aks-baseline
aks-baseline copied to clipboard
mspnp
This is the Azure Kubernetes Service (AKS) Baseline Cluster reference implementation as produced by the Microsoft Azure Architecture Center.
Implement the core components to support AKS backup. Changes: * New resource: added storage account (for cluster state) * New resource: added backup vault, and default/example policy * New resource:...
``` az deployment group create -g rg-bu0001a0008 -f cluster-stamp.bicep -p targetVnetResourceId=${RESOURCEID_VNET_CLUSTERSPOKE_AKS_BASELINE} clusterAdminAadGroupObjectId=${AADOBJECTID_GROUP_CLUSTERADMIN_AKS_BASELINE} a0008NamespaceReaderAadGroupObjectId=${AADOBJECTID_GROUP_A0008_READER_AKS_BASELINE} k8sControlPlaneAuthorizationTenantId=${TENANTID_K8SRBAC_AKS_BASELINE} appGatewayListenerCertificate=${APP_GATEWAY_LISTENER_CERTIFICATE_AKS_BASELINE} aksIngressControllerCertificate=${AKS_INGRESS_CONTROLLER_CERTIFICATE_BASE64_AKS_BASELINE} domainName=${DOMAIN_NAME_AKS_BASELINE} gitOpsBootstrappingRepoHttpsUrl=${GITOPS_REPOURL} gitOpsBootstrappingRepoBranch=${GITOPS_CURRENT_BRANCH_NAME} location=germanywestcentral ``` Error ``` {"status":"Failed","error":{"code":"DeploymentFailed","target":"/subscriptions//resourceGroups/rg-bu0001a0008/providers/Microsoft.Resources/deployments/cluster-stamp","message":"At least one resource deployment operation failed....
Hi , Facing this issue while running Command: az deployment group create -g rg-bu0001a0008 -f cluster-stamp.bicep -p targetVnetResourceId=${RESOURCEID_VNET_CLUSTERSPOKE_AKS_BASELINE} clusterAdminAadGroupObjectId=${AADOBJECTID_GROUP_CLUSTERADMIN_AKS_BASELINE} a0008NamespaceReaderAadGroupObjectId=${AADOBJECTID_GROUP_A0008_READER_AKS_BASELINE} k8sControlPlaneAuthorizationTenantId=${TENANTID_K8SRBAC_AKS_BASELINE} appGatewayListenerCertificate=${APP_GATEWAY_LISTENER_CERTIFICATE_AKS_BASELINE} aksIngressControllerCertificate=${AKS_INGRESS_CONTROLLER_CERTIFICATE_BASE64_AKS_BASELINE} domainName=${DOMAIN_NAME_AKS_BASELINE} location=centralindia Error : {"status":"Failed","error":{"code":"DeploymentFailed","target":"/subscriptions/[sub]/resourceGroups/rg-bu0001a0008/providers/Microsoft.Resources/deployments/cluster-stamp","message":"At least one...
``` {"code": "InvalidTemplateDeployment", "message": "The template deployment 'cluster-stamp' is not valid according to the validation procedure. The tracking id is 'ab597510-5dcb-4007-beb7-e762315f0f50'. See inner errors for details."} Inner Errors: {"code": "QuotaExceeded",...
### Summary During the cluster deployment, this error occurs: ``` C:\git\aks-baseline\nested_K8sCustomIngressTlsHostsHaveDefinedDomainSuffix.bicep(87,9) : Warning BCP037: The property "schema" is not allowed on objects of type "ParameterDefinitionsValue". Permissible properties include "allowedValues". If...
I received the following error when deploying `acr-stamp`. It took me a bit to workout a vmSize that would work. ```"The template deployment failed with error: 'The resource with id:...
Hello all, I am using a modified version of this repository as the basis of my cluster. I noticed recent upgrades mention having to switch over from 'pod managed identity'...
Hello all, I am currently experiencing a peculiar problem, where the namespace role assignments (https://github.com/mspnp/aks-baseline/blob/51cd9d0d6065820fd641569ec92ac44dc8c45622/cluster-stamp.bicep#L1956) are not created on the namespace level, but instead on the resource group level. This...
WHAT Changed? - [enable networking observability (basic)](https://github.com/mspnp/aks-baseline/pull/431/commits/2457b6e879bcdba6581358c0aacf80d6940f43c7) - [add az monitor workspace](https://github.com/mspnp/aks-baseline/pull/431/commits/5bf7a939aaa523b4d95dfb41e1045ae4f081e0f8) - [create collection ep with az monitor ws as destination with cluster collection scope](https://github.com/mspnp/aks-baseline/pull/431/commits/ff0e5476c584d092050bdcfa106bf46debc812f9) - add default configmaps...
