Quota issue during AKS creation
I am trying to create AKS for learning, I am not able to create AKS cluster got below error. As per the solution to increase quota I tried but I don't any listed computes on quota screen. I have pay-as-go…
Number of K8s per cluster in
Hi, When trying to build an estimation for container insights data volume (Azure pricing calculator -> Azure monitor -> Log Data Ingestion -> Estimate Data Volume -> Estimate data volume using Container Insights) there is a field called…
AKS NAP (preview) not working
Hi, I followed the NAP tutorial after making sure the prerequisites are fulfilled (as shown in the pictures) and I'm getting the below message: ➜ ~ kubectl get nodeclaim NAME TYPE ZONE NODE READY …
Abnormal Cost for Log Analytics
We have seen a significant increase in infrastructure costs related to the valero and mdsd component log. The containers of these components have inserted hundreds of thousands of entries with a log level debug and info. We have taken steps to mitigate…
When creating an AKS cluster, it is played by quota limits.
Preflight validation check for resource(s) for container service myAKSCluster in resource group myAKSCluster_group failed. Message: Insufficient regional vcpu quota left for location eastus. left regional vcpu quota 0, Details: (コード:…
Cloudflare DNS to Aziure kubernetes
I have a kubernetes running that has php, nginx, node, etc running, and need to be able to connect to the load balancer and return the site to the user. Right now I am getting a 502 bad gateway. kubernetes default Ok ClusterIP 10.0.0.1 443/TCP 19…
How can I analyze the logs coming from AKS and reduce them?
I have recently added a data connector for AKS to my Sentinel workspace and it has caused a major hike in the amount of logs ingested in the workspace (which eventually increases the costs as well) I want to know: How can I check which tables are…
How to configure the egress of pods for connecting to other Azure services through their private endpoints?
For reference, our organization's Azure account is being managed by a 3rd-party who specialized on security. I was given a limited access to our AKS clusters that are newly created. I'm not sure how much they changed it from the default configuration.…
How to update AKS Coredns?
Hello, I have a quick question how to properly upgrade an AKS CoreDNS deployment. Current CoreDNS image mcr.microsoft.com/oss/kubernetes/coredns:v1.9.4-hotfix.20240704 I modify the deployment but it keeps getting written when restarting the…
can't create a storage share through kubernetes file.csi.azure.com
I am trying to create a fileshare through Kubernetes using the file.csi.azure.com storage class here is an example -- kind: StorageClass apiVersion: storage.k8s.io/v1 metadata: name: azurefile-<NAMESPACE> provisioner:…
What are best security best practices to connect AKS with SQL Server?
Hi, I have an AKS cluster on Azure and one of the pod is connecting to the SQL server, the SQL server is also being consumed by a function app. I dont want my SQL server to be exposed publicly, and I know private endpoint can be used between function app…
I am unable to use a subnet with route table associated while creating a cluster in Azure portal.
Hi, we have a subnet associated with a route table, while creating a (aks) cluster using that subnet it is showing an error saying we cannot use a subnet with a route table attached, for this I am removing the route table and using that subnet for…
how to connect to Azure Key Vault using CSI driver in an Azure Kubernetes Service (AKS) cluster
I followed this post https://learn.microsoft.com/en-us/azure/service-connector/tutorial-python-aks-keyvault-csi-driver?tabs=azure-portal It is ok with KV secret, but I want to use the KV cert. I got the error message: The certificate certificate does not…
AGIC service health probe by default goes to default probe eventhough I define the Ingress rules
I am using AGIC for my cluster. Recently I am observing the behaviour of health probe for each service we deployed is getting added to default probe in app gateway instead of creating a new one. Initially I thought problem with specific namespace but…
Azure Machine Learning Terminal Instance HTTP Access Disruption
Hello everyone, our Azure workspace terminal instance (e.g., https://xxxxxx.eastus.inference.ml.azure.com/score) suddenly became inaccessible via HTTP at 9:30 AM on September 6th. Prior to this incident, we were able to call it normally. We are using a…
Does Spark pool on Azure Synapse Analytics run on AKS?
Hello, Could you let us know whether Spark on Auzre Synapse Analytics run on AKS (Azure Kubernetes Service) or not? Thanks
Why I am getting AKS security recomendation even I have definied in deployment YAML: Container CPU and memory limits should be enforced
I am running a deployment in AKS cluster and below is my YAML where I have clearly defined cpu/memory request and limit. Question is why I am getting AKS security recommendation : Container CPU and memory limits should be enforced ? apiVersion:…
How to hide a Response Server Header from a python application deployed in AKS as service?
Hello, I have my Python flask application running in AKS as a service. I want to hide the server information that is visible in Response headers under Server header. Application specific changes are not working when deployed on AKS. Please suggest ways…
Problem with managed Prometheus and AKS
When starting a new AKS Cluster and enabling the managed Prometheus option I get the following result: Following the https://learn.microsoft.com/en-us/azure/azure-monitor/containers/prometheus-metrics-troubleshoot guide, all seems to be working but no…
Hitting AKS Kubernetes API with an AD app
Is there a way to use an AD app (app-id, secret, subscription) to authenticate with the Kubernetes API via HTTPS to get cluster's information without using azure cli? (like nodes, nodes configuration, roles, etc)