9. Azure Active Directory pod-managed identities in AKS

In the previous chapter, Chapter 8, Role-based access control in AKS, you integrated your AKS cluster with Azure Active Directory (Azure AD). You then assigned Kubernetes roles to users and groups in Azure AD. In this chapter, you will explore how you can integrate your applications running on AKS with Azure AD, and you will learn how you can give your pods an identity in Azure so they can interact with other Azure resources.

In Azure, application identities use a functionality called service principals. A service principal is the equivalent of a service account in the cloud. An application can use a service principal to authenticate to Azure AD and get access to resources. Those ...

Get Hands-on Kubernetes on Azure - Third Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Hands-on Kubernetes on Azure - Third Edition by Nills Franssens, Shivakumar Gopalakrishnan, Gunther Lenz

9. Azure Active Directory pod-managed identities in AKS

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly