azure.containerservice.KubernetesCluster (v4)

Azure v4.42.0 (4.x), Mar 9 26

We recommend using Azure Native.

Viewing docs for Azure v4.42.0 (Older version)
published on Monday, Mar 9, 2026 by Pulumi

Go to latest version

Schema (JSON)

pulumi/pulumi-azure

We recommend using Azure Native.

Viewing docs for Azure v4.42.0 (Older version)
published on Monday, Mar 9, 2026 by Pulumi

Go to latest version

Schema (JSON)

pulumi/pulumi-azure

Example Usage

This example provisions a basic Managed Kubernetes Cluster.

using Pulumi;
using Azure = Pulumi.Azure;

class MyStack : Stack
{
    public MyStack()
    {
        var exampleResourceGroup = new Azure.Core.ResourceGroup("exampleResourceGroup", new Azure.Core.ResourceGroupArgs
        {
            Location = "West Europe",
        });
        var exampleKubernetesCluster = new Azure.ContainerService.KubernetesCluster("exampleKubernetesCluster", new Azure.ContainerService.KubernetesClusterArgs
        {
            Location = exampleResourceGroup.Location,
            ResourceGroupName = exampleResourceGroup.Name,
            DnsPrefix = "exampleaks1",
            DefaultNodePool = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolArgs
            {
                Name = "default",
                NodeCount = 1,
                VmSize = "Standard_D2_v2",
            },
            Identity = new Azure.ContainerService.Inputs.KubernetesClusterIdentityArgs
            {
                Type = "SystemAssigned",
            },
            Tags = 
            {
                { "Environment", "Production" },
            },
        });
        this.ClientCertificate = exampleKubernetesCluster.KubeConfigs.Apply(kubeConfigs => kubeConfigs[0].ClientCertificate);
        this.KubeConfig = exampleKubernetesCluster.KubeConfigRaw;
    }

    [Output("clientCertificate")]
    public Output<string> ClientCertificate { get; set; }
    [Output("kubeConfig")]
    public Output<string> KubeConfig { get; set; }
}

package main

import (
	"github.com/pulumi/pulumi-azure/sdk/v4/go/azure/containerservice"
	"github.com/pulumi/pulumi-azure/sdk/v4/go/azure/core"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		exampleResourceGroup, err := core.NewResourceGroup(ctx, "exampleResourceGroup", &core.ResourceGroupArgs{
			Location: pulumi.String("West Europe"),
		})
		if err != nil {
			return err
		}
		exampleKubernetesCluster, err := containerservice.NewKubernetesCluster(ctx, "exampleKubernetesCluster", &containerservice.KubernetesClusterArgs{
			Location:          exampleResourceGroup.Location,
			ResourceGroupName: exampleResourceGroup.Name,
			DnsPrefix:         pulumi.String("exampleaks1"),
			DefaultNodePool: &containerservice.KubernetesClusterDefaultNodePoolArgs{
				Name:      pulumi.String("default"),
				NodeCount: pulumi.Int(1),
				VmSize:    pulumi.String("Standard_D2_v2"),
			},
			Identity: &containerservice.KubernetesClusterIdentityArgs{
				Type: pulumi.String("SystemAssigned"),
			},
			Tags: pulumi.StringMap{
				"Environment": pulumi.String("Production"),
			},
		})
		if err != nil {
			return err
		}
		ctx.Export("clientCertificate", exampleKubernetesCluster.KubeConfigs.ApplyT(func(kubeConfigs []containerservice.KubernetesClusterKubeConfig) (string, error) {
			return kubeConfigs[0].ClientCertificate, nil
		}).(pulumi.StringOutput))
		ctx.Export("kubeConfig", exampleKubernetesCluster.KubeConfigRaw)
		return nil
	})
}

Example coming soon!

import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";

const exampleResourceGroup = new azure.core.ResourceGroup("exampleResourceGroup", {location: "West Europe"});
const exampleKubernetesCluster = new azure.containerservice.KubernetesCluster("exampleKubernetesCluster", {
    location: exampleResourceGroup.location,
    resourceGroupName: exampleResourceGroup.name,
    dnsPrefix: "exampleaks1",
    defaultNodePool: {
        name: "default",
        nodeCount: 1,
        vmSize: "Standard_D2_v2",
    },
    identity: {
        type: "SystemAssigned",
    },
    tags: {
        Environment: "Production",
    },
});
export const clientCertificate = exampleKubernetesCluster.kubeConfigs.apply(kubeConfigs => kubeConfigs[0].clientCertificate);
export const kubeConfig = exampleKubernetesCluster.kubeConfigRaw;

import pulumi
import pulumi_azure as azure

example_resource_group = azure.core.ResourceGroup("exampleResourceGroup", location="West Europe")
example_kubernetes_cluster = azure.containerservice.KubernetesCluster("exampleKubernetesCluster",
    location=example_resource_group.location,
    resource_group_name=example_resource_group.name,
    dns_prefix="exampleaks1",
    default_node_pool=azure.containerservice.KubernetesClusterDefaultNodePoolArgs(
        name="default",
        node_count=1,
        vm_size="Standard_D2_v2",
    ),
    identity=azure.containerservice.KubernetesClusterIdentityArgs(
        type="SystemAssigned",
    ),
    tags={
        "Environment": "Production",
    })
pulumi.export("clientCertificate", example_kubernetes_cluster.kube_configs[0].client_certificate)
pulumi.export("kubeConfig", example_kubernetes_cluster.kube_config_raw)

Example coming soon!

Create KubernetesCluster Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new KubernetesCluster(name: string, args: KubernetesClusterArgs, opts?: CustomResourceOptions);

@overload
def KubernetesCluster(resource_name: str,
                      args: KubernetesClusterArgs,
                      opts: Optional[ResourceOptions] = None)

@overload
def KubernetesCluster(resource_name: str,
                      opts: Optional[ResourceOptions] = None,
                      default_node_pool: Optional[KubernetesClusterDefaultNodePoolArgs] = None,
                      resource_group_name: Optional[str] = None,
                      local_account_disabled: Optional[bool] = None,
                      location: Optional[str] = None,
                      automatic_channel_upgrade: Optional[str] = None,
                      azure_active_directory_role_based_access_control: Optional[KubernetesClusterAzureActiveDirectoryRoleBasedAccessControlArgs] = None,
                      azure_policy_enabled: Optional[bool] = None,
                      api_server_authorized_ip_ranges: Optional[Sequence[str]] = None,
                      disk_encryption_set_id: Optional[str] = None,
                      dns_prefix: Optional[str] = None,
                      dns_prefix_private_cluster: Optional[str] = None,
                      maintenance_window: Optional[KubernetesClusterMaintenanceWindowArgs] = None,
                      http_application_routing_enabled: Optional[bool] = None,
                      http_proxy_config: Optional[KubernetesClusterHttpProxyConfigArgs] = None,
                      identity: Optional[KubernetesClusterIdentityArgs] = None,
                      ingress_application_gateway: Optional[KubernetesClusterIngressApplicationGatewayArgs] = None,
                      key_vault_secrets_provider: Optional[KubernetesClusterKeyVaultSecretsProviderArgs] = None,
                      kubelet_identities: Optional[Sequence[KubernetesClusterKubeletIdentityArgs]] = None,
                      kubernetes_version: Optional[str] = None,
                      linux_profile: Optional[KubernetesClusterLinuxProfileArgs] = None,
                      auto_scaler_profile: Optional[KubernetesClusterAutoScalerProfileArgs] = None,
                      aci_connector_linux: Optional[KubernetesClusterAciConnectorLinuxArgs] = None,
                      enable_pod_security_policy: Optional[bool] = None,
                      name: Optional[str] = None,
                      network_profile: Optional[KubernetesClusterNetworkProfileArgs] = None,
                      node_resource_group: Optional[str] = None,
                      oms_agent: Optional[KubernetesClusterOmsAgentArgs] = None,
                      open_service_mesh_enabled: Optional[bool] = None,
                      private_cluster_enabled: Optional[bool] = None,
                      private_cluster_public_fqdn_enabled: Optional[bool] = None,
                      private_dns_zone_id: Optional[str] = None,
                      private_link_enabled: Optional[bool] = None,
                      public_network_access_enabled: Optional[bool] = None,
                      addon_profile: Optional[KubernetesClusterAddonProfileArgs] = None,
                      role_based_access_control: Optional[KubernetesClusterRoleBasedAccessControlArgs] = None,
                      role_based_access_control_enabled: Optional[bool] = None,
                      service_principal: Optional[KubernetesClusterServicePrincipalArgs] = None,
                      sku_tier: Optional[str] = None,
                      tags: Optional[Mapping[str, str]] = None,
                      windows_profile: Optional[KubernetesClusterWindowsProfileArgs] = None)

func NewKubernetesCluster(ctx *Context, name string, args KubernetesClusterArgs, opts ...ResourceOption) (*KubernetesCluster, error)

public KubernetesCluster(string name, KubernetesClusterArgs args, CustomResourceOptions? opts = null)

public KubernetesCluster(String name, KubernetesClusterArgs args)
public KubernetesCluster(String name, KubernetesClusterArgs args, CustomResourceOptions options)

type: azure:containerservice:KubernetesCluster
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args KubernetesClusterArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args KubernetesClusterArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args KubernetesClusterArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args KubernetesClusterArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args KubernetesClusterArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var kubernetesClusterResource = new Azure.ContainerService.KubernetesCluster("kubernetesClusterResource", new()
{
    DefaultNodePool = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolArgs
    {
        Name = "string",
        VmSize = "string",
        NodePublicIpPrefixId = "string",
        UpgradeSettings = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs
        {
            MaxSurge = "string",
        },
        FipsEnabled = false,
        KubeletConfig = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolKubeletConfigArgs
        {
            AllowedUnsafeSysctls = new[]
            {
                "string",
            },
            ContainerLogMaxLine = 0,
            ContainerLogMaxSizeMb = 0,
            CpuCfsQuotaEnabled = false,
            CpuCfsQuotaPeriod = "string",
            CpuManagerPolicy = "string",
            ImageGcHighThreshold = 0,
            ImageGcLowThreshold = 0,
            PodMaxPid = 0,
            TopologyManagerPolicy = "string",
        },
        KubeletDiskType = "string",
        LinuxOsConfig = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolLinuxOsConfigArgs
        {
            SwapFileSizeMb = 0,
            SysctlConfig = new Azure.ContainerService.Inputs.KubernetesClusterDefaultNodePoolLinuxOsConfigSysctlConfigArgs
            {
                FsAioMaxNr = 0,
                FsFileMax = 0,
                FsInotifyMaxUserWatches = 0,
                FsNrOpen = 0,
                KernelThreadsMax = 0,
                NetCoreNetdevMaxBacklog = 0,
                NetCoreOptmemMax = 0,
                NetCoreRmemDefault = 0,
                NetCoreRmemMax = 0,
                NetCoreSomaxconn = 0,
                NetCoreWmemDefault = 0,
                NetCoreWmemMax = 0,
                NetIpv4IpLocalPortRangeMax = 0,
                NetIpv4IpLocalPortRangeMin = 0,
                NetIpv4NeighDefaultGcThresh1 = 0,
                NetIpv4NeighDefaultGcThresh2 = 0,
                NetIpv4NeighDefaultGcThresh3 = 0,
                NetIpv4TcpFinTimeout = 0,
                NetIpv4TcpKeepaliveIntvl = 0,
                NetIpv4TcpKeepaliveProbes = 0,
                NetIpv4TcpKeepaliveTime = 0,
                NetIpv4TcpMaxSynBacklog = 0,
                NetIpv4TcpMaxTwBuckets = 0,
                NetIpv4TcpTwReuse = false,
                NetNetfilterNfConntrackBuckets = 0,
                NetNetfilterNfConntrackMax = 0,
                VmMaxMapCount = 0,
                VmSwappiness = 0,
                VmVfsCachePressure = 0,
            },
            TransparentHugePageDefrag = "string",
            TransparentHugePageEnabled = "string",
        },
        MaxCount = 0,
        MaxPods = 0,
        MinCount = 0,
        EnableHostEncryption = false,
        NodeCount = 0,
        OnlyCriticalAddonsEnabled = false,
        EnableNodePublicIp = false,
        AvailabilityZones = new[]
        {
            "string",
        },
        NodeLabels = 
        {
            { "string", "string" },
        },
        OrchestratorVersion = "string",
        OsDiskSizeGb = 0,
        OsDiskType = "string",
        OsSku = "string",
        PodSubnetId = "string",
        ProximityPlacementGroupId = "string",
        Tags = 
        {
            { "string", "string" },
        },
        Type = "string",
        UltraSsdEnabled = false,
        NodeTaints = new[]
        {
            "string",
        },
        EnableAutoScaling = false,
        VnetSubnetId = "string",
    },
    ResourceGroupName = "string",
    LocalAccountDisabled = false,
    Location = "string",
    AutomaticChannelUpgrade = "string",
    AzureActiveDirectoryRoleBasedAccessControl = new Azure.ContainerService.Inputs.KubernetesClusterAzureActiveDirectoryRoleBasedAccessControlArgs
    {
        AdminGroupObjectIds = new[]
        {
            "string",
        },
        AzureRbacEnabled = false,
        ClientAppId = "string",
        Managed = false,
        ServerAppId = "string",
        ServerAppSecret = "string",
        TenantId = "string",
    },
    AzurePolicyEnabled = false,
    ApiServerAuthorizedIpRanges = new[]
    {
        "string",
    },
    DiskEncryptionSetId = "string",
    DnsPrefix = "string",
    DnsPrefixPrivateCluster = "string",
    MaintenanceWindow = new Azure.ContainerService.Inputs.KubernetesClusterMaintenanceWindowArgs
    {
        Alloweds = new[]
        {
            new Azure.ContainerService.Inputs.KubernetesClusterMaintenanceWindowAllowedArgs
            {
                Day = "string",
                Hours = new[]
                {
                    0,
                },
            },
        },
        NotAlloweds = new[]
        {
            new Azure.ContainerService.Inputs.KubernetesClusterMaintenanceWindowNotAllowedArgs
            {
                End = "string",
                Start = "string",
            },
        },
    },
    HttpApplicationRoutingEnabled = false,
    HttpProxyConfig = new Azure.ContainerService.Inputs.KubernetesClusterHttpProxyConfigArgs
    {
        HttpProxy = "string",
        HttpsProxy = "string",
        NoProxies = new[]
        {
            "string",
        },
        TrustedCa = "string",
    },
    Identity = new Azure.ContainerService.Inputs.KubernetesClusterIdentityArgs
    {
        Type = "string",
        PrincipalId = "string",
        TenantId = "string",
        UserAssignedIdentityId = "string",
    },
    IngressApplicationGateway = new Azure.ContainerService.Inputs.KubernetesClusterIngressApplicationGatewayArgs
    {
        EffectiveGatewayId = "string",
        GatewayId = "string",
        GatewayName = "string",
        IngressApplicationGatewayIdentities = new[]
        {
            new Azure.ContainerService.Inputs.KubernetesClusterIngressApplicationGatewayIngressApplicationGatewayIdentityArgs
            {
                ClientId = "string",
                ObjectId = "string",
                UserAssignedIdentityId = "string",
            },
        },
        SubnetCidr = "string",
        SubnetId = "string",
    },
    KeyVaultSecretsProvider = new Azure.ContainerService.Inputs.KubernetesClusterKeyVaultSecretsProviderArgs
    {
        SecretIdentities = new[]
        {
            new Azure.ContainerService.Inputs.KubernetesClusterKeyVaultSecretsProviderSecretIdentityArgs
            {
                ClientId = "string",
                ObjectId = "string",
                UserAssignedIdentityId = "string",
            },
        },
        SecretRotationEnabled = false,
        SecretRotationInterval = "string",
    },
    KubeletIdentities = new[]
    {
        new Azure.ContainerService.Inputs.KubernetesClusterKubeletIdentityArgs
        {
            ClientId = "string",
            ObjectId = "string",
            UserAssignedIdentityId = "string",
        },
    },
    KubernetesVersion = "string",
    LinuxProfile = new Azure.ContainerService.Inputs.KubernetesClusterLinuxProfileArgs
    {
        AdminUsername = "string",
        SshKey = new Azure.ContainerService.Inputs.KubernetesClusterLinuxProfileSshKeyArgs
        {
            KeyData = "string",
        },
    },
    AutoScalerProfile = new Azure.ContainerService.Inputs.KubernetesClusterAutoScalerProfileArgs
    {
        BalanceSimilarNodeGroups = false,
        EmptyBulkDeleteMax = "string",
        Expander = "string",
        MaxGracefulTerminationSec = "string",
        MaxNodeProvisioningTime = "string",
        MaxUnreadyNodes = 0,
        MaxUnreadyPercentage = 0,
        NewPodScaleUpDelay = "string",
        ScaleDownDelayAfterAdd = "string",
        ScaleDownDelayAfterDelete = "string",
        ScaleDownDelayAfterFailure = "string",
        ScaleDownUnneeded = "string",
        ScaleDownUnready = "string",
        ScaleDownUtilizationThreshold = "string",
        ScanInterval = "string",
        SkipNodesWithLocalStorage = false,
        SkipNodesWithSystemPods = false,
    },
    AciConnectorLinux = new Azure.ContainerService.Inputs.KubernetesClusterAciConnectorLinuxArgs
    {
        SubnetName = "string",
    },
    EnablePodSecurityPolicy = false,
    Name = "string",
    NetworkProfile = new Azure.ContainerService.Inputs.KubernetesClusterNetworkProfileArgs
    {
        NetworkPlugin = "string",
        DnsServiceIp = "string",
        DockerBridgeCidr = "string",
        LoadBalancerProfile = new Azure.ContainerService.Inputs.KubernetesClusterNetworkProfileLoadBalancerProfileArgs
        {
            EffectiveOutboundIps = new[]
            {
                "string",
            },
            IdleTimeoutInMinutes = 0,
            ManagedOutboundIpCount = 0,
            OutboundIpAddressIds = new[]
            {
                "string",
            },
            OutboundIpPrefixIds = new[]
            {
                "string",
            },
            OutboundPortsAllocated = 0,
        },
        LoadBalancerSku = "string",
        NatGatewayProfile = new Azure.ContainerService.Inputs.KubernetesClusterNetworkProfileNatGatewayProfileArgs
        {
            EffectiveOutboundIps = new[]
            {
                "string",
            },
            IdleTimeoutInMinutes = 0,
            ManagedOutboundIpCount = 0,
        },
        NetworkMode = "string",
        NetworkPolicy = "string",
        OutboundType = "string",
        PodCidr = "string",
        ServiceCidr = "string",
    },
    NodeResourceGroup = "string",
    OmsAgent = new Azure.ContainerService.Inputs.KubernetesClusterOmsAgentArgs
    {
        LogAnalyticsWorkspaceId = "string",
        OmsAgentIdentities = new[]
        {
            new Azure.ContainerService.Inputs.KubernetesClusterOmsAgentOmsAgentIdentityArgs
            {
                ClientId = "string",
                ObjectId = "string",
                UserAssignedIdentityId = "string",
            },
        },
    },
    OpenServiceMeshEnabled = false,
    PrivateClusterEnabled = false,
    PrivateClusterPublicFqdnEnabled = false,
    PrivateDnsZoneId = "string",
    PublicNetworkAccessEnabled = false,
    RoleBasedAccessControlEnabled = false,
    ServicePrincipal = new Azure.ContainerService.Inputs.KubernetesClusterServicePrincipalArgs
    {
        ClientId = "string",
        ClientSecret = "string",
    },
    SkuTier = "string",
    Tags = 
    {
        { "string", "string" },
    },
    WindowsProfile = new Azure.ContainerService.Inputs.KubernetesClusterWindowsProfileArgs
    {
        AdminUsername = "string",
        AdminPassword = "string",
        License = "string",
    },
});

example, err := containerservice.NewKubernetesCluster(ctx, "kubernetesClusterResource", &containerservice.KubernetesClusterArgs{
	DefaultNodePool: &containerservice.KubernetesClusterDefaultNodePoolArgs{
		Name:                 pulumi.String("string"),
		VmSize:               pulumi.String("string"),
		NodePublicIpPrefixId: pulumi.String("string"),
		UpgradeSettings: &containerservice.KubernetesClusterDefaultNodePoolUpgradeSettingsArgs{
			MaxSurge: pulumi.String("string"),
		},
		FipsEnabled: pulumi.Bool(false),
		KubeletConfig: &containerservice.KubernetesClusterDefaultNodePoolKubeletConfigArgs{
			AllowedUnsafeSysctls: pulumi.StringArray{
				pulumi.String("string"),
			},
			ContainerLogMaxLine:   pulumi.Int(0),
			ContainerLogMaxSizeMb: pulumi.Int(0),
			CpuCfsQuotaEnabled:    pulumi.Bool(false),
			CpuCfsQuotaPeriod:     pulumi.String("string"),
			CpuManagerPolicy:      pulumi.String("string"),
			ImageGcHighThreshold:  pulumi.Int(0),
			ImageGcLowThreshold:   pulumi.Int(0),
			PodMaxPid:             pulumi.Int(0),
			TopologyManagerPolicy: pulumi.String("string"),
		},
		KubeletDiskType: pulumi.String("string"),
		LinuxOsConfig: &containerservice.KubernetesClusterDefaultNodePoolLinuxOsConfigArgs{
			SwapFileSizeMb: pulumi.Int(0),
			SysctlConfig: &containerservice.KubernetesClusterDefaultNodePoolLinuxOsConfigSysctlConfigArgs{
				FsAioMaxNr:                     pulumi.Int(0),
				FsFileMax:                      pulumi.Int(0),
				FsInotifyMaxUserWatches:        pulumi.Int(0),
				FsNrOpen:                       pulumi.Int(0),
				KernelThreadsMax:               pulumi.Int(0),
				NetCoreNetdevMaxBacklog:        pulumi.Int(0),
				NetCoreOptmemMax:               pulumi.Int(0),
				NetCoreRmemDefault:             pulumi.Int(0),
				NetCoreRmemMax:                 pulumi.Int(0),
				NetCoreSomaxconn:               pulumi.Int(0),
				NetCoreWmemDefault:             pulumi.Int(0),
				NetCoreWmemMax:                 pulumi.Int(0),
				NetIpv4IpLocalPortRangeMax:     pulumi.Int(0),
				NetIpv4IpLocalPortRangeMin:     pulumi.Int(0),
				NetIpv4NeighDefaultGcThresh1:   pulumi.Int(0),
				NetIpv4NeighDefaultGcThresh2:   pulumi.Int(0),
				NetIpv4NeighDefaultGcThresh3:   pulumi.Int(0),
				NetIpv4TcpFinTimeout:           pulumi.Int(0),
				NetIpv4TcpKeepaliveIntvl:       pulumi.Int(0),
				NetIpv4TcpKeepaliveProbes:      pulumi.Int(0),
				NetIpv4TcpKeepaliveTime:        pulumi.Int(0),
				NetIpv4TcpMaxSynBacklog:        pulumi.Int(0),
				NetIpv4TcpMaxTwBuckets:         pulumi.Int(0),
				NetIpv4TcpTwReuse:              pulumi.Bool(false),
				NetNetfilterNfConntrackBuckets: pulumi.Int(0),
				NetNetfilterNfConntrackMax:     pulumi.Int(0),
				VmMaxMapCount:                  pulumi.Int(0),
				VmSwappiness:                   pulumi.Int(0),
				VmVfsCachePressure:             pulumi.Int(0),
			},
			TransparentHugePageDefrag:  pulumi.String("string"),
			TransparentHugePageEnabled: pulumi.String("string"),
		},
		MaxCount:                  pulumi.Int(0),
		MaxPods:                   pulumi.Int(0),
		MinCount:                  pulumi.Int(0),
		EnableHostEncryption:      pulumi.Bool(false),
		NodeCount:                 pulumi.Int(0),
		OnlyCriticalAddonsEnabled: pulumi.Bool(false),
		EnableNodePublicIp:        pulumi.Bool(false),
		AvailabilityZones: pulumi.StringArray{
			pulumi.String("string"),
		},
		NodeLabels: pulumi.StringMap{
			"string": pulumi.String("string"),
		},
		OrchestratorVersion:       pulumi.String("string"),
		OsDiskSizeGb:              pulumi.Int(0),
		OsDiskType:                pulumi.String("string"),
		OsSku:                     pulumi.String("string"),
		PodSubnetId:               pulumi.String("string"),
		ProximityPlacementGroupId: pulumi.String("string"),
		Tags: pulumi.StringMap{
			"string": pulumi.String("string"),
		},
		Type:            pulumi.String("string"),
		UltraSsdEnabled: pulumi.Bool(false),
		NodeTaints: pulumi.StringArray{
			pulumi.String("string"),
		},
		EnableAutoScaling: pulumi.Bool(false),
		VnetSubnetId:      pulumi.String("string"),
	},
	ResourceGroupName:       pulumi.String("string"),
	LocalAccountDisabled:    pulumi.Bool(false),
	Location:                pulumi.String("string"),
	AutomaticChannelUpgrade: pulumi.String("string"),
	AzureActiveDirectoryRoleBasedAccessControl: &containerservice.KubernetesClusterAzureActiveDirectoryRoleBasedAccessControlArgs{
		AdminGroupObjectIds: pulumi.StringArray{
			pulumi.String("string"),
		},
		AzureRbacEnabled: pulumi.Bool(false),
		ClientAppId:      pulumi.String("string"),
		Managed:          pulumi.Bool(false),
		ServerAppId:      pulumi.String("string"),
		ServerAppSecret:  pulumi.String("string"),
		TenantId:         pulumi.String("string"),
	},
	AzurePolicyEnabled: pulumi.Bool(false),
	ApiServerAuthorizedIpRanges: pulumi.StringArray{
		pulumi.String("string"),
	},
	DiskEncryptionSetId:     pulumi.String("string"),
	DnsPrefix:               pulumi.String("string"),
	DnsPrefixPrivateCluster: pulumi.String("string"),
	MaintenanceWindow: &containerservice.KubernetesClusterMaintenanceWindowArgs{
		Alloweds: containerservice.KubernetesClusterMaintenanceWindowAllowedArray{
			&containerservice.KubernetesClusterMaintenanceWindowAllowedArgs{
				Day: pulumi.String("string"),
				Hours: pulumi.IntArray{
					pulumi.Int(0),
				},
			},
		},
		NotAlloweds: containerservice.KubernetesClusterMaintenanceWindowNotAllowedArray{
			&containerservice.KubernetesClusterMaintenanceWindowNotAllowedArgs{
				End:   pulumi.String("string"),
				Start: pulumi.String("string"),
			},
		},
	},
	HttpApplicationRoutingEnabled: pulumi.Bool(false),
	HttpProxyConfig: &containerservice.KubernetesClusterHttpProxyConfigArgs{
		HttpProxy:  pulumi.String("string"),
		HttpsProxy: pulumi.String("string"),
		NoProxies: pulumi.StringArray{
			pulumi.String("string"),
		},
		TrustedCa: pulumi.String("string"),
	},
	Identity: &containerservice.KubernetesClusterIdentityArgs{
		Type:                   pulumi.String("string"),
		PrincipalId:            pulumi.String("string"),
		TenantId:               pulumi.String("string"),
		UserAssignedIdentityId: pulumi.String("string"),
	},
	IngressApplicationGateway: &containerservice.KubernetesClusterIngressApplicationGatewayArgs{
		EffectiveGatewayId: pulumi.String("string"),
		GatewayId:          pulumi.String("string"),
		GatewayName:        pulumi.String("string"),
		IngressApplicationGatewayIdentities: containerservice.KubernetesClusterIngressApplicationGatewayIngressApplicationGatewayIdentityArray{
			&containerservice.KubernetesClusterIngressApplicationGatewayIngressApplicationGatewayIdentityArgs{
				ClientId:               pulumi.String("string"),
				ObjectId:               pulumi.String("string"),
				UserAssignedIdentityId: pulumi.String("string"),
			},
		},
		SubnetCidr: pulumi.String("string"),
		SubnetId:   pulumi.String("string"),
	},
	KeyVaultSecretsProvider: &containerservice.KubernetesClusterKeyVaultSecretsProviderArgs{
		SecretIdentities: containerservice.KubernetesClusterKeyVaultSecretsProviderSecretIdentityArray{
			&containerservice.KubernetesClusterKeyVaultSecretsProviderSecretIdentityArgs{
				ClientId:               pulumi.String("string"),
				ObjectId:               pulumi.String("string"),
				UserAssignedIdentityId: pulumi.String("string"),
			},
		},
		SecretRotationEnabled:  pulumi.Bool(false),
		SecretRotationInterval: pulumi.String("string"),
	},
	KubeletIdentities: containerservice.KubernetesClusterKubeletIdentityArray{
		&containerservice.KubernetesClusterKubeletIdentityArgs{
			ClientId:               pulumi.String("string"),
			ObjectId:               pulumi.String("string"),
			UserAssignedIdentityId: pulumi.String("string"),
		},
	},
	KubernetesVersion: pulumi.String("string"),
	LinuxProfile: &containerservice.KubernetesClusterLinuxProfileArgs{
		AdminUsername: pulumi.String("string"),
		SshKey: &containerservice.KubernetesClusterLinuxProfileSshKeyArgs{
			KeyData: pulumi.String("string"),
		},
	},
	AutoScalerProfile: &containerservice.KubernetesClusterAutoScalerProfileArgs{
		BalanceSimilarNodeGroups:      pulumi.Bool(false),
		EmptyBulkDeleteMax:            pulumi.String("string"),
		Expander:                      pulumi.String("string"),
		MaxGracefulTerminationSec:     pulumi.String("string"),
		MaxNodeProvisioningTime:       pulumi.String("string"),
		MaxUnreadyNodes:               pulumi.Int(0),
		MaxUnreadyPercentage:          pulumi.Float64(0),
		NewPodScaleUpDelay:            pulumi.String("string"),
		ScaleDownDelayAfterAdd:        pulumi.String("string"),
		ScaleDownDelayAfterDelete:     pulumi.String("string"),
		ScaleDownDelayAfterFailure:    pulumi.String("string"),
		ScaleDownUnneeded:             pulumi.String("string"),
		ScaleDownUnready:              pulumi.String("string"),
		ScaleDownUtilizationThreshold: pulumi.String("string"),
		ScanInterval:                  pulumi.String("string"),
		SkipNodesWithLocalStorage:     pulumi.Bool(false),
		SkipNodesWithSystemPods:       pulumi.Bool(false),
	},
	AciConnectorLinux: &containerservice.KubernetesClusterAciConnectorLinuxArgs{
		SubnetName: pulumi.String("string"),
	},
	EnablePodSecurityPolicy: pulumi.Bool(false),
	Name:                    pulumi.String("string"),
	NetworkProfile: &containerservice.KubernetesClusterNetworkProfileArgs{
		NetworkPlugin:    pulumi.String("string"),
		DnsServiceIp:     pulumi.String("string"),
		DockerBridgeCidr: pulumi.String("string"),
		LoadBalancerProfile: &containerservice.KubernetesClusterNetworkProfileLoadBalancerProfileArgs{
			EffectiveOutboundIps: pulumi.StringArray{
				pulumi.String("string"),
			},
			IdleTimeoutInMinutes:   pulumi.Int(0),
			ManagedOutboundIpCount: pulumi.Int(0),
			OutboundIpAddressIds: pulumi.StringArray{
				pulumi.String("string"),
			},
			OutboundIpPrefixIds: pulumi.StringArray{
				pulumi.String("string"),
			},
			OutboundPortsAllocated: pulumi.Int(0),
		},
		LoadBalancerSku: pulumi.String("string"),
		NatGatewayProfile: &containerservice.KubernetesClusterNetworkProfileNatGatewayProfileArgs{
			EffectiveOutboundIps: pulumi.StringArray{
				pulumi.String("string"),
			},
			IdleTimeoutInMinutes:   pulumi.Int(0),
			ManagedOutboundIpCount: pulumi.Int(0),
		},
		NetworkMode:   pulumi.String("string"),
		NetworkPolicy: pulumi.String("string"),
		OutboundType:  pulumi.String("string"),
		PodCidr:       pulumi.String("string"),
		ServiceCidr:   pulumi.String("string"),
	},
	NodeResourceGroup: pulumi.String("string"),
	OmsAgent: &containerservice.KubernetesClusterOmsAgentArgs{
		LogAnalyticsWorkspaceId: pulumi.String("string"),
		OmsAgentIdentities: containerservice.KubernetesClusterOmsAgentOmsAgentIdentityArray{
			&containerservice.KubernetesClusterOmsAgentOmsAgentIdentityArgs{
				ClientId:               pulumi.String("string"),
				ObjectId:               pulumi.String("string"),
				UserAssignedIdentityId: pulumi.String("string"),
			},
		},
	},
	OpenServiceMeshEnabled:          pulumi.Bool(false),
	PrivateClusterEnabled:           pulumi.Bool(false),
	PrivateClusterPublicFqdnEnabled: pulumi.Bool(false),
	PrivateDnsZoneId:                pulumi.String("string"),
	PublicNetworkAccessEnabled:      pulumi.Bool(false),
	RoleBasedAccessControlEnabled:   pulumi.Bool(false),
	ServicePrincipal: &containerservice.KubernetesClusterServicePrincipalArgs{
		ClientId:     pulumi.String("string"),
		ClientSecret: pulumi.String("string"),
	},
	SkuTier: pulumi.String("string"),
	Tags: pulumi.StringMap{
		"string": pulumi.String("string"),
	},
	WindowsProfile: &containerservice.KubernetesClusterWindowsProfileArgs{
		AdminUsername: pulumi.String("string"),
		AdminPassword: pulumi.String("string"),
		License:       pulumi.String("string"),
	},
})

var kubernetesClusterResource = new KubernetesCluster("kubernetesClusterResource", KubernetesClusterArgs.builder()
    .defaultNodePool(KubernetesClusterDefaultNodePoolArgs.builder()
        .name("string")
        .vmSize("string")
        .nodePublicIpPrefixId("string")
        .upgradeSettings(KubernetesClusterDefaultNodePoolUpgradeSettingsArgs.builder()
            .maxSurge("string")
            .build())
        .fipsEnabled(false)
        .kubeletConfig(KubernetesClusterDefaultNodePoolKubeletConfigArgs.builder()
            .allowedUnsafeSysctls("string")
            .containerLogMaxLine(0)
            .containerLogMaxSizeMb(0)
            .cpuCfsQuotaEnabled(false)
            .cpuCfsQuotaPeriod("string")
            .cpuManagerPolicy("string")
            .imageGcHighThreshold(0)
            .imageGcLowThreshold(0)
            .podMaxPid(0)
            .topologyManagerPolicy("string")
            .build())
        .kubeletDiskType("string")
        .linuxOsConfig(KubernetesClusterDefaultNodePoolLinuxOsConfigArgs.builder()
            .swapFileSizeMb(0)
            .sysctlConfig(KubernetesClusterDefaultNodePoolLinuxOsConfigSysctlConfigArgs.builder()
                .fsAioMaxNr(0)
                .fsFileMax(0)
                .fsInotifyMaxUserWatches(0)
                .fsNrOpen(0)
                .kernelThreadsMax(0)
                .netCoreNetdevMaxBacklog(0)
                .netCoreOptmemMax(0)
                .netCoreRmemDefault(0)
                .netCoreRmemMax(0)
                .netCoreSomaxconn(0)
                .netCoreWmemDefault(0)
                .netCoreWmemMax(0)
                .netIpv4IpLocalPortRangeMax(0)
                .netIpv4IpLocalPortRangeMin(0)
                .netIpv4NeighDefaultGcThresh1(0)
                .netIpv4NeighDefaultGcThresh2(0)
                .netIpv4NeighDefaultGcThresh3(0)
                .netIpv4TcpFinTimeout(0)
                .netIpv4TcpKeepaliveIntvl(0)
                .netIpv4TcpKeepaliveProbes(0)
                .netIpv4TcpKeepaliveTime(0)
                .netIpv4TcpMaxSynBacklog(0)
                .netIpv4TcpMaxTwBuckets(0)
                .netIpv4TcpTwReuse(false)
                .netNetfilterNfConntrackBuckets(0)
                .netNetfilterNfConntrackMax(0)
                .vmMaxMapCount(0)
                .vmSwappiness(0)
                .vmVfsCachePressure(0)
                .build())
            .transparentHugePageDefrag("string")
            .transparentHugePageEnabled("string")
            .build())
        .maxCount(0)
        .maxPods(0)
        .minCount(0)
        .enableHostEncryption(false)
        .nodeCount(0)
        .onlyCriticalAddonsEnabled(false)
        .enableNodePublicIp(false)
        .availabilityZones("string")
        .nodeLabels(Map.of("string", "string"))
        .orchestratorVersion("string")
        .osDiskSizeGb(0)
        .osDiskType("string")
        .osSku("string")
        .podSubnetId("string")
        .proximityPlacementGroupId("string")
        .tags(Map.of("string", "string"))
        .type("string")
        .ultraSsdEnabled(false)
        .nodeTaints("string")
        .enableAutoScaling(false)
        .vnetSubnetId("string")
        .build())
    .resourceGroupName("string")
    .localAccountDisabled(false)
    .location("string")
    .automaticChannelUpgrade("string")
    .azureActiveDirectoryRoleBasedAccessControl(KubernetesClusterAzureActiveDirectoryRoleBasedAccessControlArgs.builder()
        .adminGroupObjectIds("string")
        .azureRbacEnabled(false)
        .clientAppId("string")
        .managed(false)
        .serverAppId("string")
        .serverAppSecret("string")
        .tenantId("string")
        .build())
    .azurePolicyEnabled(false)
    .apiServerAuthorizedIpRanges("string")
    .diskEncryptionSetId("string")
    .dnsPrefix("string")
    .dnsPrefixPrivateCluster("string")
    .maintenanceWindow(KubernetesClusterMaintenanceWindowArgs.builder()
        .alloweds(KubernetesClusterMaintenanceWindowAllowedArgs.builder()
            .day("string")
            .hours(0)
            .build())
        .notAlloweds(KubernetesClusterMaintenanceWindowNotAllowedArgs.builder()
            .end("string")
            .start("string")
            .build())
        .build())
    .httpApplicationRoutingEnabled(false)
    .httpProxyConfig(KubernetesClusterHttpProxyConfigArgs.builder()
        .httpProxy("string")
        .httpsProxy("string")
        .noProxies("string")
        .trustedCa("string")
        .build())
    .identity(KubernetesClusterIdentityArgs.builder()
        .type("string")
        .principalId("string")
        .tenantId("string")
        .userAssignedIdentityId("string")
        .build())
    .ingressApplicationGateway(KubernetesClusterIngressApplicationGatewayArgs.builder()
        .effectiveGatewayId("string")
        .gatewayId("string")
        .gatewayName("string")
        .ingressApplicationGatewayIdentities(KubernetesClusterIngressApplicationGatewayIngressApplicationGatewayIdentityArgs.builder()
            .clientId("string")
            .objectId("string")
            .userAssignedIdentityId("string")
            .build())
        .subnetCidr("string")
        .subnetId("string")
        .build())
    .keyVaultSecretsProvider(KubernetesClusterKeyVaultSecretsProviderArgs.builder()
        .secretIdentities(KubernetesClusterKeyVaultSecretsProviderSecretIdentityArgs.builder()
            .clientId("string")
            .objectId("string")
            .userAssignedIdentityId("string")
            .build())
        .secretRotationEnabled(false)
        .secretRotationInterval("string")
        .build())
    .kubeletIdentities(KubernetesClusterKubeletIdentityArgs.builder()
        .clientId("string")
        .objectId("string")
        .userAssignedIdentityId("string")
        .build())
    .kubernetesVersion("string")
    .linuxProfile(KubernetesClusterLinuxProfileArgs.builder()
        .adminUsername("string")
        .sshKey(KubernetesClusterLinuxProfileSshKeyArgs.builder()
            .keyData("string")
            .build())
        .build())
    .autoScalerProfile(KubernetesClusterAutoScalerProfileArgs.builder()
        .balanceSimilarNodeGroups(false)
        .emptyBulkDeleteMax("string")
        .expander("string")
        .maxGracefulTerminationSec("string")
        .maxNodeProvisioningTime("string")
        .maxUnreadyNodes(0)
        .maxUnreadyPercentage(0.0)
        .newPodScaleUpDelay("string")
        .scaleDownDelayAfterAdd("string")
        .scaleDownDelayAfterDelete("string")
        .scaleDownDelayAfterFailure("string")
        .scaleDownUnneeded("string")
        .scaleDownUnready("string")
        .scaleDownUtilizationThreshold("string")
        .scanInterval("string")
        .skipNodesWithLocalStorage(false)
        .skipNodesWithSystemPods(false)
        .build())
    .aciConnectorLinux(KubernetesClusterAciConnectorLinuxArgs.builder()
        .subnetName("string")
        .build())
    .enablePodSecurityPolicy(false)
    .name("string")
    .networkProfile(KubernetesClusterNetworkProfileArgs.builder()
        .networkPlugin("string")
        .dnsServiceIp("string")
        .dockerBridgeCidr("string")
        .loadBalancerProfile(KubernetesClusterNetworkProfileLoadBalancerProfileArgs.builder()
            .effectiveOutboundIps("string")
            .idleTimeoutInMinutes(0)
            .managedOutboundIpCount(0)
            .outboundIpAddressIds("string")
            .outboundIpPrefixIds("string")
            .outboundPortsAllocated(0)
            .build())
        .loadBalancerSku("string")
        .natGatewayProfile(KubernetesClusterNetworkProfileNatGatewayProfileArgs.builder()
            .effectiveOutboundIps("string")
            .idleTimeoutInMinutes(0)
            .managedOutboundIpCount(0)
            .build())
        .networkMode("string")
        .networkPolicy("string")
        .outboundType("string")
        .podCidr("string")
        .serviceCidr("string")
        .build())
    .nodeResourceGroup("string")
    .omsAgent(KubernetesClusterOmsAgentArgs.builder()
        .logAnalyticsWorkspaceId("string")
        .omsAgentIdentities(KubernetesClusterOmsAgentOmsAgentIdentityArgs.builder()
            .clientId("string")
            .objectId("string")
            .userAssignedIdentityId("string")
            .build())
        .build())
    .openServiceMeshEnabled(false)
    .privateClusterEnabled(false)
    .privateClusterPublicFqdnEnabled(false)
    .privateDnsZoneId("string")
    .publicNetworkAccessEnabled(false)
    .roleBasedAccessControlEnabled(false)
    .servicePrincipal(KubernetesClusterServicePrincipalArgs.builder()
        .clientId("string")
        .clientSecret("string")
        .build())
    .skuTier("string")
    .tags(Map.of("string", "string"))
    .windowsProfile(KubernetesClusterWindowsProfileArgs.builder()
        .adminUsername("string")
        .adminPassword("string")
        .license("string")
        .build())
    .build());

kubernetes_cluster_resource = azure.containerservice.KubernetesCluster("kubernetesClusterResource",
    default_node_pool={
        "name": "string",
        "vm_size": "string",
        "node_public_ip_prefix_id": "string",
        "upgrade_settings": {
            "max_surge": "string",
        },
        "fips_enabled": False,
        "kubelet_config": {
            "allowed_unsafe_sysctls": ["string"],
            "container_log_max_line": 0,
            "container_log_max_size_mb": 0,
            "cpu_cfs_quota_enabled": False,
            "cpu_cfs_quota_period": "string",
            "cpu_manager_policy": "string",
            "image_gc_high_threshold": 0,
            "image_gc_low_threshold": 0,
            "pod_max_pid": 0,
            "topology_manager_policy": "string",
        },
        "kubelet_disk_type": "string",
        "linux_os_config": {
            "swap_file_size_mb": 0,
            "sysctl_config": {
                "fs_aio_max_nr": 0,
                "fs_file_max": 0,
                "fs_inotify_max_user_watches": 0,
                "fs_nr_open": 0,
                "kernel_threads_max": 0,
                "net_core_netdev_max_backlog": 0,
                "net_core_optmem_max": 0,
                "net_core_rmem_default": 0,
                "net_core_rmem_max": 0,
                "net_core_somaxconn": 0,
                "net_core_wmem_default": 0,
                "net_core_wmem_max": 0,
                "net_ipv4_ip_local_port_range_max": 0,
                "net_ipv4_ip_local_port_range_min": 0,
                "net_ipv4_neigh_default_gc_thresh1": 0,
                "net_ipv4_neigh_default_gc_thresh2": 0,
                "net_ipv4_neigh_default_gc_thresh3": 0,
                "net_ipv4_tcp_fin_timeout": 0,
                "net_ipv4_tcp_keepalive_intvl": 0,
                "net_ipv4_tcp_keepalive_probes": 0,
                "net_ipv4_tcp_keepalive_time": 0,
                "net_ipv4_tcp_max_syn_backlog": 0,
                "net_ipv4_tcp_max_tw_buckets": 0,
                "net_ipv4_tcp_tw_reuse": False,
                "net_netfilter_nf_conntrack_buckets": 0,
                "net_netfilter_nf_conntrack_max": 0,
                "vm_max_map_count": 0,
                "vm_swappiness": 0,
                "vm_vfs_cache_pressure": 0,
            },
            "transparent_huge_page_defrag": "string",
            "transparent_huge_page_enabled": "string",
        },
        "max_count": 0,
        "max_pods": 0,
        "min_count": 0,
        "enable_host_encryption": False,
        "node_count": 0,
        "only_critical_addons_enabled": False,
        "enable_node_public_ip": False,
        "availability_zones": ["string"],
        "node_labels": {
            "string": "string",
        },
        "orchestrator_version": "string",
        "os_disk_size_gb": 0,
        "os_disk_type": "string",
        "os_sku": "string",
        "pod_subnet_id": "string",
        "proximity_placement_group_id": "string",
        "tags": {
            "string": "string",
        },
        "type": "string",
        "ultra_ssd_enabled": False,
        "node_taints": ["string"],
        "enable_auto_scaling": False,
        "vnet_subnet_id": "string",
    },
    resource_group_name="string",
    local_account_disabled=False,
    location="string",
    automatic_channel_upgrade="string",
    azure_active_directory_role_based_access_control={
        "admin_group_object_ids": ["string"],
        "azure_rbac_enabled": False,
        "client_app_id": "string",
        "managed": False,
        "server_app_id": "string",
        "server_app_secret": "string",
        "tenant_id": "string",
    },
    azure_policy_enabled=False,
    api_server_authorized_ip_ranges=["string"],
    disk_encryption_set_id="string",
    dns_prefix="string",
    dns_prefix_private_cluster="string",
    maintenance_window={
        "alloweds": [{
            "day": "string",
            "hours": [0],
        }],
        "not_alloweds": [{
            "end": "string",
            "start": "string",
        }],
    },
    http_application_routing_enabled=False,
    http_proxy_config={
        "http_proxy": "string",
        "https_proxy": "string",
        "no_proxies": ["string"],
        "trusted_ca": "string",
    },
    identity={
        "type": "string",
        "principal_id": "string",
        "tenant_id": "string",
        "user_assigned_identity_id": "string",
    },
    ingress_application_gateway={
        "effective_gateway_id": "string",
        "gateway_id": "string",
        "gateway_name": "string",
        "ingress_application_gateway_identities": [{
            "client_id": "string",
            "object_id": "string",
            "user_assigned_identity_id": "string",
        }],
        "subnet_cidr": "string",
        "subnet_id": "string",
    },
    key_vault_secrets_provider={
        "secret_identities": [{
            "client_id": "string",
            "object_id": "string",
            "user_assigned_identity_id": "string",
        }],
        "secret_rotation_enabled": False,
        "secret_rotation_interval": "string",
    },
    kubelet_identities=[{
        "client_id": "string",
        "object_id": "string",
        "user_assigned_identity_id": "string",
    }],
    kubernetes_version="string",
    linux_profile={
        "admin_username": "string",
        "ssh_key": {
            "key_data": "string",
        },
    },
    auto_scaler_profile={
        "balance_similar_node_groups": False,
        "empty_bulk_delete_max": "string",
        "expander": "string",
        "max_graceful_termination_sec": "string",
        "max_node_provisioning_time": "string",
        "max_unready_nodes": 0,
        "max_unready_percentage": 0,
        "new_pod_scale_up_delay": "string",
        "scale_down_delay_after_add": "string",
        "scale_down_delay_after_delete": "string",
        "scale_down_delay_after_failure": "string",
        "scale_down_unneeded": "string",
        "scale_down_unready": "string",
        "scale_down_utilization_threshold": "string",
        "scan_interval": "string",
        "skip_nodes_with_local_storage": False,
        "skip_nodes_with_system_pods": False,
    },
    aci_connector_linux={
        "subnet_name": "string",
    },
    enable_pod_security_policy=False,
    name="string",
    network_profile={
        "network_plugin": "string",
        "dns_service_ip": "string",
        "docker_bridge_cidr": "string",
        "load_balancer_profile": {
            "effective_outbound_ips": ["string"],
            "idle_timeout_in_minutes": 0,
            "managed_outbound_ip_count": 0,
            "outbound_ip_address_ids": ["string"],
            "outbound_ip_prefix_ids": ["string"],
            "outbound_ports_allocated": 0,
        },
        "load_balancer_sku": "string",
        "nat_gateway_profile": {
            "effective_outbound_ips": ["string"],
            "idle_timeout_in_minutes": 0,
            "managed_outbound_ip_count": 0,
        },
        "network_mode": "string",
        "network_policy": "string",
        "outbound_type": "string",
        "pod_cidr": "string",
        "service_cidr": "string",
    },
    node_resource_group="string",
    oms_agent={
        "log_analytics_workspace_id": "string",
        "oms_agent_identities": [{
            "client_id": "string",
            "object_id": "string",
            "user_assigned_identity_id": "string",
        }],
    },
    open_service_mesh_enabled=False,
    private_cluster_enabled=False,
    private_cluster_public_fqdn_enabled=False,
    private_dns_zone_id="string",
    public_network_access_enabled=False,
    role_based_access_control_enabled=False,
    service_principal={
        "client_id": "string",
        "client_secret": "string",
    },
    sku_tier="string",
    tags={
        "string": "string",
    },
    windows_profile={
        "admin_username": "string",
        "admin_password": "string",
        "license": "string",
    })

const kubernetesClusterResource = new azure.containerservice.KubernetesCluster("kubernetesClusterResource", {
    defaultNodePool: {
        name: "string",
        vmSize: "string",
        nodePublicIpPrefixId: "string",
        upgradeSettings: {
            maxSurge: "string",
        },
        fipsEnabled: false,
        kubeletConfig: {
            allowedUnsafeSysctls: ["string"],
            containerLogMaxLine: 0,
            containerLogMaxSizeMb: 0,
            cpuCfsQuotaEnabled: false,
            cpuCfsQuotaPeriod: "string",
            cpuManagerPolicy: "string",
            imageGcHighThreshold: 0,
            imageGcLowThreshold: 0,
            podMaxPid: 0,
            topologyManagerPolicy: "string",
        },
        kubeletDiskType: "string",
        linuxOsConfig: {
            swapFileSizeMb: 0,
            sysctlConfig: {
                fsAioMaxNr: 0,
                fsFileMax: 0,
                fsInotifyMaxUserWatches: 0,
                fsNrOpen: 0,
                kernelThreadsMax: 0,
                netCoreNetdevMaxBacklog: 0,
                netCoreOptmemMax: 0,
                netCoreRmemDefault: 0,
                netCoreRmemMax: 0,
                netCoreSomaxconn: 0,
                netCoreWmemDefault: 0,
                netCoreWmemMax: 0,
                netIpv4IpLocalPortRangeMax: 0,
                netIpv4IpLocalPortRangeMin: 0,
                netIpv4NeighDefaultGcThresh1: 0,
                netIpv4NeighDefaultGcThresh2: 0,
                netIpv4NeighDefaultGcThresh3: 0,
                netIpv4TcpFinTimeout: 0,
                netIpv4TcpKeepaliveIntvl: 0,
                netIpv4TcpKeepaliveProbes: 0,
                netIpv4TcpKeepaliveTime: 0,
                netIpv4TcpMaxSynBacklog: 0,
                netIpv4TcpMaxTwBuckets: 0,
                netIpv4TcpTwReuse: false,
                netNetfilterNfConntrackBuckets: 0,
                netNetfilterNfConntrackMax: 0,
                vmMaxMapCount: 0,
                vmSwappiness: 0,
                vmVfsCachePressure: 0,
            },
            transparentHugePageDefrag: "string",
            transparentHugePageEnabled: "string",
        },
        maxCount: 0,
        maxPods: 0,
        minCount: 0,
        enableHostEncryption: false,
        nodeCount: 0,
        onlyCriticalAddonsEnabled: false,
        enableNodePublicIp: false,
        availabilityZones: ["string"],
        nodeLabels: {
            string: "string",
        },
        orchestratorVersion: "string",
        osDiskSizeGb: 0,
        osDiskType: "string",
        osSku: "string",
        podSubnetId: "string",
        proximityPlacementGroupId: "string",
        tags: {
            string: "string",
        },
        type: "string",
        ultraSsdEnabled: false,
        nodeTaints: ["string"],
        enableAutoScaling: false,
        vnetSubnetId: "string",
    },
    resourceGroupName: "string",
    localAccountDisabled: false,
    location: "string",
    automaticChannelUpgrade: "string",
    azureActiveDirectoryRoleBasedAccessControl: {
        adminGroupObjectIds: ["string"],
        azureRbacEnabled: false,
        clientAppId: "string",
        managed: false,
        serverAppId: "string",
        serverAppSecret: "string",
        tenantId: "string",
    },
    azurePolicyEnabled: false,
    apiServerAuthorizedIpRanges: ["string"],
    diskEncryptionSetId: "string",
    dnsPrefix: "string",
    dnsPrefixPrivateCluster: "string",
    maintenanceWindow: {
        alloweds: [{
            day: "string",
            hours: [0],
        }],
        notAlloweds: [{
            end: "string",
            start: "string",
        }],
    },
    httpApplicationRoutingEnabled: false,
    httpProxyConfig: {
        httpProxy: "string",
        httpsProxy: "string",
        noProxies: ["string"],
        trustedCa: "string",
    },
    identity: {
        type: "string",
        principalId: "string",
        tenantId: "string",
        userAssignedIdentityId: "string",
    },
    ingressApplicationGateway: {
        effectiveGatewayId: "string",
        gatewayId: "string",
        gatewayName: "string",
        ingressApplicationGatewayIdentities: [{
            clientId: "string",
            objectId: "string",
            userAssignedIdentityId: "string",
        }],
        subnetCidr: "string",
        subnetId: "string",
    },
    keyVaultSecretsProvider: {
        secretIdentities: [{
            clientId: "string",
            objectId: "string",
            userAssignedIdentityId: "string",
        }],
        secretRotationEnabled: false,
        secretRotationInterval: "string",
    },
    kubeletIdentities: [{
        clientId: "string",
        objectId: "string",
        userAssignedIdentityId: "string",
    }],
    kubernetesVersion: "string",
    linuxProfile: {
        adminUsername: "string",
        sshKey: {
            keyData: "string",
        },
    },
    autoScalerProfile: {
        balanceSimilarNodeGroups: false,
        emptyBulkDeleteMax: "string",
        expander: "string",
        maxGracefulTerminationSec: "string",
        maxNodeProvisioningTime: "string",
        maxUnreadyNodes: 0,
        maxUnreadyPercentage: 0,
        newPodScaleUpDelay: "string",
        scaleDownDelayAfterAdd: "string",
        scaleDownDelayAfterDelete: "string",
        scaleDownDelayAfterFailure: "string",
        scaleDownUnneeded: "string",
        scaleDownUnready: "string",
        scaleDownUtilizationThreshold: "string",
        scanInterval: "string",
        skipNodesWithLocalStorage: false,
        skipNodesWithSystemPods: false,
    },
    aciConnectorLinux: {
        subnetName: "string",
    },
    enablePodSecurityPolicy: false,
    name: "string",
    networkProfile: {
        networkPlugin: "string",
        dnsServiceIp: "string",
        dockerBridgeCidr: "string",
        loadBalancerProfile: {
            effectiveOutboundIps: ["string"],
            idleTimeoutInMinutes: 0,
            managedOutboundIpCount: 0,
            outboundIpAddressIds: ["string"],
            outboundIpPrefixIds: ["string"],
            outboundPortsAllocated: 0,
        },
        loadBalancerSku: "string",
        natGatewayProfile: {
            effectiveOutboundIps: ["string"],
            idleTimeoutInMinutes: 0,
            managedOutboundIpCount: 0,
        },
        networkMode: "string",
        networkPolicy: "string",
        outboundType: "string",
        podCidr: "string",
        serviceCidr: "string",
    },
    nodeResourceGroup: "string",
    omsAgent: {
        logAnalyticsWorkspaceId: "string",
        omsAgentIdentities: [{
            clientId: "string",
            objectId: "string",
            userAssignedIdentityId: "string",
        }],
    },
    openServiceMeshEnabled: false,
    privateClusterEnabled: false,
    privateClusterPublicFqdnEnabled: false,
    privateDnsZoneId: "string",
    publicNetworkAccessEnabled: false,
    roleBasedAccessControlEnabled: false,
    servicePrincipal: {
        clientId: "string",
        clientSecret: "string",
    },
    skuTier: "string",
    tags: {
        string: "string",
    },
    windowsProfile: {
        adminUsername: "string",
        adminPassword: "string",
        license: "string",
    },
});

type: azure:containerservice:KubernetesCluster
properties:
    aciConnectorLinux:
        subnetName: string
    apiServerAuthorizedIpRanges:
        - string
    autoScalerProfile:
        balanceSimilarNodeGroups: false
        emptyBulkDeleteMax: string
        expander: string
        maxGracefulTerminationSec: string
        maxNodeProvisioningTime: string
        maxUnreadyNodes: 0
        maxUnreadyPercentage: 0
        newPodScaleUpDelay: string
        scaleDownDelayAfterAdd: string
        scaleDownDelayAfterDelete: string
        scaleDownDelayAfterFailure: string
        scaleDownUnneeded: string
        scaleDownUnready: string
        scaleDownUtilizationThreshold: string
        scanInterval: string
        skipNodesWithLocalStorage: false
        skipNodesWithSystemPods: false
    automaticChannelUpgrade: string
    azureActiveDirectoryRoleBasedAccessControl:
        adminGroupObjectIds:
            - string
        azureRbacEnabled: false
        clientAppId: string
        managed: false
        serverAppId: string
        serverAppSecret: string
        tenantId: string
    azurePolicyEnabled: false
    defaultNodePool:
        availabilityZones:
            - string
        enableAutoScaling: false
        enableHostEncryption: false
        enableNodePublicIp: false
        fipsEnabled: false
        kubeletConfig:
            allowedUnsafeSysctls:
                - string
            containerLogMaxLine: 0
            containerLogMaxSizeMb: 0
            cpuCfsQuotaEnabled: false
            cpuCfsQuotaPeriod: string
            cpuManagerPolicy: string
            imageGcHighThreshold: 0
            imageGcLowThreshold: 0
            podMaxPid: 0
            topologyManagerPolicy: string
        kubeletDiskType: string
        linuxOsConfig:
            swapFileSizeMb: 0
            sysctlConfig:
                fsAioMaxNr: 0
                fsFileMax: 0
                fsInotifyMaxUserWatches: 0
                fsNrOpen: 0
                kernelThreadsMax: 0
                netCoreNetdevMaxBacklog: 0
                netCoreOptmemMax: 0
                netCoreRmemDefault: 0
                netCoreRmemMax: 0
                netCoreSomaxconn: 0
                netCoreWmemDefault: 0
                netCoreWmemMax: 0
                netIpv4IpLocalPortRangeMax: 0
                netIpv4IpLocalPortRangeMin: 0
                netIpv4NeighDefaultGcThresh1: 0
                netIpv4NeighDefaultGcThresh2: 0
                netIpv4NeighDefaultGcThresh3: 0
                netIpv4TcpFinTimeout: 0
                netIpv4TcpKeepaliveIntvl: 0
                netIpv4TcpKeepaliveProbes: 0
                netIpv4TcpKeepaliveTime: 0
                netIpv4TcpMaxSynBacklog: 0
                netIpv4TcpMaxTwBuckets: 0
                netIpv4TcpTwReuse: false
                netNetfilterNfConntrackBuckets: 0
                netNetfilterNfConntrackMax: 0
                vmMaxMapCount: 0
                vmSwappiness: 0
                vmVfsCachePressure: 0
            transparentHugePageDefrag: string
            transparentHugePageEnabled: string
        maxCount: 0
        maxPods: 0
        minCount: 0
        name: string
        nodeCount: 0
        nodeLabels:
            string: string
        nodePublicIpPrefixId: string
        nodeTaints:
            - string
        onlyCriticalAddonsEnabled: false
        orchestratorVersion: string
        osDiskSizeGb: 0
        osDiskType: string
        osSku: string
        podSubnetId: string
        proximityPlacementGroupId: string
        tags:
            string: string
        type: string
        ultraSsdEnabled: false
        upgradeSettings:
            maxSurge: string
        vmSize: string
        vnetSubnetId: string
    diskEncryptionSetId: string
    dnsPrefix: string
    dnsPrefixPrivateCluster: string
    enablePodSecurityPolicy: false
    httpApplicationRoutingEnabled: false
    httpProxyConfig:
        httpProxy: string
        httpsProxy: string
        noProxies:
            - string
        trustedCa: string
    identity:
        principalId: string
        tenantId: string
        type: string
        userAssignedIdentityId: string
    ingressApplicationGateway:
        effectiveGatewayId: string
        gatewayId: string
        gatewayName: string
        ingressApplicationGatewayIdentities:
            - clientId: string
              objectId: string
              userAssignedIdentityId: string
        subnetCidr: string
        subnetId: string
    keyVaultSecretsProvider:
        secretIdentities:
            - clientId: string
              objectId: string
              userAssignedIdentityId: string
        secretRotationEnabled: false
        secretRotationInterval: string
    kubeletIdentities:
        - clientId: string
          objectId: string
          userAssignedIdentityId: string
    kubernetesVersion: string
    linuxProfile:
        adminUsername: string
        sshKey:
            keyData: string
    localAccountDisabled: false
    location: string
    maintenanceWindow:
        alloweds:
            - day: string
              hours:
                - 0
        notAlloweds:
            - end: string
              start: string
    name: string
    networkProfile:
        dnsServiceIp: string
        dockerBridgeCidr: string
        loadBalancerProfile:
            effectiveOutboundIps:
                - string
            idleTimeoutInMinutes: 0
            managedOutboundIpCount: 0
            outboundIpAddressIds:
                - string
            outboundIpPrefixIds:
                - string
            outboundPortsAllocated: 0
        loadBalancerSku: string
        natGatewayProfile:
            effectiveOutboundIps:
                - string
            idleTimeoutInMinutes: 0
            managedOutboundIpCount: 0
        networkMode: string
        networkPlugin: string
        networkPolicy: string
        outboundType: string
        podCidr: string
        serviceCidr: string
    nodeResourceGroup: string
    omsAgent:
        logAnalyticsWorkspaceId: string
        omsAgentIdentities:
            - clientId: string
              objectId: string
              userAssignedIdentityId: string
    openServiceMeshEnabled: false
    privateClusterEnabled: false
    privateClusterPublicFqdnEnabled: false
    privateDnsZoneId: string
    publicNetworkAccessEnabled: false
    resourceGroupName: string
    roleBasedAccessControlEnabled: false
    servicePrincipal:
        clientId: string
        clientSecret: string
    skuTier: string
    tags:
        string: string
    windowsProfile:
        adminPassword: string
        adminUsername: string
        license: string

KubernetesCluster Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The KubernetesCluster resource accepts the following input properties:

DefaultNodePool KubernetesClusterDefaultNodePool

A default_node_pool block as defined below.

ResourceGroupName string

Specifies the Resource Group where the Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created.

AciConnectorLinux KubernetesClusterAciConnectorLinux

A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.

AddonProfile KubernetesClusterAddonProfile

An addon_profile block as defined below.

Deprecated: addon_profile block has been deprecated and will be removed in version 3.0 of the AzureRM Provider. All properties within the block will move to the top level.

ApiServerAuthorizedIpRanges List<string>

The IP ranges to allow for incoming traffic to the server nodes.

AutoScalerProfile KubernetesClusterAutoScalerProfile

A auto_scaler_profile block as defined below.

AutomaticChannelUpgrade string

The upgrade channel for this Kubernetes Cluster. Possible values are patch, rapid, node-image and stable. Omitting this field sets this value to none.

AzureActiveDirectoryRoleBasedAccessControl KubernetesClusterAzureActiveDirectoryRoleBasedAccessControl

A azure_active_directory_role_based_access_control block as defined below.

AzurePolicyEnabled bool

Should the Azure Policy Add-On be enabled? For more details please visit Understand Azure Policy for Azure Kubernetes Service

DiskEncryptionSetId string

The ID of the Disk Encryption Set which should be used for the Nodes and Volumes. More information can be found in the documentation.

DnsPrefix string

DNS prefix specified when creating the managed cluster. Changing this forces a new resource to be created.

DnsPrefixPrivateCluster string

Specifies the DNS prefix to use with private clusters. Changing this forces a new resource to be created.

EnablePodSecurityPolicy bool

HttpApplicationRoutingEnabled bool

Should HTTP Application Routing be enabled?

HttpProxyConfig KubernetesClusterHttpProxyConfig

A http_proxy_config block as defined below.

Identity KubernetesClusterIdentity

An identity block as defined below. One of either identity or service_principal must be specified.

IngressApplicationGateway KubernetesClusterIngressApplicationGateway

A ingress_application_gateway block as defined below.

KeyVaultSecretsProvider KubernetesClusterKeyVaultSecretsProvider

A key_vault_secrets_provider block as defined below. For more details, please visit Azure Keyvault Secrets Provider for AKS.

KubeletIdentities List<KubernetesClusterKubeletIdentity>

A kubelet_identity block as defined below. Changing this forces a new resource to be created.

KubernetesVersion string

Version of Kubernetes specified when creating the AKS managed cluster. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade).

LinuxProfile KubernetesClusterLinuxProfile

A linux_profile block as defined below.

LocalAccountDisabled bool

If true local accounts will be disabled. Defaults to false. See the documentation for more information.

Location string

The location where the Managed Kubernetes Cluster should be created. Changing this forces a new resource to be created.

MaintenanceWindow KubernetesClusterMaintenanceWindow

A maintenance_window block as defined below.

Name string

The name of the Managed Kubernetes Cluster to create. Changing this forces a new resource to be created.

NetworkProfile KubernetesClusterNetworkProfile

A network_profile block as defined below.

NodeResourceGroup string

The name of the Resource Group where the Kubernetes Nodes should exist. Changing this forces a new resource to be created.

OmsAgent KubernetesClusterOmsAgent

A oms_agent block as defined below.

OpenServiceMeshEnabled bool

Is Open Service Mesh enabled? For more details, please visit Open Service Mesh for AKS.

PrivateClusterEnabled bool

Should this Kubernetes Cluster have its API server only exposed on internal IP addresses? This provides a Private IP Address for the Kubernetes API on the Virtual Network where the Kubernetes Cluster is located. Defaults to false. Changing this forces a new resource to be created.

PrivateClusterPublicFqdnEnabled bool

Specifies whether a Public FQDN for this Private Cluster should be added. Defaults to false.

PrivateDnsZoneId string

Either the ID of Private DNS Zone which should be delegated to this Cluster, System to have AKS manage this or None. In case of None you will need to bring your own DNS server and set up resolving, otherwise cluster will have issues after provisioning. Changing this forces a new resource to be created.

PrivateLinkEnabled bool

Deprecated: private_link_enabled is deprecated in favour of private_cluster_enabled and will be removed in version 3.0 of the AzureRM Provider

PublicNetworkAccessEnabled bool

RoleBasedAccessControl KubernetesClusterRoleBasedAccessControl

Deprecated: role_based_access_control is deprecated in favour of the properties role_based_access_control_enabled and azure_active_directory_role_based_access_control and will be removed in version 3.0 of the AzureRM provider

RoleBasedAccessControlEnabled bool

Whether Role Based Access Control for the Kubernetes Cluster should be enabled. Defaults to true. Changing this forces a new resource to be created.

ServicePrincipal KubernetesClusterServicePrincipal

A service_principal block as documented below. One of either identity or service_principal must be specified.

SkuTier string

The SKU Tier that should be used for this Kubernetes Cluster. Possible values are Free and Paid (which includes the Uptime SLA). Defaults to Free.

Tags Dictionary<string, string>

A mapping of tags to assign to the resource.

WindowsProfile KubernetesClusterWindowsProfile

A windows_profile block as defined below.

DefaultNodePool KubernetesClusterDefaultNodePoolArgs

A default_node_pool block as defined below.

ResourceGroupName string

Specifies the Resource Group where the Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created.

AciConnectorLinux KubernetesClusterAciConnectorLinuxArgs

A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.

AddonProfile KubernetesClusterAddonProfileArgs

An addon_profile block as defined below.

Deprecated: addon_profile block has been deprecated and will be removed in version 3.0 of the AzureRM Provider. All properties within the block will move to the top level.

ApiServerAuthorizedIpRanges []string

The IP ranges to allow for incoming traffic to the server nodes.

AutoScalerProfile KubernetesClusterAutoScalerProfileArgs

A auto_scaler_profile block as defined below.

AutomaticChannelUpgrade string

The upgrade channel for this Kubernetes Cluster. Possible values are patch, rapid, node-image and stable. Omitting this field sets this value to none.

AzureActiveDirectoryRoleBasedAccessControl KubernetesClusterAzureActiveDirectoryRoleBasedAccessControlArgs

A azure_active_directory_role_based_access_control block as defined below.

AzurePolicyEnabled bool

Should the Azure Policy Add-On be enabled? For more details please visit Understand Azure Policy for Azure Kubernetes Service

DiskEncryptionSetId string

The ID of the Disk Encryption Set which should be used for the Nodes and Volumes. More information can be found in the documentation.

DnsPrefix string

DNS prefix specified when creating the managed cluster. Changing this forces a new resource to be created.

DnsPrefixPrivateCluster string

Specifies the DNS prefix to use with private clusters. Changing this forces a new resource to be created.

EnablePodSecurityPolicy bool

HttpApplicationRoutingEnabled bool

Should HTTP Application Routing be enabled?

HttpProxyConfig KubernetesClusterHttpProxyConfigArgs

A http_proxy_config block as defined below.

Identity KubernetesClusterIdentityArgs

An identity block as defined below. One of either identity or service_principal must be specified.

IngressApplicationGateway KubernetesClusterIngressApplicationGatewayArgs

A ingress_application_gateway block as defined below.

KeyVaultSecretsProvider KubernetesClusterKeyVaultSecretsProviderArgs

A key_vault_secrets_provider block as defined below. For more details, please visit Azure Keyvault Secrets Provider for AKS.

KubeletIdentities []KubernetesClusterKubeletIdentityArgs

A kubelet_identity block as defined below. Changing this forces a new resource to be created.

KubernetesVersion string

Version of Kubernetes specified when creating the AKS managed cluster. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade).

LinuxProfile KubernetesClusterLinuxProfileArgs

A linux_profile block as defined below.

LocalAccountDisabled bool

If true local accounts will be disabled. Defaults to false. See the documentation for more information.

Location string

The location where the Managed Kubernetes Cluster should be created. Changing this forces a new resource to be created.

MaintenanceWindow KubernetesClusterMaintenanceWindowArgs

A maintenance_window block as defined below.

Name string

The name of the Managed Kubernetes Cluster to create. Changing this forces a new resource to be created.

NetworkProfile KubernetesClusterNetworkProfileArgs

A network_profile block as defined below.

NodeResourceGroup string

The name of the Resource Group where the Kubernetes Nodes should exist. Changing this forces a new resource to be created.

OmsAgent KubernetesClusterOmsAgentArgs

A oms_agent block as defined below.

OpenServiceMeshEnabled bool

Is Open Service Mesh enabled? For more details, please visit Open Service Mesh for AKS.

PrivateClusterEnabled bool

PrivateClusterPublicFqdnEnabled bool

Specifies whether a Public FQDN for this Private Cluster should be added. Defaults to false.

PrivateDnsZoneId string

PrivateLinkEnabled bool

Deprecated: private_link_enabled is deprecated in favour of private_cluster_enabled and will be removed in version 3.0 of the AzureRM Provider

PublicNetworkAccessEnabled bool

RoleBasedAccessControl KubernetesClusterRoleBasedAccessControlArgs

RoleBasedAccessControlEnabled bool

Whether Role Based Access Control for the Kubernetes Cluster should be enabled. Defaults to true. Changing this forces a new resource to be created.

ServicePrincipal KubernetesClusterServicePrincipalArgs

A service_principal block as documented below. One of either identity or service_principal must be specified.

SkuTier string

The SKU Tier that should be used for this Kubernetes Cluster. Possible values are Free and Paid (which includes the Uptime SLA). Defaults to Free.

Tags map[string]string

A mapping of tags to assign to the resource.

WindowsProfile KubernetesClusterWindowsProfileArgs

A windows_profile block as defined below.

defaultNodePool KubernetesClusterDefaultNodePool

A default_node_pool block as defined below.

resourceGroupName String

Specifies the Resource Group where the Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created.

aciConnectorLinux KubernetesClusterAciConnectorLinux

A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.

addonProfile KubernetesClusterAddonProfile

An addon_profile block as defined below.

Deprecated: addon_profile block has been deprecated and will be removed in version 3.0 of the AzureRM Provider. All properties within the block will move to the top level.

apiServerAuthorizedIpRanges List<String>

The IP ranges to allow for incoming traffic to the server nodes.

autoScalerProfile KubernetesClusterAutoScalerProfile

A auto_scaler_profile block as defined below.

automaticChannelUpgrade String

The upgrade channel for this Kubernetes Cluster. Possible values are patch, rapid, node-image and stable. Omitting this field sets this value to none.

azureActiveDirectoryRoleBasedAccessControl KubernetesClusterAzureActiveDirectoryRoleBasedAccessControl

A azure_active_directory_role_based_access_control block as defined below.

azurePolicyEnabled Boolean

Should the Azure Policy Add-On be enabled? For more details please visit Understand Azure Policy for Azure Kubernetes Service

diskEncryptionSetId String

The ID of the Disk Encryption Set which should be used for the Nodes and Volumes. More information can be found in the documentation.

dnsPrefix String

DNS prefix specified when creating the managed cluster. Changing this forces a new resource to be created.

dnsPrefixPrivateCluster String

Specifies the DNS prefix to use with private clusters. Changing this forces a new resource to be created.

enablePodSecurityPolicy Boolean

httpApplicationRoutingEnabled Boolean

Should HTTP Application Routing be enabled?

httpProxyConfig KubernetesClusterHttpProxyConfig

A http_proxy_config block as defined below.

identity KubernetesClusterIdentity

An identity block as defined below. One of either identity or service_principal must be specified.

ingressApplicationGateway KubernetesClusterIngressApplicationGateway

A ingress_application_gateway block as defined below.

keyVaultSecretsProvider KubernetesClusterKeyVaultSecretsProvider

A key_vault_secrets_provider block as defined below. For more details, please visit Azure Keyvault Secrets Provider for AKS.

kubeletIdentities List<KubernetesClusterKubeletIdentity>

A kubelet_identity block as defined below. Changing this forces a new resource to be created.

kubernetesVersion String

Version of Kubernetes specified when creating the AKS managed cluster. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade).

linuxProfile KubernetesClusterLinuxProfile

A linux_profile block as defined below.

localAccountDisabled Boolean

If true local accounts will be disabled. Defaults to false. See the documentation for more information.

location String

The location where the Managed Kubernetes Cluster should be created. Changing this forces a new resource to be created.

maintenanceWindow KubernetesClusterMaintenanceWindow

A maintenance_window block as defined below.

name String

The name of the Managed Kubernetes Cluster to create. Changing this forces a new resource to be created.

networkProfile KubernetesClusterNetworkProfile

A network_profile block as defined below.

nodeResourceGroup String

The name of the Resource Group where the Kubernetes Nodes should exist. Changing this forces a new resource to be created.

omsAgent KubernetesClusterOmsAgent

A oms_agent block as defined below.

openServiceMeshEnabled Boolean

Is Open Service Mesh enabled? For more details, please visit Open Service Mesh for AKS.

privateClusterEnabled Boolean

privateClusterPublicFqdnEnabled Boolean

Specifies whether a Public FQDN for this Private Cluster should be added. Defaults to false.

privateDnsZoneId String

privateLinkEnabled Boolean

Deprecated: private_link_enabled is deprecated in favour of private_cluster_enabled and will be removed in version 3.0 of the AzureRM Provider

publicNetworkAccessEnabled Boolean

roleBasedAccessControl KubernetesClusterRoleBasedAccessControl

roleBasedAccessControlEnabled Boolean

Whether Role Based Access Control for the Kubernetes Cluster should be enabled. Defaults to true. Changing this forces a new resource to be created.

servicePrincipal KubernetesClusterServicePrincipal

A service_principal block as documented below. One of either identity or service_principal must be specified.

skuTier String

The SKU Tier that should be used for this Kubernetes Cluster. Possible values are Free and Paid (which includes the Uptime SLA). Defaults to Free.

tags Map<String,String>

A mapping of tags to assign to the resource.

windowsProfile KubernetesClusterWindowsProfile

A windows_profile block as defined below.

defaultNodePool KubernetesClusterDefaultNodePool

A default_node_pool block as defined below.

resourceGroupName string

Specifies the Resource Group where the Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created.

aciConnectorLinux KubernetesClusterAciConnectorLinux

A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.

addonProfile KubernetesClusterAddonProfile

An addon_profile block as defined below.

Deprecated: addon_profile block has been deprecated and will be removed in version 3.0 of the AzureRM Provider. All properties within the block will move to the top level.

apiServerAuthorizedIpRanges string[]

The IP ranges to allow for incoming traffic to the server nodes.

autoScalerProfile KubernetesClusterAutoScalerProfile

A auto_scaler_profile block as defined below.

automaticChannelUpgrade string

The upgrade channel for this Kubernetes Cluster. Possible values are patch, rapid, node-image and stable. Omitting this field sets this value to none.

azureActiveDirectoryRoleBasedAccessControl KubernetesClusterAzureActiveDirectoryRoleBasedAccessControl

A azure_active_directory_role_based_access_control block as defined below.

azurePolicyEnabled boolean

Should the Azure Policy Add-On be enabled? For more details please visit Understand Azure Policy for Azure Kubernetes Service

diskEncryptionSetId string

The ID of the Disk Encryption Set which should be used for the Nodes and Volumes. More information can be found in the documentation.

dnsPrefix string

DNS prefix specified when creating the managed cluster. Changing this forces a new resource to be created.

dnsPrefixPrivateCluster string

Specifies the DNS prefix to use with private clusters. Changing this forces a new resource to be created.

enablePodSecurityPolicy boolean

httpApplicationRoutingEnabled boolean

Should HTTP Application Routing be enabled?

httpProxyConfig KubernetesClusterHttpProxyConfig

A http_proxy_config block as defined below.

identity KubernetesClusterIdentity

An identity block as defined below. One of either identity or service_principal must be specified.

ingressApplicationGateway KubernetesClusterIngressApplicationGateway

A ingress_application_gateway block as defined below.

keyVaultSecretsProvider KubernetesClusterKeyVaultSecretsProvider

A key_vault_secrets_provider block as defined below. For more details, please visit Azure Keyvault Secrets Provider for AKS.

kubeletIdentities KubernetesClusterKubeletIdentity[]

A kubelet_identity block as defined below. Changing this forces a new resource to be created.

kubernetesVersion string

Version of Kubernetes specified when creating the AKS managed cluster. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade).

linuxProfile KubernetesClusterLinuxProfile

A linux_profile block as defined below.

localAccountDisabled boolean

If true local accounts will be disabled. Defaults to false. See the documentation for more information.

location string

The location where the Managed Kubernetes Cluster should be created. Changing this forces a new resource to be created.

maintenanceWindow KubernetesClusterMaintenanceWindow

A maintenance_window block as defined below.

name string

The name of the Managed Kubernetes Cluster to create. Changing this forces a new resource to be created.

networkProfile KubernetesClusterNetworkProfile

A network_profile block as defined below.

nodeResourceGroup string

The name of the Resource Group where the Kubernetes Nodes should exist. Changing this forces a new resource to be created.

omsAgent KubernetesClusterOmsAgent

A oms_agent block as defined below.

openServiceMeshEnabled boolean

Is Open Service Mesh enabled? For more details, please visit Open Service Mesh for AKS.

privateClusterEnabled boolean

privateClusterPublicFqdnEnabled boolean

Specifies whether a Public FQDN for this Private Cluster should be added. Defaults to false.

privateDnsZoneId string

privateLinkEnabled boolean

Deprecated: private_link_enabled is deprecated in favour of private_cluster_enabled and will be removed in version 3.0 of the AzureRM Provider

publicNetworkAccessEnabled boolean

roleBasedAccessControl KubernetesClusterRoleBasedAccessControl

roleBasedAccessControlEnabled boolean

Whether Role Based Access Control for the Kubernetes Cluster should be enabled. Defaults to true. Changing this forces a new resource to be created.

servicePrincipal KubernetesClusterServicePrincipal

A service_principal block as documented below. One of either identity or service_principal must be specified.

skuTier string

The SKU Tier that should be used for this Kubernetes Cluster. Possible values are Free and Paid (which includes the Uptime SLA). Defaults to Free.

tags {[key: string]: string}

A mapping of tags to assign to the resource.

windowsProfile KubernetesClusterWindowsProfile

A windows_profile block as defined below.

default_node_pool KubernetesClusterDefaultNodePoolArgs

A default_node_pool block as defined below.

resource_group_name str

Specifies the Resource Group where the Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created.

aci_connector_linux KubernetesClusterAciConnectorLinuxArgs

A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.

addon_profile KubernetesClusterAddonProfileArgs

An addon_profile block as defined below.

Deprecated: addon_profile block has been deprecated and will be removed in version 3.0 of the AzureRM Provider. All properties within the block will move to the top level.

api_server_authorized_ip_ranges Sequence[str]

The IP ranges to allow for incoming traffic to the server nodes.

auto_scaler_profile KubernetesClusterAutoScalerProfileArgs

A auto_scaler_profile block as defined below.

automatic_channel_upgrade str

The upgrade channel for this Kubernetes Cluster. Possible values are patch, rapid, node-image and stable. Omitting this field sets this value to none.

azure_active_directory_role_based_access_control KubernetesClusterAzureActiveDirectoryRoleBasedAccessControlArgs

A azure_active_directory_role_based_access_control block as defined below.

azure_policy_enabled bool

Should the Azure Policy Add-On be enabled? For more details please visit Understand Azure Policy for Azure Kubernetes Service

disk_encryption_set_id str

The ID of the Disk Encryption Set which should be used for the Nodes and Volumes. More information can be found in the documentation.

dns_prefix str

DNS prefix specified when creating the managed cluster. Changing this forces a new resource to be created.

dns_prefix_private_cluster str

Specifies the DNS prefix to use with private clusters. Changing this forces a new resource to be created.

enable_pod_security_policy bool

http_application_routing_enabled bool

Should HTTP Application Routing be enabled?

http_proxy_config KubernetesClusterHttpProxyConfigArgs

A http_proxy_config block as defined below.

identity KubernetesClusterIdentityArgs

An identity block as defined below. One of either identity or service_principal must be specified.

ingress_application_gateway KubernetesClusterIngressApplicationGatewayArgs

A ingress_application_gateway block as defined below.

key_vault_secrets_provider KubernetesClusterKeyVaultSecretsProviderArgs

A key_vault_secrets_provider block as defined below. For more details, please visit Azure Keyvault Secrets Provider for AKS.

kubelet_identities Sequence[KubernetesClusterKubeletIdentityArgs]

A kubelet_identity block as defined below. Changing this forces a new resource to be created.

kubernetes_version str

Version of Kubernetes specified when creating the AKS managed cluster. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade).

linux_profile KubernetesClusterLinuxProfileArgs

A linux_profile block as defined below.

local_account_disabled bool

If true local accounts will be disabled. Defaults to false. See the documentation for more information.

location str

The location where the Managed Kubernetes Cluster should be created. Changing this forces a new resource to be created.

maintenance_window KubernetesClusterMaintenanceWindowArgs

A maintenance_window block as defined below.

name str

The name of the Managed Kubernetes Cluster to create. Changing this forces a new resource to be created.

network_profile KubernetesClusterNetworkProfileArgs

A network_profile block as defined below.

node_resource_group str

The name of the Resource Group where the Kubernetes Nodes should exist. Changing this forces a new resource to be created.

oms_agent KubernetesClusterOmsAgentArgs

A oms_agent block as defined below.

open_service_mesh_enabled bool

Is Open Service Mesh enabled? For more details, please visit Open Service Mesh for AKS.

private_cluster_enabled bool

private_cluster_public_fqdn_enabled bool

Specifies whether a Public FQDN for this Private Cluster should be added. Defaults to false.

private_dns_zone_id str

private_link_enabled bool

Deprecated: private_link_enabled is deprecated in favour of private_cluster_enabled and will be removed in version 3.0 of the AzureRM Provider

public_network_access_enabled bool

role_based_access_control KubernetesClusterRoleBasedAccessControlArgs

role_based_access_control_enabled bool

Whether Role Based Access Control for the Kubernetes Cluster should be enabled. Defaults to true. Changing this forces a new resource to be created.

service_principal KubernetesClusterServicePrincipalArgs

A service_principal block as documented below. One of either identity or service_principal must be specified.

sku_tier str

The SKU Tier that should be used for this Kubernetes Cluster. Possible values are Free and Paid (which includes the Uptime SLA). Defaults to Free.

tags Mapping[str, str]

A mapping of tags to assign to the resource.

windows_profile KubernetesClusterWindowsProfileArgs

A windows_profile block as defined below.

defaultNodePool Property Map

A default_node_pool block as defined below.

resourceGroupName String

Specifies the Resource Group where the Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created.

aciConnectorLinux Property Map

A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.

addonProfile Property Map

An addon_profile block as defined below.

Deprecated: addon_profile block has been deprecated and will be removed in version 3.0 of the AzureRM Provider. All properties within the block will move to the top level.

apiServerAuthorizedIpRanges List<String>

The IP ranges to allow for incoming traffic to the server nodes.

autoScalerProfile Property Map

A auto_scaler_profile block as defined below.

automaticChannelUpgrade String

The upgrade channel for this Kubernetes Cluster. Possible values are patch, rapid, node-image and stable. Omitting this field sets this value to none.

azureActiveDirectoryRoleBasedAccessControl Property Map

A azure_active_directory_role_based_access_control block as defined below.

azurePolicyEnabled Boolean

Should the Azure Policy Add-On be enabled? For more details please visit Understand Azure Policy for Azure Kubernetes Service

diskEncryptionSetId String

The ID of the Disk Encryption Set which should be used for the Nodes and Volumes. More information can be found in the documentation.

dnsPrefix String

DNS prefix specified when creating the managed cluster. Changing this forces a new resource to be created.

dnsPrefixPrivateCluster String

Specifies the DNS prefix to use with private clusters. Changing this forces a new resource to be created.

enablePodSecurityPolicy Boolean

httpApplicationRoutingEnabled Boolean

Should HTTP Application Routing be enabled?

httpProxyConfig Property Map

A http_proxy_config block as defined below.

identity Property Map

An identity block as defined below. One of either identity or service_principal must be specified.

ingressApplicationGateway Property Map

A ingress_application_gateway block as defined below.

keyVaultSecretsProvider Property Map

A key_vault_secrets_provider block as defined below. For more details, please visit Azure Keyvault Secrets Provider for AKS.

kubeletIdentities List<Property Map>

A kubelet_identity block as defined below. Changing this forces a new resource to be created.

kubernetesVersion String

Version of Kubernetes specified when creating the AKS managed cluster. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade).

linuxProfile Property Map

A linux_profile block as defined below.

localAccountDisabled Boolean

If true local accounts will be disabled. Defaults to false. See the documentation for more information.

location String

The location where the Managed Kubernetes Cluster should be created. Changing this forces a new resource to be created.

maintenanceWindow Property Map

A maintenance_window block as defined below.

name String

The name of the Managed Kubernetes Cluster to create. Changing this forces a new resource to be created.

networkProfile Property Map

A network_profile block as defined below.

nodeResourceGroup String

The name of the Resource Group where the Kubernetes Nodes should exist. Changing this forces a new resource to be created.

omsAgent Property Map

A oms_agent block as defined below.

openServiceMeshEnabled Boolean

Is Open Service Mesh enabled? For more details, please visit Open Service Mesh for AKS.

privateClusterEnabled Boolean

privateClusterPublicFqdnEnabled Boolean

Specifies whether a Public FQDN for this Private Cluster should be added. Defaults to false.

privateDnsZoneId String

privateLinkEnabled Boolean

Deprecated: private_link_enabled is deprecated in favour of private_cluster_enabled and will be removed in version 3.0 of the AzureRM Provider

publicNetworkAccessEnabled Boolean

roleBasedAccessControl Property Map

roleBasedAccessControlEnabled Boolean

Whether Role Based Access Control for the Kubernetes Cluster should be enabled. Defaults to true. Changing this forces a new resource to be created.

servicePrincipal Property Map

A service_principal block as documented below. One of either identity or service_principal must be specified.

skuTier String

The SKU Tier that should be used for this Kubernetes Cluster. Possible values are Free and Paid (which includes the Uptime SLA). Defaults to Free.

tags Map<String>

A mapping of tags to assign to the resource.

windowsProfile Property Map

A windows_profile block as defined below.

Outputs

All input properties are implicitly available as output properties. Additionally, the KubernetesCluster resource produces the following output properties:

Fqdn string: The FQDN of the Azure Kubernetes Managed Cluster.
HttpApplicationRoutingZoneName string: The Zone Name of the HTTP Application Routing.
Id string: The provider-assigned unique ID for this managed resource.
KubeAdminConfigRaw string: Raw Kubernetes config for the admin account to be used by kubectl and other compatible tools. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.
KubeAdminConfigs List<KubernetesClusterKubeAdminConfig>: A kube_admin_config block as defined below. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.
KubeConfigRaw string: Raw Kubernetes config to be used by kubectl and other compatible tools.
KubeConfigs List<KubernetesClusterKubeConfig>: A kube_config block as defined below.
PortalFqdn string: The FQDN for the Azure Portal resources when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.
PrivateFqdn string: The FQDN for the Kubernetes Cluster when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

Fqdn string: The FQDN of the Azure Kubernetes Managed Cluster.
HttpApplicationRoutingZoneName string: The Zone Name of the HTTP Application Routing.
Id string: The provider-assigned unique ID for this managed resource.
KubeAdminConfigRaw string: Raw Kubernetes config for the admin account to be used by kubectl and other compatible tools. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.
KubeAdminConfigs []KubernetesClusterKubeAdminConfig: A kube_admin_config block as defined below. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.
KubeConfigRaw string: Raw Kubernetes config to be used by kubectl and other compatible tools.
KubeConfigs []KubernetesClusterKubeConfig: A kube_config block as defined below.
PortalFqdn string: The FQDN for the Azure Portal resources when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.
PrivateFqdn string: The FQDN for the Kubernetes Cluster when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

fqdn String: The FQDN of the Azure Kubernetes Managed Cluster.
httpApplicationRoutingZoneName String: The Zone Name of the HTTP Application Routing.
id String: The provider-assigned unique ID for this managed resource.
kubeAdminConfigRaw String: Raw Kubernetes config for the admin account to be used by kubectl and other compatible tools. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.
kubeAdminConfigs List<KubernetesClusterKubeAdminConfig>: A kube_admin_config block as defined below. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.
kubeConfigRaw String: Raw Kubernetes config to be used by kubectl and other compatible tools.
kubeConfigs List<KubernetesClusterKubeConfig>: A kube_config block as defined below.
portalFqdn String: The FQDN for the Azure Portal resources when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.
privateFqdn String: The FQDN for the Kubernetes Cluster when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

fqdn string: The FQDN of the Azure Kubernetes Managed Cluster.
httpApplicationRoutingZoneName string: The Zone Name of the HTTP Application Routing.
id string: The provider-assigned unique ID for this managed resource.
kubeAdminConfigRaw string: Raw Kubernetes config for the admin account to be used by kubectl and other compatible tools. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.
kubeAdminConfigs KubernetesClusterKubeAdminConfig[]: A kube_admin_config block as defined below. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.
kubeConfigRaw string: Raw Kubernetes config to be used by kubectl and other compatible tools.
kubeConfigs KubernetesClusterKubeConfig[]: A kube_config block as defined below.
portalFqdn string: The FQDN for the Azure Portal resources when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.
privateFqdn string: The FQDN for the Kubernetes Cluster when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

fqdn str: The FQDN of the Azure Kubernetes Managed Cluster.
http_application_routing_zone_name str: The Zone Name of the HTTP Application Routing.
id str: The provider-assigned unique ID for this managed resource.
kube_admin_config_raw str: Raw Kubernetes config for the admin account to be used by kubectl and other compatible tools. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.
kube_admin_configs Sequence[KubernetesClusterKubeAdminConfig]: A kube_admin_config block as defined below. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.
kube_config_raw str: Raw Kubernetes config to be used by kubectl and other compatible tools.
kube_configs Sequence[KubernetesClusterKubeConfig]: A kube_config block as defined below.
portal_fqdn str: The FQDN for the Azure Portal resources when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.
private_fqdn str: The FQDN for the Kubernetes Cluster when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

fqdn String: The FQDN of the Azure Kubernetes Managed Cluster.
httpApplicationRoutingZoneName String: The Zone Name of the HTTP Application Routing.
id String: The provider-assigned unique ID for this managed resource.
kubeAdminConfigRaw String: Raw Kubernetes config for the admin account to be used by kubectl and other compatible tools. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.
kubeAdminConfigs List<Property Map>: A kube_admin_config block as defined below. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.
kubeConfigRaw String: Raw Kubernetes config to be used by kubectl and other compatible tools.
kubeConfigs List<Property Map>: A kube_config block as defined below.
portalFqdn String: The FQDN for the Azure Portal resources when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.
privateFqdn String: The FQDN for the Kubernetes Cluster when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

Look up Existing KubernetesCluster Resource

Get an existing KubernetesCluster resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: KubernetesClusterState, opts?: CustomResourceOptions): KubernetesCluster

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        aci_connector_linux: Optional[KubernetesClusterAciConnectorLinuxArgs] = None,
        addon_profile: Optional[KubernetesClusterAddonProfileArgs] = None,
        api_server_authorized_ip_ranges: Optional[Sequence[str]] = None,
        auto_scaler_profile: Optional[KubernetesClusterAutoScalerProfileArgs] = None,
        automatic_channel_upgrade: Optional[str] = None,
        azure_active_directory_role_based_access_control: Optional[KubernetesClusterAzureActiveDirectoryRoleBasedAccessControlArgs] = None,
        azure_policy_enabled: Optional[bool] = None,
        default_node_pool: Optional[KubernetesClusterDefaultNodePoolArgs] = None,
        disk_encryption_set_id: Optional[str] = None,
        dns_prefix: Optional[str] = None,
        dns_prefix_private_cluster: Optional[str] = None,
        enable_pod_security_policy: Optional[bool] = None,
        fqdn: Optional[str] = None,
        http_application_routing_enabled: Optional[bool] = None,
        http_application_routing_zone_name: Optional[str] = None,
        http_proxy_config: Optional[KubernetesClusterHttpProxyConfigArgs] = None,
        identity: Optional[KubernetesClusterIdentityArgs] = None,
        ingress_application_gateway: Optional[KubernetesClusterIngressApplicationGatewayArgs] = None,
        key_vault_secrets_provider: Optional[KubernetesClusterKeyVaultSecretsProviderArgs] = None,
        kube_admin_config_raw: Optional[str] = None,
        kube_admin_configs: Optional[Sequence[KubernetesClusterKubeAdminConfigArgs]] = None,
        kube_config_raw: Optional[str] = None,
        kube_configs: Optional[Sequence[KubernetesClusterKubeConfigArgs]] = None,
        kubelet_identities: Optional[Sequence[KubernetesClusterKubeletIdentityArgs]] = None,
        kubernetes_version: Optional[str] = None,
        linux_profile: Optional[KubernetesClusterLinuxProfileArgs] = None,
        local_account_disabled: Optional[bool] = None,
        location: Optional[str] = None,
        maintenance_window: Optional[KubernetesClusterMaintenanceWindowArgs] = None,
        name: Optional[str] = None,
        network_profile: Optional[KubernetesClusterNetworkProfileArgs] = None,
        node_resource_group: Optional[str] = None,
        oms_agent: Optional[KubernetesClusterOmsAgentArgs] = None,
        open_service_mesh_enabled: Optional[bool] = None,
        portal_fqdn: Optional[str] = None,
        private_cluster_enabled: Optional[bool] = None,
        private_cluster_public_fqdn_enabled: Optional[bool] = None,
        private_dns_zone_id: Optional[str] = None,
        private_fqdn: Optional[str] = None,
        private_link_enabled: Optional[bool] = None,
        public_network_access_enabled: Optional[bool] = None,
        resource_group_name: Optional[str] = None,
        role_based_access_control: Optional[KubernetesClusterRoleBasedAccessControlArgs] = None,
        role_based_access_control_enabled: Optional[bool] = None,
        service_principal: Optional[KubernetesClusterServicePrincipalArgs] = None,
        sku_tier: Optional[str] = None,
        tags: Optional[Mapping[str, str]] = None,
        windows_profile: Optional[KubernetesClusterWindowsProfileArgs] = None) -> KubernetesCluster

func GetKubernetesCluster(ctx *Context, name string, id IDInput, state *KubernetesClusterState, opts ...ResourceOption) (*KubernetesCluster, error)

public static KubernetesCluster Get(string name, Input<string> id, KubernetesClusterState? state, CustomResourceOptions? opts = null)

public static KubernetesCluster get(String name, Output<String> id, KubernetesClusterState state, CustomResourceOptions options)

resources:  _:    type: azure:containerservice:KubernetesCluster    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AciConnectorLinux KubernetesClusterAciConnectorLinux

A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.

AddonProfile KubernetesClusterAddonProfile

An addon_profile block as defined below.

Deprecated: addon_profile block has been deprecated and will be removed in version 3.0 of the AzureRM Provider. All properties within the block will move to the top level.

ApiServerAuthorizedIpRanges List<string>

The IP ranges to allow for incoming traffic to the server nodes.

AutoScalerProfile KubernetesClusterAutoScalerProfile

A auto_scaler_profile block as defined below.

AutomaticChannelUpgrade string

The upgrade channel for this Kubernetes Cluster. Possible values are patch, rapid, node-image and stable. Omitting this field sets this value to none.

AzureActiveDirectoryRoleBasedAccessControl KubernetesClusterAzureActiveDirectoryRoleBasedAccessControl

A azure_active_directory_role_based_access_control block as defined below.

AzurePolicyEnabled bool

Should the Azure Policy Add-On be enabled? For more details please visit Understand Azure Policy for Azure Kubernetes Service

DefaultNodePool KubernetesClusterDefaultNodePool

A default_node_pool block as defined below.

DiskEncryptionSetId string

The ID of the Disk Encryption Set which should be used for the Nodes and Volumes. More information can be found in the documentation.

DnsPrefix string

DNS prefix specified when creating the managed cluster. Changing this forces a new resource to be created.

DnsPrefixPrivateCluster string

Specifies the DNS prefix to use with private clusters. Changing this forces a new resource to be created.

EnablePodSecurityPolicy bool

Fqdn string

The FQDN of the Azure Kubernetes Managed Cluster.

HttpApplicationRoutingEnabled bool

Should HTTP Application Routing be enabled?

HttpApplicationRoutingZoneName string

The Zone Name of the HTTP Application Routing.

HttpProxyConfig KubernetesClusterHttpProxyConfig

A http_proxy_config block as defined below.

Identity KubernetesClusterIdentity

An identity block as defined below. One of either identity or service_principal must be specified.

IngressApplicationGateway KubernetesClusterIngressApplicationGateway

A ingress_application_gateway block as defined below.

KeyVaultSecretsProvider KubernetesClusterKeyVaultSecretsProvider

A key_vault_secrets_provider block as defined below. For more details, please visit Azure Keyvault Secrets Provider for AKS.

KubeAdminConfigRaw string

Raw Kubernetes config for the admin account to be used by kubectl and other compatible tools. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.

KubeAdminConfigs List<KubernetesClusterKubeAdminConfig>

A kube_admin_config block as defined below. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.

KubeConfigRaw string

Raw Kubernetes config to be used by kubectl and other compatible tools.

KubeConfigs List<KubernetesClusterKubeConfig>

A kube_config block as defined below.

KubeletIdentities List<KubernetesClusterKubeletIdentity>

A kubelet_identity block as defined below. Changing this forces a new resource to be created.

KubernetesVersion string

Version of Kubernetes specified when creating the AKS managed cluster. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade).

LinuxProfile KubernetesClusterLinuxProfile

A linux_profile block as defined below.

LocalAccountDisabled bool

If true local accounts will be disabled. Defaults to false. See the documentation for more information.

Location string

The location where the Managed Kubernetes Cluster should be created. Changing this forces a new resource to be created.

MaintenanceWindow KubernetesClusterMaintenanceWindow

A maintenance_window block as defined below.

Name string

The name of the Managed Kubernetes Cluster to create. Changing this forces a new resource to be created.

NetworkProfile KubernetesClusterNetworkProfile

A network_profile block as defined below.

NodeResourceGroup string

The name of the Resource Group where the Kubernetes Nodes should exist. Changing this forces a new resource to be created.

OmsAgent KubernetesClusterOmsAgent

A oms_agent block as defined below.

OpenServiceMeshEnabled bool

Is Open Service Mesh enabled? For more details, please visit Open Service Mesh for AKS.

PortalFqdn string

The FQDN for the Azure Portal resources when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

PrivateClusterEnabled bool

PrivateClusterPublicFqdnEnabled bool

Specifies whether a Public FQDN for this Private Cluster should be added. Defaults to false.

PrivateDnsZoneId string

PrivateFqdn string

The FQDN for the Kubernetes Cluster when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

PrivateLinkEnabled bool

Deprecated: private_link_enabled is deprecated in favour of private_cluster_enabled and will be removed in version 3.0 of the AzureRM Provider

PublicNetworkAccessEnabled bool

ResourceGroupName string

Specifies the Resource Group where the Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created.

RoleBasedAccessControl KubernetesClusterRoleBasedAccessControl

RoleBasedAccessControlEnabled bool

Whether Role Based Access Control for the Kubernetes Cluster should be enabled. Defaults to true. Changing this forces a new resource to be created.

ServicePrincipal KubernetesClusterServicePrincipal

A service_principal block as documented below. One of either identity or service_principal must be specified.

SkuTier string

The SKU Tier that should be used for this Kubernetes Cluster. Possible values are Free and Paid (which includes the Uptime SLA). Defaults to Free.

Tags Dictionary<string, string>

A mapping of tags to assign to the resource.

WindowsProfile KubernetesClusterWindowsProfile

A windows_profile block as defined below.

AciConnectorLinux KubernetesClusterAciConnectorLinuxArgs

A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.

AddonProfile KubernetesClusterAddonProfileArgs

An addon_profile block as defined below.

Deprecated: addon_profile block has been deprecated and will be removed in version 3.0 of the AzureRM Provider. All properties within the block will move to the top level.

ApiServerAuthorizedIpRanges []string

The IP ranges to allow for incoming traffic to the server nodes.

AutoScalerProfile KubernetesClusterAutoScalerProfileArgs

A auto_scaler_profile block as defined below.

AutomaticChannelUpgrade string

The upgrade channel for this Kubernetes Cluster. Possible values are patch, rapid, node-image and stable. Omitting this field sets this value to none.

AzureActiveDirectoryRoleBasedAccessControl KubernetesClusterAzureActiveDirectoryRoleBasedAccessControlArgs

A azure_active_directory_role_based_access_control block as defined below.

AzurePolicyEnabled bool

Should the Azure Policy Add-On be enabled? For more details please visit Understand Azure Policy for Azure Kubernetes Service

DefaultNodePool KubernetesClusterDefaultNodePoolArgs

A default_node_pool block as defined below.

DiskEncryptionSetId string

The ID of the Disk Encryption Set which should be used for the Nodes and Volumes. More information can be found in the documentation.

DnsPrefix string

DNS prefix specified when creating the managed cluster. Changing this forces a new resource to be created.

DnsPrefixPrivateCluster string

Specifies the DNS prefix to use with private clusters. Changing this forces a new resource to be created.

EnablePodSecurityPolicy bool

Fqdn string

The FQDN of the Azure Kubernetes Managed Cluster.

HttpApplicationRoutingEnabled bool

Should HTTP Application Routing be enabled?

HttpApplicationRoutingZoneName string

The Zone Name of the HTTP Application Routing.

HttpProxyConfig KubernetesClusterHttpProxyConfigArgs

A http_proxy_config block as defined below.

Identity KubernetesClusterIdentityArgs

An identity block as defined below. One of either identity or service_principal must be specified.

IngressApplicationGateway KubernetesClusterIngressApplicationGatewayArgs

A ingress_application_gateway block as defined below.

KeyVaultSecretsProvider KubernetesClusterKeyVaultSecretsProviderArgs

A key_vault_secrets_provider block as defined below. For more details, please visit Azure Keyvault Secrets Provider for AKS.

KubeAdminConfigRaw string

KubeAdminConfigs []KubernetesClusterKubeAdminConfigArgs

A kube_admin_config block as defined below. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.

KubeConfigRaw string

Raw Kubernetes config to be used by kubectl and other compatible tools.

KubeConfigs []KubernetesClusterKubeConfigArgs

A kube_config block as defined below.

KubeletIdentities []KubernetesClusterKubeletIdentityArgs

A kubelet_identity block as defined below. Changing this forces a new resource to be created.

KubernetesVersion string

Version of Kubernetes specified when creating the AKS managed cluster. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade).

LinuxProfile KubernetesClusterLinuxProfileArgs

A linux_profile block as defined below.

LocalAccountDisabled bool

If true local accounts will be disabled. Defaults to false. See the documentation for more information.

Location string

The location where the Managed Kubernetes Cluster should be created. Changing this forces a new resource to be created.

MaintenanceWindow KubernetesClusterMaintenanceWindowArgs

A maintenance_window block as defined below.

Name string

The name of the Managed Kubernetes Cluster to create. Changing this forces a new resource to be created.

NetworkProfile KubernetesClusterNetworkProfileArgs

A network_profile block as defined below.

NodeResourceGroup string

The name of the Resource Group where the Kubernetes Nodes should exist. Changing this forces a new resource to be created.

OmsAgent KubernetesClusterOmsAgentArgs

A oms_agent block as defined below.

OpenServiceMeshEnabled bool

Is Open Service Mesh enabled? For more details, please visit Open Service Mesh for AKS.

PortalFqdn string

The FQDN for the Azure Portal resources when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

PrivateClusterEnabled bool

PrivateClusterPublicFqdnEnabled bool

Specifies whether a Public FQDN for this Private Cluster should be added. Defaults to false.

PrivateDnsZoneId string

PrivateFqdn string

The FQDN for the Kubernetes Cluster when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

PrivateLinkEnabled bool

Deprecated: private_link_enabled is deprecated in favour of private_cluster_enabled and will be removed in version 3.0 of the AzureRM Provider

PublicNetworkAccessEnabled bool

ResourceGroupName string

Specifies the Resource Group where the Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created.

RoleBasedAccessControl KubernetesClusterRoleBasedAccessControlArgs

RoleBasedAccessControlEnabled bool

Whether Role Based Access Control for the Kubernetes Cluster should be enabled. Defaults to true. Changing this forces a new resource to be created.

ServicePrincipal KubernetesClusterServicePrincipalArgs

A service_principal block as documented below. One of either identity or service_principal must be specified.

SkuTier string

The SKU Tier that should be used for this Kubernetes Cluster. Possible values are Free and Paid (which includes the Uptime SLA). Defaults to Free.

Tags map[string]string

A mapping of tags to assign to the resource.

WindowsProfile KubernetesClusterWindowsProfileArgs

A windows_profile block as defined below.

aciConnectorLinux KubernetesClusterAciConnectorLinux

A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.

addonProfile KubernetesClusterAddonProfile

An addon_profile block as defined below.

Deprecated: addon_profile block has been deprecated and will be removed in version 3.0 of the AzureRM Provider. All properties within the block will move to the top level.

apiServerAuthorizedIpRanges List<String>

The IP ranges to allow for incoming traffic to the server nodes.

autoScalerProfile KubernetesClusterAutoScalerProfile

A auto_scaler_profile block as defined below.

automaticChannelUpgrade String

The upgrade channel for this Kubernetes Cluster. Possible values are patch, rapid, node-image and stable. Omitting this field sets this value to none.

azureActiveDirectoryRoleBasedAccessControl KubernetesClusterAzureActiveDirectoryRoleBasedAccessControl

A azure_active_directory_role_based_access_control block as defined below.

azurePolicyEnabled Boolean

Should the Azure Policy Add-On be enabled? For more details please visit Understand Azure Policy for Azure Kubernetes Service

defaultNodePool KubernetesClusterDefaultNodePool

A default_node_pool block as defined below.

diskEncryptionSetId String

The ID of the Disk Encryption Set which should be used for the Nodes and Volumes. More information can be found in the documentation.

dnsPrefix String

DNS prefix specified when creating the managed cluster. Changing this forces a new resource to be created.

dnsPrefixPrivateCluster String

Specifies the DNS prefix to use with private clusters. Changing this forces a new resource to be created.

enablePodSecurityPolicy Boolean

fqdn String

The FQDN of the Azure Kubernetes Managed Cluster.

httpApplicationRoutingEnabled Boolean

Should HTTP Application Routing be enabled?

httpApplicationRoutingZoneName String

The Zone Name of the HTTP Application Routing.

httpProxyConfig KubernetesClusterHttpProxyConfig

A http_proxy_config block as defined below.

identity KubernetesClusterIdentity

An identity block as defined below. One of either identity or service_principal must be specified.

ingressApplicationGateway KubernetesClusterIngressApplicationGateway

A ingress_application_gateway block as defined below.

keyVaultSecretsProvider KubernetesClusterKeyVaultSecretsProvider

A key_vault_secrets_provider block as defined below. For more details, please visit Azure Keyvault Secrets Provider for AKS.

kubeAdminConfigRaw String

kubeAdminConfigs List<KubernetesClusterKubeAdminConfig>

A kube_admin_config block as defined below. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.

kubeConfigRaw String

Raw Kubernetes config to be used by kubectl and other compatible tools.

kubeConfigs List<KubernetesClusterKubeConfig>

A kube_config block as defined below.

kubeletIdentities List<KubernetesClusterKubeletIdentity>

A kubelet_identity block as defined below. Changing this forces a new resource to be created.

kubernetesVersion String

Version of Kubernetes specified when creating the AKS managed cluster. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade).

linuxProfile KubernetesClusterLinuxProfile

A linux_profile block as defined below.

localAccountDisabled Boolean

If true local accounts will be disabled. Defaults to false. See the documentation for more information.

location String

The location where the Managed Kubernetes Cluster should be created. Changing this forces a new resource to be created.

maintenanceWindow KubernetesClusterMaintenanceWindow

A maintenance_window block as defined below.

name String

The name of the Managed Kubernetes Cluster to create. Changing this forces a new resource to be created.

networkProfile KubernetesClusterNetworkProfile

A network_profile block as defined below.

nodeResourceGroup String

The name of the Resource Group where the Kubernetes Nodes should exist. Changing this forces a new resource to be created.

omsAgent KubernetesClusterOmsAgent

A oms_agent block as defined below.

openServiceMeshEnabled Boolean

Is Open Service Mesh enabled? For more details, please visit Open Service Mesh for AKS.

portalFqdn String

The FQDN for the Azure Portal resources when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

privateClusterEnabled Boolean

privateClusterPublicFqdnEnabled Boolean

Specifies whether a Public FQDN for this Private Cluster should be added. Defaults to false.

privateDnsZoneId String

privateFqdn String

The FQDN for the Kubernetes Cluster when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

privateLinkEnabled Boolean

Deprecated: private_link_enabled is deprecated in favour of private_cluster_enabled and will be removed in version 3.0 of the AzureRM Provider

publicNetworkAccessEnabled Boolean

resourceGroupName String

Specifies the Resource Group where the Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created.

roleBasedAccessControl KubernetesClusterRoleBasedAccessControl

roleBasedAccessControlEnabled Boolean

Whether Role Based Access Control for the Kubernetes Cluster should be enabled. Defaults to true. Changing this forces a new resource to be created.

servicePrincipal KubernetesClusterServicePrincipal

A service_principal block as documented below. One of either identity or service_principal must be specified.

skuTier String

The SKU Tier that should be used for this Kubernetes Cluster. Possible values are Free and Paid (which includes the Uptime SLA). Defaults to Free.

tags Map<String,String>

A mapping of tags to assign to the resource.

windowsProfile KubernetesClusterWindowsProfile

A windows_profile block as defined below.

aciConnectorLinux KubernetesClusterAciConnectorLinux

A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.

addonProfile KubernetesClusterAddonProfile

An addon_profile block as defined below.

Deprecated: addon_profile block has been deprecated and will be removed in version 3.0 of the AzureRM Provider. All properties within the block will move to the top level.

apiServerAuthorizedIpRanges string[]

The IP ranges to allow for incoming traffic to the server nodes.

autoScalerProfile KubernetesClusterAutoScalerProfile

A auto_scaler_profile block as defined below.

automaticChannelUpgrade string

The upgrade channel for this Kubernetes Cluster. Possible values are patch, rapid, node-image and stable. Omitting this field sets this value to none.

azureActiveDirectoryRoleBasedAccessControl KubernetesClusterAzureActiveDirectoryRoleBasedAccessControl

A azure_active_directory_role_based_access_control block as defined below.

azurePolicyEnabled boolean

Should the Azure Policy Add-On be enabled? For more details please visit Understand Azure Policy for Azure Kubernetes Service

defaultNodePool KubernetesClusterDefaultNodePool

A default_node_pool block as defined below.

diskEncryptionSetId string

The ID of the Disk Encryption Set which should be used for the Nodes and Volumes. More information can be found in the documentation.

dnsPrefix string

DNS prefix specified when creating the managed cluster. Changing this forces a new resource to be created.

dnsPrefixPrivateCluster string

Specifies the DNS prefix to use with private clusters. Changing this forces a new resource to be created.

enablePodSecurityPolicy boolean

fqdn string

The FQDN of the Azure Kubernetes Managed Cluster.

httpApplicationRoutingEnabled boolean

Should HTTP Application Routing be enabled?

httpApplicationRoutingZoneName string

The Zone Name of the HTTP Application Routing.

httpProxyConfig KubernetesClusterHttpProxyConfig

A http_proxy_config block as defined below.

identity KubernetesClusterIdentity

An identity block as defined below. One of either identity or service_principal must be specified.

ingressApplicationGateway KubernetesClusterIngressApplicationGateway

A ingress_application_gateway block as defined below.

keyVaultSecretsProvider KubernetesClusterKeyVaultSecretsProvider

A key_vault_secrets_provider block as defined below. For more details, please visit Azure Keyvault Secrets Provider for AKS.

kubeAdminConfigRaw string

kubeAdminConfigs KubernetesClusterKubeAdminConfig[]

A kube_admin_config block as defined below. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.

kubeConfigRaw string

Raw Kubernetes config to be used by kubectl and other compatible tools.

kubeConfigs KubernetesClusterKubeConfig[]

A kube_config block as defined below.

kubeletIdentities KubernetesClusterKubeletIdentity[]

A kubelet_identity block as defined below. Changing this forces a new resource to be created.

kubernetesVersion string

Version of Kubernetes specified when creating the AKS managed cluster. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade).

linuxProfile KubernetesClusterLinuxProfile

A linux_profile block as defined below.

localAccountDisabled boolean

If true local accounts will be disabled. Defaults to false. See the documentation for more information.

location string

The location where the Managed Kubernetes Cluster should be created. Changing this forces a new resource to be created.

maintenanceWindow KubernetesClusterMaintenanceWindow

A maintenance_window block as defined below.

name string

The name of the Managed Kubernetes Cluster to create. Changing this forces a new resource to be created.

networkProfile KubernetesClusterNetworkProfile

A network_profile block as defined below.

nodeResourceGroup string

The name of the Resource Group where the Kubernetes Nodes should exist. Changing this forces a new resource to be created.

omsAgent KubernetesClusterOmsAgent

A oms_agent block as defined below.

openServiceMeshEnabled boolean

Is Open Service Mesh enabled? For more details, please visit Open Service Mesh for AKS.

portalFqdn string

The FQDN for the Azure Portal resources when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

privateClusterEnabled boolean

privateClusterPublicFqdnEnabled boolean

Specifies whether a Public FQDN for this Private Cluster should be added. Defaults to false.

privateDnsZoneId string

privateFqdn string

The FQDN for the Kubernetes Cluster when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

privateLinkEnabled boolean

Deprecated: private_link_enabled is deprecated in favour of private_cluster_enabled and will be removed in version 3.0 of the AzureRM Provider

publicNetworkAccessEnabled boolean

resourceGroupName string

Specifies the Resource Group where the Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created.

roleBasedAccessControl KubernetesClusterRoleBasedAccessControl

roleBasedAccessControlEnabled boolean

Whether Role Based Access Control for the Kubernetes Cluster should be enabled. Defaults to true. Changing this forces a new resource to be created.

servicePrincipal KubernetesClusterServicePrincipal

A service_principal block as documented below. One of either identity or service_principal must be specified.

skuTier string

The SKU Tier that should be used for this Kubernetes Cluster. Possible values are Free and Paid (which includes the Uptime SLA). Defaults to Free.

tags {[key: string]: string}

A mapping of tags to assign to the resource.

windowsProfile KubernetesClusterWindowsProfile

A windows_profile block as defined below.

aci_connector_linux KubernetesClusterAciConnectorLinuxArgs

A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.

addon_profile KubernetesClusterAddonProfileArgs

An addon_profile block as defined below.

Deprecated: addon_profile block has been deprecated and will be removed in version 3.0 of the AzureRM Provider. All properties within the block will move to the top level.

api_server_authorized_ip_ranges Sequence[str]

The IP ranges to allow for incoming traffic to the server nodes.

auto_scaler_profile KubernetesClusterAutoScalerProfileArgs

A auto_scaler_profile block as defined below.

automatic_channel_upgrade str

The upgrade channel for this Kubernetes Cluster. Possible values are patch, rapid, node-image and stable. Omitting this field sets this value to none.

azure_active_directory_role_based_access_control KubernetesClusterAzureActiveDirectoryRoleBasedAccessControlArgs

A azure_active_directory_role_based_access_control block as defined below.

azure_policy_enabled bool

Should the Azure Policy Add-On be enabled? For more details please visit Understand Azure Policy for Azure Kubernetes Service

default_node_pool KubernetesClusterDefaultNodePoolArgs

A default_node_pool block as defined below.

disk_encryption_set_id str

The ID of the Disk Encryption Set which should be used for the Nodes and Volumes. More information can be found in the documentation.

dns_prefix str

DNS prefix specified when creating the managed cluster. Changing this forces a new resource to be created.

dns_prefix_private_cluster str

Specifies the DNS prefix to use with private clusters. Changing this forces a new resource to be created.

enable_pod_security_policy bool

fqdn str

The FQDN of the Azure Kubernetes Managed Cluster.

http_application_routing_enabled bool

Should HTTP Application Routing be enabled?

http_application_routing_zone_name str

The Zone Name of the HTTP Application Routing.

http_proxy_config KubernetesClusterHttpProxyConfigArgs

A http_proxy_config block as defined below.

identity KubernetesClusterIdentityArgs

An identity block as defined below. One of either identity or service_principal must be specified.

ingress_application_gateway KubernetesClusterIngressApplicationGatewayArgs

A ingress_application_gateway block as defined below.

key_vault_secrets_provider KubernetesClusterKeyVaultSecretsProviderArgs

A key_vault_secrets_provider block as defined below. For more details, please visit Azure Keyvault Secrets Provider for AKS.

kube_admin_config_raw str

kube_admin_configs Sequence[KubernetesClusterKubeAdminConfigArgs]

A kube_admin_config block as defined below. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.

kube_config_raw str

Raw Kubernetes config to be used by kubectl and other compatible tools.

kube_configs Sequence[KubernetesClusterKubeConfigArgs]

A kube_config block as defined below.

kubelet_identities Sequence[KubernetesClusterKubeletIdentityArgs]

A kubelet_identity block as defined below. Changing this forces a new resource to be created.

kubernetes_version str

Version of Kubernetes specified when creating the AKS managed cluster. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade).

linux_profile KubernetesClusterLinuxProfileArgs

A linux_profile block as defined below.

local_account_disabled bool

If true local accounts will be disabled. Defaults to false. See the documentation for more information.

location str

The location where the Managed Kubernetes Cluster should be created. Changing this forces a new resource to be created.

maintenance_window KubernetesClusterMaintenanceWindowArgs

A maintenance_window block as defined below.

name str

The name of the Managed Kubernetes Cluster to create. Changing this forces a new resource to be created.

network_profile KubernetesClusterNetworkProfileArgs

A network_profile block as defined below.

node_resource_group str

The name of the Resource Group where the Kubernetes Nodes should exist. Changing this forces a new resource to be created.

oms_agent KubernetesClusterOmsAgentArgs

A oms_agent block as defined below.

open_service_mesh_enabled bool

Is Open Service Mesh enabled? For more details, please visit Open Service Mesh for AKS.

portal_fqdn str

The FQDN for the Azure Portal resources when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

private_cluster_enabled bool

private_cluster_public_fqdn_enabled bool

Specifies whether a Public FQDN for this Private Cluster should be added. Defaults to false.

private_dns_zone_id str

private_fqdn str

The FQDN for the Kubernetes Cluster when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

private_link_enabled bool

Deprecated: private_link_enabled is deprecated in favour of private_cluster_enabled and will be removed in version 3.0 of the AzureRM Provider

public_network_access_enabled bool

resource_group_name str

Specifies the Resource Group where the Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created.

role_based_access_control KubernetesClusterRoleBasedAccessControlArgs

role_based_access_control_enabled bool

Whether Role Based Access Control for the Kubernetes Cluster should be enabled. Defaults to true. Changing this forces a new resource to be created.

service_principal KubernetesClusterServicePrincipalArgs

A service_principal block as documented below. One of either identity or service_principal must be specified.

sku_tier str

The SKU Tier that should be used for this Kubernetes Cluster. Possible values are Free and Paid (which includes the Uptime SLA). Defaults to Free.

tags Mapping[str, str]

A mapping of tags to assign to the resource.

windows_profile KubernetesClusterWindowsProfileArgs

A windows_profile block as defined below.

aciConnectorLinux Property Map

A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.

addonProfile Property Map

An addon_profile block as defined below.

Deprecated: addon_profile block has been deprecated and will be removed in version 3.0 of the AzureRM Provider. All properties within the block will move to the top level.

apiServerAuthorizedIpRanges List<String>

The IP ranges to allow for incoming traffic to the server nodes.

autoScalerProfile Property Map

A auto_scaler_profile block as defined below.

automaticChannelUpgrade String

The upgrade channel for this Kubernetes Cluster. Possible values are patch, rapid, node-image and stable. Omitting this field sets this value to none.

azureActiveDirectoryRoleBasedAccessControl Property Map

A azure_active_directory_role_based_access_control block as defined below.

azurePolicyEnabled Boolean

Should the Azure Policy Add-On be enabled? For more details please visit Understand Azure Policy for Azure Kubernetes Service

defaultNodePool Property Map

A default_node_pool block as defined below.

diskEncryptionSetId String

The ID of the Disk Encryption Set which should be used for the Nodes and Volumes. More information can be found in the documentation.

dnsPrefix String

DNS prefix specified when creating the managed cluster. Changing this forces a new resource to be created.

dnsPrefixPrivateCluster String

Specifies the DNS prefix to use with private clusters. Changing this forces a new resource to be created.

enablePodSecurityPolicy Boolean

fqdn String

The FQDN of the Azure Kubernetes Managed Cluster.

httpApplicationRoutingEnabled Boolean

Should HTTP Application Routing be enabled?

httpApplicationRoutingZoneName String

The Zone Name of the HTTP Application Routing.

httpProxyConfig Property Map

A http_proxy_config block as defined below.

identity Property Map

An identity block as defined below. One of either identity or service_principal must be specified.

ingressApplicationGateway Property Map

A ingress_application_gateway block as defined below.

keyVaultSecretsProvider Property Map

A key_vault_secrets_provider block as defined below. For more details, please visit Azure Keyvault Secrets Provider for AKS.

kubeAdminConfigRaw String

kubeAdminConfigs List<Property Map>

A kube_admin_config block as defined below. This is only available when Role Based Access Control with Azure Active Directory is enabled and local accounts enabled.

kubeConfigRaw String

Raw Kubernetes config to be used by kubectl and other compatible tools.

kubeConfigs List<Property Map>

A kube_config block as defined below.

kubeletIdentities List<Property Map>

A kubelet_identity block as defined below. Changing this forces a new resource to be created.

kubernetesVersion String

Version of Kubernetes specified when creating the AKS managed cluster. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade).

linuxProfile Property Map

A linux_profile block as defined below.

localAccountDisabled Boolean

If true local accounts will be disabled. Defaults to false. See the documentation for more information.

location String

The location where the Managed Kubernetes Cluster should be created. Changing this forces a new resource to be created.

maintenanceWindow Property Map

A maintenance_window block as defined below.

name String

The name of the Managed Kubernetes Cluster to create. Changing this forces a new resource to be created.

networkProfile Property Map

A network_profile block as defined below.

nodeResourceGroup String

The name of the Resource Group where the Kubernetes Nodes should exist. Changing this forces a new resource to be created.

omsAgent Property Map

A oms_agent block as defined below.

openServiceMeshEnabled Boolean

Is Open Service Mesh enabled? For more details, please visit Open Service Mesh for AKS.

portalFqdn String

The FQDN for the Azure Portal resources when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

privateClusterEnabled Boolean

privateClusterPublicFqdnEnabled Boolean

Specifies whether a Public FQDN for this Private Cluster should be added. Defaults to false.

privateDnsZoneId String

privateFqdn String

The FQDN for the Kubernetes Cluster when private link has been enabled, which is only resolvable inside the Virtual Network used by the Kubernetes Cluster.

privateLinkEnabled Boolean

Deprecated: private_link_enabled is deprecated in favour of private_cluster_enabled and will be removed in version 3.0 of the AzureRM Provider

publicNetworkAccessEnabled Boolean

resourceGroupName String

Specifies the Resource Group where the Managed Kubernetes Cluster should exist. Changing this forces a new resource to be created.

roleBasedAccessControl Property Map

roleBasedAccessControlEnabled Boolean

Whether Role Based Access Control for the Kubernetes Cluster should be enabled. Defaults to true. Changing this forces a new resource to be created.

servicePrincipal Property Map

A service_principal block as documented below. One of either identity or service_principal must be specified.

skuTier String

The SKU Tier that should be used for this Kubernetes Cluster. Possible values are Free and Paid (which includes the Uptime SLA). Defaults to Free.

tags Map<String>

A mapping of tags to assign to the resource.

windowsProfile Property Map

A windows_profile block as defined below.

Supporting Types

KubernetesClusterAciConnectorLinux, KubernetesClusterAciConnectorLinuxArgs

SubnetName string: The subnet name for the virtual nodes to run.

SubnetName string: The subnet name for the virtual nodes to run.

subnetName String: The subnet name for the virtual nodes to run.

subnetName string: The subnet name for the virtual nodes to run.

subnet_name str: The subnet name for the virtual nodes to run.

subnetName String: The subnet name for the virtual nodes to run.

KubernetesClusterAddonProfile, KubernetesClusterAddonProfileArgs

AciConnectorLinux KubernetesClusterAddonProfileAciConnectorLinux: A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.
Deprecated: addon_profile.0.aci_connector_linux block has been deprecated in favour of the aci_connector_linux block and will be removed in version 3.0 of the AzureRM Provider.
AzureKeyvaultSecretsProvider KubernetesClusterAddonProfileAzureKeyvaultSecretsProvider: Deprecated: addon_profile.0.azure_keyvault_secrets_provider block has been deprecated in favour of the key_vault_secrets_provider block and will be removed in version 3.0 of the AzureRM Provider.
AzurePolicy KubernetesClusterAddonProfileAzurePolicy: Deprecated: addon_profile.0.azure_policy has been deprecated in favour of azure_policy_enabled and will be removed in version 3.0 of the AzureRM Provider.
HttpApplicationRouting KubernetesClusterAddonProfileHttpApplicationRouting: A http_application_routing block as defined below.
Deprecated: addon_profile.0.http_application_routing block has been deprecated in favour of the http_application_routing_enabled property and will be removed in version 3.0 of the AzureRM Provider.
IngressApplicationGateway KubernetesClusterAddonProfileIngressApplicationGateway: A ingress_application_gateway block as defined below.
Deprecated: addon_profile.0.ingress_application_gateway block has been deprecated in favour of the ingress_application_gateway block and will be removed in version 3.0 of the AzureRM Provider.
KubeDashboard KubernetesClusterAddonProfileKubeDashboard: Deprecated: kube_dashboard has been deprecated since it is no longer supported by Kubernetes versions 1.19 or above, this property will be removed in version 3.0 of the AzureRM Provider.
OmsAgent KubernetesClusterAddonProfileOmsAgent: A oms_agent block as defined below.
Deprecated: addon_profile.0.oms_agent block has been deprecated in favour of the oms_agent block and will be removed in version 3.0 of the AzureRM Provider.
OpenServiceMesh KubernetesClusterAddonProfileOpenServiceMesh: Deprecated: addon_profile.0.open_service_mesh has been deprecated in favour of open_service_mesh_enabled and will be removed in version 3.0 of the AzureRM Provider.

AciConnectorLinux KubernetesClusterAddonProfileAciConnectorLinux: A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.
Deprecated: addon_profile.0.aci_connector_linux block has been deprecated in favour of the aci_connector_linux block and will be removed in version 3.0 of the AzureRM Provider.
AzureKeyvaultSecretsProvider KubernetesClusterAddonProfileAzureKeyvaultSecretsProvider: Deprecated: addon_profile.0.azure_keyvault_secrets_provider block has been deprecated in favour of the key_vault_secrets_provider block and will be removed in version 3.0 of the AzureRM Provider.
AzurePolicy KubernetesClusterAddonProfileAzurePolicy: Deprecated: addon_profile.0.azure_policy has been deprecated in favour of azure_policy_enabled and will be removed in version 3.0 of the AzureRM Provider.
HttpApplicationRouting KubernetesClusterAddonProfileHttpApplicationRouting: A http_application_routing block as defined below.
Deprecated: addon_profile.0.http_application_routing block has been deprecated in favour of the http_application_routing_enabled property and will be removed in version 3.0 of the AzureRM Provider.
IngressApplicationGateway KubernetesClusterAddonProfileIngressApplicationGateway: A ingress_application_gateway block as defined below.
Deprecated: addon_profile.0.ingress_application_gateway block has been deprecated in favour of the ingress_application_gateway block and will be removed in version 3.0 of the AzureRM Provider.
KubeDashboard KubernetesClusterAddonProfileKubeDashboard: Deprecated: kube_dashboard has been deprecated since it is no longer supported by Kubernetes versions 1.19 or above, this property will be removed in version 3.0 of the AzureRM Provider.
OmsAgent KubernetesClusterAddonProfileOmsAgent: A oms_agent block as defined below.
Deprecated: addon_profile.0.oms_agent block has been deprecated in favour of the oms_agent block and will be removed in version 3.0 of the AzureRM Provider.
OpenServiceMesh KubernetesClusterAddonProfileOpenServiceMesh: Deprecated: addon_profile.0.open_service_mesh has been deprecated in favour of open_service_mesh_enabled and will be removed in version 3.0 of the AzureRM Provider.

aciConnectorLinux KubernetesClusterAddonProfileAciConnectorLinux: A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.
Deprecated: addon_profile.0.aci_connector_linux block has been deprecated in favour of the aci_connector_linux block and will be removed in version 3.0 of the AzureRM Provider.
azureKeyvaultSecretsProvider KubernetesClusterAddonProfileAzureKeyvaultSecretsProvider: Deprecated: addon_profile.0.azure_keyvault_secrets_provider block has been deprecated in favour of the key_vault_secrets_provider block and will be removed in version 3.0 of the AzureRM Provider.
azurePolicy KubernetesClusterAddonProfileAzurePolicy: Deprecated: addon_profile.0.azure_policy has been deprecated in favour of azure_policy_enabled and will be removed in version 3.0 of the AzureRM Provider.
httpApplicationRouting KubernetesClusterAddonProfileHttpApplicationRouting: A http_application_routing block as defined below.
Deprecated: addon_profile.0.http_application_routing block has been deprecated in favour of the http_application_routing_enabled property and will be removed in version 3.0 of the AzureRM Provider.
ingressApplicationGateway KubernetesClusterAddonProfileIngressApplicationGateway: A ingress_application_gateway block as defined below.
Deprecated: addon_profile.0.ingress_application_gateway block has been deprecated in favour of the ingress_application_gateway block and will be removed in version 3.0 of the AzureRM Provider.
kubeDashboard KubernetesClusterAddonProfileKubeDashboard: Deprecated: kube_dashboard has been deprecated since it is no longer supported by Kubernetes versions 1.19 or above, this property will be removed in version 3.0 of the AzureRM Provider.
omsAgent KubernetesClusterAddonProfileOmsAgent: A oms_agent block as defined below.
Deprecated: addon_profile.0.oms_agent block has been deprecated in favour of the oms_agent block and will be removed in version 3.0 of the AzureRM Provider.
openServiceMesh KubernetesClusterAddonProfileOpenServiceMesh: Deprecated: addon_profile.0.open_service_mesh has been deprecated in favour of open_service_mesh_enabled and will be removed in version 3.0 of the AzureRM Provider.

aciConnectorLinux KubernetesClusterAddonProfileAciConnectorLinux: A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.
Deprecated: addon_profile.0.aci_connector_linux block has been deprecated in favour of the aci_connector_linux block and will be removed in version 3.0 of the AzureRM Provider.
azureKeyvaultSecretsProvider KubernetesClusterAddonProfileAzureKeyvaultSecretsProvider: Deprecated: addon_profile.0.azure_keyvault_secrets_provider block has been deprecated in favour of the key_vault_secrets_provider block and will be removed in version 3.0 of the AzureRM Provider.
azurePolicy KubernetesClusterAddonProfileAzurePolicy: Deprecated: addon_profile.0.azure_policy has been deprecated in favour of azure_policy_enabled and will be removed in version 3.0 of the AzureRM Provider.
httpApplicationRouting KubernetesClusterAddonProfileHttpApplicationRouting: A http_application_routing block as defined below.
Deprecated: addon_profile.0.http_application_routing block has been deprecated in favour of the http_application_routing_enabled property and will be removed in version 3.0 of the AzureRM Provider.
ingressApplicationGateway KubernetesClusterAddonProfileIngressApplicationGateway: A ingress_application_gateway block as defined below.
Deprecated: addon_profile.0.ingress_application_gateway block has been deprecated in favour of the ingress_application_gateway block and will be removed in version 3.0 of the AzureRM Provider.
kubeDashboard KubernetesClusterAddonProfileKubeDashboard: Deprecated: kube_dashboard has been deprecated since it is no longer supported by Kubernetes versions 1.19 or above, this property will be removed in version 3.0 of the AzureRM Provider.
omsAgent KubernetesClusterAddonProfileOmsAgent: A oms_agent block as defined below.
Deprecated: addon_profile.0.oms_agent block has been deprecated in favour of the oms_agent block and will be removed in version 3.0 of the AzureRM Provider.
openServiceMesh KubernetesClusterAddonProfileOpenServiceMesh: Deprecated: addon_profile.0.open_service_mesh has been deprecated in favour of open_service_mesh_enabled and will be removed in version 3.0 of the AzureRM Provider.

aci_connector_linux KubernetesClusterAddonProfileAciConnectorLinux: A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.
Deprecated: addon_profile.0.aci_connector_linux block has been deprecated in favour of the aci_connector_linux block and will be removed in version 3.0 of the AzureRM Provider.
azure_keyvault_secrets_provider KubernetesClusterAddonProfileAzureKeyvaultSecretsProvider: Deprecated: addon_profile.0.azure_keyvault_secrets_provider block has been deprecated in favour of the key_vault_secrets_provider block and will be removed in version 3.0 of the AzureRM Provider.
azure_policy KubernetesClusterAddonProfileAzurePolicy: Deprecated: addon_profile.0.azure_policy has been deprecated in favour of azure_policy_enabled and will be removed in version 3.0 of the AzureRM Provider.
http_application_routing KubernetesClusterAddonProfileHttpApplicationRouting: A http_application_routing block as defined below.
Deprecated: addon_profile.0.http_application_routing block has been deprecated in favour of the http_application_routing_enabled property and will be removed in version 3.0 of the AzureRM Provider.
ingress_application_gateway KubernetesClusterAddonProfileIngressApplicationGateway: A ingress_application_gateway block as defined below.
Deprecated: addon_profile.0.ingress_application_gateway block has been deprecated in favour of the ingress_application_gateway block and will be removed in version 3.0 of the AzureRM Provider.
kube_dashboard KubernetesClusterAddonProfileKubeDashboard: Deprecated: kube_dashboard has been deprecated since it is no longer supported by Kubernetes versions 1.19 or above, this property will be removed in version 3.0 of the AzureRM Provider.
oms_agent KubernetesClusterAddonProfileOmsAgent: A oms_agent block as defined below.
Deprecated: addon_profile.0.oms_agent block has been deprecated in favour of the oms_agent block and will be removed in version 3.0 of the AzureRM Provider.
open_service_mesh KubernetesClusterAddonProfileOpenServiceMesh: Deprecated: addon_profile.0.open_service_mesh has been deprecated in favour of open_service_mesh_enabled and will be removed in version 3.0 of the AzureRM Provider.

aciConnectorLinux Property Map: A aci_connector_linux block as defined below. For more details, please visit Create and configure an AKS cluster to use virtual nodes.
Deprecated: addon_profile.0.aci_connector_linux block has been deprecated in favour of the aci_connector_linux block and will be removed in version 3.0 of the AzureRM Provider.
azureKeyvaultSecretsProvider Property Map: Deprecated: addon_profile.0.azure_keyvault_secrets_provider block has been deprecated in favour of the key_vault_secrets_provider block and will be removed in version 3.0 of the AzureRM Provider.
azurePolicy Property Map: Deprecated: addon_profile.0.azure_policy has been deprecated in favour of azure_policy_enabled and will be removed in version 3.0 of the AzureRM Provider.
httpApplicationRouting Property Map: A http_application_routing block as defined below.
Deprecated: addon_profile.0.http_application_routing block has been deprecated in favour of the http_application_routing_enabled property and will be removed in version 3.0 of the AzureRM Provider.
ingressApplicationGateway Property Map: A ingress_application_gateway block as defined below.
Deprecated: addon_profile.0.ingress_application_gateway block has been deprecated in favour of the ingress_application_gateway block and will be removed in version 3.0 of the AzureRM Provider.
kubeDashboard Property Map: Deprecated: kube_dashboard has been deprecated since it is no longer supported by Kubernetes versions 1.19 or above, this property will be removed in version 3.0 of the AzureRM Provider.
omsAgent Property Map: A oms_agent block as defined below.
Deprecated: addon_profile.0.oms_agent block has been deprecated in favour of the oms_agent block and will be removed in version 3.0 of the AzureRM Provider.
openServiceMesh Property Map: Deprecated: addon_profile.0.open_service_mesh has been deprecated in favour of open_service_mesh_enabled and will be removed in version 3.0 of the AzureRM Provider.

KubernetesClusterAddonProfileAciConnectorLinux, KubernetesClusterAddonProfileAciConnectorLinuxArgs

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.aci_connector_linux.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
SubnetName string: The subnet name for the virtual nodes to run.
Deprecated: addon_profile.0.aci_connector_linux.0.subnet_name has been deprecated in favour of aci_connector_linux.0.subnet_name and will be removed in version 3.0 of the AzureRM Provider.

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.aci_connector_linux.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
SubnetName string: The subnet name for the virtual nodes to run.
Deprecated: addon_profile.0.aci_connector_linux.0.subnet_name has been deprecated in favour of aci_connector_linux.0.subnet_name and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.aci_connector_linux.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
subnetName String: The subnet name for the virtual nodes to run.
Deprecated: addon_profile.0.aci_connector_linux.0.subnet_name has been deprecated in favour of aci_connector_linux.0.subnet_name and will be removed in version 3.0 of the AzureRM Provider.

enabled boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.aci_connector_linux.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
subnetName string: The subnet name for the virtual nodes to run.
Deprecated: addon_profile.0.aci_connector_linux.0.subnet_name has been deprecated in favour of aci_connector_linux.0.subnet_name and will be removed in version 3.0 of the AzureRM Provider.

enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.aci_connector_linux.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
subnet_name str: The subnet name for the virtual nodes to run.
Deprecated: addon_profile.0.aci_connector_linux.0.subnet_name has been deprecated in favour of aci_connector_linux.0.subnet_name and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.aci_connector_linux.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
subnetName String: The subnet name for the virtual nodes to run.
Deprecated: addon_profile.0.aci_connector_linux.0.subnet_name has been deprecated in favour of aci_connector_linux.0.subnet_name and will be removed in version 3.0 of the AzureRM Provider.

KubernetesClusterAddonProfileAzureKeyvaultSecretsProvider, KubernetesClusterAddonProfileAzureKeyvaultSecretsProviderArgs

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
SecretIdentities List<KubernetesClusterAddonProfileAzureKeyvaultSecretsProviderSecretIdentity>: An secret_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_identity has been deprecated in favour of key_vault_secrets_provider.0.secret_identity and will be removed in version 3.0 of the AzureRM Provider.
SecretRotationEnabled bool: Is secret rotation enabled?
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_rotation_enabled has been deprecated in favour of key_vault_secrets_provider.0.secret_rotation_enabled and will be removed in version 3.0 of the AzureRM Provider.
SecretRotationInterval string: The interval to poll for secret rotation. This attribute is only set when secret_rotation is true and defaults to 2m.
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_rotation_interval has been deprecated in favour of key_vault_secrets_provider.0.secret_rotation_interval and will be removed in version 3.0 of the AzureRM Provider.

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
SecretIdentities []KubernetesClusterAddonProfileAzureKeyvaultSecretsProviderSecretIdentity: An secret_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_identity has been deprecated in favour of key_vault_secrets_provider.0.secret_identity and will be removed in version 3.0 of the AzureRM Provider.
SecretRotationEnabled bool: Is secret rotation enabled?
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_rotation_enabled has been deprecated in favour of key_vault_secrets_provider.0.secret_rotation_enabled and will be removed in version 3.0 of the AzureRM Provider.
SecretRotationInterval string: The interval to poll for secret rotation. This attribute is only set when secret_rotation is true and defaults to 2m.
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_rotation_interval has been deprecated in favour of key_vault_secrets_provider.0.secret_rotation_interval and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
secretIdentities List<KubernetesClusterAddonProfileAzureKeyvaultSecretsProviderSecretIdentity>: An secret_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_identity has been deprecated in favour of key_vault_secrets_provider.0.secret_identity and will be removed in version 3.0 of the AzureRM Provider.
secretRotationEnabled Boolean: Is secret rotation enabled?
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_rotation_enabled has been deprecated in favour of key_vault_secrets_provider.0.secret_rotation_enabled and will be removed in version 3.0 of the AzureRM Provider.
secretRotationInterval String: The interval to poll for secret rotation. This attribute is only set when secret_rotation is true and defaults to 2m.
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_rotation_interval has been deprecated in favour of key_vault_secrets_provider.0.secret_rotation_interval and will be removed in version 3.0 of the AzureRM Provider.

enabled boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
secretIdentities KubernetesClusterAddonProfileAzureKeyvaultSecretsProviderSecretIdentity[]: An secret_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_identity has been deprecated in favour of key_vault_secrets_provider.0.secret_identity and will be removed in version 3.0 of the AzureRM Provider.
secretRotationEnabled boolean: Is secret rotation enabled?
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_rotation_enabled has been deprecated in favour of key_vault_secrets_provider.0.secret_rotation_enabled and will be removed in version 3.0 of the AzureRM Provider.
secretRotationInterval string: The interval to poll for secret rotation. This attribute is only set when secret_rotation is true and defaults to 2m.
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_rotation_interval has been deprecated in favour of key_vault_secrets_provider.0.secret_rotation_interval and will be removed in version 3.0 of the AzureRM Provider.

enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
secret_identities Sequence[KubernetesClusterAddonProfileAzureKeyvaultSecretsProviderSecretIdentity]: An secret_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_identity has been deprecated in favour of key_vault_secrets_provider.0.secret_identity and will be removed in version 3.0 of the AzureRM Provider.
secret_rotation_enabled bool: Is secret rotation enabled?
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_rotation_enabled has been deprecated in favour of key_vault_secrets_provider.0.secret_rotation_enabled and will be removed in version 3.0 of the AzureRM Provider.
secret_rotation_interval str: The interval to poll for secret rotation. This attribute is only set when secret_rotation is true and defaults to 2m.
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_rotation_interval has been deprecated in favour of key_vault_secrets_provider.0.secret_rotation_interval and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
secretIdentities List<Property Map>: An secret_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_identity has been deprecated in favour of key_vault_secrets_provider.0.secret_identity and will be removed in version 3.0 of the AzureRM Provider.
secretRotationEnabled Boolean: Is secret rotation enabled?
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_rotation_enabled has been deprecated in favour of key_vault_secrets_provider.0.secret_rotation_enabled and will be removed in version 3.0 of the AzureRM Provider.
secretRotationInterval String: The interval to poll for secret rotation. This attribute is only set when secret_rotation is true and defaults to 2m.
Deprecated: addon_profile.0.azure_keyvault_secrets_provider.0.secret_rotation_interval has been deprecated in favour of key_vault_secrets_provider.0.secret_rotation_interval and will be removed in version 3.0 of the AzureRM Provider.

KubernetesClusterAddonProfileAzureKeyvaultSecretsProviderSecretIdentity, KubernetesClusterAddonProfileAzureKeyvaultSecretsProviderSecretIdentityArgs

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of a user assigned identity.

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of a user assigned identity.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of a user assigned identity.

clientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId string: The ID of a user assigned identity.

client_id str: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
object_id str: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
user_assigned_identity_id str: The ID of a user assigned identity.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of a user assigned identity.

KubernetesClusterAddonProfileAzurePolicy, KubernetesClusterAddonProfileAzurePolicyArgs

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.azure_policy.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.azure_policy.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.azure_policy.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.

enabled boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.azure_policy.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.

enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.azure_policy.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.azure_policy.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.

KubernetesClusterAddonProfileHttpApplicationRouting, KubernetesClusterAddonProfileHttpApplicationRoutingArgs

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.http_application_routing.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
HttpApplicationRoutingZoneName string: The Zone Name of the HTTP Application Routing.
Deprecated: addon_profile.0.http_application_routing.0.http_application_routing_zone_name has been deprecated in favour of http_application_routing_zone_name and will be removed in version 3.0 of the AzureRM Provider.

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.http_application_routing.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
HttpApplicationRoutingZoneName string: The Zone Name of the HTTP Application Routing.
Deprecated: addon_profile.0.http_application_routing.0.http_application_routing_zone_name has been deprecated in favour of http_application_routing_zone_name and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.http_application_routing.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
httpApplicationRoutingZoneName String: The Zone Name of the HTTP Application Routing.
Deprecated: addon_profile.0.http_application_routing.0.http_application_routing_zone_name has been deprecated in favour of http_application_routing_zone_name and will be removed in version 3.0 of the AzureRM Provider.

enabled boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.http_application_routing.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
httpApplicationRoutingZoneName string: The Zone Name of the HTTP Application Routing.
Deprecated: addon_profile.0.http_application_routing.0.http_application_routing_zone_name has been deprecated in favour of http_application_routing_zone_name and will be removed in version 3.0 of the AzureRM Provider.

enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.http_application_routing.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
http_application_routing_zone_name str: The Zone Name of the HTTP Application Routing.
Deprecated: addon_profile.0.http_application_routing.0.http_application_routing_zone_name has been deprecated in favour of http_application_routing_zone_name and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.http_application_routing.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
httpApplicationRoutingZoneName String: The Zone Name of the HTTP Application Routing.
Deprecated: addon_profile.0.http_application_routing.0.http_application_routing_zone_name has been deprecated in favour of http_application_routing_zone_name and will be removed in version 3.0 of the AzureRM Provider.

KubernetesClusterAddonProfileIngressApplicationGateway, KubernetesClusterAddonProfileIngressApplicationGatewayArgs

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.ingress_application_gateway.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
EffectiveGatewayId string: The ID of the Application Gateway associated with the ingress controller deployed to this Kubernetes Cluster.
Deprecated: addon_profile.0.ingress_application_gateway.0.effective_gateway_id has been deprecated in favour of ingress_application_gateway.0.effective_gateway_id and will be removed in version 3.0 of the AzureRM Provider.
GatewayId string: The ID of the Application Gateway to integrate with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.gateway_id has been deprecated in favour of ingress_application_gateway.0.gateway_id and will be removed in version 3.0 of the AzureRM Provider.
GatewayName string: The name of the Application Gateway to be used or created in the Nodepool Resource Group, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.gateway_name has been deprecated in favour of ingress_application_gateway.0.gateway_name and will be removed in version 3.0 of the AzureRM Provider.
IngressApplicationGatewayIdentities List<KubernetesClusterAddonProfileIngressApplicationGatewayIngressApplicationGatewayIdentity>: An ingress_application_gateway_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.ingress_application_gateway.0.ingress_application_gateway_identity has been deprecated in favour of ingress_application_gateway.0.ingress_application_gateway_identity and will be removed in version 3.0 of the AzureRM Provider.
SubnetCidr string: The subnet CIDR to be used to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.subnet_cidr has been deprecated in favour of ingress_application_gateway.0.subnet_cidr and will be removed in version 3.0 of the AzureRM Provider.
SubnetId string: The ID of the subnet on which to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.subnet_id has been deprecated in favour of ingress_application_gateway.0.subnet_id and will be removed in version 3.0 of the AzureRM Provider.

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.ingress_application_gateway.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
EffectiveGatewayId string: The ID of the Application Gateway associated with the ingress controller deployed to this Kubernetes Cluster.
Deprecated: addon_profile.0.ingress_application_gateway.0.effective_gateway_id has been deprecated in favour of ingress_application_gateway.0.effective_gateway_id and will be removed in version 3.0 of the AzureRM Provider.
GatewayId string: The ID of the Application Gateway to integrate with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.gateway_id has been deprecated in favour of ingress_application_gateway.0.gateway_id and will be removed in version 3.0 of the AzureRM Provider.
GatewayName string: The name of the Application Gateway to be used or created in the Nodepool Resource Group, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.gateway_name has been deprecated in favour of ingress_application_gateway.0.gateway_name and will be removed in version 3.0 of the AzureRM Provider.
IngressApplicationGatewayIdentities []KubernetesClusterAddonProfileIngressApplicationGatewayIngressApplicationGatewayIdentity: An ingress_application_gateway_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.ingress_application_gateway.0.ingress_application_gateway_identity has been deprecated in favour of ingress_application_gateway.0.ingress_application_gateway_identity and will be removed in version 3.0 of the AzureRM Provider.
SubnetCidr string: The subnet CIDR to be used to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.subnet_cidr has been deprecated in favour of ingress_application_gateway.0.subnet_cidr and will be removed in version 3.0 of the AzureRM Provider.
SubnetId string: The ID of the subnet on which to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.subnet_id has been deprecated in favour of ingress_application_gateway.0.subnet_id and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.ingress_application_gateway.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
effectiveGatewayId String: The ID of the Application Gateway associated with the ingress controller deployed to this Kubernetes Cluster.
Deprecated: addon_profile.0.ingress_application_gateway.0.effective_gateway_id has been deprecated in favour of ingress_application_gateway.0.effective_gateway_id and will be removed in version 3.0 of the AzureRM Provider.
gatewayId String: The ID of the Application Gateway to integrate with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.gateway_id has been deprecated in favour of ingress_application_gateway.0.gateway_id and will be removed in version 3.0 of the AzureRM Provider.
gatewayName String: The name of the Application Gateway to be used or created in the Nodepool Resource Group, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.gateway_name has been deprecated in favour of ingress_application_gateway.0.gateway_name and will be removed in version 3.0 of the AzureRM Provider.
ingressApplicationGatewayIdentities List<KubernetesClusterAddonProfileIngressApplicationGatewayIngressApplicationGatewayIdentity>: An ingress_application_gateway_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.ingress_application_gateway.0.ingress_application_gateway_identity has been deprecated in favour of ingress_application_gateway.0.ingress_application_gateway_identity and will be removed in version 3.0 of the AzureRM Provider.
subnetCidr String: The subnet CIDR to be used to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.subnet_cidr has been deprecated in favour of ingress_application_gateway.0.subnet_cidr and will be removed in version 3.0 of the AzureRM Provider.
subnetId String: The ID of the subnet on which to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.subnet_id has been deprecated in favour of ingress_application_gateway.0.subnet_id and will be removed in version 3.0 of the AzureRM Provider.

enabled boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.ingress_application_gateway.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
effectiveGatewayId string: The ID of the Application Gateway associated with the ingress controller deployed to this Kubernetes Cluster.
Deprecated: addon_profile.0.ingress_application_gateway.0.effective_gateway_id has been deprecated in favour of ingress_application_gateway.0.effective_gateway_id and will be removed in version 3.0 of the AzureRM Provider.
gatewayId string: The ID of the Application Gateway to integrate with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.gateway_id has been deprecated in favour of ingress_application_gateway.0.gateway_id and will be removed in version 3.0 of the AzureRM Provider.
gatewayName string: The name of the Application Gateway to be used or created in the Nodepool Resource Group, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.gateway_name has been deprecated in favour of ingress_application_gateway.0.gateway_name and will be removed in version 3.0 of the AzureRM Provider.
ingressApplicationGatewayIdentities KubernetesClusterAddonProfileIngressApplicationGatewayIngressApplicationGatewayIdentity[]: An ingress_application_gateway_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.ingress_application_gateway.0.ingress_application_gateway_identity has been deprecated in favour of ingress_application_gateway.0.ingress_application_gateway_identity and will be removed in version 3.0 of the AzureRM Provider.
subnetCidr string: The subnet CIDR to be used to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.subnet_cidr has been deprecated in favour of ingress_application_gateway.0.subnet_cidr and will be removed in version 3.0 of the AzureRM Provider.
subnetId string: The ID of the subnet on which to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.subnet_id has been deprecated in favour of ingress_application_gateway.0.subnet_id and will be removed in version 3.0 of the AzureRM Provider.

enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.ingress_application_gateway.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
effective_gateway_id str: The ID of the Application Gateway associated with the ingress controller deployed to this Kubernetes Cluster.
Deprecated: addon_profile.0.ingress_application_gateway.0.effective_gateway_id has been deprecated in favour of ingress_application_gateway.0.effective_gateway_id and will be removed in version 3.0 of the AzureRM Provider.
gateway_id str: The ID of the Application Gateway to integrate with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.gateway_id has been deprecated in favour of ingress_application_gateway.0.gateway_id and will be removed in version 3.0 of the AzureRM Provider.
gateway_name str: The name of the Application Gateway to be used or created in the Nodepool Resource Group, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.gateway_name has been deprecated in favour of ingress_application_gateway.0.gateway_name and will be removed in version 3.0 of the AzureRM Provider.
ingress_application_gateway_identities Sequence[KubernetesClusterAddonProfileIngressApplicationGatewayIngressApplicationGatewayIdentity]: An ingress_application_gateway_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.ingress_application_gateway.0.ingress_application_gateway_identity has been deprecated in favour of ingress_application_gateway.0.ingress_application_gateway_identity and will be removed in version 3.0 of the AzureRM Provider.
subnet_cidr str: The subnet CIDR to be used to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.subnet_cidr has been deprecated in favour of ingress_application_gateway.0.subnet_cidr and will be removed in version 3.0 of the AzureRM Provider.
subnet_id str: The ID of the subnet on which to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.subnet_id has been deprecated in favour of ingress_application_gateway.0.subnet_id and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.ingress_application_gateway.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
effectiveGatewayId String: The ID of the Application Gateway associated with the ingress controller deployed to this Kubernetes Cluster.
Deprecated: addon_profile.0.ingress_application_gateway.0.effective_gateway_id has been deprecated in favour of ingress_application_gateway.0.effective_gateway_id and will be removed in version 3.0 of the AzureRM Provider.
gatewayId String: The ID of the Application Gateway to integrate with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.gateway_id has been deprecated in favour of ingress_application_gateway.0.gateway_id and will be removed in version 3.0 of the AzureRM Provider.
gatewayName String: The name of the Application Gateway to be used or created in the Nodepool Resource Group, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.gateway_name has been deprecated in favour of ingress_application_gateway.0.gateway_name and will be removed in version 3.0 of the AzureRM Provider.
ingressApplicationGatewayIdentities List<Property Map>: An ingress_application_gateway_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.ingress_application_gateway.0.ingress_application_gateway_identity has been deprecated in favour of ingress_application_gateway.0.ingress_application_gateway_identity and will be removed in version 3.0 of the AzureRM Provider.
subnetCidr String: The subnet CIDR to be used to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.subnet_cidr has been deprecated in favour of ingress_application_gateway.0.subnet_cidr and will be removed in version 3.0 of the AzureRM Provider.
subnetId String: The ID of the subnet on which to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
Deprecated: addon_profile.0.ingress_application_gateway.0.subnet_id has been deprecated in favour of ingress_application_gateway.0.subnet_id and will be removed in version 3.0 of the AzureRM Provider.

KubernetesClusterAddonProfileIngressApplicationGatewayIngressApplicationGatewayIdentity, KubernetesClusterAddonProfileIngressApplicationGatewayIngressApplicationGatewayIdentityArgs

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of a user assigned identity.

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of a user assigned identity.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of a user assigned identity.

clientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId string: The ID of a user assigned identity.

client_id str: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
object_id str: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
user_assigned_identity_id str: The ID of a user assigned identity.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of a user assigned identity.

KubernetesClusterAddonProfileKubeDashboard, KubernetesClusterAddonProfileKubeDashboardArgs

Enabled bool: Is the Kubernetes Dashboard enabled?

Enabled bool: Is the Kubernetes Dashboard enabled?

enabled Boolean: Is the Kubernetes Dashboard enabled?

enabled boolean: Is the Kubernetes Dashboard enabled?

enabled bool: Is the Kubernetes Dashboard enabled?

enabled Boolean: Is the Kubernetes Dashboard enabled?

KubernetesClusterAddonProfileOmsAgent, KubernetesClusterAddonProfileOmsAgentArgs

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.oms_agent.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
LogAnalyticsWorkspaceId string: The ID of the Log Analytics Workspace which the OMS Agent should send data to.
Deprecated: addon_profile.0.oms_agent.0.log_analytics_workspace_id has been deprecated in favour of oms_agent.0.log_analytics_workspace_id and will be removed in version 3.0 of the AzureRM Provider.
OmsAgentIdentities List<KubernetesClusterAddonProfileOmsAgentOmsAgentIdentity>: An oms_agent_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.oms_agent.0.oms_agent_identity has been deprecated in favour of oms_agent.0.oms_agent_identity and will be removed in version 3.0 of the AzureRM Provider.

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.oms_agent.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
LogAnalyticsWorkspaceId string: The ID of the Log Analytics Workspace which the OMS Agent should send data to.
Deprecated: addon_profile.0.oms_agent.0.log_analytics_workspace_id has been deprecated in favour of oms_agent.0.log_analytics_workspace_id and will be removed in version 3.0 of the AzureRM Provider.
OmsAgentIdentities []KubernetesClusterAddonProfileOmsAgentOmsAgentIdentity: An oms_agent_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.oms_agent.0.oms_agent_identity has been deprecated in favour of oms_agent.0.oms_agent_identity and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.oms_agent.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
logAnalyticsWorkspaceId String: The ID of the Log Analytics Workspace which the OMS Agent should send data to.
Deprecated: addon_profile.0.oms_agent.0.log_analytics_workspace_id has been deprecated in favour of oms_agent.0.log_analytics_workspace_id and will be removed in version 3.0 of the AzureRM Provider.
omsAgentIdentities List<KubernetesClusterAddonProfileOmsAgentOmsAgentIdentity>: An oms_agent_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.oms_agent.0.oms_agent_identity has been deprecated in favour of oms_agent.0.oms_agent_identity and will be removed in version 3.0 of the AzureRM Provider.

enabled boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.oms_agent.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
logAnalyticsWorkspaceId string: The ID of the Log Analytics Workspace which the OMS Agent should send data to.
Deprecated: addon_profile.0.oms_agent.0.log_analytics_workspace_id has been deprecated in favour of oms_agent.0.log_analytics_workspace_id and will be removed in version 3.0 of the AzureRM Provider.
omsAgentIdentities KubernetesClusterAddonProfileOmsAgentOmsAgentIdentity[]: An oms_agent_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.oms_agent.0.oms_agent_identity has been deprecated in favour of oms_agent.0.oms_agent_identity and will be removed in version 3.0 of the AzureRM Provider.

enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.oms_agent.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
log_analytics_workspace_id str: The ID of the Log Analytics Workspace which the OMS Agent should send data to.
Deprecated: addon_profile.0.oms_agent.0.log_analytics_workspace_id has been deprecated in favour of oms_agent.0.log_analytics_workspace_id and will be removed in version 3.0 of the AzureRM Provider.
oms_agent_identities Sequence[KubernetesClusterAddonProfileOmsAgentOmsAgentIdentity]: An oms_agent_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.oms_agent.0.oms_agent_identity has been deprecated in favour of oms_agent.0.oms_agent_identity and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.oms_agent.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.
logAnalyticsWorkspaceId String: The ID of the Log Analytics Workspace which the OMS Agent should send data to.
Deprecated: addon_profile.0.oms_agent.0.log_analytics_workspace_id has been deprecated in favour of oms_agent.0.log_analytics_workspace_id and will be removed in version 3.0 of the AzureRM Provider.
omsAgentIdentities List<Property Map>: An oms_agent_identity block is exported. The exported attributes are defined below.
Deprecated: addon_profile.0.oms_agent.0.oms_agent_identity has been deprecated in favour of oms_agent.0.oms_agent_identity and will be removed in version 3.0 of the AzureRM Provider.

KubernetesClusterAddonProfileOmsAgentOmsAgentIdentity, KubernetesClusterAddonProfileOmsAgentOmsAgentIdentityArgs

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of a user assigned identity.

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of a user assigned identity.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of a user assigned identity.

clientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId string: The ID of a user assigned identity.

client_id str: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
object_id str: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
user_assigned_identity_id str: The ID of a user assigned identity.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of a user assigned identity.

KubernetesClusterAddonProfileOpenServiceMesh, KubernetesClusterAddonProfileOpenServiceMeshArgs

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.open_service_mesh.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.

Enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.open_service_mesh.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.open_service_mesh.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.

enabled boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.open_service_mesh.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.

enabled bool: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.open_service_mesh.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.

enabled Boolean: Is the Kubernetes Dashboard enabled?
Deprecated: addon_profile.0.open_service_mesh.0.enabled has been deprecated and will be removed in version 3.0 of the AzureRM Provider.

KubernetesClusterAutoScalerProfile, KubernetesClusterAutoScalerProfileArgs

BalanceSimilarNodeGroups bool: Detect similar node groups and balance the number of nodes between them. Defaults to false.
EmptyBulkDeleteMax string: Maximum number of empty nodes that can be deleted at the same time. Defaults to 10.
Expander string: Expander to use. Possible values are least-waste, priority, most-pods and random. Defaults to random.
MaxGracefulTerminationSec string: Maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. Defaults to 600.
MaxNodeProvisioningTime string: Maximum time the autoscaler waits for a node to be provisioned. Defaults to 15m.
MaxUnreadyNodes int: Maximum Number of allowed unready nodes. Defaults to 3.
MaxUnreadyPercentage double: Maximum percentage of unready nodes the cluster autoscaler will stop if the percentage is exceeded. Defaults to 45.
NewPodScaleUpDelay string: For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. Defaults to 10s.
ScaleDownDelayAfterAdd string: How long after the scale up of AKS nodes the scale down evaluation resumes. Defaults to 10m.
ScaleDownDelayAfterDelete string: How long after node deletion that scale down evaluation resumes. Defaults to the value used for scan_interval.
ScaleDownDelayAfterFailure string: How long after scale down failure that scale down evaluation resumes. Defaults to 3m.
ScaleDownUnneeded string: How long a node should be unneeded before it is eligible for scale down. Defaults to 10m.
ScaleDownUnready string: How long an unready node should be unneeded before it is eligible for scale down. Defaults to 20m.
ScaleDownUtilizationThreshold string: Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. Defaults to 0.5.
ScanInterval string: How often the AKS Cluster should be re-evaluated for scale up/down. Defaults to 10s.
SkipNodesWithLocalStorage bool: If true cluster autoscaler will never delete nodes with pods with local storage, for example, EmptyDir or HostPath. Defaults to true.
SkipNodesWithSystemPods bool: If true cluster autoscaler will never delete nodes with pods from kube-system (except for DaemonSet or mirror pods). Defaults to true.

BalanceSimilarNodeGroups bool: Detect similar node groups and balance the number of nodes between them. Defaults to false.
EmptyBulkDeleteMax string: Maximum number of empty nodes that can be deleted at the same time. Defaults to 10.
Expander string: Expander to use. Possible values are least-waste, priority, most-pods and random. Defaults to random.
MaxGracefulTerminationSec string: Maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. Defaults to 600.
MaxNodeProvisioningTime string: Maximum time the autoscaler waits for a node to be provisioned. Defaults to 15m.
MaxUnreadyNodes int: Maximum Number of allowed unready nodes. Defaults to 3.
MaxUnreadyPercentage float64: Maximum percentage of unready nodes the cluster autoscaler will stop if the percentage is exceeded. Defaults to 45.
NewPodScaleUpDelay string: For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. Defaults to 10s.
ScaleDownDelayAfterAdd string: How long after the scale up of AKS nodes the scale down evaluation resumes. Defaults to 10m.
ScaleDownDelayAfterDelete string: How long after node deletion that scale down evaluation resumes. Defaults to the value used for scan_interval.
ScaleDownDelayAfterFailure string: How long after scale down failure that scale down evaluation resumes. Defaults to 3m.
ScaleDownUnneeded string: How long a node should be unneeded before it is eligible for scale down. Defaults to 10m.
ScaleDownUnready string: How long an unready node should be unneeded before it is eligible for scale down. Defaults to 20m.
ScaleDownUtilizationThreshold string: Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. Defaults to 0.5.
ScanInterval string: How often the AKS Cluster should be re-evaluated for scale up/down. Defaults to 10s.
SkipNodesWithLocalStorage bool: If true cluster autoscaler will never delete nodes with pods with local storage, for example, EmptyDir or HostPath. Defaults to true.
SkipNodesWithSystemPods bool: If true cluster autoscaler will never delete nodes with pods from kube-system (except for DaemonSet or mirror pods). Defaults to true.

balanceSimilarNodeGroups Boolean: Detect similar node groups and balance the number of nodes between them. Defaults to false.
emptyBulkDeleteMax String: Maximum number of empty nodes that can be deleted at the same time. Defaults to 10.
expander String: Expander to use. Possible values are least-waste, priority, most-pods and random. Defaults to random.
maxGracefulTerminationSec String: Maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. Defaults to 600.
maxNodeProvisioningTime String: Maximum time the autoscaler waits for a node to be provisioned. Defaults to 15m.
maxUnreadyNodes Integer: Maximum Number of allowed unready nodes. Defaults to 3.
maxUnreadyPercentage Double: Maximum percentage of unready nodes the cluster autoscaler will stop if the percentage is exceeded. Defaults to 45.
newPodScaleUpDelay String: For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. Defaults to 10s.
scaleDownDelayAfterAdd String: How long after the scale up of AKS nodes the scale down evaluation resumes. Defaults to 10m.
scaleDownDelayAfterDelete String: How long after node deletion that scale down evaluation resumes. Defaults to the value used for scan_interval.
scaleDownDelayAfterFailure String: How long after scale down failure that scale down evaluation resumes. Defaults to 3m.
scaleDownUnneeded String: How long a node should be unneeded before it is eligible for scale down. Defaults to 10m.
scaleDownUnready String: How long an unready node should be unneeded before it is eligible for scale down. Defaults to 20m.
scaleDownUtilizationThreshold String: Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. Defaults to 0.5.
scanInterval String: How often the AKS Cluster should be re-evaluated for scale up/down. Defaults to 10s.
skipNodesWithLocalStorage Boolean: If true cluster autoscaler will never delete nodes with pods with local storage, for example, EmptyDir or HostPath. Defaults to true.
skipNodesWithSystemPods Boolean: If true cluster autoscaler will never delete nodes with pods from kube-system (except for DaemonSet or mirror pods). Defaults to true.

balanceSimilarNodeGroups boolean: Detect similar node groups and balance the number of nodes between them. Defaults to false.
emptyBulkDeleteMax string: Maximum number of empty nodes that can be deleted at the same time. Defaults to 10.
expander string: Expander to use. Possible values are least-waste, priority, most-pods and random. Defaults to random.
maxGracefulTerminationSec string: Maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. Defaults to 600.
maxNodeProvisioningTime string: Maximum time the autoscaler waits for a node to be provisioned. Defaults to 15m.
maxUnreadyNodes number: Maximum Number of allowed unready nodes. Defaults to 3.
maxUnreadyPercentage number: Maximum percentage of unready nodes the cluster autoscaler will stop if the percentage is exceeded. Defaults to 45.
newPodScaleUpDelay string: For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. Defaults to 10s.
scaleDownDelayAfterAdd string: How long after the scale up of AKS nodes the scale down evaluation resumes. Defaults to 10m.
scaleDownDelayAfterDelete string: How long after node deletion that scale down evaluation resumes. Defaults to the value used for scan_interval.
scaleDownDelayAfterFailure string: How long after scale down failure that scale down evaluation resumes. Defaults to 3m.
scaleDownUnneeded string: How long a node should be unneeded before it is eligible for scale down. Defaults to 10m.
scaleDownUnready string: How long an unready node should be unneeded before it is eligible for scale down. Defaults to 20m.
scaleDownUtilizationThreshold string: Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. Defaults to 0.5.
scanInterval string: How often the AKS Cluster should be re-evaluated for scale up/down. Defaults to 10s.
skipNodesWithLocalStorage boolean: If true cluster autoscaler will never delete nodes with pods with local storage, for example, EmptyDir or HostPath. Defaults to true.
skipNodesWithSystemPods boolean: If true cluster autoscaler will never delete nodes with pods from kube-system (except for DaemonSet or mirror pods). Defaults to true.

balance_similar_node_groups bool: Detect similar node groups and balance the number of nodes between them. Defaults to false.
empty_bulk_delete_max str: Maximum number of empty nodes that can be deleted at the same time. Defaults to 10.
expander str: Expander to use. Possible values are least-waste, priority, most-pods and random. Defaults to random.
max_graceful_termination_sec str: Maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. Defaults to 600.
max_node_provisioning_time str: Maximum time the autoscaler waits for a node to be provisioned. Defaults to 15m.
max_unready_nodes int: Maximum Number of allowed unready nodes. Defaults to 3.
max_unready_percentage float: Maximum percentage of unready nodes the cluster autoscaler will stop if the percentage is exceeded. Defaults to 45.
new_pod_scale_up_delay str: For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. Defaults to 10s.
scale_down_delay_after_add str: How long after the scale up of AKS nodes the scale down evaluation resumes. Defaults to 10m.
scale_down_delay_after_delete str: How long after node deletion that scale down evaluation resumes. Defaults to the value used for scan_interval.
scale_down_delay_after_failure str: How long after scale down failure that scale down evaluation resumes. Defaults to 3m.
scale_down_unneeded str: How long a node should be unneeded before it is eligible for scale down. Defaults to 10m.
scale_down_unready str: How long an unready node should be unneeded before it is eligible for scale down. Defaults to 20m.
scale_down_utilization_threshold str: Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. Defaults to 0.5.
scan_interval str: How often the AKS Cluster should be re-evaluated for scale up/down. Defaults to 10s.
skip_nodes_with_local_storage bool: If true cluster autoscaler will never delete nodes with pods with local storage, for example, EmptyDir or HostPath. Defaults to true.
skip_nodes_with_system_pods bool: If true cluster autoscaler will never delete nodes with pods from kube-system (except for DaemonSet or mirror pods). Defaults to true.

balanceSimilarNodeGroups Boolean: Detect similar node groups and balance the number of nodes between them. Defaults to false.
emptyBulkDeleteMax String: Maximum number of empty nodes that can be deleted at the same time. Defaults to 10.
expander String: Expander to use. Possible values are least-waste, priority, most-pods and random. Defaults to random.
maxGracefulTerminationSec String: Maximum number of seconds the cluster autoscaler waits for pod termination when trying to scale down a node. Defaults to 600.
maxNodeProvisioningTime String: Maximum time the autoscaler waits for a node to be provisioned. Defaults to 15m.
maxUnreadyNodes Number: Maximum Number of allowed unready nodes. Defaults to 3.
maxUnreadyPercentage Number: Maximum percentage of unready nodes the cluster autoscaler will stop if the percentage is exceeded. Defaults to 45.
newPodScaleUpDelay String: For scenarios like burst/batch scale where you don't want CA to act before the kubernetes scheduler could schedule all the pods, you can tell CA to ignore unscheduled pods before they're a certain age. Defaults to 10s.
scaleDownDelayAfterAdd String: How long after the scale up of AKS nodes the scale down evaluation resumes. Defaults to 10m.
scaleDownDelayAfterDelete String: How long after node deletion that scale down evaluation resumes. Defaults to the value used for scan_interval.
scaleDownDelayAfterFailure String: How long after scale down failure that scale down evaluation resumes. Defaults to 3m.
scaleDownUnneeded String: How long a node should be unneeded before it is eligible for scale down. Defaults to 10m.
scaleDownUnready String: How long an unready node should be unneeded before it is eligible for scale down. Defaults to 20m.
scaleDownUtilizationThreshold String: Node utilization level, defined as sum of requested resources divided by capacity, below which a node can be considered for scale down. Defaults to 0.5.
scanInterval String: How often the AKS Cluster should be re-evaluated for scale up/down. Defaults to 10s.
skipNodesWithLocalStorage Boolean: If true cluster autoscaler will never delete nodes with pods with local storage, for example, EmptyDir or HostPath. Defaults to true.
skipNodesWithSystemPods Boolean: If true cluster autoscaler will never delete nodes with pods from kube-system (except for DaemonSet or mirror pods). Defaults to true.

KubernetesClusterAzureActiveDirectoryRoleBasedAccessControl, KubernetesClusterAzureActiveDirectoryRoleBasedAccessControlArgs

AdminGroupObjectIds List<string>: A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster.
AzureRbacEnabled bool: Is Role Based Access Control based on Azure AD enabled?
ClientAppId string: The Client ID of an Azure Active Directory Application.
Managed bool: Is the Azure Active Directory integration Managed, meaning that Azure will create/manage the Service Principal used for integration.
ServerAppId string: The Server ID of an Azure Active Directory Application.
ServerAppSecret string: The Server Secret of an Azure Active Directory Application.
TenantId string: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.

AdminGroupObjectIds []string: A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster.
AzureRbacEnabled bool: Is Role Based Access Control based on Azure AD enabled?
ClientAppId string: The Client ID of an Azure Active Directory Application.
Managed bool: Is the Azure Active Directory integration Managed, meaning that Azure will create/manage the Service Principal used for integration.
ServerAppId string: The Server ID of an Azure Active Directory Application.
ServerAppSecret string: The Server Secret of an Azure Active Directory Application.
TenantId string: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.

adminGroupObjectIds List<String>: A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster.
azureRbacEnabled Boolean: Is Role Based Access Control based on Azure AD enabled?
clientAppId String: The Client ID of an Azure Active Directory Application.
managed Boolean: Is the Azure Active Directory integration Managed, meaning that Azure will create/manage the Service Principal used for integration.
serverAppId String: The Server ID of an Azure Active Directory Application.
serverAppSecret String: The Server Secret of an Azure Active Directory Application.
tenantId String: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.

adminGroupObjectIds string[]: A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster.
azureRbacEnabled boolean: Is Role Based Access Control based on Azure AD enabled?
clientAppId string: The Client ID of an Azure Active Directory Application.
managed boolean: Is the Azure Active Directory integration Managed, meaning that Azure will create/manage the Service Principal used for integration.
serverAppId string: The Server ID of an Azure Active Directory Application.
serverAppSecret string: The Server Secret of an Azure Active Directory Application.
tenantId string: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.

admin_group_object_ids Sequence[str]: A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster.
azure_rbac_enabled bool: Is Role Based Access Control based on Azure AD enabled?
client_app_id str: The Client ID of an Azure Active Directory Application.
managed bool: Is the Azure Active Directory integration Managed, meaning that Azure will create/manage the Service Principal used for integration.
server_app_id str: The Server ID of an Azure Active Directory Application.
server_app_secret str: The Server Secret of an Azure Active Directory Application.
tenant_id str: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.

adminGroupObjectIds List<String>: A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster.
azureRbacEnabled Boolean: Is Role Based Access Control based on Azure AD enabled?
clientAppId String: The Client ID of an Azure Active Directory Application.
managed Boolean: Is the Azure Active Directory integration Managed, meaning that Azure will create/manage the Service Principal used for integration.
serverAppId String: The Server ID of an Azure Active Directory Application.
serverAppSecret String: The Server Secret of an Azure Active Directory Application.
tenantId String: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.

KubernetesClusterDefaultNodePool, KubernetesClusterDefaultNodePoolArgs

Name string: The name which should be used for the default Kubernetes Node Pool. Changing this forces a new resource to be created.
VmSize string: The size of the Virtual Machine, such as Standard_DS2_v2.
AvailabilityZones List<string>: A list of Availability Zones across which the Node Pool should be spread. Changing this forces a new resource to be created.
EnableAutoScaling bool: Should the Kubernetes Auto Scaler be enabled for this Node Pool? Defaults to false.
EnableHostEncryption bool: Should the nodes in the Default Node Pool have host encryption enabled? Defaults to false.
EnableNodePublicIp bool: Should nodes in this Node Pool have a Public IP Address? Defaults to false. Changing this forces a new resource to be created.
FipsEnabled bool: Should the nodes in this Node Pool have Federal Information Processing Standard enabled? Changing this forces a new resource to be created.
KubeletConfig KubernetesClusterDefaultNodePoolKubeletConfig: A kubelet_config block as defined below.
KubeletDiskType string: The type of disk used by kubelet. Possible values are OS and Temporary.
LinuxOsConfig KubernetesClusterDefaultNodePoolLinuxOsConfig: A linux_os_config block as defined below.
MaxCount int: The maximum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000.
MaxPods int: The maximum number of pods that can run on each agent. Changing this forces a new resource to be created.
MinCount int: The minimum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000.
NodeCount int: The initial number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000 and between min_count and max_count.
NodeLabels Dictionary<string, string>: A map of Kubernetes labels which should be applied to nodes in the Default Node Pool. Changing this forces a new resource to be created.
NodePublicIpPrefixId string: Resource ID for the Public IP Addresses Prefix for the nodes in this Node Pool. enable_node_public_ip should be true. Changing this forces a new resource to be created.
NodeTaints List<string>
OnlyCriticalAddonsEnabled bool: Enabling this option will taint default node pool with CriticalAddonsOnly=true:NoSchedule taint. Changing this forces a new resource to be created.
OrchestratorVersion string: Version of Kubernetes used for the Agents. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade)
OsDiskSizeGb int: The size of the OS Disk which should be used for each agent in the Node Pool. Changing this forces a new resource to be created.
OsDiskType string: The type of disk which should be used for the Operating System. Possible values are Ephemeral and Managed. Defaults to Managed. Changing this forces a new resource to be created.
OsSku string: OsSKU to be used to specify Linux OSType. Not applicable to Windows OSType. Possible values include: Ubuntu, CBLMariner. Defaults to Ubuntu. Changing this forces a new resource to be created.
PodSubnetId string: The ID of the Subnet where the pods in the default Node Pool should exist. Changing this forces a new resource to be created.
ProximityPlacementGroupId string
Tags Dictionary<string, string>: A mapping of tags to assign to the Node Pool.
Type string: The type of Node Pool which should be created. Possible values are AvailabilitySet and VirtualMachineScaleSets. Defaults to VirtualMachineScaleSets.
UltraSsdEnabled bool: Used to specify whether the UltraSSD is enabled in the Default Node Pool. Defaults to false. See the documentation for more information.
UpgradeSettings KubernetesClusterDefaultNodePoolUpgradeSettings: A upgrade_settings block as documented below.
VnetSubnetId string: The ID of a Subnet where the Kubernetes Node Pool should exist. Changing this forces a new resource to be created.

Name string: The name which should be used for the default Kubernetes Node Pool. Changing this forces a new resource to be created.
VmSize string: The size of the Virtual Machine, such as Standard_DS2_v2.
AvailabilityZones []string: A list of Availability Zones across which the Node Pool should be spread. Changing this forces a new resource to be created.
EnableAutoScaling bool: Should the Kubernetes Auto Scaler be enabled for this Node Pool? Defaults to false.
EnableHostEncryption bool: Should the nodes in the Default Node Pool have host encryption enabled? Defaults to false.
EnableNodePublicIp bool: Should nodes in this Node Pool have a Public IP Address? Defaults to false. Changing this forces a new resource to be created.
FipsEnabled bool: Should the nodes in this Node Pool have Federal Information Processing Standard enabled? Changing this forces a new resource to be created.
KubeletConfig KubernetesClusterDefaultNodePoolKubeletConfig: A kubelet_config block as defined below.
KubeletDiskType string: The type of disk used by kubelet. Possible values are OS and Temporary.
LinuxOsConfig KubernetesClusterDefaultNodePoolLinuxOsConfig: A linux_os_config block as defined below.
MaxCount int: The maximum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000.
MaxPods int: The maximum number of pods that can run on each agent. Changing this forces a new resource to be created.
MinCount int: The minimum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000.
NodeCount int: The initial number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000 and between min_count and max_count.
NodeLabels map[string]string: A map of Kubernetes labels which should be applied to nodes in the Default Node Pool. Changing this forces a new resource to be created.
NodePublicIpPrefixId string: Resource ID for the Public IP Addresses Prefix for the nodes in this Node Pool. enable_node_public_ip should be true. Changing this forces a new resource to be created.
NodeTaints []string
OnlyCriticalAddonsEnabled bool: Enabling this option will taint default node pool with CriticalAddonsOnly=true:NoSchedule taint. Changing this forces a new resource to be created.
OrchestratorVersion string: Version of Kubernetes used for the Agents. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade)
OsDiskSizeGb int: The size of the OS Disk which should be used for each agent in the Node Pool. Changing this forces a new resource to be created.
OsDiskType string: The type of disk which should be used for the Operating System. Possible values are Ephemeral and Managed. Defaults to Managed. Changing this forces a new resource to be created.
OsSku string: OsSKU to be used to specify Linux OSType. Not applicable to Windows OSType. Possible values include: Ubuntu, CBLMariner. Defaults to Ubuntu. Changing this forces a new resource to be created.
PodSubnetId string: The ID of the Subnet where the pods in the default Node Pool should exist. Changing this forces a new resource to be created.
ProximityPlacementGroupId string
Tags map[string]string: A mapping of tags to assign to the Node Pool.
Type string: The type of Node Pool which should be created. Possible values are AvailabilitySet and VirtualMachineScaleSets. Defaults to VirtualMachineScaleSets.
UltraSsdEnabled bool: Used to specify whether the UltraSSD is enabled in the Default Node Pool. Defaults to false. See the documentation for more information.
UpgradeSettings KubernetesClusterDefaultNodePoolUpgradeSettings: A upgrade_settings block as documented below.
VnetSubnetId string: The ID of a Subnet where the Kubernetes Node Pool should exist. Changing this forces a new resource to be created.

name String: The name which should be used for the default Kubernetes Node Pool. Changing this forces a new resource to be created.
vmSize String: The size of the Virtual Machine, such as Standard_DS2_v2.
availabilityZones List<String>: A list of Availability Zones across which the Node Pool should be spread. Changing this forces a new resource to be created.
enableAutoScaling Boolean: Should the Kubernetes Auto Scaler be enabled for this Node Pool? Defaults to false.
enableHostEncryption Boolean: Should the nodes in the Default Node Pool have host encryption enabled? Defaults to false.
enableNodePublicIp Boolean: Should nodes in this Node Pool have a Public IP Address? Defaults to false. Changing this forces a new resource to be created.
fipsEnabled Boolean: Should the nodes in this Node Pool have Federal Information Processing Standard enabled? Changing this forces a new resource to be created.
kubeletConfig KubernetesClusterDefaultNodePoolKubeletConfig: A kubelet_config block as defined below.
kubeletDiskType String: The type of disk used by kubelet. Possible values are OS and Temporary.
linuxOsConfig KubernetesClusterDefaultNodePoolLinuxOsConfig: A linux_os_config block as defined below.
maxCount Integer: The maximum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000.
maxPods Integer: The maximum number of pods that can run on each agent. Changing this forces a new resource to be created.
minCount Integer: The minimum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000.
nodeCount Integer: The initial number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000 and between min_count and max_count.
nodeLabels Map<String,String>: A map of Kubernetes labels which should be applied to nodes in the Default Node Pool. Changing this forces a new resource to be created.
nodePublicIpPrefixId String: Resource ID for the Public IP Addresses Prefix for the nodes in this Node Pool. enable_node_public_ip should be true. Changing this forces a new resource to be created.
nodeTaints List<String>
onlyCriticalAddonsEnabled Boolean: Enabling this option will taint default node pool with CriticalAddonsOnly=true:NoSchedule taint. Changing this forces a new resource to be created.
orchestratorVersion String: Version of Kubernetes used for the Agents. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade)
osDiskSizeGb Integer: The size of the OS Disk which should be used for each agent in the Node Pool. Changing this forces a new resource to be created.
osDiskType String: The type of disk which should be used for the Operating System. Possible values are Ephemeral and Managed. Defaults to Managed. Changing this forces a new resource to be created.
osSku String: OsSKU to be used to specify Linux OSType. Not applicable to Windows OSType. Possible values include: Ubuntu, CBLMariner. Defaults to Ubuntu. Changing this forces a new resource to be created.
podSubnetId String: The ID of the Subnet where the pods in the default Node Pool should exist. Changing this forces a new resource to be created.
proximityPlacementGroupId String
tags Map<String,String>: A mapping of tags to assign to the Node Pool.
type String: The type of Node Pool which should be created. Possible values are AvailabilitySet and VirtualMachineScaleSets. Defaults to VirtualMachineScaleSets.
ultraSsdEnabled Boolean: Used to specify whether the UltraSSD is enabled in the Default Node Pool. Defaults to false. See the documentation for more information.
upgradeSettings KubernetesClusterDefaultNodePoolUpgradeSettings: A upgrade_settings block as documented below.
vnetSubnetId String: The ID of a Subnet where the Kubernetes Node Pool should exist. Changing this forces a new resource to be created.

name string: The name which should be used for the default Kubernetes Node Pool. Changing this forces a new resource to be created.
vmSize string: The size of the Virtual Machine, such as Standard_DS2_v2.
availabilityZones string[]: A list of Availability Zones across which the Node Pool should be spread. Changing this forces a new resource to be created.
enableAutoScaling boolean: Should the Kubernetes Auto Scaler be enabled for this Node Pool? Defaults to false.
enableHostEncryption boolean: Should the nodes in the Default Node Pool have host encryption enabled? Defaults to false.
enableNodePublicIp boolean: Should nodes in this Node Pool have a Public IP Address? Defaults to false. Changing this forces a new resource to be created.
fipsEnabled boolean: Should the nodes in this Node Pool have Federal Information Processing Standard enabled? Changing this forces a new resource to be created.
kubeletConfig KubernetesClusterDefaultNodePoolKubeletConfig: A kubelet_config block as defined below.
kubeletDiskType string: The type of disk used by kubelet. Possible values are OS and Temporary.
linuxOsConfig KubernetesClusterDefaultNodePoolLinuxOsConfig: A linux_os_config block as defined below.
maxCount number: The maximum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000.
maxPods number: The maximum number of pods that can run on each agent. Changing this forces a new resource to be created.
minCount number: The minimum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000.
nodeCount number: The initial number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000 and between min_count and max_count.
nodeLabels {[key: string]: string}: A map of Kubernetes labels which should be applied to nodes in the Default Node Pool. Changing this forces a new resource to be created.
nodePublicIpPrefixId string: Resource ID for the Public IP Addresses Prefix for the nodes in this Node Pool. enable_node_public_ip should be true. Changing this forces a new resource to be created.
nodeTaints string[]
onlyCriticalAddonsEnabled boolean: Enabling this option will taint default node pool with CriticalAddonsOnly=true:NoSchedule taint. Changing this forces a new resource to be created.
orchestratorVersion string: Version of Kubernetes used for the Agents. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade)
osDiskSizeGb number: The size of the OS Disk which should be used for each agent in the Node Pool. Changing this forces a new resource to be created.
osDiskType string: The type of disk which should be used for the Operating System. Possible values are Ephemeral and Managed. Defaults to Managed. Changing this forces a new resource to be created.
osSku string: OsSKU to be used to specify Linux OSType. Not applicable to Windows OSType. Possible values include: Ubuntu, CBLMariner. Defaults to Ubuntu. Changing this forces a new resource to be created.
podSubnetId string: The ID of the Subnet where the pods in the default Node Pool should exist. Changing this forces a new resource to be created.
proximityPlacementGroupId string
tags {[key: string]: string}: A mapping of tags to assign to the Node Pool.
type string: The type of Node Pool which should be created. Possible values are AvailabilitySet and VirtualMachineScaleSets. Defaults to VirtualMachineScaleSets.
ultraSsdEnabled boolean: Used to specify whether the UltraSSD is enabled in the Default Node Pool. Defaults to false. See the documentation for more information.
upgradeSettings KubernetesClusterDefaultNodePoolUpgradeSettings: A upgrade_settings block as documented below.
vnetSubnetId string: The ID of a Subnet where the Kubernetes Node Pool should exist. Changing this forces a new resource to be created.

name str: The name which should be used for the default Kubernetes Node Pool. Changing this forces a new resource to be created.
vm_size str: The size of the Virtual Machine, such as Standard_DS2_v2.
availability_zones Sequence[str]: A list of Availability Zones across which the Node Pool should be spread. Changing this forces a new resource to be created.
enable_auto_scaling bool: Should the Kubernetes Auto Scaler be enabled for this Node Pool? Defaults to false.
enable_host_encryption bool: Should the nodes in the Default Node Pool have host encryption enabled? Defaults to false.
enable_node_public_ip bool: Should nodes in this Node Pool have a Public IP Address? Defaults to false. Changing this forces a new resource to be created.
fips_enabled bool: Should the nodes in this Node Pool have Federal Information Processing Standard enabled? Changing this forces a new resource to be created.
kubelet_config KubernetesClusterDefaultNodePoolKubeletConfig: A kubelet_config block as defined below.
kubelet_disk_type str: The type of disk used by kubelet. Possible values are OS and Temporary.
linux_os_config KubernetesClusterDefaultNodePoolLinuxOsConfig: A linux_os_config block as defined below.
max_count int: The maximum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000.
max_pods int: The maximum number of pods that can run on each agent. Changing this forces a new resource to be created.
min_count int: The minimum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000.
node_count int: The initial number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000 and between min_count and max_count.
node_labels Mapping[str, str]: A map of Kubernetes labels which should be applied to nodes in the Default Node Pool. Changing this forces a new resource to be created.
node_public_ip_prefix_id str: Resource ID for the Public IP Addresses Prefix for the nodes in this Node Pool. enable_node_public_ip should be true. Changing this forces a new resource to be created.
node_taints Sequence[str]
only_critical_addons_enabled bool: Enabling this option will taint default node pool with CriticalAddonsOnly=true:NoSchedule taint. Changing this forces a new resource to be created.
orchestrator_version str: Version of Kubernetes used for the Agents. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade)
os_disk_size_gb int: The size of the OS Disk which should be used for each agent in the Node Pool. Changing this forces a new resource to be created.
os_disk_type str: The type of disk which should be used for the Operating System. Possible values are Ephemeral and Managed. Defaults to Managed. Changing this forces a new resource to be created.
os_sku str: OsSKU to be used to specify Linux OSType. Not applicable to Windows OSType. Possible values include: Ubuntu, CBLMariner. Defaults to Ubuntu. Changing this forces a new resource to be created.
pod_subnet_id str: The ID of the Subnet where the pods in the default Node Pool should exist. Changing this forces a new resource to be created.
proximity_placement_group_id str
tags Mapping[str, str]: A mapping of tags to assign to the Node Pool.
type str: The type of Node Pool which should be created. Possible values are AvailabilitySet and VirtualMachineScaleSets. Defaults to VirtualMachineScaleSets.
ultra_ssd_enabled bool: Used to specify whether the UltraSSD is enabled in the Default Node Pool. Defaults to false. See the documentation for more information.
upgrade_settings KubernetesClusterDefaultNodePoolUpgradeSettings: A upgrade_settings block as documented below.
vnet_subnet_id str: The ID of a Subnet where the Kubernetes Node Pool should exist. Changing this forces a new resource to be created.

name String: The name which should be used for the default Kubernetes Node Pool. Changing this forces a new resource to be created.
vmSize String: The size of the Virtual Machine, such as Standard_DS2_v2.
availabilityZones List<String>: A list of Availability Zones across which the Node Pool should be spread. Changing this forces a new resource to be created.
enableAutoScaling Boolean: Should the Kubernetes Auto Scaler be enabled for this Node Pool? Defaults to false.
enableHostEncryption Boolean: Should the nodes in the Default Node Pool have host encryption enabled? Defaults to false.
enableNodePublicIp Boolean: Should nodes in this Node Pool have a Public IP Address? Defaults to false. Changing this forces a new resource to be created.
fipsEnabled Boolean: Should the nodes in this Node Pool have Federal Information Processing Standard enabled? Changing this forces a new resource to be created.
kubeletConfig Property Map: A kubelet_config block as defined below.
kubeletDiskType String: The type of disk used by kubelet. Possible values are OS and Temporary.
linuxOsConfig Property Map: A linux_os_config block as defined below.
maxCount Number: The maximum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000.
maxPods Number: The maximum number of pods that can run on each agent. Changing this forces a new resource to be created.
minCount Number: The minimum number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000.
nodeCount Number: The initial number of nodes which should exist in this Node Pool. If specified this must be between 1 and 1000 and between min_count and max_count.
nodeLabels Map<String>: A map of Kubernetes labels which should be applied to nodes in the Default Node Pool. Changing this forces a new resource to be created.
nodePublicIpPrefixId String: Resource ID for the Public IP Addresses Prefix for the nodes in this Node Pool. enable_node_public_ip should be true. Changing this forces a new resource to be created.
nodeTaints List<String>
onlyCriticalAddonsEnabled Boolean: Enabling this option will taint default node pool with CriticalAddonsOnly=true:NoSchedule taint. Changing this forces a new resource to be created.
orchestratorVersion String: Version of Kubernetes used for the Agents. If not specified, the latest recommended version will be used at provisioning time (but won't auto-upgrade)
osDiskSizeGb Number: The size of the OS Disk which should be used for each agent in the Node Pool. Changing this forces a new resource to be created.
osDiskType String: The type of disk which should be used for the Operating System. Possible values are Ephemeral and Managed. Defaults to Managed. Changing this forces a new resource to be created.
osSku String: OsSKU to be used to specify Linux OSType. Not applicable to Windows OSType. Possible values include: Ubuntu, CBLMariner. Defaults to Ubuntu. Changing this forces a new resource to be created.
podSubnetId String: The ID of the Subnet where the pods in the default Node Pool should exist. Changing this forces a new resource to be created.
proximityPlacementGroupId String
tags Map<String>: A mapping of tags to assign to the Node Pool.
type String: The type of Node Pool which should be created. Possible values are AvailabilitySet and VirtualMachineScaleSets. Defaults to VirtualMachineScaleSets.
ultraSsdEnabled Boolean: Used to specify whether the UltraSSD is enabled in the Default Node Pool. Defaults to false. See the documentation for more information.
upgradeSettings Property Map: A upgrade_settings block as documented below.
vnetSubnetId String: The ID of a Subnet where the Kubernetes Node Pool should exist. Changing this forces a new resource to be created.

KubernetesClusterDefaultNodePoolKubeletConfig, KubernetesClusterDefaultNodePoolKubeletConfigArgs

AllowedUnsafeSysctls List<string>: Specifies the allow list of unsafe sysctls command or patterns (ending in *). Changing this forces a new resource to be created.
ContainerLogMaxLine int: Specifies the maximum number of container log files that can be present for a container. must be at least 2. Changing this forces a new resource to be created.
ContainerLogMaxSizeMb int: Specifies the maximum size (e.g. 10MB) of container log file before it is rotated. Changing this forces a new resource to be created.
CpuCfsQuotaEnabled bool: Is CPU CFS quota enforcement for containers enabled? Changing this forces a new resource to be created.
CpuCfsQuotaPeriod string: Specifies the CPU CFS quota period value. Changing this forces a new resource to be created.
CpuManagerPolicy string: Specifies the CPU Manager policy to use. Possible values are none and static, Changing this forces a new resource to be created.
ImageGcHighThreshold int: Specifies the percent of disk usage above which image garbage collection is always run. Must be between 0 and 100. Changing this forces a new resource to be created.
ImageGcLowThreshold int: Specifies the percent of disk usage lower than which image garbage collection is never run. Must be between 0 and 100. Changing this forces a new resource to be created.
PodMaxPid int: Specifies the maximum number of processes per pod. Changing this forces a new resource to be created.
TopologyManagerPolicy string: Specifies the Topology Manager policy to use. Possible values are none, best-effort, restricted or single-numa-node. Changing this forces a new resource to be created.

AllowedUnsafeSysctls []string: Specifies the allow list of unsafe sysctls command or patterns (ending in *). Changing this forces a new resource to be created.
ContainerLogMaxLine int: Specifies the maximum number of container log files that can be present for a container. must be at least 2. Changing this forces a new resource to be created.
ContainerLogMaxSizeMb int: Specifies the maximum size (e.g. 10MB) of container log file before it is rotated. Changing this forces a new resource to be created.
CpuCfsQuotaEnabled bool: Is CPU CFS quota enforcement for containers enabled? Changing this forces a new resource to be created.
CpuCfsQuotaPeriod string: Specifies the CPU CFS quota period value. Changing this forces a new resource to be created.
CpuManagerPolicy string: Specifies the CPU Manager policy to use. Possible values are none and static, Changing this forces a new resource to be created.
ImageGcHighThreshold int: Specifies the percent of disk usage above which image garbage collection is always run. Must be between 0 and 100. Changing this forces a new resource to be created.
ImageGcLowThreshold int: Specifies the percent of disk usage lower than which image garbage collection is never run. Must be between 0 and 100. Changing this forces a new resource to be created.
PodMaxPid int: Specifies the maximum number of processes per pod. Changing this forces a new resource to be created.
TopologyManagerPolicy string: Specifies the Topology Manager policy to use. Possible values are none, best-effort, restricted or single-numa-node. Changing this forces a new resource to be created.

allowedUnsafeSysctls List<String>: Specifies the allow list of unsafe sysctls command or patterns (ending in *). Changing this forces a new resource to be created.
containerLogMaxLine Integer: Specifies the maximum number of container log files that can be present for a container. must be at least 2. Changing this forces a new resource to be created.
containerLogMaxSizeMb Integer: Specifies the maximum size (e.g. 10MB) of container log file before it is rotated. Changing this forces a new resource to be created.
cpuCfsQuotaEnabled Boolean: Is CPU CFS quota enforcement for containers enabled? Changing this forces a new resource to be created.
cpuCfsQuotaPeriod String: Specifies the CPU CFS quota period value. Changing this forces a new resource to be created.
cpuManagerPolicy String: Specifies the CPU Manager policy to use. Possible values are none and static, Changing this forces a new resource to be created.
imageGcHighThreshold Integer: Specifies the percent of disk usage above which image garbage collection is always run. Must be between 0 and 100. Changing this forces a new resource to be created.
imageGcLowThreshold Integer: Specifies the percent of disk usage lower than which image garbage collection is never run. Must be between 0 and 100. Changing this forces a new resource to be created.
podMaxPid Integer: Specifies the maximum number of processes per pod. Changing this forces a new resource to be created.
topologyManagerPolicy String: Specifies the Topology Manager policy to use. Possible values are none, best-effort, restricted or single-numa-node. Changing this forces a new resource to be created.

allowedUnsafeSysctls string[]: Specifies the allow list of unsafe sysctls command or patterns (ending in *). Changing this forces a new resource to be created.
containerLogMaxLine number: Specifies the maximum number of container log files that can be present for a container. must be at least 2. Changing this forces a new resource to be created.
containerLogMaxSizeMb number: Specifies the maximum size (e.g. 10MB) of container log file before it is rotated. Changing this forces a new resource to be created.
cpuCfsQuotaEnabled boolean: Is CPU CFS quota enforcement for containers enabled? Changing this forces a new resource to be created.
cpuCfsQuotaPeriod string: Specifies the CPU CFS quota period value. Changing this forces a new resource to be created.
cpuManagerPolicy string: Specifies the CPU Manager policy to use. Possible values are none and static, Changing this forces a new resource to be created.
imageGcHighThreshold number: Specifies the percent of disk usage above which image garbage collection is always run. Must be between 0 and 100. Changing this forces a new resource to be created.
imageGcLowThreshold number: Specifies the percent of disk usage lower than which image garbage collection is never run. Must be between 0 and 100. Changing this forces a new resource to be created.
podMaxPid number: Specifies the maximum number of processes per pod. Changing this forces a new resource to be created.
topologyManagerPolicy string: Specifies the Topology Manager policy to use. Possible values are none, best-effort, restricted or single-numa-node. Changing this forces a new resource to be created.

allowed_unsafe_sysctls Sequence[str]: Specifies the allow list of unsafe sysctls command or patterns (ending in *). Changing this forces a new resource to be created.
container_log_max_line int: Specifies the maximum number of container log files that can be present for a container. must be at least 2. Changing this forces a new resource to be created.
container_log_max_size_mb int: Specifies the maximum size (e.g. 10MB) of container log file before it is rotated. Changing this forces a new resource to be created.
cpu_cfs_quota_enabled bool: Is CPU CFS quota enforcement for containers enabled? Changing this forces a new resource to be created.
cpu_cfs_quota_period str: Specifies the CPU CFS quota period value. Changing this forces a new resource to be created.
cpu_manager_policy str: Specifies the CPU Manager policy to use. Possible values are none and static, Changing this forces a new resource to be created.
image_gc_high_threshold int: Specifies the percent of disk usage above which image garbage collection is always run. Must be between 0 and 100. Changing this forces a new resource to be created.
image_gc_low_threshold int: Specifies the percent of disk usage lower than which image garbage collection is never run. Must be between 0 and 100. Changing this forces a new resource to be created.
pod_max_pid int: Specifies the maximum number of processes per pod. Changing this forces a new resource to be created.
topology_manager_policy str: Specifies the Topology Manager policy to use. Possible values are none, best-effort, restricted or single-numa-node. Changing this forces a new resource to be created.

allowedUnsafeSysctls List<String>: Specifies the allow list of unsafe sysctls command or patterns (ending in *). Changing this forces a new resource to be created.
containerLogMaxLine Number: Specifies the maximum number of container log files that can be present for a container. must be at least 2. Changing this forces a new resource to be created.
containerLogMaxSizeMb Number: Specifies the maximum size (e.g. 10MB) of container log file before it is rotated. Changing this forces a new resource to be created.
cpuCfsQuotaEnabled Boolean: Is CPU CFS quota enforcement for containers enabled? Changing this forces a new resource to be created.
cpuCfsQuotaPeriod String: Specifies the CPU CFS quota period value. Changing this forces a new resource to be created.
cpuManagerPolicy String: Specifies the CPU Manager policy to use. Possible values are none and static, Changing this forces a new resource to be created.
imageGcHighThreshold Number: Specifies the percent of disk usage above which image garbage collection is always run. Must be between 0 and 100. Changing this forces a new resource to be created.
imageGcLowThreshold Number: Specifies the percent of disk usage lower than which image garbage collection is never run. Must be between 0 and 100. Changing this forces a new resource to be created.
podMaxPid Number: Specifies the maximum number of processes per pod. Changing this forces a new resource to be created.
topologyManagerPolicy String: Specifies the Topology Manager policy to use. Possible values are none, best-effort, restricted or single-numa-node. Changing this forces a new resource to be created.

KubernetesClusterDefaultNodePoolLinuxOsConfig, KubernetesClusterDefaultNodePoolLinuxOsConfigArgs

SwapFileSizeMb int: Specifies the size of swap file on each node in MB. Changing this forces a new resource to be created.
SysctlConfig KubernetesClusterDefaultNodePoolLinuxOsConfigSysctlConfig: A sysctl_config block as defined below. Changing this forces a new resource to be created.
TransparentHugePageDefrag string: specifies the defrag configuration for Transparent Huge Page. Possible values are always, defer, defer+madvise, madvise and never. Changing this forces a new resource to be created.
TransparentHugePageEnabled string: Specifies the Transparent Huge Page enabled configuration. Possible values are always, madvise and never. Changing this forces a new resource to be created.

SwapFileSizeMb int: Specifies the size of swap file on each node in MB. Changing this forces a new resource to be created.
SysctlConfig KubernetesClusterDefaultNodePoolLinuxOsConfigSysctlConfig: A sysctl_config block as defined below. Changing this forces a new resource to be created.
TransparentHugePageDefrag string: specifies the defrag configuration for Transparent Huge Page. Possible values are always, defer, defer+madvise, madvise and never. Changing this forces a new resource to be created.
TransparentHugePageEnabled string: Specifies the Transparent Huge Page enabled configuration. Possible values are always, madvise and never. Changing this forces a new resource to be created.

swapFileSizeMb Integer: Specifies the size of swap file on each node in MB. Changing this forces a new resource to be created.
sysctlConfig KubernetesClusterDefaultNodePoolLinuxOsConfigSysctlConfig: A sysctl_config block as defined below. Changing this forces a new resource to be created.
transparentHugePageDefrag String: specifies the defrag configuration for Transparent Huge Page. Possible values are always, defer, defer+madvise, madvise and never. Changing this forces a new resource to be created.
transparentHugePageEnabled String: Specifies the Transparent Huge Page enabled configuration. Possible values are always, madvise and never. Changing this forces a new resource to be created.

swapFileSizeMb number: Specifies the size of swap file on each node in MB. Changing this forces a new resource to be created.
sysctlConfig KubernetesClusterDefaultNodePoolLinuxOsConfigSysctlConfig: A sysctl_config block as defined below. Changing this forces a new resource to be created.
transparentHugePageDefrag string: specifies the defrag configuration for Transparent Huge Page. Possible values are always, defer, defer+madvise, madvise and never. Changing this forces a new resource to be created.
transparentHugePageEnabled string: Specifies the Transparent Huge Page enabled configuration. Possible values are always, madvise and never. Changing this forces a new resource to be created.

swap_file_size_mb int: Specifies the size of swap file on each node in MB. Changing this forces a new resource to be created.
sysctl_config KubernetesClusterDefaultNodePoolLinuxOsConfigSysctlConfig: A sysctl_config block as defined below. Changing this forces a new resource to be created.
transparent_huge_page_defrag str: specifies the defrag configuration for Transparent Huge Page. Possible values are always, defer, defer+madvise, madvise and never. Changing this forces a new resource to be created.
transparent_huge_page_enabled str: Specifies the Transparent Huge Page enabled configuration. Possible values are always, madvise and never. Changing this forces a new resource to be created.

swapFileSizeMb Number: Specifies the size of swap file on each node in MB. Changing this forces a new resource to be created.
sysctlConfig Property Map: A sysctl_config block as defined below. Changing this forces a new resource to be created.
transparentHugePageDefrag String: specifies the defrag configuration for Transparent Huge Page. Possible values are always, defer, defer+madvise, madvise and never. Changing this forces a new resource to be created.
transparentHugePageEnabled String: Specifies the Transparent Huge Page enabled configuration. Possible values are always, madvise and never. Changing this forces a new resource to be created.

KubernetesClusterDefaultNodePoolLinuxOsConfigSysctlConfig, KubernetesClusterDefaultNodePoolLinuxOsConfigSysctlConfigArgs

FsAioMaxNr int: The sysctl setting fs.aio-max-nr. Must be between 65536 and 6553500. Changing this forces a new resource to be created.
FsFileMax int: The sysctl setting fs.file-max. Must be between 8192 and 12000500. Changing this forces a new resource to be created.
FsInotifyMaxUserWatches int: The sysctl setting fs.inotify.max_user_watches. Must be between 781250 and 2097152. Changing this forces a new resource to be created.
FsNrOpen int: The sysctl setting fs.nr_open. Must be between 8192 and 20000500. Changing this forces a new resource to be created.
KernelThreadsMax int: The sysctl setting kernel.threads-max. Must be between 20 and 513785. Changing this forces a new resource to be created.
NetCoreNetdevMaxBacklog int: The sysctl setting net.core.netdev_max_backlog. Must be between 1000 and 3240000. Changing this forces a new resource to be created.
NetCoreOptmemMax int: The sysctl setting net.core.optmem_max. Must be between 20480 and 4194304. Changing this forces a new resource to be created.
NetCoreRmemDefault int: The sysctl setting net.core.rmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
NetCoreRmemMax int: The sysctl setting net.core.rmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
NetCoreSomaxconn int: The sysctl setting net.core.somaxconn. Must be between 4096 and 3240000. Changing this forces a new resource to be created.
NetCoreWmemDefault int: The sysctl setting net.core.wmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
NetCoreWmemMax int: The sysctl setting net.core.wmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
NetIpv4IpLocalPortRangeMax int: The sysctl setting net.ipv4.ip_local_port_range max value. Must be between 1024 and 60999. Changing this forces a new resource to be created.
NetIpv4IpLocalPortRangeMin int: The sysctl setting net.ipv4.ip_local_port_range min value. Must be between 1024 and 60999. Changing this forces a new resource to be created.
NetIpv4NeighDefaultGcThresh1 int: The sysctl setting net.ipv4.neigh.default.gc_thresh1. Must be between 128 and 80000. Changing this forces a new resource to be created.
NetIpv4NeighDefaultGcThresh2 int: The sysctl setting net.ipv4.neigh.default.gc_thresh2. Must be between 512 and 90000. Changing this forces a new resource to be created.
NetIpv4NeighDefaultGcThresh3 int: The sysctl setting net.ipv4.neigh.default.gc_thresh3. Must be between 1024 and 100000. Changing this forces a new resource to be created.
NetIpv4TcpFinTimeout int: The sysctl setting net.ipv4.tcp_fin_timeout. Must be between 5 and 120. Changing this forces a new resource to be created.
NetIpv4TcpKeepaliveIntvl int: The sysctl setting net.ipv4.tcp_keepalive_intvl. Must be between 10 and 75. Changing this forces a new resource to be created.
NetIpv4TcpKeepaliveProbes int: The sysctl setting net.ipv4.tcp_keepalive_probes. Must be between 1 and 15. Changing this forces a new resource to be created.
NetIpv4TcpKeepaliveTime int: The sysctl setting net.ipv4.tcp_keepalive_time. Must be between 30 and 432000. Changing this forces a new resource to be created.
NetIpv4TcpMaxSynBacklog int: The sysctl setting net.ipv4.tcp_max_syn_backlog. Must be between 128 and 3240000. Changing this forces a new resource to be created.
NetIpv4TcpMaxTwBuckets int: The sysctl setting net.ipv4.tcp_max_tw_buckets. Must be between 8000 and 1440000. Changing this forces a new resource to be created.
NetIpv4TcpTwReuse bool: The sysctl setting net.ipv4.tcp_tw_reuse. Changing this forces a new resource to be created.
NetNetfilterNfConntrackBuckets int: The sysctl setting net.netfilter.nf_conntrack_buckets. Must be between 65536 and 147456. Changing this forces a new resource to be created.
NetNetfilterNfConntrackMax int: The sysctl setting net.netfilter.nf_conntrack_max. Must be between 131072 and 589824. Changing this forces a new resource to be created.
VmMaxMapCount int: The sysctl setting vm.max_map_count. Must be between 65530 and 262144. Changing this forces a new resource to be created.
VmSwappiness int: The sysctl setting vm.swappiness. Must be between 0 and 100. Changing this forces a new resource to be created.
VmVfsCachePressure int: The sysctl setting vm.vfs_cache_pressure. Must be between 0 and 100. Changing this forces a new resource to be created.

FsAioMaxNr int: The sysctl setting fs.aio-max-nr. Must be between 65536 and 6553500. Changing this forces a new resource to be created.
FsFileMax int: The sysctl setting fs.file-max. Must be between 8192 and 12000500. Changing this forces a new resource to be created.
FsInotifyMaxUserWatches int: The sysctl setting fs.inotify.max_user_watches. Must be between 781250 and 2097152. Changing this forces a new resource to be created.
FsNrOpen int: The sysctl setting fs.nr_open. Must be between 8192 and 20000500. Changing this forces a new resource to be created.
KernelThreadsMax int: The sysctl setting kernel.threads-max. Must be between 20 and 513785. Changing this forces a new resource to be created.
NetCoreNetdevMaxBacklog int: The sysctl setting net.core.netdev_max_backlog. Must be between 1000 and 3240000. Changing this forces a new resource to be created.
NetCoreOptmemMax int: The sysctl setting net.core.optmem_max. Must be between 20480 and 4194304. Changing this forces a new resource to be created.
NetCoreRmemDefault int: The sysctl setting net.core.rmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
NetCoreRmemMax int: The sysctl setting net.core.rmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
NetCoreSomaxconn int: The sysctl setting net.core.somaxconn. Must be between 4096 and 3240000. Changing this forces a new resource to be created.
NetCoreWmemDefault int: The sysctl setting net.core.wmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
NetCoreWmemMax int: The sysctl setting net.core.wmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
NetIpv4IpLocalPortRangeMax int: The sysctl setting net.ipv4.ip_local_port_range max value. Must be between 1024 and 60999. Changing this forces a new resource to be created.
NetIpv4IpLocalPortRangeMin int: The sysctl setting net.ipv4.ip_local_port_range min value. Must be between 1024 and 60999. Changing this forces a new resource to be created.
NetIpv4NeighDefaultGcThresh1 int: The sysctl setting net.ipv4.neigh.default.gc_thresh1. Must be between 128 and 80000. Changing this forces a new resource to be created.
NetIpv4NeighDefaultGcThresh2 int: The sysctl setting net.ipv4.neigh.default.gc_thresh2. Must be between 512 and 90000. Changing this forces a new resource to be created.
NetIpv4NeighDefaultGcThresh3 int: The sysctl setting net.ipv4.neigh.default.gc_thresh3. Must be between 1024 and 100000. Changing this forces a new resource to be created.
NetIpv4TcpFinTimeout int: The sysctl setting net.ipv4.tcp_fin_timeout. Must be between 5 and 120. Changing this forces a new resource to be created.
NetIpv4TcpKeepaliveIntvl int: The sysctl setting net.ipv4.tcp_keepalive_intvl. Must be between 10 and 75. Changing this forces a new resource to be created.
NetIpv4TcpKeepaliveProbes int: The sysctl setting net.ipv4.tcp_keepalive_probes. Must be between 1 and 15. Changing this forces a new resource to be created.
NetIpv4TcpKeepaliveTime int: The sysctl setting net.ipv4.tcp_keepalive_time. Must be between 30 and 432000. Changing this forces a new resource to be created.
NetIpv4TcpMaxSynBacklog int: The sysctl setting net.ipv4.tcp_max_syn_backlog. Must be between 128 and 3240000. Changing this forces a new resource to be created.
NetIpv4TcpMaxTwBuckets int: The sysctl setting net.ipv4.tcp_max_tw_buckets. Must be between 8000 and 1440000. Changing this forces a new resource to be created.
NetIpv4TcpTwReuse bool: The sysctl setting net.ipv4.tcp_tw_reuse. Changing this forces a new resource to be created.
NetNetfilterNfConntrackBuckets int: The sysctl setting net.netfilter.nf_conntrack_buckets. Must be between 65536 and 147456. Changing this forces a new resource to be created.
NetNetfilterNfConntrackMax int: The sysctl setting net.netfilter.nf_conntrack_max. Must be between 131072 and 589824. Changing this forces a new resource to be created.
VmMaxMapCount int: The sysctl setting vm.max_map_count. Must be between 65530 and 262144. Changing this forces a new resource to be created.
VmSwappiness int: The sysctl setting vm.swappiness. Must be between 0 and 100. Changing this forces a new resource to be created.
VmVfsCachePressure int: The sysctl setting vm.vfs_cache_pressure. Must be between 0 and 100. Changing this forces a new resource to be created.

fsAioMaxNr Integer: The sysctl setting fs.aio-max-nr. Must be between 65536 and 6553500. Changing this forces a new resource to be created.
fsFileMax Integer: The sysctl setting fs.file-max. Must be between 8192 and 12000500. Changing this forces a new resource to be created.
fsInotifyMaxUserWatches Integer: The sysctl setting fs.inotify.max_user_watches. Must be between 781250 and 2097152. Changing this forces a new resource to be created.
fsNrOpen Integer: The sysctl setting fs.nr_open. Must be between 8192 and 20000500. Changing this forces a new resource to be created.
kernelThreadsMax Integer: The sysctl setting kernel.threads-max. Must be between 20 and 513785. Changing this forces a new resource to be created.
netCoreNetdevMaxBacklog Integer: The sysctl setting net.core.netdev_max_backlog. Must be between 1000 and 3240000. Changing this forces a new resource to be created.
netCoreOptmemMax Integer: The sysctl setting net.core.optmem_max. Must be between 20480 and 4194304. Changing this forces a new resource to be created.
netCoreRmemDefault Integer: The sysctl setting net.core.rmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
netCoreRmemMax Integer: The sysctl setting net.core.rmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
netCoreSomaxconn Integer: The sysctl setting net.core.somaxconn. Must be between 4096 and 3240000. Changing this forces a new resource to be created.
netCoreWmemDefault Integer: The sysctl setting net.core.wmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
netCoreWmemMax Integer: The sysctl setting net.core.wmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
netIpv4IpLocalPortRangeMax Integer: The sysctl setting net.ipv4.ip_local_port_range max value. Must be between 1024 and 60999. Changing this forces a new resource to be created.
netIpv4IpLocalPortRangeMin Integer: The sysctl setting net.ipv4.ip_local_port_range min value. Must be between 1024 and 60999. Changing this forces a new resource to be created.
netIpv4NeighDefaultGcThresh1 Integer: The sysctl setting net.ipv4.neigh.default.gc_thresh1. Must be between 128 and 80000. Changing this forces a new resource to be created.
netIpv4NeighDefaultGcThresh2 Integer: The sysctl setting net.ipv4.neigh.default.gc_thresh2. Must be between 512 and 90000. Changing this forces a new resource to be created.
netIpv4NeighDefaultGcThresh3 Integer: The sysctl setting net.ipv4.neigh.default.gc_thresh3. Must be between 1024 and 100000. Changing this forces a new resource to be created.
netIpv4TcpFinTimeout Integer: The sysctl setting net.ipv4.tcp_fin_timeout. Must be between 5 and 120. Changing this forces a new resource to be created.
netIpv4TcpKeepaliveIntvl Integer: The sysctl setting net.ipv4.tcp_keepalive_intvl. Must be between 10 and 75. Changing this forces a new resource to be created.
netIpv4TcpKeepaliveProbes Integer: The sysctl setting net.ipv4.tcp_keepalive_probes. Must be between 1 and 15. Changing this forces a new resource to be created.
netIpv4TcpKeepaliveTime Integer: The sysctl setting net.ipv4.tcp_keepalive_time. Must be between 30 and 432000. Changing this forces a new resource to be created.
netIpv4TcpMaxSynBacklog Integer: The sysctl setting net.ipv4.tcp_max_syn_backlog. Must be between 128 and 3240000. Changing this forces a new resource to be created.
netIpv4TcpMaxTwBuckets Integer: The sysctl setting net.ipv4.tcp_max_tw_buckets. Must be between 8000 and 1440000. Changing this forces a new resource to be created.
netIpv4TcpTwReuse Boolean: The sysctl setting net.ipv4.tcp_tw_reuse. Changing this forces a new resource to be created.
netNetfilterNfConntrackBuckets Integer: The sysctl setting net.netfilter.nf_conntrack_buckets. Must be between 65536 and 147456. Changing this forces a new resource to be created.
netNetfilterNfConntrackMax Integer: The sysctl setting net.netfilter.nf_conntrack_max. Must be between 131072 and 589824. Changing this forces a new resource to be created.
vmMaxMapCount Integer: The sysctl setting vm.max_map_count. Must be between 65530 and 262144. Changing this forces a new resource to be created.
vmSwappiness Integer: The sysctl setting vm.swappiness. Must be between 0 and 100. Changing this forces a new resource to be created.
vmVfsCachePressure Integer: The sysctl setting vm.vfs_cache_pressure. Must be between 0 and 100. Changing this forces a new resource to be created.

fsAioMaxNr number: The sysctl setting fs.aio-max-nr. Must be between 65536 and 6553500. Changing this forces a new resource to be created.
fsFileMax number: The sysctl setting fs.file-max. Must be between 8192 and 12000500. Changing this forces a new resource to be created.
fsInotifyMaxUserWatches number: The sysctl setting fs.inotify.max_user_watches. Must be between 781250 and 2097152. Changing this forces a new resource to be created.
fsNrOpen number: The sysctl setting fs.nr_open. Must be between 8192 and 20000500. Changing this forces a new resource to be created.
kernelThreadsMax number: The sysctl setting kernel.threads-max. Must be between 20 and 513785. Changing this forces a new resource to be created.
netCoreNetdevMaxBacklog number: The sysctl setting net.core.netdev_max_backlog. Must be between 1000 and 3240000. Changing this forces a new resource to be created.
netCoreOptmemMax number: The sysctl setting net.core.optmem_max. Must be between 20480 and 4194304. Changing this forces a new resource to be created.
netCoreRmemDefault number: The sysctl setting net.core.rmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
netCoreRmemMax number: The sysctl setting net.core.rmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
netCoreSomaxconn number: The sysctl setting net.core.somaxconn. Must be between 4096 and 3240000. Changing this forces a new resource to be created.
netCoreWmemDefault number: The sysctl setting net.core.wmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
netCoreWmemMax number: The sysctl setting net.core.wmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
netIpv4IpLocalPortRangeMax number: The sysctl setting net.ipv4.ip_local_port_range max value. Must be between 1024 and 60999. Changing this forces a new resource to be created.
netIpv4IpLocalPortRangeMin number: The sysctl setting net.ipv4.ip_local_port_range min value. Must be between 1024 and 60999. Changing this forces a new resource to be created.
netIpv4NeighDefaultGcThresh1 number: The sysctl setting net.ipv4.neigh.default.gc_thresh1. Must be between 128 and 80000. Changing this forces a new resource to be created.
netIpv4NeighDefaultGcThresh2 number: The sysctl setting net.ipv4.neigh.default.gc_thresh2. Must be between 512 and 90000. Changing this forces a new resource to be created.
netIpv4NeighDefaultGcThresh3 number: The sysctl setting net.ipv4.neigh.default.gc_thresh3. Must be between 1024 and 100000. Changing this forces a new resource to be created.
netIpv4TcpFinTimeout number: The sysctl setting net.ipv4.tcp_fin_timeout. Must be between 5 and 120. Changing this forces a new resource to be created.
netIpv4TcpKeepaliveIntvl number: The sysctl setting net.ipv4.tcp_keepalive_intvl. Must be between 10 and 75. Changing this forces a new resource to be created.
netIpv4TcpKeepaliveProbes number: The sysctl setting net.ipv4.tcp_keepalive_probes. Must be between 1 and 15. Changing this forces a new resource to be created.
netIpv4TcpKeepaliveTime number: The sysctl setting net.ipv4.tcp_keepalive_time. Must be between 30 and 432000. Changing this forces a new resource to be created.
netIpv4TcpMaxSynBacklog number: The sysctl setting net.ipv4.tcp_max_syn_backlog. Must be between 128 and 3240000. Changing this forces a new resource to be created.
netIpv4TcpMaxTwBuckets number: The sysctl setting net.ipv4.tcp_max_tw_buckets. Must be between 8000 and 1440000. Changing this forces a new resource to be created.
netIpv4TcpTwReuse boolean: The sysctl setting net.ipv4.tcp_tw_reuse. Changing this forces a new resource to be created.
netNetfilterNfConntrackBuckets number: The sysctl setting net.netfilter.nf_conntrack_buckets. Must be between 65536 and 147456. Changing this forces a new resource to be created.
netNetfilterNfConntrackMax number: The sysctl setting net.netfilter.nf_conntrack_max. Must be between 131072 and 589824. Changing this forces a new resource to be created.
vmMaxMapCount number: The sysctl setting vm.max_map_count. Must be between 65530 and 262144. Changing this forces a new resource to be created.
vmSwappiness number: The sysctl setting vm.swappiness. Must be between 0 and 100. Changing this forces a new resource to be created.
vmVfsCachePressure number: The sysctl setting vm.vfs_cache_pressure. Must be between 0 and 100. Changing this forces a new resource to be created.

fs_aio_max_nr int: The sysctl setting fs.aio-max-nr. Must be between 65536 and 6553500. Changing this forces a new resource to be created.
fs_file_max int: The sysctl setting fs.file-max. Must be between 8192 and 12000500. Changing this forces a new resource to be created.
fs_inotify_max_user_watches int: The sysctl setting fs.inotify.max_user_watches. Must be between 781250 and 2097152. Changing this forces a new resource to be created.
fs_nr_open int: The sysctl setting fs.nr_open. Must be between 8192 and 20000500. Changing this forces a new resource to be created.
kernel_threads_max int: The sysctl setting kernel.threads-max. Must be between 20 and 513785. Changing this forces a new resource to be created.
net_core_netdev_max_backlog int: The sysctl setting net.core.netdev_max_backlog. Must be between 1000 and 3240000. Changing this forces a new resource to be created.
net_core_optmem_max int: The sysctl setting net.core.optmem_max. Must be between 20480 and 4194304. Changing this forces a new resource to be created.
net_core_rmem_default int: The sysctl setting net.core.rmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
net_core_rmem_max int: The sysctl setting net.core.rmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
net_core_somaxconn int: The sysctl setting net.core.somaxconn. Must be between 4096 and 3240000. Changing this forces a new resource to be created.
net_core_wmem_default int: The sysctl setting net.core.wmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
net_core_wmem_max int: The sysctl setting net.core.wmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
net_ipv4_ip_local_port_range_max int: The sysctl setting net.ipv4.ip_local_port_range max value. Must be between 1024 and 60999. Changing this forces a new resource to be created.
net_ipv4_ip_local_port_range_min int: The sysctl setting net.ipv4.ip_local_port_range min value. Must be between 1024 and 60999. Changing this forces a new resource to be created.
net_ipv4_neigh_default_gc_thresh1 int: The sysctl setting net.ipv4.neigh.default.gc_thresh1. Must be between 128 and 80000. Changing this forces a new resource to be created.
net_ipv4_neigh_default_gc_thresh2 int: The sysctl setting net.ipv4.neigh.default.gc_thresh2. Must be between 512 and 90000. Changing this forces a new resource to be created.
net_ipv4_neigh_default_gc_thresh3 int: The sysctl setting net.ipv4.neigh.default.gc_thresh3. Must be between 1024 and 100000. Changing this forces a new resource to be created.
net_ipv4_tcp_fin_timeout int: The sysctl setting net.ipv4.tcp_fin_timeout. Must be between 5 and 120. Changing this forces a new resource to be created.
net_ipv4_tcp_keepalive_intvl int: The sysctl setting net.ipv4.tcp_keepalive_intvl. Must be between 10 and 75. Changing this forces a new resource to be created.
net_ipv4_tcp_keepalive_probes int: The sysctl setting net.ipv4.tcp_keepalive_probes. Must be between 1 and 15. Changing this forces a new resource to be created.
net_ipv4_tcp_keepalive_time int: The sysctl setting net.ipv4.tcp_keepalive_time. Must be between 30 and 432000. Changing this forces a new resource to be created.
net_ipv4_tcp_max_syn_backlog int: The sysctl setting net.ipv4.tcp_max_syn_backlog. Must be between 128 and 3240000. Changing this forces a new resource to be created.
net_ipv4_tcp_max_tw_buckets int: The sysctl setting net.ipv4.tcp_max_tw_buckets. Must be between 8000 and 1440000. Changing this forces a new resource to be created.
net_ipv4_tcp_tw_reuse bool: The sysctl setting net.ipv4.tcp_tw_reuse. Changing this forces a new resource to be created.
net_netfilter_nf_conntrack_buckets int: The sysctl setting net.netfilter.nf_conntrack_buckets. Must be between 65536 and 147456. Changing this forces a new resource to be created.
net_netfilter_nf_conntrack_max int: The sysctl setting net.netfilter.nf_conntrack_max. Must be between 131072 and 589824. Changing this forces a new resource to be created.
vm_max_map_count int: The sysctl setting vm.max_map_count. Must be between 65530 and 262144. Changing this forces a new resource to be created.
vm_swappiness int: The sysctl setting vm.swappiness. Must be between 0 and 100. Changing this forces a new resource to be created.
vm_vfs_cache_pressure int: The sysctl setting vm.vfs_cache_pressure. Must be between 0 and 100. Changing this forces a new resource to be created.

fsAioMaxNr Number: The sysctl setting fs.aio-max-nr. Must be between 65536 and 6553500. Changing this forces a new resource to be created.
fsFileMax Number: The sysctl setting fs.file-max. Must be between 8192 and 12000500. Changing this forces a new resource to be created.
fsInotifyMaxUserWatches Number: The sysctl setting fs.inotify.max_user_watches. Must be between 781250 and 2097152. Changing this forces a new resource to be created.
fsNrOpen Number: The sysctl setting fs.nr_open. Must be between 8192 and 20000500. Changing this forces a new resource to be created.
kernelThreadsMax Number: The sysctl setting kernel.threads-max. Must be between 20 and 513785. Changing this forces a new resource to be created.
netCoreNetdevMaxBacklog Number: The sysctl setting net.core.netdev_max_backlog. Must be between 1000 and 3240000. Changing this forces a new resource to be created.
netCoreOptmemMax Number: The sysctl setting net.core.optmem_max. Must be between 20480 and 4194304. Changing this forces a new resource to be created.
netCoreRmemDefault Number: The sysctl setting net.core.rmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
netCoreRmemMax Number: The sysctl setting net.core.rmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
netCoreSomaxconn Number: The sysctl setting net.core.somaxconn. Must be between 4096 and 3240000. Changing this forces a new resource to be created.
netCoreWmemDefault Number: The sysctl setting net.core.wmem_default. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
netCoreWmemMax Number: The sysctl setting net.core.wmem_max. Must be between 212992 and 134217728. Changing this forces a new resource to be created.
netIpv4IpLocalPortRangeMax Number: The sysctl setting net.ipv4.ip_local_port_range max value. Must be between 1024 and 60999. Changing this forces a new resource to be created.
netIpv4IpLocalPortRangeMin Number: The sysctl setting net.ipv4.ip_local_port_range min value. Must be between 1024 and 60999. Changing this forces a new resource to be created.
netIpv4NeighDefaultGcThresh1 Number: The sysctl setting net.ipv4.neigh.default.gc_thresh1. Must be between 128 and 80000. Changing this forces a new resource to be created.
netIpv4NeighDefaultGcThresh2 Number: The sysctl setting net.ipv4.neigh.default.gc_thresh2. Must be between 512 and 90000. Changing this forces a new resource to be created.
netIpv4NeighDefaultGcThresh3 Number: The sysctl setting net.ipv4.neigh.default.gc_thresh3. Must be between 1024 and 100000. Changing this forces a new resource to be created.
netIpv4TcpFinTimeout Number: The sysctl setting net.ipv4.tcp_fin_timeout. Must be between 5 and 120. Changing this forces a new resource to be created.
netIpv4TcpKeepaliveIntvl Number: The sysctl setting net.ipv4.tcp_keepalive_intvl. Must be between 10 and 75. Changing this forces a new resource to be created.
netIpv4TcpKeepaliveProbes Number: The sysctl setting net.ipv4.tcp_keepalive_probes. Must be between 1 and 15. Changing this forces a new resource to be created.
netIpv4TcpKeepaliveTime Number: The sysctl setting net.ipv4.tcp_keepalive_time. Must be between 30 and 432000. Changing this forces a new resource to be created.
netIpv4TcpMaxSynBacklog Number: The sysctl setting net.ipv4.tcp_max_syn_backlog. Must be between 128 and 3240000. Changing this forces a new resource to be created.
netIpv4TcpMaxTwBuckets Number: The sysctl setting net.ipv4.tcp_max_tw_buckets. Must be between 8000 and 1440000. Changing this forces a new resource to be created.
netIpv4TcpTwReuse Boolean: The sysctl setting net.ipv4.tcp_tw_reuse. Changing this forces a new resource to be created.
netNetfilterNfConntrackBuckets Number: The sysctl setting net.netfilter.nf_conntrack_buckets. Must be between 65536 and 147456. Changing this forces a new resource to be created.
netNetfilterNfConntrackMax Number: The sysctl setting net.netfilter.nf_conntrack_max. Must be between 131072 and 589824. Changing this forces a new resource to be created.
vmMaxMapCount Number: The sysctl setting vm.max_map_count. Must be between 65530 and 262144. Changing this forces a new resource to be created.
vmSwappiness Number: The sysctl setting vm.swappiness. Must be between 0 and 100. Changing this forces a new resource to be created.
vmVfsCachePressure Number: The sysctl setting vm.vfs_cache_pressure. Must be between 0 and 100. Changing this forces a new resource to be created.

KubernetesClusterDefaultNodePoolUpgradeSettings, KubernetesClusterDefaultNodePoolUpgradeSettingsArgs

MaxSurge string: The maximum number or percentage of nodes which will be added to the Node Pool size during an upgrade.

MaxSurge string: The maximum number or percentage of nodes which will be added to the Node Pool size during an upgrade.

maxSurge String: The maximum number or percentage of nodes which will be added to the Node Pool size during an upgrade.

maxSurge string: The maximum number or percentage of nodes which will be added to the Node Pool size during an upgrade.

max_surge str: The maximum number or percentage of nodes which will be added to the Node Pool size during an upgrade.

maxSurge String: The maximum number or percentage of nodes which will be added to the Node Pool size during an upgrade.

KubernetesClusterHttpProxyConfig, KubernetesClusterHttpProxyConfigArgs

HttpProxy string: The proxy address to be used when communicating over HTTP.
HttpsProxy string: The proxy address to be used when communicating over HTTPS.
NoProxies List<string>: The list of domains that will not use the proxy for communication.
TrustedCa string: The base64 encoded alternative CA certificate content in PEM format.

HttpProxy string: The proxy address to be used when communicating over HTTP.
HttpsProxy string: The proxy address to be used when communicating over HTTPS.
NoProxies []string: The list of domains that will not use the proxy for communication.
TrustedCa string: The base64 encoded alternative CA certificate content in PEM format.

httpProxy String: The proxy address to be used when communicating over HTTP.
httpsProxy String: The proxy address to be used when communicating over HTTPS.
noProxies List<String>: The list of domains that will not use the proxy for communication.
trustedCa String: The base64 encoded alternative CA certificate content in PEM format.

httpProxy string: The proxy address to be used when communicating over HTTP.
httpsProxy string: The proxy address to be used when communicating over HTTPS.
noProxies string[]: The list of domains that will not use the proxy for communication.
trustedCa string: The base64 encoded alternative CA certificate content in PEM format.

http_proxy str: The proxy address to be used when communicating over HTTP.
https_proxy str: The proxy address to be used when communicating over HTTPS.
no_proxies Sequence[str]: The list of domains that will not use the proxy for communication.
trusted_ca str: The base64 encoded alternative CA certificate content in PEM format.

httpProxy String: The proxy address to be used when communicating over HTTP.
httpsProxy String: The proxy address to be used when communicating over HTTPS.
noProxies List<String>: The list of domains that will not use the proxy for communication.
trustedCa String: The base64 encoded alternative CA certificate content in PEM format.

KubernetesClusterIdentity, KubernetesClusterIdentityArgs

Type string: The type of identity used for the managed cluster. Possible values are SystemAssigned and UserAssigned. If UserAssigned is set, a user_assigned_identity_id must be set as well.
PrincipalId string: The principal id of the system assigned identity which is used by main components.
TenantId string: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.
UserAssignedIdentityId string: The ID of a user assigned identity.

Type string: The type of identity used for the managed cluster. Possible values are SystemAssigned and UserAssigned. If UserAssigned is set, a user_assigned_identity_id must be set as well.
PrincipalId string: The principal id of the system assigned identity which is used by main components.
TenantId string: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.
UserAssignedIdentityId string: The ID of a user assigned identity.

type String: The type of identity used for the managed cluster. Possible values are SystemAssigned and UserAssigned. If UserAssigned is set, a user_assigned_identity_id must be set as well.
principalId String: The principal id of the system assigned identity which is used by main components.
tenantId String: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.
userAssignedIdentityId String: The ID of a user assigned identity.

type string: The type of identity used for the managed cluster. Possible values are SystemAssigned and UserAssigned. If UserAssigned is set, a user_assigned_identity_id must be set as well.
principalId string: The principal id of the system assigned identity which is used by main components.
tenantId string: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.
userAssignedIdentityId string: The ID of a user assigned identity.

type str: The type of identity used for the managed cluster. Possible values are SystemAssigned and UserAssigned. If UserAssigned is set, a user_assigned_identity_id must be set as well.
principal_id str: The principal id of the system assigned identity which is used by main components.
tenant_id str: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.
user_assigned_identity_id str: The ID of a user assigned identity.

type String: The type of identity used for the managed cluster. Possible values are SystemAssigned and UserAssigned. If UserAssigned is set, a user_assigned_identity_id must be set as well.
principalId String: The principal id of the system assigned identity which is used by main components.
tenantId String: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.
userAssignedIdentityId String: The ID of a user assigned identity.

KubernetesClusterIngressApplicationGateway, KubernetesClusterIngressApplicationGatewayArgs

EffectiveGatewayId string: The ID of the Application Gateway associated with the ingress controller deployed to this Kubernetes Cluster.
GatewayId string: The ID of the Application Gateway to integrate with the ingress controller of this Kubernetes Cluster. See this page for further details.
GatewayName string: The name of the Application Gateway to be used or created in the Nodepool Resource Group, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
IngressApplicationGatewayIdentities List<KubernetesClusterIngressApplicationGatewayIngressApplicationGatewayIdentity>: An ingress_application_gateway_identity block is exported. The exported attributes are defined below.
SubnetCidr string: The subnet CIDR to be used to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
SubnetId string: The ID of the subnet on which to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.

EffectiveGatewayId string: The ID of the Application Gateway associated with the ingress controller deployed to this Kubernetes Cluster.
GatewayId string: The ID of the Application Gateway to integrate with the ingress controller of this Kubernetes Cluster. See this page for further details.
GatewayName string: The name of the Application Gateway to be used or created in the Nodepool Resource Group, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
IngressApplicationGatewayIdentities []KubernetesClusterIngressApplicationGatewayIngressApplicationGatewayIdentity: An ingress_application_gateway_identity block is exported. The exported attributes are defined below.
SubnetCidr string: The subnet CIDR to be used to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
SubnetId string: The ID of the subnet on which to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.

effectiveGatewayId String: The ID of the Application Gateway associated with the ingress controller deployed to this Kubernetes Cluster.
gatewayId String: The ID of the Application Gateway to integrate with the ingress controller of this Kubernetes Cluster. See this page for further details.
gatewayName String: The name of the Application Gateway to be used or created in the Nodepool Resource Group, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
ingressApplicationGatewayIdentities List<KubernetesClusterIngressApplicationGatewayIngressApplicationGatewayIdentity>: An ingress_application_gateway_identity block is exported. The exported attributes are defined below.
subnetCidr String: The subnet CIDR to be used to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
subnetId String: The ID of the subnet on which to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.

effectiveGatewayId string: The ID of the Application Gateway associated with the ingress controller deployed to this Kubernetes Cluster.
gatewayId string: The ID of the Application Gateway to integrate with the ingress controller of this Kubernetes Cluster. See this page for further details.
gatewayName string: The name of the Application Gateway to be used or created in the Nodepool Resource Group, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
ingressApplicationGatewayIdentities KubernetesClusterIngressApplicationGatewayIngressApplicationGatewayIdentity[]: An ingress_application_gateway_identity block is exported. The exported attributes are defined below.
subnetCidr string: The subnet CIDR to be used to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
subnetId string: The ID of the subnet on which to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.

effective_gateway_id str: The ID of the Application Gateway associated with the ingress controller deployed to this Kubernetes Cluster.
gateway_id str: The ID of the Application Gateway to integrate with the ingress controller of this Kubernetes Cluster. See this page for further details.
gateway_name str: The name of the Application Gateway to be used or created in the Nodepool Resource Group, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
ingress_application_gateway_identities Sequence[KubernetesClusterIngressApplicationGatewayIngressApplicationGatewayIdentity]: An ingress_application_gateway_identity block is exported. The exported attributes are defined below.
subnet_cidr str: The subnet CIDR to be used to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
subnet_id str: The ID of the subnet on which to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.

effectiveGatewayId String: The ID of the Application Gateway associated with the ingress controller deployed to this Kubernetes Cluster.
gatewayId String: The ID of the Application Gateway to integrate with the ingress controller of this Kubernetes Cluster. See this page for further details.
gatewayName String: The name of the Application Gateway to be used or created in the Nodepool Resource Group, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
ingressApplicationGatewayIdentities List<Property Map>: An ingress_application_gateway_identity block is exported. The exported attributes are defined below.
subnetCidr String: The subnet CIDR to be used to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.
subnetId String: The ID of the subnet on which to create an Application Gateway, which in turn will be integrated with the ingress controller of this Kubernetes Cluster. See this page for further details.

KubernetesClusterIngressApplicationGatewayIngressApplicationGatewayIdentity, KubernetesClusterIngressApplicationGatewayIngressApplicationGatewayIdentityArgs

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of a user assigned identity.

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of a user assigned identity.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of a user assigned identity.

clientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId string: The ID of a user assigned identity.

client_id str: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
object_id str: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
user_assigned_identity_id str: The ID of a user assigned identity.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of a user assigned identity.

KubernetesClusterKeyVaultSecretsProvider, KubernetesClusterKeyVaultSecretsProviderArgs

SecretIdentities List<KubernetesClusterKeyVaultSecretsProviderSecretIdentity>: An secret_identity block is exported. The exported attributes are defined below.
SecretRotationEnabled bool: Is secret rotation enabled?
SecretRotationInterval string: The interval to poll for secret rotation. This attribute is only set when secret_rotation is true and defaults to 2m.

SecretIdentities []KubernetesClusterKeyVaultSecretsProviderSecretIdentity: An secret_identity block is exported. The exported attributes are defined below.
SecretRotationEnabled bool: Is secret rotation enabled?
SecretRotationInterval string: The interval to poll for secret rotation. This attribute is only set when secret_rotation is true and defaults to 2m.

secretIdentities List<KubernetesClusterKeyVaultSecretsProviderSecretIdentity>: An secret_identity block is exported. The exported attributes are defined below.
secretRotationEnabled Boolean: Is secret rotation enabled?
secretRotationInterval String: The interval to poll for secret rotation. This attribute is only set when secret_rotation is true and defaults to 2m.

secretIdentities KubernetesClusterKeyVaultSecretsProviderSecretIdentity[]: An secret_identity block is exported. The exported attributes are defined below.
secretRotationEnabled boolean: Is secret rotation enabled?
secretRotationInterval string: The interval to poll for secret rotation. This attribute is only set when secret_rotation is true and defaults to 2m.

secret_identities Sequence[KubernetesClusterKeyVaultSecretsProviderSecretIdentity]: An secret_identity block is exported. The exported attributes are defined below.
secret_rotation_enabled bool: Is secret rotation enabled?
secret_rotation_interval str: The interval to poll for secret rotation. This attribute is only set when secret_rotation is true and defaults to 2m.

secretIdentities List<Property Map>: An secret_identity block is exported. The exported attributes are defined below.
secretRotationEnabled Boolean: Is secret rotation enabled?
secretRotationInterval String: The interval to poll for secret rotation. This attribute is only set when secret_rotation is true and defaults to 2m.

KubernetesClusterKeyVaultSecretsProviderSecretIdentity, KubernetesClusterKeyVaultSecretsProviderSecretIdentityArgs

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of a user assigned identity.

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of a user assigned identity.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of a user assigned identity.

clientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId string: The ID of a user assigned identity.

client_id str: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
object_id str: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
user_assigned_identity_id str: The ID of a user assigned identity.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of a user assigned identity.

KubernetesClusterKubeAdminConfig, KubernetesClusterKubeAdminConfigArgs

ClientCertificate string: Base64 encoded public certificate used by clients to authenticate to the Kubernetes cluster.
ClientKey string: Base64 encoded private key used by clients to authenticate to the Kubernetes cluster.
ClusterCaCertificate string: Base64 encoded public CA certificate used as the root of trust for the Kubernetes cluster.
Host string: The Kubernetes cluster server host.
Password string: A password or token used to authenticate to the Kubernetes cluster.
Username string: A username used to authenticate to the Kubernetes cluster.

ClientCertificate string: Base64 encoded public certificate used by clients to authenticate to the Kubernetes cluster.
ClientKey string: Base64 encoded private key used by clients to authenticate to the Kubernetes cluster.
ClusterCaCertificate string: Base64 encoded public CA certificate used as the root of trust for the Kubernetes cluster.
Host string: The Kubernetes cluster server host.
Password string: A password or token used to authenticate to the Kubernetes cluster.
Username string: A username used to authenticate to the Kubernetes cluster.

clientCertificate String: Base64 encoded public certificate used by clients to authenticate to the Kubernetes cluster.
clientKey String: Base64 encoded private key used by clients to authenticate to the Kubernetes cluster.
clusterCaCertificate String: Base64 encoded public CA certificate used as the root of trust for the Kubernetes cluster.
host String: The Kubernetes cluster server host.
password String: A password or token used to authenticate to the Kubernetes cluster.
username String: A username used to authenticate to the Kubernetes cluster.

clientCertificate string: Base64 encoded public certificate used by clients to authenticate to the Kubernetes cluster.
clientKey string: Base64 encoded private key used by clients to authenticate to the Kubernetes cluster.
clusterCaCertificate string: Base64 encoded public CA certificate used as the root of trust for the Kubernetes cluster.
host string: The Kubernetes cluster server host.
password string: A password or token used to authenticate to the Kubernetes cluster.
username string: A username used to authenticate to the Kubernetes cluster.

client_certificate str: Base64 encoded public certificate used by clients to authenticate to the Kubernetes cluster.
client_key str: Base64 encoded private key used by clients to authenticate to the Kubernetes cluster.
cluster_ca_certificate str: Base64 encoded public CA certificate used as the root of trust for the Kubernetes cluster.
host str: The Kubernetes cluster server host.
password str: A password or token used to authenticate to the Kubernetes cluster.
username str: A username used to authenticate to the Kubernetes cluster.

clientCertificate String: Base64 encoded public certificate used by clients to authenticate to the Kubernetes cluster.
clientKey String: Base64 encoded private key used by clients to authenticate to the Kubernetes cluster.
clusterCaCertificate String: Base64 encoded public CA certificate used as the root of trust for the Kubernetes cluster.
host String: The Kubernetes cluster server host.
password String: A password or token used to authenticate to the Kubernetes cluster.
username String: A username used to authenticate to the Kubernetes cluster.

KubernetesClusterKubeConfig, KubernetesClusterKubeConfigArgs

ClientCertificate string: Base64 encoded public certificate used by clients to authenticate to the Kubernetes cluster.
ClientKey string: Base64 encoded private key used by clients to authenticate to the Kubernetes cluster.
ClusterCaCertificate string: Base64 encoded public CA certificate used as the root of trust for the Kubernetes cluster.
Host string: The Kubernetes cluster server host.
Password string: A password or token used to authenticate to the Kubernetes cluster.
Username string: A username used to authenticate to the Kubernetes cluster.

ClientCertificate string: Base64 encoded public certificate used by clients to authenticate to the Kubernetes cluster.
ClientKey string: Base64 encoded private key used by clients to authenticate to the Kubernetes cluster.
ClusterCaCertificate string: Base64 encoded public CA certificate used as the root of trust for the Kubernetes cluster.
Host string: The Kubernetes cluster server host.
Password string: A password or token used to authenticate to the Kubernetes cluster.
Username string: A username used to authenticate to the Kubernetes cluster.

clientCertificate String: Base64 encoded public certificate used by clients to authenticate to the Kubernetes cluster.
clientKey String: Base64 encoded private key used by clients to authenticate to the Kubernetes cluster.
clusterCaCertificate String: Base64 encoded public CA certificate used as the root of trust for the Kubernetes cluster.
host String: The Kubernetes cluster server host.
password String: A password or token used to authenticate to the Kubernetes cluster.
username String: A username used to authenticate to the Kubernetes cluster.

clientCertificate string: Base64 encoded public certificate used by clients to authenticate to the Kubernetes cluster.
clientKey string: Base64 encoded private key used by clients to authenticate to the Kubernetes cluster.
clusterCaCertificate string: Base64 encoded public CA certificate used as the root of trust for the Kubernetes cluster.
host string: The Kubernetes cluster server host.
password string: A password or token used to authenticate to the Kubernetes cluster.
username string: A username used to authenticate to the Kubernetes cluster.

client_certificate str: Base64 encoded public certificate used by clients to authenticate to the Kubernetes cluster.
client_key str: Base64 encoded private key used by clients to authenticate to the Kubernetes cluster.
cluster_ca_certificate str: Base64 encoded public CA certificate used as the root of trust for the Kubernetes cluster.
host str: The Kubernetes cluster server host.
password str: A password or token used to authenticate to the Kubernetes cluster.
username str: A username used to authenticate to the Kubernetes cluster.

clientCertificate String: Base64 encoded public certificate used by clients to authenticate to the Kubernetes cluster.
clientKey String: Base64 encoded private key used by clients to authenticate to the Kubernetes cluster.
clusterCaCertificate String: Base64 encoded public CA certificate used as the root of trust for the Kubernetes cluster.
host String: The Kubernetes cluster server host.
password String: A password or token used to authenticate to the Kubernetes cluster.
username String: A username used to authenticate to the Kubernetes cluster.

KubernetesClusterKubeletIdentity, KubernetesClusterKubeletIdentityArgs

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of the User Assigned Identity assigned to the Kubelets. If not specified a Managed Identity is created automatically.

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of the User Assigned Identity assigned to the Kubelets. If not specified a Managed Identity is created automatically.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of the User Assigned Identity assigned to the Kubelets. If not specified a Managed Identity is created automatically.

clientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId string: The ID of the User Assigned Identity assigned to the Kubelets. If not specified a Managed Identity is created automatically.

client_id str: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
object_id str: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
user_assigned_identity_id str: The ID of the User Assigned Identity assigned to the Kubelets. If not specified a Managed Identity is created automatically.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of the User Assigned Identity assigned to the Kubelets. If not specified a Managed Identity is created automatically.

KubernetesClusterLinuxProfile, KubernetesClusterLinuxProfileArgs

AdminUsername string: The Admin Username for the Cluster. Changing this forces a new resource to be created.
SshKey KubernetesClusterLinuxProfileSshKey: An ssh_key block. Only one is currently allowed. Changing this forces a new resource to be created.

AdminUsername string: The Admin Username for the Cluster. Changing this forces a new resource to be created.
SshKey KubernetesClusterLinuxProfileSshKey: An ssh_key block. Only one is currently allowed. Changing this forces a new resource to be created.

adminUsername String: The Admin Username for the Cluster. Changing this forces a new resource to be created.
sshKey KubernetesClusterLinuxProfileSshKey: An ssh_key block. Only one is currently allowed. Changing this forces a new resource to be created.

adminUsername string: The Admin Username for the Cluster. Changing this forces a new resource to be created.
sshKey KubernetesClusterLinuxProfileSshKey: An ssh_key block. Only one is currently allowed. Changing this forces a new resource to be created.

admin_username str: The Admin Username for the Cluster. Changing this forces a new resource to be created.
ssh_key KubernetesClusterLinuxProfileSshKey: An ssh_key block. Only one is currently allowed. Changing this forces a new resource to be created.

adminUsername String: The Admin Username for the Cluster. Changing this forces a new resource to be created.
sshKey Property Map: An ssh_key block. Only one is currently allowed. Changing this forces a new resource to be created.

KubernetesClusterLinuxProfileSshKey, KubernetesClusterLinuxProfileSshKeyArgs

KeyData string: The Public SSH Key used to access the cluster. Changing this forces a new resource to be created.

KeyData string: The Public SSH Key used to access the cluster. Changing this forces a new resource to be created.

keyData String: The Public SSH Key used to access the cluster. Changing this forces a new resource to be created.

keyData string: The Public SSH Key used to access the cluster. Changing this forces a new resource to be created.

key_data str: The Public SSH Key used to access the cluster. Changing this forces a new resource to be created.

keyData String: The Public SSH Key used to access the cluster. Changing this forces a new resource to be created.

KubernetesClusterMaintenanceWindow, KubernetesClusterMaintenanceWindowArgs

Alloweds List<KubernetesClusterMaintenanceWindowAllowed>: One or more allowed block as defined below.
NotAlloweds List<KubernetesClusterMaintenanceWindowNotAllowed>: One or more not_allowed block as defined below.

Alloweds []KubernetesClusterMaintenanceWindowAllowed: One or more allowed block as defined below.
NotAlloweds []KubernetesClusterMaintenanceWindowNotAllowed: One or more not_allowed block as defined below.

alloweds List<KubernetesClusterMaintenanceWindowAllowed>: One or more allowed block as defined below.
notAlloweds List<KubernetesClusterMaintenanceWindowNotAllowed>: One or more not_allowed block as defined below.

alloweds KubernetesClusterMaintenanceWindowAllowed[]: One or more allowed block as defined below.
notAlloweds KubernetesClusterMaintenanceWindowNotAllowed[]: One or more not_allowed block as defined below.

alloweds Sequence[KubernetesClusterMaintenanceWindowAllowed]: One or more allowed block as defined below.
not_alloweds Sequence[KubernetesClusterMaintenanceWindowNotAllowed]: One or more not_allowed block as defined below.

alloweds List<Property Map>: One or more allowed block as defined below.
notAlloweds List<Property Map>: One or more not_allowed block as defined below.

KubernetesClusterMaintenanceWindowAllowed, KubernetesClusterMaintenanceWindowAllowedArgs

Day string: A day in a week. Possible values are Sunday, Monday, Tuesday, Wednesday, Thursday, Friday and Saturday.
Hours List<int>: An array of hour slots in a day. Possible values are between 0 and 23.

Day string: A day in a week. Possible values are Sunday, Monday, Tuesday, Wednesday, Thursday, Friday and Saturday.
Hours []int: An array of hour slots in a day. Possible values are between 0 and 23.

day String: A day in a week. Possible values are Sunday, Monday, Tuesday, Wednesday, Thursday, Friday and Saturday.
hours List<Integer>: An array of hour slots in a day. Possible values are between 0 and 23.

day string: A day in a week. Possible values are Sunday, Monday, Tuesday, Wednesday, Thursday, Friday and Saturday.
hours number[]: An array of hour slots in a day. Possible values are between 0 and 23.

day str: A day in a week. Possible values are Sunday, Monday, Tuesday, Wednesday, Thursday, Friday and Saturday.
hours Sequence[int]: An array of hour slots in a day. Possible values are between 0 and 23.

day String: A day in a week. Possible values are Sunday, Monday, Tuesday, Wednesday, Thursday, Friday and Saturday.
hours List<Number>: An array of hour slots in a day. Possible values are between 0 and 23.

KubernetesClusterMaintenanceWindowNotAllowed, KubernetesClusterMaintenanceWindowNotAllowedArgs

End string: The end of a time span, formatted as an RFC3339 string.
Start string: The start of a time span, formatted as an RFC3339 string.

End string: The end of a time span, formatted as an RFC3339 string.
Start string: The start of a time span, formatted as an RFC3339 string.

end String: The end of a time span, formatted as an RFC3339 string.
start String: The start of a time span, formatted as an RFC3339 string.

end string: The end of a time span, formatted as an RFC3339 string.
start string: The start of a time span, formatted as an RFC3339 string.

end str: The end of a time span, formatted as an RFC3339 string.
start str: The start of a time span, formatted as an RFC3339 string.

end String: The end of a time span, formatted as an RFC3339 string.
start String: The start of a time span, formatted as an RFC3339 string.

KubernetesClusterNetworkProfile, KubernetesClusterNetworkProfileArgs

NetworkPlugin string: Network plugin to use for networking. Currently supported values are azure and kubenet. Changing this forces a new resource to be created.
DnsServiceIp string: IP address within the Kubernetes service address range that will be used by cluster service discovery (kube-dns). Changing this forces a new resource to be created.
DockerBridgeCidr string: IP address (in CIDR notation) used as the Docker bridge IP address on nodes. Changing this forces a new resource to be created.
LoadBalancerProfile KubernetesClusterNetworkProfileLoadBalancerProfile: A load_balancer_profile block. This can only be specified when load_balancer_sku is set to Standard.
LoadBalancerSku string: Specifies the SKU of the Load Balancer used for this Kubernetes Cluster. Possible values are Basic and Standard. Defaults to Standard.
NatGatewayProfile KubernetesClusterNetworkProfileNatGatewayProfile: A nat_gateway_profile block. This can only be specified when load_balancer_sku is set to Standard and outbound_type is set to managedNATGateway or userAssignedNATGateway.
NetworkMode string: Network mode to be used with Azure CNI. Possible values are bridge and transparent. Changing this forces a new resource to be created.
NetworkPolicy string: Sets up network policy to be used with Azure CNI. Network policy allows us to control the traffic flow between pods. Currently supported values are calico and azure. Changing this forces a new resource to be created.
OutboundType string: The outbound (egress) routing method which should be used for this Kubernetes Cluster. Possible values are loadBalancer, userDefinedRouting, managedNATGateway and userAssignedNATGateway. Defaults to loadBalancer.
PodCidr string: The CIDR to use for pod IP addresses. This field can only be set when network_plugin is set to kubenet. Changing this forces a new resource to be created.
ServiceCidr string: The Network Range used by the Kubernetes service. Changing this forces a new resource to be created.

NetworkPlugin string: Network plugin to use for networking. Currently supported values are azure and kubenet. Changing this forces a new resource to be created.
DnsServiceIp string: IP address within the Kubernetes service address range that will be used by cluster service discovery (kube-dns). Changing this forces a new resource to be created.
DockerBridgeCidr string: IP address (in CIDR notation) used as the Docker bridge IP address on nodes. Changing this forces a new resource to be created.
LoadBalancerProfile KubernetesClusterNetworkProfileLoadBalancerProfile: A load_balancer_profile block. This can only be specified when load_balancer_sku is set to Standard.
LoadBalancerSku string: Specifies the SKU of the Load Balancer used for this Kubernetes Cluster. Possible values are Basic and Standard. Defaults to Standard.
NatGatewayProfile KubernetesClusterNetworkProfileNatGatewayProfile: A nat_gateway_profile block. This can only be specified when load_balancer_sku is set to Standard and outbound_type is set to managedNATGateway or userAssignedNATGateway.
NetworkMode string: Network mode to be used with Azure CNI. Possible values are bridge and transparent. Changing this forces a new resource to be created.
NetworkPolicy string: Sets up network policy to be used with Azure CNI. Network policy allows us to control the traffic flow between pods. Currently supported values are calico and azure. Changing this forces a new resource to be created.
OutboundType string: The outbound (egress) routing method which should be used for this Kubernetes Cluster. Possible values are loadBalancer, userDefinedRouting, managedNATGateway and userAssignedNATGateway. Defaults to loadBalancer.
PodCidr string: The CIDR to use for pod IP addresses. This field can only be set when network_plugin is set to kubenet. Changing this forces a new resource to be created.
ServiceCidr string: The Network Range used by the Kubernetes service. Changing this forces a new resource to be created.

networkPlugin String: Network plugin to use for networking. Currently supported values are azure and kubenet. Changing this forces a new resource to be created.
dnsServiceIp String: IP address within the Kubernetes service address range that will be used by cluster service discovery (kube-dns). Changing this forces a new resource to be created.
dockerBridgeCidr String: IP address (in CIDR notation) used as the Docker bridge IP address on nodes. Changing this forces a new resource to be created.
loadBalancerProfile KubernetesClusterNetworkProfileLoadBalancerProfile: A load_balancer_profile block. This can only be specified when load_balancer_sku is set to Standard.
loadBalancerSku String: Specifies the SKU of the Load Balancer used for this Kubernetes Cluster. Possible values are Basic and Standard. Defaults to Standard.
natGatewayProfile KubernetesClusterNetworkProfileNatGatewayProfile: A nat_gateway_profile block. This can only be specified when load_balancer_sku is set to Standard and outbound_type is set to managedNATGateway or userAssignedNATGateway.
networkMode String: Network mode to be used with Azure CNI. Possible values are bridge and transparent. Changing this forces a new resource to be created.
networkPolicy String: Sets up network policy to be used with Azure CNI. Network policy allows us to control the traffic flow between pods. Currently supported values are calico and azure. Changing this forces a new resource to be created.
outboundType String: The outbound (egress) routing method which should be used for this Kubernetes Cluster. Possible values are loadBalancer, userDefinedRouting, managedNATGateway and userAssignedNATGateway. Defaults to loadBalancer.
podCidr String: The CIDR to use for pod IP addresses. This field can only be set when network_plugin is set to kubenet. Changing this forces a new resource to be created.
serviceCidr String: The Network Range used by the Kubernetes service. Changing this forces a new resource to be created.

networkPlugin string: Network plugin to use for networking. Currently supported values are azure and kubenet. Changing this forces a new resource to be created.
dnsServiceIp string: IP address within the Kubernetes service address range that will be used by cluster service discovery (kube-dns). Changing this forces a new resource to be created.
dockerBridgeCidr string: IP address (in CIDR notation) used as the Docker bridge IP address on nodes. Changing this forces a new resource to be created.
loadBalancerProfile KubernetesClusterNetworkProfileLoadBalancerProfile: A load_balancer_profile block. This can only be specified when load_balancer_sku is set to Standard.
loadBalancerSku string: Specifies the SKU of the Load Balancer used for this Kubernetes Cluster. Possible values are Basic and Standard. Defaults to Standard.
natGatewayProfile KubernetesClusterNetworkProfileNatGatewayProfile: A nat_gateway_profile block. This can only be specified when load_balancer_sku is set to Standard and outbound_type is set to managedNATGateway or userAssignedNATGateway.
networkMode string: Network mode to be used with Azure CNI. Possible values are bridge and transparent. Changing this forces a new resource to be created.
networkPolicy string: Sets up network policy to be used with Azure CNI. Network policy allows us to control the traffic flow between pods. Currently supported values are calico and azure. Changing this forces a new resource to be created.
outboundType string: The outbound (egress) routing method which should be used for this Kubernetes Cluster. Possible values are loadBalancer, userDefinedRouting, managedNATGateway and userAssignedNATGateway. Defaults to loadBalancer.
podCidr string: The CIDR to use for pod IP addresses. This field can only be set when network_plugin is set to kubenet. Changing this forces a new resource to be created.
serviceCidr string: The Network Range used by the Kubernetes service. Changing this forces a new resource to be created.

network_plugin str: Network plugin to use for networking. Currently supported values are azure and kubenet. Changing this forces a new resource to be created.
dns_service_ip str: IP address within the Kubernetes service address range that will be used by cluster service discovery (kube-dns). Changing this forces a new resource to be created.
docker_bridge_cidr str: IP address (in CIDR notation) used as the Docker bridge IP address on nodes. Changing this forces a new resource to be created.
load_balancer_profile KubernetesClusterNetworkProfileLoadBalancerProfile: A load_balancer_profile block. This can only be specified when load_balancer_sku is set to Standard.
load_balancer_sku str: Specifies the SKU of the Load Balancer used for this Kubernetes Cluster. Possible values are Basic and Standard. Defaults to Standard.
nat_gateway_profile KubernetesClusterNetworkProfileNatGatewayProfile: A nat_gateway_profile block. This can only be specified when load_balancer_sku is set to Standard and outbound_type is set to managedNATGateway or userAssignedNATGateway.
network_mode str: Network mode to be used with Azure CNI. Possible values are bridge and transparent. Changing this forces a new resource to be created.
network_policy str: Sets up network policy to be used with Azure CNI. Network policy allows us to control the traffic flow between pods. Currently supported values are calico and azure. Changing this forces a new resource to be created.
outbound_type str: The outbound (egress) routing method which should be used for this Kubernetes Cluster. Possible values are loadBalancer, userDefinedRouting, managedNATGateway and userAssignedNATGateway. Defaults to loadBalancer.
pod_cidr str: The CIDR to use for pod IP addresses. This field can only be set when network_plugin is set to kubenet. Changing this forces a new resource to be created.
service_cidr str: The Network Range used by the Kubernetes service. Changing this forces a new resource to be created.

networkPlugin String: Network plugin to use for networking. Currently supported values are azure and kubenet. Changing this forces a new resource to be created.
dnsServiceIp String: IP address within the Kubernetes service address range that will be used by cluster service discovery (kube-dns). Changing this forces a new resource to be created.
dockerBridgeCidr String: IP address (in CIDR notation) used as the Docker bridge IP address on nodes. Changing this forces a new resource to be created.
loadBalancerProfile Property Map: A load_balancer_profile block. This can only be specified when load_balancer_sku is set to Standard.
loadBalancerSku String: Specifies the SKU of the Load Balancer used for this Kubernetes Cluster. Possible values are Basic and Standard. Defaults to Standard.
natGatewayProfile Property Map: A nat_gateway_profile block. This can only be specified when load_balancer_sku is set to Standard and outbound_type is set to managedNATGateway or userAssignedNATGateway.
networkMode String: Network mode to be used with Azure CNI. Possible values are bridge and transparent. Changing this forces a new resource to be created.
networkPolicy String: Sets up network policy to be used with Azure CNI. Network policy allows us to control the traffic flow between pods. Currently supported values are calico and azure. Changing this forces a new resource to be created.
outboundType String: The outbound (egress) routing method which should be used for this Kubernetes Cluster. Possible values are loadBalancer, userDefinedRouting, managedNATGateway and userAssignedNATGateway. Defaults to loadBalancer.
podCidr String: The CIDR to use for pod IP addresses. This field can only be set when network_plugin is set to kubenet. Changing this forces a new resource to be created.
serviceCidr String: The Network Range used by the Kubernetes service. Changing this forces a new resource to be created.

KubernetesClusterNetworkProfileLoadBalancerProfile, KubernetesClusterNetworkProfileLoadBalancerProfileArgs

EffectiveOutboundIps List<string>: The outcome (resource IDs) of the specified arguments.
IdleTimeoutInMinutes int: Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 30.
ManagedOutboundIpCount int: Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive.
OutboundIpAddressIds List<string>: The ID of the Public IP Addresses which should be used for outbound communication for the cluster load balancer.
OutboundIpPrefixIds List<string>: The ID of the outbound Public IP Address Prefixes which should be used for the cluster load balancer.
OutboundPortsAllocated int: Number of desired SNAT port for each VM in the clusters load balancer. Must be between 0 and 64000 inclusive. Defaults to 0.

EffectiveOutboundIps []string: The outcome (resource IDs) of the specified arguments.
IdleTimeoutInMinutes int: Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 30.
ManagedOutboundIpCount int: Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive.
OutboundIpAddressIds []string: The ID of the Public IP Addresses which should be used for outbound communication for the cluster load balancer.
OutboundIpPrefixIds []string: The ID of the outbound Public IP Address Prefixes which should be used for the cluster load balancer.
OutboundPortsAllocated int: Number of desired SNAT port for each VM in the clusters load balancer. Must be between 0 and 64000 inclusive. Defaults to 0.

effectiveOutboundIps List<String>: The outcome (resource IDs) of the specified arguments.
idleTimeoutInMinutes Integer: Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 30.
managedOutboundIpCount Integer: Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive.
outboundIpAddressIds List<String>: The ID of the Public IP Addresses which should be used for outbound communication for the cluster load balancer.
outboundIpPrefixIds List<String>: The ID of the outbound Public IP Address Prefixes which should be used for the cluster load balancer.
outboundPortsAllocated Integer: Number of desired SNAT port for each VM in the clusters load balancer. Must be between 0 and 64000 inclusive. Defaults to 0.

effectiveOutboundIps string[]: The outcome (resource IDs) of the specified arguments.
idleTimeoutInMinutes number: Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 30.
managedOutboundIpCount number: Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive.
outboundIpAddressIds string[]: The ID of the Public IP Addresses which should be used for outbound communication for the cluster load balancer.
outboundIpPrefixIds string[]: The ID of the outbound Public IP Address Prefixes which should be used for the cluster load balancer.
outboundPortsAllocated number: Number of desired SNAT port for each VM in the clusters load balancer. Must be between 0 and 64000 inclusive. Defaults to 0.

effective_outbound_ips Sequence[str]: The outcome (resource IDs) of the specified arguments.
idle_timeout_in_minutes int: Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 30.
managed_outbound_ip_count int: Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive.
outbound_ip_address_ids Sequence[str]: The ID of the Public IP Addresses which should be used for outbound communication for the cluster load balancer.
outbound_ip_prefix_ids Sequence[str]: The ID of the outbound Public IP Address Prefixes which should be used for the cluster load balancer.
outbound_ports_allocated int: Number of desired SNAT port for each VM in the clusters load balancer. Must be between 0 and 64000 inclusive. Defaults to 0.

effectiveOutboundIps List<String>: The outcome (resource IDs) of the specified arguments.
idleTimeoutInMinutes Number: Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 30.
managedOutboundIpCount Number: Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive.
outboundIpAddressIds List<String>: The ID of the Public IP Addresses which should be used for outbound communication for the cluster load balancer.
outboundIpPrefixIds List<String>: The ID of the outbound Public IP Address Prefixes which should be used for the cluster load balancer.
outboundPortsAllocated Number: Number of desired SNAT port for each VM in the clusters load balancer. Must be between 0 and 64000 inclusive. Defaults to 0.

KubernetesClusterNetworkProfileNatGatewayProfile, KubernetesClusterNetworkProfileNatGatewayProfileArgs

EffectiveOutboundIps List<string>: The outcome (resource IDs) of the specified arguments.
IdleTimeoutInMinutes int: Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 4.
ManagedOutboundIpCount int: Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive.

EffectiveOutboundIps []string: The outcome (resource IDs) of the specified arguments.
IdleTimeoutInMinutes int: Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 4.
ManagedOutboundIpCount int: Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive.

effectiveOutboundIps List<String>: The outcome (resource IDs) of the specified arguments.
idleTimeoutInMinutes Integer: Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 4.
managedOutboundIpCount Integer: Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive.

effectiveOutboundIps string[]: The outcome (resource IDs) of the specified arguments.
idleTimeoutInMinutes number: Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 4.
managedOutboundIpCount number: Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive.

effective_outbound_ips Sequence[str]: The outcome (resource IDs) of the specified arguments.
idle_timeout_in_minutes int: Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 4.
managed_outbound_ip_count int: Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive.

effectiveOutboundIps List<String>: The outcome (resource IDs) of the specified arguments.
idleTimeoutInMinutes Number: Desired outbound flow idle timeout in minutes for the cluster load balancer. Must be between 4 and 120 inclusive. Defaults to 4.
managedOutboundIpCount Number: Count of desired managed outbound IPs for the cluster load balancer. Must be between 1 and 100 inclusive.

KubernetesClusterOmsAgent, KubernetesClusterOmsAgentArgs

LogAnalyticsWorkspaceId string: The ID of the Log Analytics Workspace which the OMS Agent should send data to.
OmsAgentIdentities List<KubernetesClusterOmsAgentOmsAgentIdentity>: An oms_agent_identity block is exported. The exported attributes are defined below.

LogAnalyticsWorkspaceId string: The ID of the Log Analytics Workspace which the OMS Agent should send data to.
OmsAgentIdentities []KubernetesClusterOmsAgentOmsAgentIdentity: An oms_agent_identity block is exported. The exported attributes are defined below.

logAnalyticsWorkspaceId String: The ID of the Log Analytics Workspace which the OMS Agent should send data to.
omsAgentIdentities List<KubernetesClusterOmsAgentOmsAgentIdentity>: An oms_agent_identity block is exported. The exported attributes are defined below.

logAnalyticsWorkspaceId string: The ID of the Log Analytics Workspace which the OMS Agent should send data to.
omsAgentIdentities KubernetesClusterOmsAgentOmsAgentIdentity[]: An oms_agent_identity block is exported. The exported attributes are defined below.

log_analytics_workspace_id str: The ID of the Log Analytics Workspace which the OMS Agent should send data to.
oms_agent_identities Sequence[KubernetesClusterOmsAgentOmsAgentIdentity]: An oms_agent_identity block is exported. The exported attributes are defined below.

logAnalyticsWorkspaceId String: The ID of the Log Analytics Workspace which the OMS Agent should send data to.
omsAgentIdentities List<Property Map>: An oms_agent_identity block is exported. The exported attributes are defined below.

KubernetesClusterOmsAgentOmsAgentIdentity, KubernetesClusterOmsAgentOmsAgentIdentityArgs

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of a user assigned identity.

ClientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
ObjectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
UserAssignedIdentityId string: The ID of a user assigned identity.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of a user assigned identity.

clientId string: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId string: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId string: The ID of a user assigned identity.

client_id str: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
object_id str: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
user_assigned_identity_id str: The ID of a user assigned identity.

clientId String: The Client ID of the user-defined Managed Identity to be assigned to the Kubelets. If not specified a Managed Identity is created automatically.
objectId String: The Object ID of the user-defined Managed Identity assigned to the Kubelets.If not specified a Managed Identity is created automatically.
userAssignedIdentityId String: The ID of a user assigned identity.

KubernetesClusterRoleBasedAccessControl, KubernetesClusterRoleBasedAccessControlArgs

Enabled bool: Is the Kubernetes Dashboard enabled?
AzureActiveDirectory KubernetesClusterRoleBasedAccessControlAzureActiveDirectory

Enabled bool: Is the Kubernetes Dashboard enabled?
AzureActiveDirectory KubernetesClusterRoleBasedAccessControlAzureActiveDirectory

enabled Boolean: Is the Kubernetes Dashboard enabled?
azureActiveDirectory KubernetesClusterRoleBasedAccessControlAzureActiveDirectory

enabled boolean: Is the Kubernetes Dashboard enabled?
azureActiveDirectory KubernetesClusterRoleBasedAccessControlAzureActiveDirectory

enabled bool: Is the Kubernetes Dashboard enabled?
azure_active_directory KubernetesClusterRoleBasedAccessControlAzureActiveDirectory

enabled Boolean: Is the Kubernetes Dashboard enabled?
azureActiveDirectory Property Map

KubernetesClusterRoleBasedAccessControlAzureActiveDirectory, KubernetesClusterRoleBasedAccessControlAzureActiveDirectoryArgs

AdminGroupObjectIds List<string>: A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster.
AzureRbacEnabled bool: Is Role Based Access Control based on Azure AD enabled?
ClientAppId string: The Client ID of an Azure Active Directory Application.
Managed bool: Is the Azure Active Directory integration Managed, meaning that Azure will create/manage the Service Principal used for integration.
ServerAppId string: The Server ID of an Azure Active Directory Application.
ServerAppSecret string: The Server Secret of an Azure Active Directory Application.
TenantId string: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.

AdminGroupObjectIds []string: A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster.
AzureRbacEnabled bool: Is Role Based Access Control based on Azure AD enabled?
ClientAppId string: The Client ID of an Azure Active Directory Application.
Managed bool: Is the Azure Active Directory integration Managed, meaning that Azure will create/manage the Service Principal used for integration.
ServerAppId string: The Server ID of an Azure Active Directory Application.
ServerAppSecret string: The Server Secret of an Azure Active Directory Application.
TenantId string: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.

adminGroupObjectIds List<String>: A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster.
azureRbacEnabled Boolean: Is Role Based Access Control based on Azure AD enabled?
clientAppId String: The Client ID of an Azure Active Directory Application.
managed Boolean: Is the Azure Active Directory integration Managed, meaning that Azure will create/manage the Service Principal used for integration.
serverAppId String: The Server ID of an Azure Active Directory Application.
serverAppSecret String: The Server Secret of an Azure Active Directory Application.
tenantId String: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.

adminGroupObjectIds string[]: A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster.
azureRbacEnabled boolean: Is Role Based Access Control based on Azure AD enabled?
clientAppId string: The Client ID of an Azure Active Directory Application.
managed boolean: Is the Azure Active Directory integration Managed, meaning that Azure will create/manage the Service Principal used for integration.
serverAppId string: The Server ID of an Azure Active Directory Application.
serverAppSecret string: The Server Secret of an Azure Active Directory Application.
tenantId string: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.

admin_group_object_ids Sequence[str]: A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster.
azure_rbac_enabled bool: Is Role Based Access Control based on Azure AD enabled?
client_app_id str: The Client ID of an Azure Active Directory Application.
managed bool: Is the Azure Active Directory integration Managed, meaning that Azure will create/manage the Service Principal used for integration.
server_app_id str: The Server ID of an Azure Active Directory Application.
server_app_secret str: The Server Secret of an Azure Active Directory Application.
tenant_id str: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.

adminGroupObjectIds List<String>: A list of Object IDs of Azure Active Directory Groups which should have Admin Role on the Cluster.
azureRbacEnabled Boolean: Is Role Based Access Control based on Azure AD enabled?
clientAppId String: The Client ID of an Azure Active Directory Application.
managed Boolean: Is the Azure Active Directory integration Managed, meaning that Azure will create/manage the Service Principal used for integration.
serverAppId String: The Server ID of an Azure Active Directory Application.
serverAppSecret String: The Server Secret of an Azure Active Directory Application.
tenantId String: The Tenant ID used for Azure Active Directory Application. If this isn't specified the Tenant ID of the current Subscription is used.

KubernetesClusterServicePrincipal, KubernetesClusterServicePrincipalArgs

ClientId string: The Client ID for the Service Principal.
ClientSecret string: The Client Secret for the Service Principal.

ClientId string: The Client ID for the Service Principal.
ClientSecret string: The Client Secret for the Service Principal.

clientId String: The Client ID for the Service Principal.
clientSecret String: The Client Secret for the Service Principal.

clientId string: The Client ID for the Service Principal.
clientSecret string: The Client Secret for the Service Principal.

client_id str: The Client ID for the Service Principal.
client_secret str: The Client Secret for the Service Principal.

clientId String: The Client ID for the Service Principal.
clientSecret String: The Client Secret for the Service Principal.

KubernetesClusterWindowsProfile, KubernetesClusterWindowsProfileArgs

AdminUsername string: The Admin Username for Windows VMs.
AdminPassword string: The Admin Password for Windows VMs. Length must be between 14 and 123 characters.
License string: Specifies the type of on-premise license which should be used for Node Pool Windows Virtual Machine. At this time the only possible value is Windows_Server.

AdminUsername string: The Admin Username for Windows VMs.
AdminPassword string: The Admin Password for Windows VMs. Length must be between 14 and 123 characters.
License string: Specifies the type of on-premise license which should be used for Node Pool Windows Virtual Machine. At this time the only possible value is Windows_Server.

adminUsername String: The Admin Username for Windows VMs.
adminPassword String: The Admin Password for Windows VMs. Length must be between 14 and 123 characters.
license String: Specifies the type of on-premise license which should be used for Node Pool Windows Virtual Machine. At this time the only possible value is Windows_Server.

adminUsername string: The Admin Username for Windows VMs.
adminPassword string: The Admin Password for Windows VMs. Length must be between 14 and 123 characters.
license string: Specifies the type of on-premise license which should be used for Node Pool Windows Virtual Machine. At this time the only possible value is Windows_Server.

admin_username str: The Admin Username for Windows VMs.
admin_password str: The Admin Password for Windows VMs. Length must be between 14 and 123 characters.
license str: Specifies the type of on-premise license which should be used for Node Pool Windows Virtual Machine. At this time the only possible value is Windows_Server.

adminUsername String: The Admin Username for Windows VMs.
adminPassword String: The Admin Password for Windows VMs. Length must be between 14 and 123 characters.
license String: Specifies the type of on-premise license which should be used for Node Pool Windows Virtual Machine. At this time the only possible value is Windows_Server.

Import

Managed Kubernetes Clusters can be imported using the resource id, e.g.

 $ pulumi import azure:containerservice/kubernetesCluster:KubernetesCluster cluster1 /subscriptions/00000000-0000-0000-0000-000000000000/resourcegroups/group1/providers/Microsoft.ContainerService/managedClusters/cluster1

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: Azure Classic pulumi/pulumi-azure
License: Apache-2.0
Notes: This Pulumi package is based on the azurerm Terraform Provider.

We recommend using Azure Native.

Viewing docs for Azure v4.42.0 (Older version)
published on Monday, Mar 9, 2026 by Pulumi

Go to latest version

Schema (JSON)

pulumi/pulumi-azure

azure.containerservice.KubernetesCluster

On this page

On this page

Example Usage

Create KubernetesCluster Resource

Constructor syntax

Parameters

Constructor example

KubernetesCluster Resource Properties

Inputs

Outputs

Look up Existing KubernetesCluster Resource

Supporting Types

KubernetesClusterAciConnectorLinux, KubernetesClusterAciConnectorLinuxArgs

KubernetesClusterAddonProfile, KubernetesClusterAddonProfileArgs

KubernetesClusterAddonProfileAciConnectorLinux, KubernetesClusterAddonProfileAciConnectorLinuxArgs

KubernetesClusterAddonProfileAzureKeyvaultSecretsProvider, KubernetesClusterAddonProfileAzureKeyvaultSecretsProviderArgs

KubernetesClusterAddonProfileAzureKeyvaultSecretsProviderSecretIdentity, KubernetesClusterAddonProfileAzureKeyvaultSecretsProviderSecretIdentityArgs

KubernetesClusterAddonProfileAzurePolicy, KubernetesClusterAddonProfileAzurePolicyArgs

KubernetesClusterAddonProfileHttpApplicationRouting, KubernetesClusterAddonProfileHttpApplicationRoutingArgs

KubernetesClusterAddonProfileIngressApplicationGateway, KubernetesClusterAddonProfileIngressApplicationGatewayArgs

KubernetesClusterAddonProfileIngressApplicationGatewayIngressApplicationGatewayIdentity, KubernetesClusterAddonProfileIngressApplicationGatewayIngressApplicationGatewayIdentityArgs

KubernetesClusterAddonProfileKubeDashboard, KubernetesClusterAddonProfileKubeDashboardArgs

KubernetesClusterAddonProfileOmsAgent, KubernetesClusterAddonProfileOmsAgentArgs

KubernetesClusterAddonProfileOmsAgentOmsAgentIdentity, KubernetesClusterAddonProfileOmsAgentOmsAgentIdentityArgs

KubernetesClusterAddonProfileOpenServiceMesh, KubernetesClusterAddonProfileOpenServiceMeshArgs

KubernetesClusterAutoScalerProfile, KubernetesClusterAutoScalerProfileArgs

KubernetesClusterAzureActiveDirectoryRoleBasedAccessControl, KubernetesClusterAzureActiveDirectoryRoleBasedAccessControlArgs

KubernetesClusterDefaultNodePool, KubernetesClusterDefaultNodePoolArgs

KubernetesClusterDefaultNodePoolKubeletConfig, KubernetesClusterDefaultNodePoolKubeletConfigArgs

KubernetesClusterDefaultNodePoolLinuxOsConfig, KubernetesClusterDefaultNodePoolLinuxOsConfigArgs

KubernetesClusterDefaultNodePoolLinuxOsConfigSysctlConfig, KubernetesClusterDefaultNodePoolLinuxOsConfigSysctlConfigArgs

KubernetesClusterDefaultNodePoolUpgradeSettings, KubernetesClusterDefaultNodePoolUpgradeSettingsArgs

KubernetesClusterHttpProxyConfig, KubernetesClusterHttpProxyConfigArgs

KubernetesClusterIdentity, KubernetesClusterIdentityArgs

KubernetesClusterIngressApplicationGateway, KubernetesClusterIngressApplicationGatewayArgs

KubernetesClusterIngressApplicationGatewayIngressApplicationGatewayIdentity, KubernetesClusterIngressApplicationGatewayIngressApplicationGatewayIdentityArgs

KubernetesClusterKeyVaultSecretsProvider, KubernetesClusterKeyVaultSecretsProviderArgs

KubernetesClusterKeyVaultSecretsProviderSecretIdentity, KubernetesClusterKeyVaultSecretsProviderSecretIdentityArgs

KubernetesClusterKubeAdminConfig, KubernetesClusterKubeAdminConfigArgs

KubernetesClusterKubeConfig, KubernetesClusterKubeConfigArgs

KubernetesClusterKubeletIdentity, KubernetesClusterKubeletIdentityArgs

KubernetesClusterLinuxProfile, KubernetesClusterLinuxProfileArgs

KubernetesClusterLinuxProfileSshKey, KubernetesClusterLinuxProfileSshKeyArgs

KubernetesClusterMaintenanceWindow, KubernetesClusterMaintenanceWindowArgs

KubernetesClusterMaintenanceWindowAllowed, KubernetesClusterMaintenanceWindowAllowedArgs

KubernetesClusterMaintenanceWindowNotAllowed, KubernetesClusterMaintenanceWindowNotAllowedArgs

KubernetesClusterNetworkProfile, KubernetesClusterNetworkProfileArgs

KubernetesClusterNetworkProfileLoadBalancerProfile, KubernetesClusterNetworkProfileLoadBalancerProfileArgs

KubernetesClusterNetworkProfileNatGatewayProfile, KubernetesClusterNetworkProfileNatGatewayProfileArgs

KubernetesClusterOmsAgent, KubernetesClusterOmsAgentArgs

KubernetesClusterOmsAgentOmsAgentIdentity, KubernetesClusterOmsAgentOmsAgentIdentityArgs

KubernetesClusterRoleBasedAccessControl, KubernetesClusterRoleBasedAccessControlArgs

KubernetesClusterRoleBasedAccessControlAzureActiveDirectory, KubernetesClusterRoleBasedAccessControlAzureActiveDirectoryArgs

KubernetesClusterServicePrincipal, KubernetesClusterServicePrincipalArgs

KubernetesClusterWindowsProfile, KubernetesClusterWindowsProfileArgs

Import

Package Details

On this page

On this page