Coco Wang
Coco Wang
The differences between CSI secret store: 1. Object: CSI secret store supports secrets, keys, certficates. KMS only supports for secrets. 2. Method: In CSI secret store, The secrets/keys/certificates are mounted...
@npalmer1452 pls try: az aks update -g MyResourceGroup -n MyManagedCluster --api-server-authorized-ip-ranges 193.168.1.0/24,194.168.1.0/24,195.168.1.0 Reference: https://learn.microsoft.com/en-us/cli/azure/aks?view=azure-cli-latest#az-aks-update
Thanks for letting us know your feedback and user scenario. There is security risk for BYO (bring your own) OIDC Issuer url. We are seeking potential workaround.
Thanks for the info. Would like to know more details: From your description, I understand the pain point is: you need to update OIDC urls on all services after cluster...
#sign-off
The OIDC federation feature would be named "External Identity Providers" in AKS cluster.
> This feature is in plan and checking internally about the ETA. Will update soon.
The tentative date for public preview is Oct.
Update: Azure Container upstream is planning to deliver this feature, then AKS will integrate the external identity provider from upstream. The estimated public preview date for external identity provider on...
Hello @sspreitzer thanks for the info. I am reaching to your case owner and we can schedule a call to discuss the requirement offline.