What is managed identity in Aks?
Managed identities are essentially a wrapper around service principals, and make their management simpler. Credential rotation for MI happens automatically every 46 days according to Azure Active Directory default. AKS uses both system-assigned and user-assigned managed identity types.
How are network resources configured for the AKS cluster?
The network resources are typically created and configured as the AKS cluster is deployed. The AKS cluster is connected to existing virtual network resources and configurations. The kubenet networking option is the default configuration for AKS cluster creation. With kubenet: Nodes receive an IP address from the Azure virtual network subnet.
How often does Azure Active Directory (AKS) rotate user credentials?
Credential rotation for MI happens automatically every 46 days according to Azure Active Directory default. AKS uses both system-assigned and user-assigned managed identity types. These identities are currently immutable.
What is AKS and how to use it in azure?
Ease of scaling: AKS can also be applied in many other use cases such as ease of scaling by using Azure Container Instances (ACI) and AKS. By doing this, you can use AKS virtual node to provision pods inside Azure Container Instance (ACI) that start within a few seconds and enables AKS to run with required resources.
How to improve the AKS security?
Coming back, for starters, you could improve the AKS security by whitelisting the IPs you want to be allowed to connect to the API server. This limits the exposure radius of the control plane and only these IPs can run the kubectl commands.
How do I customize the auto-scaler profile settings in Aks clusters?
Custom auto-scaler profiles affect all node-pools in an AKS cluster. There is no chance to provide individual auto-scaler settings per node-pool at this point in time. To customize the auto-scaler profile settings, we have to install the AKS Preview extension for Azure CLI.