Would be really helpful to explain what permissions are required to establish the integration point, or an actual link to the document describing those permissions, rather than "make sure you have enough permissions to do this"
@RamiroHigonetLang2 ай бұрын
Awesome presentation!
@felixmc53086 ай бұрын
They say you pay for security one way or another but $49 per committer per month for Advanced security is a difficult pill to swallow.
@NaseerKhan-q8c Жыл бұрын
Awesome explanation, Steve! You make networking simple.
@nealpan Жыл бұрын
Great info!
@ericgolpe Жыл бұрын
Tastes like yard clippings. LOL. Classic. :) Great video brother!
@wassimbenregaya5445 Жыл бұрын
geat content ! but i wonder if the pod get outside the vnet using azure cni it ill be nated to the ip node but the node dosnt have a public ip it have ip from a subnet so what ip it will take ?
@sri_x53 Жыл бұрын
Wow...Lot of cool details....
@chaitanyakumar26422 жыл бұрын
Excellent stuff Steve. Never seen a better video on AKS networking. Thanks a ton
@Tebsilon2 жыл бұрын
Amazing content and rich knowledge! thanks for taking the time building this up
@sanners2 жыл бұрын
Very informative - would love to see more videos like this on the channel!
@GreenG-3142 жыл бұрын
Great job Steve. Kicking ass as always.
@BrianSwiger2 жыл бұрын
Fantastic video and I learned a lot. Appreciate the time and efforts! AKS and Kubernetes networking is always complex for me and this helped tremendously.
@nestorreveron2 жыл бұрын
Thanks Team!
@nestorreveron2 жыл бұрын
Thanks team!
@alexdan34572 жыл бұрын
Nice one!
@nestorreveron2 жыл бұрын
Thanks
@nestorreveron2 жыл бұрын
Thanks
@cloudpachehra11133 жыл бұрын
Thanks.....waiting for more !!! Thanks for sharing 🙂
@jp-uo7bz3 жыл бұрын
So what would be the recommendation for secret implementation if you arent willing to use preview features?
@AzureGlobalBlackBelt3 жыл бұрын
Hey! Great question. So some of this focuses a lot around OSS solutions or preview features we are working to support i.e.: Secret Store CSI Driver project is either OSS or you can use the preview AKS add-on support for it with Key Vault Integration & Pod Identity which can be used OSS, or you can use the preview add-on for AKS which is undergoing a rewrite that will push a new preview and then have an expedited GA timeline. If you don't want to go OSS, and don't want to depend on the preview features in prod- which is fair, I think the approach would be to use the Key Vault SDK and a service principal with a certificate within your application code that allows you to get access to the necessary secrets in your remote secret store.
@jemag3 жыл бұрын
Great session, eager to see part 2
@HoussemDellai3 жыл бұрын
Thank you Kendall and Ray for this very useful session :)
@christianibiri4 жыл бұрын
Amazing
@simyim4 жыл бұрын
can you use managed identity if you want to use other services such as azure container registry? or is it only through service principal?
@AzureGlobalBlackBelt4 жыл бұрын
You can! Check out the "Summary of managed identities" section in the doc: docs.microsoft.com/en-us/azure/aks/use-managed-identity
@aaronberger93584 жыл бұрын
The video mentioned some links, can we get those links pasted here?
@kendallroden65744 жыл бұрын
All links are available at aka.ms/akspublicofficehours under the "Related AKS Resources" section! Thanks :)