluster Managed Outbound IPProfile Response - Profile of the managed outbound IP resources of the cluster NAT gateway.
- Effective
Outbound []ResourceIPs Reference Response - The effective outbound IP resources of the cluster NAT gateway.
- Idle
Timeout intIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- Managed
Outbound ManagedIPProfile Cluster Managed Outbound IPProfile Response - Profile of the managed outbound IP resources of the cluster NAT gateway.
- effective_
outbound_ list(object)i_ ps - The effective outbound IP resources of the cluster NAT gateway.
- idle_
timeout_ numberin_ minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed_
outbound_ objectip_ profile - Profile of the managed outbound IP resources of the cluster NAT gateway.
- effective
Outbound List<ResourceIPs Reference Response> - The effective outbound IP resources of the cluster NAT gateway.
- idle
Timeout IntegerIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed
Outbound ManagedIPProfile Cluster Managed Outbound IPProfile Response - Profile of the managed outbound IP resources of the cluster NAT gateway.
- effective
Outbound ResourceIPs Reference Response[] - The effective outbound IP resources of the cluster NAT gateway.
- idle
Timeout numberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed
Outbound ManagedIPProfile Cluster Managed Outbound IPProfile Response - Profile of the managed outbound IP resources of the cluster NAT gateway.
- effective_
outbound_ Sequence[Resourceips Reference Response] - The effective outbound IP resources of the cluster NAT gateway.
- idle_
timeout_ intin_ minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed_
outbound_ Managedip_ profile Cluster Managed Outbound IPProfile Response - Profile of the managed outbound IP resources of the cluster NAT gateway.
- effective
Outbound List<Property Map>IPs - The effective outbound IP resources of the cluster NAT gateway.
- idle
Timeout NumberIn Minutes - Desired outbound flow idle timeout in minutes. Allowed values are in the range of 4 to 120 (inclusive). The default value is 4 minutes.
- managed
Outbound Property MapIPProfile - Profile of the managed outbound IP resources of the cluster NAT gateway.
ManagedClusterNodeProvisioningProfile, ManagedClusterNodeProvisioningProfileArgs
- Default
Node string | Pulumi.Pools Azure Native. Container Service. Node Provisioning Default Node Pools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- Mode
string | Pulumi.
Azure Native. Container Service. Node Provisioning Mode - The node provisioning mode. If not specified, the default is Manual.
- Default
Node string | NodePools Provisioning Default Node Pools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- Mode
string | Node
Provisioning Mode - The node provisioning mode. If not specified, the default is Manual.
- default_
node_ string | "None" | "Auto"pools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- mode string | "Manual" | "Auto"
- The node provisioning mode. If not specified, the default is Manual.
- default
Node String | NodePools Provisioning Default Node Pools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- mode
String | Node
Provisioning Mode - The node provisioning mode. If not specified, the default is Manual.
- default
Node string | NodePools Provisioning Default Node Pools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- mode
string | Node
Provisioning Mode - The node provisioning mode. If not specified, the default is Manual.
- default_
node_ str | Nodepools Provisioning Default Node Pools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- mode
str | Node
Provisioning Mode - The node provisioning mode. If not specified, the default is Manual.
- default
Node String | "None" | "Auto"Pools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- mode String | "Manual" | "Auto"
- The node provisioning mode. If not specified, the default is Manual.
ManagedClusterNodeProvisioningProfileResponse, ManagedClusterNodeProvisioningProfileResponseArgs
- Default
Node stringPools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- Mode string
- The node provisioning mode. If not specified, the default is Manual.
- Default
Node stringPools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- Mode string
- The node provisioning mode. If not specified, the default is Manual.
- default_
node_ stringpools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- mode string
- The node provisioning mode. If not specified, the default is Manual.
- default
Node StringPools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- mode String
- The node provisioning mode. If not specified, the default is Manual.
- default
Node stringPools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- mode string
- The node provisioning mode. If not specified, the default is Manual.
- default_
node_ strpools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- mode str
- The node provisioning mode. If not specified, the default is Manual.
- default
Node StringPools - The set of default Karpenter NodePools (CRDs) configured for node provisioning. This field has no effect unless mode is 'Auto'. Warning: Changing this from Auto to None on an existing cluster will cause the default Karpenter NodePools to be deleted, which will drain and delete the nodes associated with those pools. It is strongly recommended to not do this unless there are idle nodes ready to take the pods evicted by that action. If not specified, the default is Auto. For more information see aka.ms/aks/nap#node-pools.
- mode String
- The node provisioning mode. If not specified, the default is Manual.
ManagedClusterNodeResourceGroupProfile, ManagedClusterNodeResourceGroupProfileArgs
Node resource group lockdown profile for a managed cluster.- Restriction
Level string | Pulumi.Azure Native. Container Service. Restriction Level - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- Restriction
Level string | RestrictionLevel - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction_
level string | "Unrestricted" | "ReadOnly" - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction
Level String | RestrictionLevel - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction
Level string | RestrictionLevel - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction_
level str | RestrictionLevel - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction
Level String | "Unrestricted" | "ReadOnly" - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
ManagedClusterNodeResourceGroupProfileResponse, ManagedClusterNodeResourceGroupProfileResponseArgs
Node resource group lockdown profile for a managed cluster.- Restriction
Level string - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- Restriction
Level string - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction_
level string - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction
Level String - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction
Level string - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction_
level str - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
- restriction
Level String - The restriction level applied to the cluster's node resource group. If not specified, the default is 'Unrestricted'
ManagedClusterOIDCIssuerProfile, ManagedClusterOIDCIssuerProfileArgs
The OIDC issuer profile of the Managed Cluster.- Enabled bool
- Whether the OIDC issuer is enabled.
- Enabled bool
- Whether the OIDC issuer is enabled.
- enabled bool
- Whether the OIDC issuer is enabled.
- enabled Boolean
- Whether the OIDC issuer is enabled.
- enabled boolean
- Whether the OIDC issuer is enabled.
- enabled bool
- Whether the OIDC issuer is enabled.
- enabled Boolean
- Whether the OIDC issuer is enabled.
ManagedClusterOIDCIssuerProfileResponse, ManagedClusterOIDCIssuerProfileResponseArgs
The OIDC issuer profile of the Managed Cluster.- issuer_
url string - The OIDC issuer url of the Managed Cluster.
- enabled bool
- Whether the OIDC issuer is enabled.
- issuer_
url str - The OIDC issuer url of the Managed Cluster.
- enabled bool
- Whether the OIDC issuer is enabled.
ManagedClusterPodIdentity, ManagedClusterPodIdentityArgs
Details about the pod identity assigned to the Managed Cluster.- Identity
Pulumi.
Azure Native. Container Service. Inputs. User Assigned Identity - The user assigned identity details.
- Name string
- The name of the pod identity.
- Namespace string
- The namespace of the pod identity.
- Binding
Selector string - The binding selector to use for the AzureIdentityBinding resource.
- Identity
User
Assigned Identity - The user assigned identity details.
- Name string
- The name of the pod identity.
- Namespace string
- The namespace of the pod identity.
- Binding
Selector string - The binding selector to use for the AzureIdentityBinding resource.
- identity object
- The user assigned identity details.
- name string
- The name of the pod identity.
- namespace string
- The namespace of the pod identity.
- binding_
selector string - The binding selector to use for the AzureIdentityBinding resource.
- identity
User
Assigned Identity - The user assigned identity details.
- name String
- The name of the pod identity.
- namespace String
- The namespace of the pod identity.
- binding
Selector String - The binding selector to use for the AzureIdentityBinding resource.
- identity
User
Assigned Identity - The user assigned identity details.
- name string
- The name of the pod identity.
- namespace string
- The namespace of the pod identity.
- binding
Selector string - The binding selector to use for the AzureIdentityBinding resource.
- identity
User
Assigned Identity - The user assigned identity details.
- name str
- The name of the pod identity.
- namespace str
- The namespace of the pod identity.
- binding_
selector str - The binding selector to use for the AzureIdentityBinding resource.
- identity Property Map
- The user assigned identity details.
- name String
- The name of the pod identity.
- namespace String
- The namespace of the pod identity.
- binding
Selector String - The binding selector to use for the AzureIdentityBinding resource.
ManagedClusterPodIdentityException, ManagedClusterPodIdentityExceptionArgs
A pod identity exception, which allows pods with certain labels to access the Azure Instance Metadata Service (IMDS) endpoint without being intercepted by the node-managed identity (NMI) server. See disable AAD Pod Identity for a specific Pod/Application for more details.- name string
- The name of the pod identity exception.
- namespace string
- The namespace of the pod identity exception.
- pod_
labels map(string) - The pod labels to match.
- name str
- The name of the pod identity exception.
- namespace str
- The namespace of the pod identity exception.
- pod_
labels Mapping[str, str] - The pod labels to match.
ManagedClusterPodIdentityExceptionResponse, ManagedClusterPodIdentityExceptionResponseArgs
A pod identity exception, which allows pods with certain labels to access the Azure Instance Metadata Service (IMDS) endpoint without being intercepted by the node-managed identity (NMI) server. See disable AAD Pod Identity for a specific Pod/Application for more details.- name string
- The name of the pod identity exception.
- namespace string
- The namespace of the pod identity exception.
- pod_
labels map(string) - The pod labels to match.
- name str
- The name of the pod identity exception.
- namespace str
- The namespace of the pod identity exception.
- pod_
labels Mapping[str, str] - The pod labels to match.
ManagedClusterPodIdentityProfile, ManagedClusterPodIdentityProfileArgs
The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on pod identity integration.- Allow
Network boolPlugin Kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- Enabled bool
- Whether the pod identity addon is enabled.
- User
Assigned List<Pulumi.Identities Azure Native. Container Service. Inputs. Managed Cluster Pod Identity> - The pod identities to use in the cluster.
- User
Assigned List<Pulumi.Identity Exceptions Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Exception> - The pod identity exceptions to allow.
- Allow
Network boolPlugin Kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- Enabled bool
- Whether the pod identity addon is enabled.
- User
Assigned []ManagedIdentities Cluster Pod Identity - The pod identities to use in the cluster.
- User
Assigned []ManagedIdentity Exceptions Cluster Pod Identity Exception - The pod identity exceptions to allow.
- allow_
network_ boolplugin_ kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled bool
- Whether the pod identity addon is enabled.
- user_
assigned_ list(object)identities - The pod identities to use in the cluster.
- user_
assigned_ list(object)identity_ exceptions - The pod identity exceptions to allow.
- allow
Network BooleanPlugin Kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled Boolean
- Whether the pod identity addon is enabled.
- user
Assigned List<ManagedIdentities Cluster Pod Identity> - The pod identities to use in the cluster.
- user
Assigned List<ManagedIdentity Exceptions Cluster Pod Identity Exception> - The pod identity exceptions to allow.
- allow
Network booleanPlugin Kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled boolean
- Whether the pod identity addon is enabled.
- user
Assigned ManagedIdentities Cluster Pod Identity[] - The pod identities to use in the cluster.
- user
Assigned ManagedIdentity Exceptions Cluster Pod Identity Exception[] - The pod identity exceptions to allow.
- allow_
network_ boolplugin_ kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled bool
- Whether the pod identity addon is enabled.
- user_
assigned_ Sequence[Managedidentities Cluster Pod Identity] - The pod identities to use in the cluster.
- user_
assigned_ Sequence[Managedidentity_ exceptions Cluster Pod Identity Exception] - The pod identity exceptions to allow.
- allow
Network BooleanPlugin Kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled Boolean
- Whether the pod identity addon is enabled.
- user
Assigned List<Property Map>Identities - The pod identities to use in the cluster.
- user
Assigned List<Property Map>Identity Exceptions - The pod identity exceptions to allow.
ManagedClusterPodIdentityProfileResponse, ManagedClusterPodIdentityProfileResponseArgs
The pod identity profile of the Managed Cluster. See use AAD pod identity for more details on pod identity integration.- Allow
Network boolPlugin Kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- Enabled bool
- Whether the pod identity addon is enabled.
- User
Assigned List<Pulumi.Identities Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Response> - The pod identities to use in the cluster.
- User
Assigned List<Pulumi.Identity Exceptions Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Exception Response> - The pod identity exceptions to allow.
- Allow
Network boolPlugin Kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- Enabled bool
- Whether the pod identity addon is enabled.
- User
Assigned []ManagedIdentities Cluster Pod Identity Response - The pod identities to use in the cluster.
- User
Assigned []ManagedIdentity Exceptions Cluster Pod Identity Exception Response - The pod identity exceptions to allow.
- allow_
network_ boolplugin_ kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled bool
- Whether the pod identity addon is enabled.
- user_
assigned_ list(object)identities - The pod identities to use in the cluster.
- user_
assigned_ list(object)identity_ exceptions - The pod identity exceptions to allow.
- allow
Network BooleanPlugin Kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled Boolean
- Whether the pod identity addon is enabled.
- user
Assigned List<ManagedIdentities Cluster Pod Identity Response> - The pod identities to use in the cluster.
- user
Assigned List<ManagedIdentity Exceptions Cluster Pod Identity Exception Response> - The pod identity exceptions to allow.
- allow
Network booleanPlugin Kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled boolean
- Whether the pod identity addon is enabled.
- user
Assigned ManagedIdentities Cluster Pod Identity Response[] - The pod identities to use in the cluster.
- user
Assigned ManagedIdentity Exceptions Cluster Pod Identity Exception Response[] - The pod identity exceptions to allow.
- allow_
network_ boolplugin_ kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled bool
- Whether the pod identity addon is enabled.
- user_
assigned_ Sequence[Managedidentities Cluster Pod Identity Response] - The pod identities to use in the cluster.
- user_
assigned_ Sequence[Managedidentity_ exceptions Cluster Pod Identity Exception Response] - The pod identity exceptions to allow.
- allow
Network BooleanPlugin Kubenet - Whether pod identity is allowed to run on clusters with Kubenet networking. Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See using Kubenet network plugin with AAD Pod Identity for more information.
- enabled Boolean
- Whether the pod identity addon is enabled.
- user
Assigned List<Property Map>Identities - The pod identities to use in the cluster.
- user
Assigned List<Property Map>Identity Exceptions - The pod identity exceptions to allow.
ManagedClusterPodIdentityProvisioningErrorBodyResponse, ManagedClusterPodIdentityProvisioningErrorBodyResponseArgs
An error response from the pod identity provisioning.- Code string
- An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
- Details
List<Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Provisioning Error Body Response> - A list of additional details about the error.
- Message string
- A message describing the error, intended to be suitable for display in a user interface.
- Target string
- The target of the particular error. For example, the name of the property in error.
- Code string
- An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
- Details
[]Managed
Cluster Pod Identity Provisioning Error Body Response - A list of additional details about the error.
- Message string
- A message describing the error, intended to be suitable for display in a user interface.
- Target string
- The target of the particular error. For example, the name of the property in error.
- code string
- An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
- details list(object)
- A list of additional details about the error.
- message string
- A message describing the error, intended to be suitable for display in a user interface.
- target string
- The target of the particular error. For example, the name of the property in error.
- code String
- An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
- details
List<Managed
Cluster Pod Identity Provisioning Error Body Response> - A list of additional details about the error.
- message String
- A message describing the error, intended to be suitable for display in a user interface.
- target String
- The target of the particular error. For example, the name of the property in error.
- code string
- An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
- details
Managed
Cluster Pod Identity Provisioning Error Body Response[] - A list of additional details about the error.
- message string
- A message describing the error, intended to be suitable for display in a user interface.
- target string
- The target of the particular error. For example, the name of the property in error.
- code str
- An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
- details
Sequence[Managed
Cluster Pod Identity Provisioning Error Body Response] - A list of additional details about the error.
- message str
- A message describing the error, intended to be suitable for display in a user interface.
- target str
- The target of the particular error. For example, the name of the property in error.
- code String
- An identifier for the error. Codes are invariant and are intended to be consumed programmatically.
- details List<Property Map>
- A list of additional details about the error.
- message String
- A message describing the error, intended to be suitable for display in a user interface.
- target String
- The target of the particular error. For example, the name of the property in error.
ManagedClusterPodIdentityProvisioningErrorResponse, ManagedClusterPodIdentityProvisioningErrorResponseArgs
An error response from the pod identity provisioning.- Error
Managed
Cluster Pod Identity Provisioning Error Body Response - Details about the error.
- error
Managed
Cluster Pod Identity Provisioning Error Body Response - Details about the error.
- error
Managed
Cluster Pod Identity Provisioning Error Body Response - Details about the error.
- error
Managed
Cluster Pod Identity Provisioning Error Body Response - Details about the error.
- error Property Map
- Details about the error.
ManagedClusterPodIdentityResponse, ManagedClusterPodIdentityResponseArgs
Details about the pod identity assigned to the Managed Cluster.- Identity
Pulumi.
Azure Native. Container Service. Inputs. User Assigned Identity Response - The user assigned identity details.
- Name string
- The name of the pod identity.
- Namespace string
- The namespace of the pod identity.
- Provisioning
Info Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Response Provisioning Info - Provisioning
State string - The current provisioning state of the pod identity.
- Binding
Selector string - The binding selector to use for the AzureIdentityBinding resource.
- Identity
User
Assigned Identity Response - The user assigned identity details.
- Name string
- The name of the pod identity.
- Namespace string
- The namespace of the pod identity.
- Provisioning
Info ManagedCluster Pod Identity Response Provisioning Info - Provisioning
State string - The current provisioning state of the pod identity.
- Binding
Selector string - The binding selector to use for the AzureIdentityBinding resource.
- identity object
- The user assigned identity details.
- name string
- The name of the pod identity.
- namespace string
- The namespace of the pod identity.
- provisioning_
info object - provisioning_
state string - The current provisioning state of the pod identity.
- binding_
selector string - The binding selector to use for the AzureIdentityBinding resource.
- identity
User
Assigned Identity Response - The user assigned identity details.
- name String
- The name of the pod identity.
- namespace String
- The namespace of the pod identity.
- provisioning
Info ManagedCluster Pod Identity Response Provisioning Info - provisioning
State String - The current provisioning state of the pod identity.
- binding
Selector String - The binding selector to use for the AzureIdentityBinding resource.
- identity
User
Assigned Identity Response - The user assigned identity details.
- name string
- The name of the pod identity.
- namespace string
- The namespace of the pod identity.
- provisioning
Info ManagedCluster Pod Identity Response Provisioning Info - provisioning
State string - The current provisioning state of the pod identity.
- binding
Selector string - The binding selector to use for the AzureIdentityBinding resource.
- identity
User
Assigned Identity Response - The user assigned identity details.
- name str
- The name of the pod identity.
- namespace str
- The namespace of the pod identity.
- provisioning_
info ManagedCluster Pod Identity Response Provisioning Info - provisioning_
state str - The current provisioning state of the pod identity.
- binding_
selector str - The binding selector to use for the AzureIdentityBinding resource.
- identity Property Map
- The user assigned identity details.
- name String
- The name of the pod identity.
- namespace String
- The namespace of the pod identity.
- provisioning
Info Property Map - provisioning
State String - The current provisioning state of the pod identity.
- binding
Selector String - The binding selector to use for the AzureIdentityBinding resource.
ManagedClusterPodIdentityResponseProvisioningInfo, ManagedClusterPodIdentityResponseProvisioningInfoArgs
- Error
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Pod Identity Provisioning Error Response - Pod identity assignment error (if any).
- Error
Managed
Cluster Pod Identity Provisioning Error Response - Pod identity assignment error (if any).
- error
Managed
Cluster Pod Identity Provisioning Error Response - Pod identity assignment error (if any).
- error
Managed
Cluster Pod Identity Provisioning Error Response - Pod identity assignment error (if any).
- error
Managed
Cluster Pod Identity Provisioning Error Response - Pod identity assignment error (if any).
- error Property Map
- Pod identity assignment error (if any).
ManagedClusterPropertiesAutoScalerProfile, ManagedClusterPropertiesAutoScalerProfileArgs
Parameters to be applied to the cluster-autoscaler when enabled- Balance
Similar stringNode Groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- Daemonset
Eviction boolFor Empty Nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Daemonset
Eviction boolFor Occupied Nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Expander
string | Pulumi.
Azure Native. Container Service. Expander - The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- Ignore
Daemonsets boolUtilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- Max
Empty stringBulk Delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- Max
Graceful stringTermination Sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- Max
Node stringProvision Time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Max
Total stringUnready Percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- New
Pod stringScale Up Delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- Ok
Total stringUnready Count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- Scale
Down stringDelay After Add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnneeded Time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnready Time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUtilization Threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- Scan
Interval string - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- Skip
Nodes stringWith Local Storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- Skip
Nodes stringWith System Pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
- Balance
Similar stringNode Groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- Daemonset
Eviction boolFor Empty Nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Daemonset
Eviction boolFor Occupied Nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Expander string | Expander
- The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- Ignore
Daemonsets boolUtilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- Max
Empty stringBulk Delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- Max
Graceful stringTermination Sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- Max
Node stringProvision Time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Max
Total stringUnready Percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- New
Pod stringScale Up Delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- Ok
Total stringUnready Count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- Scale
Down stringDelay After Add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnneeded Time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnready Time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUtilization Threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- Scan
Interval string - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- Skip
Nodes stringWith Local Storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- Skip
Nodes stringWith System Pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
- balance_
similar_ stringnode_ groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- daemonset_
eviction_ boolfor_ empty_ nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset_
eviction_ boolfor_ occupied_ nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander string | "least-waste" | "most-pods" | "priority" | "random"
- The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- ignore_
daemonsets_ boolutilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max_
empty_ stringbulk_ delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- max_
graceful_ stringtermination_ sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- max_
node_ stringprovision_ time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max_
total_ stringunready_ percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- new_
pod_ stringscale_ up_ delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok_
total_ stringunready_ count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- scale_
down_ stringdelay_ after_ add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ stringdelay_ after_ delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ stringdelay_ after_ failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ stringunneeded_ time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ stringunready_ time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ stringutilization_ threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- scan_
interval string - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- skip_
nodes_ stringwith_ local_ storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- skip_
nodes_ stringwith_ system_ pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
- balance
Similar StringNode Groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- daemonset
Eviction BooleanFor Empty Nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset
Eviction BooleanFor Occupied Nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander String | Expander
- The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- ignore
Daemonsets BooleanUtilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max
Empty StringBulk Delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- max
Graceful StringTermination Sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- max
Node StringProvision Time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max
Total StringUnready Percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- new
Pod StringScale Up Delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok
Total StringUnready Count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- scale
Down StringDelay After Add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnneeded Time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnready Time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUtilization Threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- scan
Interval String - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- skip
Nodes StringWith Local Storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- skip
Nodes StringWith System Pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
- balance
Similar stringNode Groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- daemonset
Eviction booleanFor Empty Nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset
Eviction booleanFor Occupied Nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander string | Expander
- The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- ignore
Daemonsets booleanUtilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max
Empty stringBulk Delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- max
Graceful stringTermination Sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- max
Node stringProvision Time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max
Total stringUnready Percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- new
Pod stringScale Up Delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok
Total stringUnready Count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- scale
Down stringDelay After Add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringDelay After Delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringDelay After Failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringUnneeded Time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringUnready Time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringUtilization Threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- scan
Interval string - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- skip
Nodes stringWith Local Storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- skip
Nodes stringWith System Pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
- balance_
similar_ strnode_ groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- daemonset_
eviction_ boolfor_ empty_ nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset_
eviction_ boolfor_ occupied_ nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander str | Expander
- The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- ignore_
daemonsets_ boolutilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max_
empty_ strbulk_ delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- max_
graceful_ strtermination_ sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- max_
node_ strprovision_ time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max_
total_ strunready_ percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- new_
pod_ strscale_ up_ delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok_
total_ strunready_ count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- scale_
down_ strdelay_ after_ add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strdelay_ after_ delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strdelay_ after_ failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strunneeded_ time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strunready_ time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strutilization_ threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- scan_
interval str - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- skip_
nodes_ strwith_ local_ storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- skip_
nodes_ strwith_ system_ pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
- balance
Similar StringNode Groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- daemonset
Eviction BooleanFor Empty Nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset
Eviction BooleanFor Occupied Nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander String | "least-waste" | "most-pods" | "priority" | "random"
- The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- ignore
Daemonsets BooleanUtilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max
Empty StringBulk Delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- max
Graceful StringTermination Sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- max
Node StringProvision Time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max
Total StringUnready Percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- new
Pod StringScale Up Delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok
Total StringUnready Count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- scale
Down StringDelay After Add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnneeded Time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnready Time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUtilization Threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- scan
Interval String - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- skip
Nodes StringWith Local Storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- skip
Nodes StringWith System Pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
ManagedClusterPropertiesResponseAutoScalerProfile, ManagedClusterPropertiesResponseAutoScalerProfileArgs
Parameters to be applied to the cluster-autoscaler when enabled- Balance
Similar stringNode Groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- Daemonset
Eviction boolFor Empty Nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Daemonset
Eviction boolFor Occupied Nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Expander string
- The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- Ignore
Daemonsets boolUtilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- Max
Empty stringBulk Delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- Max
Graceful stringTermination Sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- Max
Node stringProvision Time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Max
Total stringUnready Percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- New
Pod stringScale Up Delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- Ok
Total stringUnready Count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- Scale
Down stringDelay After Add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnneeded Time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnready Time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUtilization Threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- Scan
Interval string - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- Skip
Nodes stringWith Local Storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- Skip
Nodes stringWith System Pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
- Balance
Similar stringNode Groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- Daemonset
Eviction boolFor Empty Nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Daemonset
Eviction boolFor Occupied Nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- Expander string
- The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- Ignore
Daemonsets boolUtilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- Max
Empty stringBulk Delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- Max
Graceful stringTermination Sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- Max
Node stringProvision Time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Max
Total stringUnready Percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- New
Pod stringScale Up Delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- Ok
Total stringUnready Count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- Scale
Down stringDelay After Add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringDelay After Failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnneeded Time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUnready Time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- Scale
Down stringUtilization Threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- Scan
Interval string - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- Skip
Nodes stringWith Local Storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- Skip
Nodes stringWith System Pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
- balance_
similar_ stringnode_ groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- daemonset_
eviction_ boolfor_ empty_ nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset_
eviction_ boolfor_ occupied_ nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander string
- The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- ignore_
daemonsets_ boolutilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max_
empty_ stringbulk_ delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- max_
graceful_ stringtermination_ sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- max_
node_ stringprovision_ time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max_
total_ stringunready_ percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- new_
pod_ stringscale_ up_ delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok_
total_ stringunready_ count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- scale_
down_ stringdelay_ after_ add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ stringdelay_ after_ delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ stringdelay_ after_ failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ stringunneeded_ time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ stringunready_ time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ stringutilization_ threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- scan_
interval string - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- skip_
nodes_ stringwith_ local_ storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- skip_
nodes_ stringwith_ system_ pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
- balance
Similar StringNode Groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- daemonset
Eviction BooleanFor Empty Nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset
Eviction BooleanFor Occupied Nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander String
- The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- ignore
Daemonsets BooleanUtilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max
Empty StringBulk Delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- max
Graceful StringTermination Sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- max
Node StringProvision Time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max
Total StringUnready Percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- new
Pod StringScale Up Delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok
Total StringUnready Count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- scale
Down StringDelay After Add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnneeded Time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnready Time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUtilization Threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- scan
Interval String - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- skip
Nodes StringWith Local Storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- skip
Nodes StringWith System Pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
- balance
Similar stringNode Groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- daemonset
Eviction booleanFor Empty Nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset
Eviction booleanFor Occupied Nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander string
- The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- ignore
Daemonsets booleanUtilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max
Empty stringBulk Delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- max
Graceful stringTermination Sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- max
Node stringProvision Time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max
Total stringUnready Percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- new
Pod stringScale Up Delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok
Total stringUnready Count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- scale
Down stringDelay After Add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringDelay After Delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringDelay After Failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringUnneeded Time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringUnready Time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down stringUtilization Threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- scan
Interval string - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- skip
Nodes stringWith Local Storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- skip
Nodes stringWith System Pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
- balance_
similar_ strnode_ groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- daemonset_
eviction_ boolfor_ empty_ nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset_
eviction_ boolfor_ occupied_ nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander str
- The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- ignore_
daemonsets_ boolutilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max_
empty_ strbulk_ delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- max_
graceful_ strtermination_ sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- max_
node_ strprovision_ time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max_
total_ strunready_ percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- new_
pod_ strscale_ up_ delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok_
total_ strunready_ count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- scale_
down_ strdelay_ after_ add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strdelay_ after_ delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strdelay_ after_ failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strunneeded_ time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strunready_ time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale_
down_ strutilization_ threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- scan_
interval str - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- skip_
nodes_ strwith_ local_ storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- skip_
nodes_ strwith_ system_ pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
- balance
Similar StringNode Groups - Detects similar node pools and balances the number of nodes between them. Valid values are 'true' and 'false'
- daemonset
Eviction BooleanFor Empty Nodes - DaemonSet pods will be gracefully terminated from empty nodes. If set to true, all daemonset pods on empty nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- daemonset
Eviction BooleanFor Occupied Nodes - DaemonSet pods will be gracefully terminated from non-empty nodes. If set to true, all daemonset pods on occupied nodes will be evicted before deletion of the node. If the daemonset pod cannot be evicted another node will be chosen for scaling. If set to false, the node will be deleted without ensuring that daemonset pods are deleted or evicted.
- expander String
- The expander to use when scaling up. If not specified, the default is 'random'. See expanders for more information.
- ignore
Daemonsets BooleanUtilization - Should CA ignore DaemonSet pods when calculating resource utilization for scaling down. If set to true, the resources used by daemonset will be taken into account when making scaling down decisions.
- max
Empty StringBulk Delete - The maximum number of empty nodes that can be deleted at the same time. This must be a positive integer. The default is 10.
- max
Graceful StringTermination Sec - The maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. The default is 600.
- max
Node StringProvision Time - The maximum time the autoscaler waits for a node to be provisioned. The default is '15m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- max
Total StringUnready Percentage - The maximum percentage of unready nodes in the cluster. After this percentage is exceeded, cluster autoscaler halts operations. The default is 45. The maximum is 100 and the minimum is 0.
- new
Pod StringScale Up Delay - Ignore unscheduled pods before they're a certain age. For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. The default is '0s'. Values must be an integer followed by a unit ('s' for seconds, 'm' for minutes, 'h' for hours, etc).
- ok
Total StringUnready Count - The number of allowed unready nodes, irrespective of max-total-unready-percentage. This must be an integer. The default is 3.
- scale
Down StringDelay After Add - How long after scale up that scale down evaluation resumes. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Delete - How long after node deletion that scale down evaluation resumes. The default is the scan-interval. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringDelay After Failure - How long after scale down failure that scale down evaluation resumes. The default is '3m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnneeded Time - How long a node should be unneeded before it is eligible for scale down. The default is '10m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUnready Time - How long an unready node should be unneeded before it is eligible for scale down. The default is '20m'. Values must be an integer followed by an 'm'. No unit of time other than minutes (m) is supported.
- scale
Down StringUtilization Threshold - Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. The default is '0.5'.
- scan
Interval String - How often cluster is reevaluated for scale up or down. The default is '10'. Values must be an integer number of seconds.
- skip
Nodes StringWith Local Storage - If cluster autoscaler will skip deleting nodes with pods with local storage, for example, EmptyDir or HostPath. The default is true.
- skip
Nodes StringWith System Pods - If cluster autoscaler will skip deleting nodes with pods from kube-system (except for DaemonSet or mirror pods). The default is true.
ManagedClusterSKU, ManagedClusterSKUArgs
The SKU of a Managed Cluster.- Name
string | Pulumi.
Azure Native. Container Service. Managed Cluster SKUName - The name of a managed cluster SKU.
- Tier
string | Pulumi.
Azure Native. Container Service. Managed Cluster SKUTier - The tier of a managed cluster SKU. If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- Name
string | Managed
Cluster SKUName - The name of a managed cluster SKU.
- Tier
string | Managed
Cluster SKUTier - The tier of a managed cluster SKU. If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name string | "Base" | "Automatic"
- The name of a managed cluster SKU.
- tier string | "Premium" | "Standard" | "Free"
- The tier of a managed cluster SKU. If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name
String | Managed
Cluster SKUName - The name of a managed cluster SKU.
- tier
String | Managed
Cluster SKUTier - The tier of a managed cluster SKU. If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name
string | Managed
Cluster SKUName - The name of a managed cluster SKU.
- tier
string | Managed
Cluster SKUTier - The tier of a managed cluster SKU. If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name
str | Managed
Cluster SKUName - The name of a managed cluster SKU.
- tier
str | Managed
Cluster SKUTier - The tier of a managed cluster SKU. If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name String | "Base" | "Automatic"
- The name of a managed cluster SKU.
- tier String | "Premium" | "Standard" | "Free"
- The tier of a managed cluster SKU. If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
ManagedClusterSKUName, ManagedClusterSKUNameArgs
- Base
BaseBase option for the AKS control plane.- Automatic
AutomaticAutomatic clusters are optimized to run most production workloads with configuration that follows AKS best practices and recommendations for cluster and workload setup, scalability, and security. For more details about Automatic clusters see aka.ms/aks/automatic.
- Managed
Cluster SKUName Base BaseBase option for the AKS control plane.- Managed
Cluster SKUName Automatic AutomaticAutomatic clusters are optimized to run most production workloads with configuration that follows AKS best practices and recommendations for cluster and workload setup, scalability, and security. For more details about Automatic clusters see aka.ms/aks/automatic.
- "Base"
BaseBase option for the AKS control plane.- "Automatic"
AutomaticAutomatic clusters are optimized to run most production workloads with configuration that follows AKS best practices and recommendations for cluster and workload setup, scalability, and security. For more details about Automatic clusters see aka.ms/aks/automatic.
- Base
BaseBase option for the AKS control plane.- Automatic
AutomaticAutomatic clusters are optimized to run most production workloads with configuration that follows AKS best practices and recommendations for cluster and workload setup, scalability, and security. For more details about Automatic clusters see aka.ms/aks/automatic.
- Base
BaseBase option for the AKS control plane.- Automatic
AutomaticAutomatic clusters are optimized to run most production workloads with configuration that follows AKS best practices and recommendations for cluster and workload setup, scalability, and security. For more details about Automatic clusters see aka.ms/aks/automatic.
- BASE
BaseBase option for the AKS control plane.- AUTOMATIC
AutomaticAutomatic clusters are optimized to run most production workloads with configuration that follows AKS best practices and recommendations for cluster and workload setup, scalability, and security. For more details about Automatic clusters see aka.ms/aks/automatic.
- "Base"
BaseBase option for the AKS control plane.- "Automatic"
AutomaticAutomatic clusters are optimized to run most production workloads with configuration that follows AKS best practices and recommendations for cluster and workload setup, scalability, and security. For more details about Automatic clusters see aka.ms/aks/automatic.
ManagedClusterSKUResponse, ManagedClusterSKUResponseArgs
The SKU of a Managed Cluster.- Name string
- The name of a managed cluster SKU.
- Tier string
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- Name string
- The name of a managed cluster SKU.
- Tier string
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name string
- The name of a managed cluster SKU.
- tier string
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name String
- The name of a managed cluster SKU.
- tier String
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name string
- The name of a managed cluster SKU.
- tier string
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name str
- The name of a managed cluster SKU.
- tier str
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
- name String
- The name of a managed cluster SKU.
- tier String
- If not specified, the default is 'Free'. See AKS Pricing Tier for more details.
ManagedClusterSKUTier, ManagedClusterSKUTierArgs
- Premium
PremiumCluster has premium capabilities in addition to all of the capabilities included in 'Standard'. Premium enables selection of LongTermSupport (aka.ms/aks/lts) for certain Kubernetes versions.- Standard
StandardRecommended for mission-critical and production workloads. Includes Kubernetes control plane autoscaling, workload-intensive testing, and up to 5,000 nodes per cluster. Guarantees 99.95% availability of the Kubernetes API server endpoint for clusters that use Availability Zones and 99.9% of availability for clusters that don't use Availability Zones.- Free
FreeThe cluster management is free, but charged for VM, storage, and networking usage. Best for experimenting, learning, simple testing, or workloads with fewer than 10 nodes. Not recommended for production use cases.
- Managed
Cluster SKUTier Premium PremiumCluster has premium capabilities in addition to all of the capabilities included in 'Standard'. Premium enables selection of LongTermSupport (aka.ms/aks/lts) for certain Kubernetes versions.- Managed
Cluster SKUTier Standard StandardRecommended for mission-critical and production workloads. Includes Kubernetes control plane autoscaling, workload-intensive testing, and up to 5,000 nodes per cluster. Guarantees 99.95% availability of the Kubernetes API server endpoint for clusters that use Availability Zones and 99.9% of availability for clusters that don't use Availability Zones.- Managed
Cluster SKUTier Free FreeThe cluster management is free, but charged for VM, storage, and networking usage. Best for experimenting, learning, simple testing, or workloads with fewer than 10 nodes. Not recommended for production use cases.
- "Premium"
PremiumCluster has premium capabilities in addition to all of the capabilities included in 'Standard'. Premium enables selection of LongTermSupport (aka.ms/aks/lts) for certain Kubernetes versions.- "Standard"
StandardRecommended for mission-critical and production workloads. Includes Kubernetes control plane autoscaling, workload-intensive testing, and up to 5,000 nodes per cluster. Guarantees 99.95% availability of the Kubernetes API server endpoint for clusters that use Availability Zones and 99.9% of availability for clusters that don't use Availability Zones.- "Free"
FreeThe cluster management is free, but charged for VM, storage, and networking usage. Best for experimenting, learning, simple testing, or workloads with fewer than 10 nodes. Not recommended for production use cases.
- Premium
PremiumCluster has premium capabilities in addition to all of the capabilities included in 'Standard'. Premium enables selection of LongTermSupport (aka.ms/aks/lts) for certain Kubernetes versions.- Standard
StandardRecommended for mission-critical and production workloads. Includes Kubernetes control plane autoscaling, workload-intensive testing, and up to 5,000 nodes per cluster. Guarantees 99.95% availability of the Kubernetes API server endpoint for clusters that use Availability Zones and 99.9% of availability for clusters that don't use Availability Zones.- Free
FreeThe cluster management is free, but charged for VM, storage, and networking usage. Best for experimenting, learning, simple testing, or workloads with fewer than 10 nodes. Not recommended for production use cases.
- Premium
PremiumCluster has premium capabilities in addition to all of the capabilities included in 'Standard'. Premium enables selection of LongTermSupport (aka.ms/aks/lts) for certain Kubernetes versions.- Standard
StandardRecommended for mission-critical and production workloads. Includes Kubernetes control plane autoscaling, workload-intensive testing, and up to 5,000 nodes per cluster. Guarantees 99.95% availability of the Kubernetes API server endpoint for clusters that use Availability Zones and 99.9% of availability for clusters that don't use Availability Zones.- Free
FreeThe cluster management is free, but charged for VM, storage, and networking usage. Best for experimenting, learning, simple testing, or workloads with fewer than 10 nodes. Not recommended for production use cases.
- PREMIUM
PremiumCluster has premium capabilities in addition to all of the capabilities included in 'Standard'. Premium enables selection of LongTermSupport (aka.ms/aks/lts) for certain Kubernetes versions.- STANDARD
StandardRecommended for mission-critical and production workloads. Includes Kubernetes control plane autoscaling, workload-intensive testing, and up to 5,000 nodes per cluster. Guarantees 99.95% availability of the Kubernetes API server endpoint for clusters that use Availability Zones and 99.9% of availability for clusters that don't use Availability Zones.- FREE
FreeThe cluster management is free, but charged for VM, storage, and networking usage. Best for experimenting, learning, simple testing, or workloads with fewer than 10 nodes. Not recommended for production use cases.
- "Premium"
PremiumCluster has premium capabilities in addition to all of the capabilities included in 'Standard'. Premium enables selection of LongTermSupport (aka.ms/aks/lts) for certain Kubernetes versions.- "Standard"
StandardRecommended for mission-critical and production workloads. Includes Kubernetes control plane autoscaling, workload-intensive testing, and up to 5,000 nodes per cluster. Guarantees 99.95% availability of the Kubernetes API server endpoint for clusters that use Availability Zones and 99.9% of availability for clusters that don't use Availability Zones.- "Free"
FreeThe cluster management is free, but charged for VM, storage, and networking usage. Best for experimenting, learning, simple testing, or workloads with fewer than 10 nodes. Not recommended for production use cases.
ManagedClusterSecurityProfile, ManagedClusterSecurityProfileArgs
Security profile for the container service cluster.- Azure
Key Pulumi.Vault Kms Azure Native. Container Service. Inputs. Azure Key Vault Kms - Azure Key Vault key management service settings for the security profile.
- Custom
CATrust List<string>Certificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- Defender
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Security Profile Defender - Microsoft Defender settings for the security profile.
- Image
Cleaner Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile Image Cleaner - Image Cleaner settings for the security profile.
- Workload
Identity Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile Workload Identity - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- Azure
Key AzureVault Kms Key Vault Kms - Azure Key Vault key management service settings for the security profile.
- Custom
CATrust []stringCertificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- Defender
Managed
Cluster Security Profile Defender - Microsoft Defender settings for the security profile.
- Image
Cleaner ManagedCluster Security Profile Image Cleaner - Image Cleaner settings for the security profile.
- Workload
Identity ManagedCluster Security Profile Workload Identity - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure_
key_ objectvault_ kms - Azure Key Vault key management service settings for the security profile.
- custom_
ca_ list(string)trust_ certificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- defender object
- Microsoft Defender settings for the security profile.
- image_
cleaner object - Image Cleaner settings for the security profile.
- workload_
identity object - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure
Key AzureVault Kms Key Vault Kms - Azure Key Vault key management service settings for the security profile.
- custom
CATrust List<String>Certificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- defender
Managed
Cluster Security Profile Defender - Microsoft Defender settings for the security profile.
- image
Cleaner ManagedCluster Security Profile Image Cleaner - Image Cleaner settings for the security profile.
- workload
Identity ManagedCluster Security Profile Workload Identity - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure
Key AzureVault Kms Key Vault Kms - Azure Key Vault key management service settings for the security profile.
- custom
CATrust string[]Certificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- defender
Managed
Cluster Security Profile Defender - Microsoft Defender settings for the security profile.
- image
Cleaner ManagedCluster Security Profile Image Cleaner - Image Cleaner settings for the security profile.
- workload
Identity ManagedCluster Security Profile Workload Identity - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure_
key_ Azurevault_ kms Key Vault Kms - Azure Key Vault key management service settings for the security profile.
- custom_
ca_ Sequence[str]trust_ certificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- defender
Managed
Cluster Security Profile Defender - Microsoft Defender settings for the security profile.
- image_
cleaner ManagedCluster Security Profile Image Cleaner - Image Cleaner settings for the security profile.
- workload_
identity ManagedCluster Security Profile Workload Identity - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure
Key Property MapVault Kms - Azure Key Vault key management service settings for the security profile.
- custom
CATrust List<String>Certificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- defender Property Map
- Microsoft Defender settings for the security profile.
- image
Cleaner Property Map - Image Cleaner settings for the security profile.
- workload
Identity Property Map - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
ManagedClusterSecurityProfileDefender, ManagedClusterSecurityProfileDefenderArgs
Microsoft Defender settings for the security profile.- Log
Analytics stringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- Security
Monitoring Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile Defender Security Monitoring - Microsoft Defender threat detection for Cloud settings for the security profile.
- Log
Analytics stringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- Security
Monitoring ManagedCluster Security Profile Defender Security Monitoring - Microsoft Defender threat detection for Cloud settings for the security profile.
- log_
analytics_ stringworkspace_ resource_ id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security_
monitoring object - Microsoft Defender threat detection for Cloud settings for the security profile.
- log
Analytics StringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security
Monitoring ManagedCluster Security Profile Defender Security Monitoring - Microsoft Defender threat detection for Cloud settings for the security profile.
- log
Analytics stringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security
Monitoring ManagedCluster Security Profile Defender Security Monitoring - Microsoft Defender threat detection for Cloud settings for the security profile.
- log_
analytics_ strworkspace_ resource_ id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security_
monitoring ManagedCluster Security Profile Defender Security Monitoring - Microsoft Defender threat detection for Cloud settings for the security profile.
- log
Analytics StringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security
Monitoring Property Map - Microsoft Defender threat detection for Cloud settings for the security profile.
ManagedClusterSecurityProfileDefenderResponse, ManagedClusterSecurityProfileDefenderResponseArgs
Microsoft Defender settings for the security profile.- Log
Analytics stringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- Security
Monitoring Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile Defender Security Monitoring Response - Microsoft Defender threat detection for Cloud settings for the security profile.
- Log
Analytics stringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- Security
Monitoring ManagedCluster Security Profile Defender Security Monitoring Response - Microsoft Defender threat detection for Cloud settings for the security profile.
- log_
analytics_ stringworkspace_ resource_ id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security_
monitoring object - Microsoft Defender threat detection for Cloud settings for the security profile.
- log
Analytics StringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security
Monitoring ManagedCluster Security Profile Defender Security Monitoring Response - Microsoft Defender threat detection for Cloud settings for the security profile.
- log
Analytics stringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security
Monitoring ManagedCluster Security Profile Defender Security Monitoring Response - Microsoft Defender threat detection for Cloud settings for the security profile.
- log_
analytics_ strworkspace_ resource_ id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security_
monitoring ManagedCluster Security Profile Defender Security Monitoring Response - Microsoft Defender threat detection for Cloud settings for the security profile.
- log
Analytics StringWorkspace Resource Id - Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.
- security
Monitoring Property Map - Microsoft Defender threat detection for Cloud settings for the security profile.
ManagedClusterSecurityProfileDefenderSecurityMonitoring, ManagedClusterSecurityProfileDefenderSecurityMonitoringArgs
Microsoft Defender settings for the security profile threat detection.- Enabled bool
- Whether to enable Defender threat detection
- Enabled bool
- Whether to enable Defender threat detection
- enabled bool
- Whether to enable Defender threat detection
- enabled Boolean
- Whether to enable Defender threat detection
- enabled boolean
- Whether to enable Defender threat detection
- enabled bool
- Whether to enable Defender threat detection
- enabled Boolean
- Whether to enable Defender threat detection
ManagedClusterSecurityProfileDefenderSecurityMonitoringResponse, ManagedClusterSecurityProfileDefenderSecurityMonitoringResponseArgs
Microsoft Defender settings for the security profile threat detection.- Enabled bool
- Whether to enable Defender threat detection
- Enabled bool
- Whether to enable Defender threat detection
- enabled bool
- Whether to enable Defender threat detection
- enabled Boolean
- Whether to enable Defender threat detection
- enabled boolean
- Whether to enable Defender threat detection
- enabled bool
- Whether to enable Defender threat detection
- enabled Boolean
- Whether to enable Defender threat detection
ManagedClusterSecurityProfileImageCleaner, ManagedClusterSecurityProfileImageCleanerArgs
Image Cleaner removes unused images from nodes, freeing up disk space and helping to reduce attack surface area. Here are settings for the security profile.- Enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- Interval
Hours int - Image Cleaner scanning interval in hours.
- Enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- Interval
Hours int - Image Cleaner scanning interval in hours.
- enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- interval_
hours number - Image Cleaner scanning interval in hours.
- enabled Boolean
- Whether to enable Image Cleaner on AKS cluster.
- interval
Hours Integer - Image Cleaner scanning interval in hours.
- enabled boolean
- Whether to enable Image Cleaner on AKS cluster.
- interval
Hours number - Image Cleaner scanning interval in hours.
- enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- interval_
hours int - Image Cleaner scanning interval in hours.
- enabled Boolean
- Whether to enable Image Cleaner on AKS cluster.
- interval
Hours Number - Image Cleaner scanning interval in hours.
ManagedClusterSecurityProfileImageCleanerResponse, ManagedClusterSecurityProfileImageCleanerResponseArgs
Image Cleaner removes unused images from nodes, freeing up disk space and helping to reduce attack surface area. Here are settings for the security profile.- Enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- Interval
Hours int - Image Cleaner scanning interval in hours.
- Enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- Interval
Hours int - Image Cleaner scanning interval in hours.
- enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- interval_
hours number - Image Cleaner scanning interval in hours.
- enabled Boolean
- Whether to enable Image Cleaner on AKS cluster.
- interval
Hours Integer - Image Cleaner scanning interval in hours.
- enabled boolean
- Whether to enable Image Cleaner on AKS cluster.
- interval
Hours number - Image Cleaner scanning interval in hours.
- enabled bool
- Whether to enable Image Cleaner on AKS cluster.
- interval_
hours int - Image Cleaner scanning interval in hours.
- enabled Boolean
- Whether to enable Image Cleaner on AKS cluster.
- interval
Hours Number - Image Cleaner scanning interval in hours.
ManagedClusterSecurityProfileResponse, ManagedClusterSecurityProfileResponseArgs
Security profile for the container service cluster.- Azure
Key Pulumi.Vault Kms Azure Native. Container Service. Inputs. Azure Key Vault Kms Response - Azure Key Vault key management service settings for the security profile.
- Custom
CATrust List<string>Certificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- Defender
Pulumi.
Azure Native. Container Service. Inputs. Managed Cluster Security Profile Defender Response - Microsoft Defender settings for the security profile.
- Image
Cleaner Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile Image Cleaner Response - Image Cleaner settings for the security profile.
- Workload
Identity Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Security Profile Workload Identity Response - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- Azure
Key AzureVault Kms Key Vault Kms Response - Azure Key Vault key management service settings for the security profile.
- Custom
CATrust []stringCertificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- Defender
Managed
Cluster Security Profile Defender Response - Microsoft Defender settings for the security profile.
- Image
Cleaner ManagedCluster Security Profile Image Cleaner Response - Image Cleaner settings for the security profile.
- Workload
Identity ManagedCluster Security Profile Workload Identity Response - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure_
key_ objectvault_ kms - Azure Key Vault key management service settings for the security profile.
- custom_
ca_ list(string)trust_ certificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- defender object
- Microsoft Defender settings for the security profile.
- image_
cleaner object - Image Cleaner settings for the security profile.
- workload_
identity object - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure
Key AzureVault Kms Key Vault Kms Response - Azure Key Vault key management service settings for the security profile.
- custom
CATrust List<String>Certificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- defender
Managed
Cluster Security Profile Defender Response - Microsoft Defender settings for the security profile.
- image
Cleaner ManagedCluster Security Profile Image Cleaner Response - Image Cleaner settings for the security profile.
- workload
Identity ManagedCluster Security Profile Workload Identity Response - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure
Key AzureVault Kms Key Vault Kms Response - Azure Key Vault key management service settings for the security profile.
- custom
CATrust string[]Certificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- defender
Managed
Cluster Security Profile Defender Response - Microsoft Defender settings for the security profile.
- image
Cleaner ManagedCluster Security Profile Image Cleaner Response - Image Cleaner settings for the security profile.
- workload
Identity ManagedCluster Security Profile Workload Identity Response - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure_
key_ Azurevault_ kms Key Vault Kms Response - Azure Key Vault key management service settings for the security profile.
- custom_
ca_ Sequence[str]trust_ certificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- defender
Managed
Cluster Security Profile Defender Response - Microsoft Defender settings for the security profile.
- image_
cleaner ManagedCluster Security Profile Image Cleaner Response - Image Cleaner settings for the security profile.
- workload_
identity ManagedCluster Security Profile Workload Identity Response - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
- azure
Key Property MapVault Kms - Azure Key Vault key management service settings for the security profile.
- custom
CATrust List<String>Certificates - A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- defender Property Map
- Microsoft Defender settings for the security profile.
- image
Cleaner Property Map - Image Cleaner settings for the security profile.
- workload
Identity Property Map - Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.
ManagedClusterSecurityProfileWorkloadIdentity, ManagedClusterSecurityProfileWorkloadIdentityArgs
Workload identity settings for the security profile.- Enabled bool
- Whether to enable workload identity.
- Enabled bool
- Whether to enable workload identity.
- enabled bool
- Whether to enable workload identity.
- enabled Boolean
- Whether to enable workload identity.
- enabled boolean
- Whether to enable workload identity.
- enabled bool
- Whether to enable workload identity.
- enabled Boolean
- Whether to enable workload identity.
ManagedClusterSecurityProfileWorkloadIdentityResponse, ManagedClusterSecurityProfileWorkloadIdentityResponseArgs
Workload identity settings for the security profile.- Enabled bool
- Whether to enable workload identity.
- Enabled bool
- Whether to enable workload identity.
- enabled bool
- Whether to enable workload identity.
- enabled Boolean
- Whether to enable workload identity.
- enabled boolean
- Whether to enable workload identity.
- enabled bool
- Whether to enable workload identity.
- enabled Boolean
- Whether to enable workload identity.
ManagedClusterServicePrincipalProfile, ManagedClusterServicePrincipalProfileArgs
Information about a service principal identity for the cluster to use for manipulating Azure APIs.ManagedClusterServicePrincipalProfileResponse, ManagedClusterServicePrincipalProfileResponseArgs
Information about a service principal identity for the cluster to use for manipulating Azure APIs.ManagedClusterStaticEgressGatewayProfile, ManagedClusterStaticEgressGatewayProfileArgs
The Static Egress Gateway addon configuration for the cluster.- Enabled bool
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
- Enabled bool
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
- enabled bool
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
- enabled Boolean
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
- enabled boolean
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
- enabled bool
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
- enabled Boolean
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
ManagedClusterStaticEgressGatewayProfileResponse, ManagedClusterStaticEgressGatewayProfileResponseArgs
The Static Egress Gateway addon configuration for the cluster.- Enabled bool
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
- Enabled bool
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
- enabled bool
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
- enabled Boolean
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
- enabled boolean
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
- enabled bool
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
- enabled Boolean
- Enable Static Egress Gateway addon. Indicates if Static Egress Gateway addon is enabled or not.
ManagedClusterStatusResponse, ManagedClusterStatusResponseArgs
Contains read-only information about the Managed Cluster.- Provisioning
Error Pulumi.Azure Native. Container Service. Inputs. Error Detail Response - The error details information of the managed cluster. Preserves the detailed info of failure. If there was no error, this field is omitted.
- Provisioning
Error ErrorDetail Response - The error details information of the managed cluster. Preserves the detailed info of failure. If there was no error, this field is omitted.
- provisioning_
error object - The error details information of the managed cluster. Preserves the detailed info of failure. If there was no error, this field is omitted.
- provisioning
Error ErrorDetail Response - The error details information of the managed cluster. Preserves the detailed info of failure. If there was no error, this field is omitted.
- provisioning
Error ErrorDetail Response - The error details information of the managed cluster. Preserves the detailed info of failure. If there was no error, this field is omitted.
- provisioning_
error ErrorDetail Response - The error details information of the managed cluster. Preserves the detailed info of failure. If there was no error, this field is omitted.
- provisioning
Error Property Map - The error details information of the managed cluster. Preserves the detailed info of failure. If there was no error, this field is omitted.
ManagedClusterStorageProfile, ManagedClusterStorageProfileArgs
Storage profile for the container service cluster.- Blob
CSIDriver Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile Blob CSIDriver - AzureBlob CSI Driver settings for the storage profile.
- Disk
CSIDriver Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile Disk CSIDriver - AzureDisk CSI Driver settings for the storage profile.
- File
CSIDriver Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile File CSIDriver - AzureFile CSI Driver settings for the storage profile.
- Snapshot
Controller Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile Snapshot Controller - Snapshot Controller settings for the storage profile.
- Blob
CSIDriver ManagedCluster Storage Profile Blob CSIDriver - AzureBlob CSI Driver settings for the storage profile.
- Disk
CSIDriver ManagedCluster Storage Profile Disk CSIDriver - AzureDisk CSI Driver settings for the storage profile.
- File
CSIDriver ManagedCluster Storage Profile File CSIDriver - AzureFile CSI Driver settings for the storage profile.
- Snapshot
Controller ManagedCluster Storage Profile Snapshot Controller - Snapshot Controller settings for the storage profile.
- blob_
csi_ objectdriver - AzureBlob CSI Driver settings for the storage profile.
- disk_
csi_ objectdriver - AzureDisk CSI Driver settings for the storage profile.
- file_
csi_ objectdriver - AzureFile CSI Driver settings for the storage profile.
- snapshot_
controller object - Snapshot Controller settings for the storage profile.
- blob
CSIDriver ManagedCluster Storage Profile Blob CSIDriver - AzureBlob CSI Driver settings for the storage profile.
- disk
CSIDriver ManagedCluster Storage Profile Disk CSIDriver - AzureDisk CSI Driver settings for the storage profile.
- file
CSIDriver ManagedCluster Storage Profile File CSIDriver - AzureFile CSI Driver settings for the storage profile.
- snapshot
Controller ManagedCluster Storage Profile Snapshot Controller - Snapshot Controller settings for the storage profile.
- blob
CSIDriver ManagedCluster Storage Profile Blob CSIDriver - AzureBlob CSI Driver settings for the storage profile.
- disk
CSIDriver ManagedCluster Storage Profile Disk CSIDriver - AzureDisk CSI Driver settings for the storage profile.
- file
CSIDriver ManagedCluster Storage Profile File CSIDriver - AzureFile CSI Driver settings for the storage profile.
- snapshot
Controller ManagedCluster Storage Profile Snapshot Controller - Snapshot Controller settings for the storage profile.
- blob_
csi_ Manageddriver Cluster Storage Profile Blob CSIDriver - AzureBlob CSI Driver settings for the storage profile.
- disk_
csi_ Manageddriver Cluster Storage Profile Disk CSIDriver - AzureDisk CSI Driver settings for the storage profile.
- file_
csi_ Manageddriver Cluster Storage Profile File CSIDriver - AzureFile CSI Driver settings for the storage profile.
- snapshot_
controller ManagedCluster Storage Profile Snapshot Controller - Snapshot Controller settings for the storage profile.
- blob
CSIDriver Property Map - AzureBlob CSI Driver settings for the storage profile.
- disk
CSIDriver Property Map - AzureDisk CSI Driver settings for the storage profile.
- file
CSIDriver Property Map - AzureFile CSI Driver settings for the storage profile.
- snapshot
Controller Property Map - Snapshot Controller settings for the storage profile.
ManagedClusterStorageProfileBlobCSIDriver, ManagedClusterStorageProfileBlobCSIDriverArgs
AzureBlob CSI Driver settings for the storage profile.- Enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- Enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled Boolean
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled boolean
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled Boolean
- Whether to enable AzureBlob CSI Driver. The default value is false.
ManagedClusterStorageProfileBlobCSIDriverResponse, ManagedClusterStorageProfileBlobCSIDriverResponseArgs
AzureBlob CSI Driver settings for the storage profile.- Enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- Enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled Boolean
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled boolean
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled bool
- Whether to enable AzureBlob CSI Driver. The default value is false.
- enabled Boolean
- Whether to enable AzureBlob CSI Driver. The default value is false.
ManagedClusterStorageProfileDiskCSIDriver, ManagedClusterStorageProfileDiskCSIDriverArgs
AzureDisk CSI Driver settings for the storage profile.- Enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- Enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled boolean
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureDisk CSI Driver. The default value is true.
ManagedClusterStorageProfileDiskCSIDriverResponse, ManagedClusterStorageProfileDiskCSIDriverResponseArgs
AzureDisk CSI Driver settings for the storage profile.- Enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- Enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled boolean
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled bool
- Whether to enable AzureDisk CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureDisk CSI Driver. The default value is true.
ManagedClusterStorageProfileFileCSIDriver, ManagedClusterStorageProfileFileCSIDriverArgs
AzureFile CSI Driver settings for the storage profile.- Enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- Enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled boolean
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureFile CSI Driver. The default value is true.
ManagedClusterStorageProfileFileCSIDriverResponse, ManagedClusterStorageProfileFileCSIDriverResponseArgs
AzureFile CSI Driver settings for the storage profile.- Enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- Enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled boolean
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled bool
- Whether to enable AzureFile CSI Driver. The default value is true.
- enabled Boolean
- Whether to enable AzureFile CSI Driver. The default value is true.
ManagedClusterStorageProfileResponse, ManagedClusterStorageProfileResponseArgs
Storage profile for the container service cluster.- Blob
CSIDriver Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile Blob CSIDriver Response - AzureBlob CSI Driver settings for the storage profile.
- Disk
CSIDriver Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile Disk CSIDriver Response - AzureDisk CSI Driver settings for the storage profile.
- File
CSIDriver Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile File CSIDriver Response - AzureFile CSI Driver settings for the storage profile.
- Snapshot
Controller Pulumi.Azure Native. Container Service. Inputs. Managed Cluster Storage Profile Snapshot Controller Response - Snapshot Controller settings for the storage profile.
- Blob
CSIDriver ManagedCluster Storage Profile Blob CSIDriver Response - AzureBlob CSI Driver settings for the storage profile.
- Disk
CSIDriver ManagedCluster Storage Profile Disk CSIDriver Response - AzureDisk CSI Driver settings for the storage profile.
- File
CSIDriver ManagedCluster Storage Profile File CSIDriver Response - AzureFile CSI Driver settings for the storage profile.
- Snapshot
Controller ManagedCluster Storage Profile Snapshot Controller Response - Snapshot Controller settings for the storage profile.
- blob_
csi_ objectdriver - AzureBlob CSI Driver settings for the storage profile.
- disk_
csi_ objectdriver - AzureDisk CSI Driver settings for the storage profile.
- file_
csi_ objectdriver - AzureFile CSI Driver settings for the storage profile.
- snapshot_
controller object - Snapshot Controller settings for the storage profile.
- blob
CSIDriver ManagedCluster Storage Profile Blob CSIDriver Response - AzureBlob CSI Driver settings for the storage profile.
- disk
CSIDriver ManagedCluster Storage Profile Disk CSIDriver Response - AzureDisk CSI Driver settings for the storage profile.
- file
CSIDriver ManagedCluster Storage Profile File CSIDriver Response - AzureFile CSI Driver settings for the storage profile.
- snapshot
Controller ManagedCluster Storage Profile Snapshot Controller Response - Snapshot Controller settings for the storage profile.
- blob
CSIDriver ManagedCluster Storage Profile Blob CSIDriver Response - AzureBlob CSI Driver settings for the storage profile.
- disk
CSIDriver ManagedCluster Storage Profile Disk CSIDriver Response - AzureDisk CSI Driver settings for the storage profile.
- file
CSIDriver ManagedCluster Storage Profile File CSIDriver Response - AzureFile CSI Driver settings for the storage profile.
- snapshot
Controller ManagedCluster Storage Profile Snapshot Controller Response - Snapshot Controller settings for the storage profile.
- blob_
csi_ Manageddriver Cluster Storage Profile Blob CSIDriver Response - AzureBlob CSI Driver settings for the storage profile.
- disk_
csi_ Manageddriver Cluster Storage Profile Disk CSIDriver Response - AzureDisk CSI Driver settings for the storage profile.
- file_
csi_ Manageddriver Cluster Storage Profile File CSIDriver Response - AzureFile CSI Driver settings for the storage profile.
- snapshot_
controller ManagedCluster Storage Profile Snapshot Controller Response - Snapshot Controller settings for the storage profile.
- blob
CSIDriver Property Map - AzureBlob CSI Driver settings for the storage profile.
- disk
CSIDriver Property Map - AzureDisk CSI Driver settings for the storage profile.
- file
CSIDriver Property Map - AzureFile CSI Driver settings for the storage profile.
- snapshot
Controller Property Map - Snapshot Controller settings for the storage profile.
ManagedClusterStorageProfileSnapshotController, ManagedClusterStorageProfileSnapshotControllerArgs
Snapshot Controller settings for the storage profile.- Enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- Enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- enabled Boolean
- Whether to enable Snapshot Controller. The default value is true.
- enabled boolean
- Whether to enable Snapshot Controller. The default value is true.
- enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- enabled Boolean
- Whether to enable Snapshot Controller. The default value is true.
ManagedClusterStorageProfileSnapshotControllerResponse, ManagedClusterStorageProfileSnapshotControllerResponseArgs
Snapshot Controller settings for the storage profile.- Enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- Enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- enabled Boolean
- Whether to enable Snapshot Controller. The default value is true.
- enabled boolean
- Whether to enable Snapshot Controller. The default value is true.
- enabled bool
- Whether to enable Snapshot Controller. The default value is true.
- enabled Boolean
- Whether to enable Snapshot Controller. The default value is true.
ManagedClusterWindowsProfile, ManagedClusterWindowsProfileArgs
Profile for Windows VMs in the managed cluster.- Admin
Username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- Admin
Password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- Enable
CSIProxy bool - Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
- Gmsa
Profile Pulumi.Azure Native. Container Service. Inputs. Windows Gmsa Profile - The Windows gMSA Profile in the Managed Cluster.
- License
Type string | Pulumi.Azure Native. Container Service. License Type - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- Admin
Username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- Admin
Password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- Enable
CSIProxy bool - Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
- Gmsa
Profile WindowsGmsa Profile - The Windows gMSA Profile in the Managed Cluster.
- License
Type string | LicenseType - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin_
username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin_
password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable_
csi_ boolproxy - Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa_
profile object - The Windows gMSA Profile in the Managed Cluster.
- license_
type string | "None" | "Windows_Server" - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin
Username String - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin
Password String - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable
CSIProxy Boolean - Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa
Profile WindowsGmsa Profile - The Windows gMSA Profile in the Managed Cluster.
- license
Type String | LicenseType - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin
Username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin
Password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable
CSIProxy boolean - Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa
Profile WindowsGmsa Profile - The Windows gMSA Profile in the Managed Cluster.
- license
Type string | LicenseType - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin_
username str - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin_
password str - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable_
csi_ boolproxy - Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa_
profile WindowsGmsa Profile - The Windows gMSA Profile in the Managed Cluster.
- license_
type str | LicenseType - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin
Username String - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin
Password String - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable
CSIProxy Boolean - Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa
Profile Property Map - The Windows gMSA Profile in the Managed Cluster.
- license
Type String | "None" | "Windows_Server" - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
ManagedClusterWindowsProfileResponse, ManagedClusterWindowsProfileResponseArgs
Profile for Windows VMs in the managed cluster.- Admin
Username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- Admin
Password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- Enable
CSIProxy bool - Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
- Gmsa
Profile Pulumi.Azure Native. Container Service. Inputs. Windows Gmsa Profile Response - The Windows gMSA Profile in the Managed Cluster.
- License
Type string - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- Admin
Username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- Admin
Password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- Enable
CSIProxy bool - Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
- Gmsa
Profile WindowsGmsa Profile Response - The Windows gMSA Profile in the Managed Cluster.
- License
Type string - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin_
username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin_
password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable_
csi_ boolproxy - Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa_
profile object - The Windows gMSA Profile in the Managed Cluster.
- license_
type string - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin
Username String - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin
Password String - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable
CSIProxy Boolean - Whether to enable CSI proxy. For more details on CSI proxy, see the CSI proxy GitHub repo.
- gmsa
Profile WindowsGmsa Profile Response - The Windows gMSA Profile in the Managed Cluster.
- license
Type String - The license type to use for Windows VMs. See Azure Hybrid User Benefits for more details.
- admin
Username string - Specifies the name of the administrator account. Restriction: Cannot end in "." Disallowed values: "administrator", "admin", "user", "user1", "test", "user2", "test1", "user3", "admin1", "1", "123", "a", "actuser", "adm", "admin2", "aspnet", "backup", "console", "david", "guest", "john", "owner", "root", "server", "sql", "support", "support_388945a0", "sys", "test2", "test3", "user4", "user5". Minimum-length: 1 character Max-length: 20 characters
- admin
Password string - Specifies the password of the administrator account. Minimum-length: 8 characters Max-length: 123 characters Complexity requirements: 3 out of 4 conditions below need to be fulfilled Has lower characters Has upper characters Has a digit Has a special character (Regex match [\W_]) **Disallowed values:** "abc@123", "P@$$w0rd", "P@ssw0rd", "P@ssword123", "Pa$$word", "pass@word1", "Password!", "Password1", "Password22", "iloveyou!"
- enable
CSIProxy