Share via


IManagedClusterSecurityProfile Interface

Definition

[System.ComponentModel.TypeConverter(typeof(Microsoft.Azure.PowerShell.Cmdlets.Aks.Models.Api20230201.ManagedClusterSecurityProfileTypeConverter))]
public interface IManagedClusterSecurityProfile : Microsoft.Azure.PowerShell.Cmdlets.Aks.Runtime.IJsonSerializable
[<System.ComponentModel.TypeConverter(typeof(Microsoft.Azure.PowerShell.Cmdlets.Aks.Models.Api20230201.ManagedClusterSecurityProfileTypeConverter))>]
type IManagedClusterSecurityProfile = interface
    interface IJsonSerializable
Public Interface IManagedClusterSecurityProfile
Implements IJsonSerializable
Derived
Attributes
Implements

Properties

AzureKeyVaultKmEnabled

Whether to enable Azure Key Vault key management service. The default is false.

AzureKeyVaultKmKeyId

Identifier of Azure Key Vault key. See key identifier format for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty.

AzureKeyVaultKmKeyVaultNetworkAccess

Network access of key vault. The possible values are Public and Private. Public means the key vault allows public access from all networks. Private means the key vault disables public access and enables private link. The default value is Public.

AzureKeyVaultKmKeyVaultResourceId

Resource ID of key vault. When keyVaultNetworkAccess is Private, this field is required and must be a valid resource ID. When keyVaultNetworkAccess is Public, leave the field empty.

DefenderLogAnalyticsWorkspaceResourceId

Resource ID of the Log Analytics workspace to be associated with Microsoft Defender. When Microsoft Defender is enabled, this field is required and must be a valid workspace resource ID. When Microsoft Defender is disabled, leave the field empty.

ImageCleanerEnabled

Whether to enable Image Cleaner on AKS cluster.

ImageCleanerIntervalHour

Image Cleaner scanning interval in hours.

SecurityMonitoringEnabled

Whether to enable Defender threat detection

WorkloadIdentityEnabled

Whether to enable workload identity.

Methods

ToJson(JsonObject, SerializationMode) (Inherited from IJsonSerializable)

Applies to