bedrock icon indicating copy to clipboard operation
bedrock copied to clipboard

Published 20 hours ago verified publisher icon microsoft

Why do we need to create a Service Principal to assign to the cluster

Open mtarng opened this issue 5 years ago • 2 comments

Topic: Following the first workload guide and documentation, we have to create a SP to assign to a cluster.

Question: Could we instead use the output from a SystemAssigned identity? https://www.terraform.io/docs/providers/azurerm/r/kubernetes_cluster.html#principal_id

mtarng avatar Apr 20 '20 20:04 mtarng

The identity attribute in tf provider enables Azure Managed Identity functionality, which is not supported in bedrock yet. This PR https://github.com/microsoft/bedrock/pull/1368 implements MSI.

sarath-p avatar Apr 20 '20 21:04 sarath-p

I think this needs to be part of the discussion of MSI rework #1355

jmspring avatar Apr 20 '20 21:04 jmspring