tofu-controller icon indicating copy to clipboard operation
tofu-controller copied to clipboard
verified publisher icon flux-iac

Docs: Azure Workload Identity config update

Open johnknutsonhc opened this issue 1 year ago • 1 comments

There is a label required for AKS Workload Identity (see MS docs example), that is not currently included in the AKS example.

label: azure.workload.identity/use: "true"

After adding this label to the runner template override, and configuring the service account appropriately, I am able to use AKS Workload Identity with tofu-controller to access a backend stored in an Azure storage blob, and interact with azurerm resources.

I'd be willing to submit a PR to update the example with my findings, if that would be helpful.

johnknutsonhc avatar Mar 01 '25 06:03 johnknutsonhc

yes please! That'll be really helpful!

Phiph avatar Apr 26 '25 00:04 Phiph