AKS Concepts: Difference between revisions
Jump to navigation
Jump to search
| Line 12: | Line 12: | ||
=Security= | =Security= | ||
https://docs.microsoft.com/en-us/azure/aks/concepts-security | https://docs.microsoft.com/en-us/azure/aks/concepts-security | ||
==Authentication== | |||
===Cluster Infrastructure Authentication=== | |||
The cluster infrastructure authentication is used by AKS to manage cloud resources attached to the cluster. It can be [[#Service_Principal|service principal]] or [[#System-Assigned_Managed_Identity|system-assigned managed identity]]. | |||
====Service Principal==== | |||
{{External|https://docs.microsoft.com/en-us/azure/aks/kubernetes-service-principal}} | |||
====System-Assigned Managed Identity==== | |||
{{External|https://docs.microsoft.com/en-us/azure/aks/use-managed-identity}} | |||
=Networking= | =Networking= | ||
https://docs.microsoft.com/en-us/azure/aks/concepts-network | https://docs.microsoft.com/en-us/azure/aks/concepts-network | ||
Revision as of 20:37, 31 March 2021
External
Internal
Node
Nodes are Azure virtual machines.
Node Pool
Nodes of the same configuration are grouped together into node pools.
Access and Identity
https://docs.microsoft.com/en-us/azure/aks/concepts-identity
Security
https://docs.microsoft.com/en-us/azure/aks/concepts-security
Authentication
Cluster Infrastructure Authentication
The cluster infrastructure authentication is used by AKS to manage cloud resources attached to the cluster. It can be service principal or system-assigned managed identity.
Service Principal
System-Assigned Managed Identity
Networking
https://docs.microsoft.com/en-us/azure/aks/concepts-network
Storage
https://docs.microsoft.com/en-us/azure/aks/concepts-storage
Scaling
https://docs.microsoft.com/en-us/azure/aks/concepts-scale