Clik here to view.
Using Azure Resource Graph to show ASC container image scan findings
In my previous blog post I showed you how to connect your Azure Container Registries with Azure Security Center.->...
View ArticleClik here to view.
Switching to Istio CNI plugin on Azure Kubernetes Service
You might question yourself, why the switch to the Istio CNI plugin might be useful?Istio uses, and other services meshes too, an init container to adjust the iptables rules for redirecting network...
View ArticleOptimize your Azure Function PowerShell run duration in the consumption plan
Since PowerShell is available on Azure Functions this is the way to go for automating things in Azure. Especially running the function in the consumption plan and with a managed identity enabled.Per...
View ArticleClik here to view.
Connect KinD with Azure Monitor for containers
Last year Microsoft announced the Azure Monitor for containers support for on-premises Kubernetes clusters.->...
View ArticleClik here to view.
Connect KinD with Azure Arc enabled Kubernetes
At this year’s first ever digital Microsoft Build conference, Microsoft announced the public preview of Azure Arc enabled Kubernetes.->...
View ArticleClik here to view.
Using Azure Policy for Kubernetes
In my last blog post I mentioned that the next topic is about Azure Policy in combination with Azure Arc enabled Kubernetes.I decided to write about Azure Policy for Kubernetes instead covering Azure...
View ArticleClik here to view.
Upgrading the node image of an Azure Kubernetes Service cluster
Last year I have written a shell script to update the VMSS base image of an Azure Kubernetes Service cluster.-> https://www.danielstechblog.io/updating-the-base-image-of-a-vmss-based-aks-cluster/...
View ArticleClik here to view.
Local Kubernetes setup with KinD
Getting started with Kubernetes these days is easy and does not require to be in the lucky position having access to a cloud provider subscription for playing around with managed Kubernetes like AKS,...
View ArticleClik here to view.
Running Istio on KinD – Kubernetes in Docker
In my last blog post I have shown you my local Kubernetes setup with KinD.I mentioned also Istio and today we walk through the configuration to get it running on Kubernetes in Docker.As prerequisite I...
View ArticleClik here to view.
Terraform – Deploy an AKS cluster using managed identity and managed Azure AD...
Recently, I updated my Terraform AKS module switching from the AAD service principal to managed identity option as well from the AAD v1 integration to AAD v2 which is also managed.Other changes and...
View ArticleClik here to view.
ARM Template – Deploy an AKS cluster using managed identity and managed Azure...
As I mentioned in my other blog post before I have updated my Azure Resource Manager template as well. Switching from the AAD service principal to managed identity option and from the AAD v1...
View ArticleClik here to view.
Assigning RBAC permissions with Azure Resource Manager templates
Recently, I updated my AKS ARM template supporting the latest AKS feature set and important RBAC role assignments for the AKS cluster.After having a hard time, I managed to get the RBAC role assignment...
View ArticleClik here to view.
Microsoft MVP Award – Microsoft Azure
Today, I received an exciting email that I got the Microsoft MVP award in the category Microsoft Azure.In total this is my fourth award after being awarded in the category Cloud and Datacenter...
View ArticleClik here to view.
Using distroless images in Istio on Azure Kubernetes Service
Looking at Docker Hub Istio provides the option using distroless images since version 1.3.0.As it is always a good idea on a Kubernetes cluster to reduce the attack surface, especially when running a...
View ArticleClik here to view.
Downgrade the Linux kernel on an Azure Ubuntu VM
Sometimes it might be that you need to downgrade the Linux kernel on an Azure Ubuntu VM.Especially when you use Azure Site Recovery for BCDR. As the ASR agent has a slight delay on supporting the...
View ArticleClik here to view.
Introduction to Azure Resource Mover
Azure Resource Mover is a new service in Azure that lets you move resources across regions.It complements the existing capabilities to move resources between resource groups in the same subscriptions...
View ArticleClik here to view.
Trigger an on-demand Azure Policy compliance evaluation scan
Azure Policy evaluates resource compliance automatically every 24 hours for already assigned policies or initiatives.New policy or initiative assignments start the evaluation after the assignment has...
View ArticleClik here to view.
Azure Kubernetes Service – Microsoft Ignite announcements
At this year’s first digital Microsoft Ignite conference Microsoft announced several GA and preview features for its Azure Kubernetes Service.GA: Azure Policy add-on for AKSGA: Ubuntu 18.04 as new base...
View ArticleClik here to view.
Unix time format in Azure Resource Manager templates
The Unix time format is represented in seconds elapsed since 01.01.1970 UTC. So, it is different from the standard time format we are used to.Depending on the Azure service some attributes in the Azure...
View ArticleClik here to view.
Azure Policy for Azure Kubernetes Service
In June I already covered Azure Policy for Kubernetes in a blog post.-> https://www.danielstechblog.io/using-azure-policy-for-kubernetes/Back then Azure Policy for AKS was in public preview. At this...
View Article