Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,193 questions
2 answers
One of the answers was accepted by the question author.
What is the cause of the following error - "getting assigned identities for pod <namespace>/<pod_name> in CREATED state failed after 20 attempts, retry duration [5]s" , while connecting to IMDS endpoint from a pod in AKS.
I am trying to connect to Azure Key vault via user assigned managed identity from a pod of AKS. I have provided the necessary RBAC role to the identity. I have created Azure Identity and Azure Identity Binding. I have updated my deployment with…
asked 2024-07-08T17:50:19.59+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 12%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMV%3C/text%3E%3C/svg%3E)
Mahalingam Vignesh
20
Reputation points
accepted 2024-07-19T09:14:53.7433333+00:00
Mahalingam Vignesh
20
Reputation points
2 answers
The ClusterRoleBinding aks-cluster-admin-binding includes the User clusterUser as a subject
Hello On an RBAC & AzureRBAC enabled AKS cluster I have noticed that the cluster-admin ClusterRole is bound to two subjects through the aks-cluster-admin-binding ClusterRoleBinding: User/clusterAdmin User/clusterUser This is unexpected. As far as…
asked 2024-07-08T14:36:04.85+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 76%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKB%3C/text%3E%3C/svg%3E)
Konstantin Bachem
0
Reputation points
commented 2024-07-19T03:14:04.69+00:00
vipullag-MSFT
26,021
Reputation points
1 answer
DNS label annotation doesn't work for service Ingress
The following annotation service.beta.kubernetes.io/azure-dns-label-name"="
asked 2024-07-18T03:52:44.8633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 55.00000000000001%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anand
0
Reputation points
answered 2024-07-18T16:45:32.8666667+00:00
deherman-MSFT
35,636
Reputation points Microsoft Employee
1 answer
How can I expose a TCP service using AKS Gateway Controller
Hello, I have an AKS cluster where I have successfully deployed the Azure Application Gateway controller. I have a GatewayClass for the "alb.networking.azure.io/alb-controller" However, when I want to create a Gateway resource to use this with…
asked 2024-06-12T12:08:21.19+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 22%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAD%3C/text%3E%3C/svg%3E)
Andrei Dascalu
0
Reputation points
edited the question 2024-07-18T13:52:23.56+00:00
KapilAnanth-MSFT
41,491
Reputation points Microsoft Employee
1 answer
Insufficient privileges to complete the operation when trying to create Service Principle
Hi, I'm trying to create a Service Principle to use Terraform to create and manage my AKS. I'm successfully logged in to Azure CLI and can list all the subscriptions and resources. My issue starts when I'm trying to use the next cli…
asked 2024-07-16T09:18:58.7233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 9%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFC%3C/text%3E%3C/svg%3E)
Filip Curin
0
Reputation points
commented 2024-07-18T10:52:31.16+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 79%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3END%3C/text%3E%3C/svg%3E)
Nikhil Duserla
1,300
Reputation points Microsoft Vendor
1 answer
One of the answers was accepted by the question author.
Azure Application Gateway websocket connections dropping after unrelated settings change
We have a AKS cluster behind a Application Gateway. In this cluster we have pods with a large number of websocket connections. The issue is that, when we changed a completely other setting in the Application Gateway (a new backend setting and updated a…
asked 2024-07-12T10:54:46.8+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 37%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETM%3C/text%3E%3C/svg%3E)
Tom Maljaars | Red Cactus
20
Reputation points
accepted 2024-07-18T07:28:18.52+00:00
Tom Maljaars | Red Cactus
20
Reputation points
1 answer
Unable to Create aks cluster on Azure stack HCI
Hello Team, We've encountered difficulties creating an AKS cluster on Azure Stack HCI. We've attempted deployment on multiple HCI clusters, but the same error persists: "The resource provision operation did not complete within the allowed timeout…
asked 2024-07-18T04:46:30.1766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 21%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
Demo
20
Reputation points
answered 2024-07-18T05:01:59+00:00
Manu Philip
17,671
Reputation points MVP
3 answers
This cluster is in a failed state. If you didn't do an operation, AKS may resolve the provisioning status automatically if your cluster applications continue to run.
HI for the second time, when the subcription is reactivated because the credit has run out, I try to restart the AKS and the following error appears: This cluster is in a failed state. If you didn't do an operation, AKS may resolve the provisioning…
asked 2024-05-26T05:48:32.77+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 20%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC4%3C/text%3E%3C/svg%3E)
CardinaleFrancesco-4268
0
Reputation points
commented 2024-07-18T00:33:05.82+00:00
Vinodh247
13,716
Reputation points
1 answer
2024 years In AZ-104, about is Azure Kubernetes Service (AKS) still within the exam scope?
2024 years In AZ-104, about is Azure Kubernetes Service (AKS) still within the exam scope?
asked 2024-07-14T13:13:24.09+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 43%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBW%3C/text%3E%3C/svg%3E)
BO WEI LI
0
Reputation points
edited the question 2024-07-15T04:30:25.5366667+00:00
Prrudram-MSFT
23,211
Reputation points
1 answer
How to setup JNLP file containerized application?
How to set up a JNLP file containerized application? I said containerized app because I will be setting up many of these same apps for different users with different login credentials. Help me please.
asked 2024-07-13T11:05:31.7866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 90%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVE%3C/text%3E%3C/svg%3E)
Vanavah Edwards-Admin
0
Reputation points
answered 2024-07-15T04:27:10.1933333+00:00
vipullag-MSFT
26,021
Reputation points
1 answer
AKS on VMware - aksarc unable to find vnet when creating cluster
When trying to create k8s cluster, aksarc is unable to find the vnet. +++++++++++++++++++++++++++++++++ az aksarc create -n 'k8svmware_rb03_cluster01' -g $resource_group --kubernetes-version "1.26.6" --custom-location $custom_location…
asked 2024-07-12T11:39:41.4533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 41%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENA%3C/text%3E%3C/svg%3E)
Nash A
0
Reputation points
edited an answer 2024-07-12T16:14:47.14+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 24%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAA%3C/text%3E%3C/svg%3E)
akinbade abiola
9,315
Reputation points
1 answer
error fetching from postgres, err: x509: certificate signed by unknown authority
i have i virtual network where in 1 subnet my aks cluster is present and another subnet my private postgress flexible server is present. i am connecting my application from aks cluster to private postgress server through private network using…
asked 2024-07-05T07:21:57.52+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 51%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
Kishor
0
Reputation points
commented 2024-07-12T06:47:28.5833333+00:00
Nikhil Duserla
1,300
Reputation points Microsoft Vendor
1 answer
What is equivalent command of "kubeadm certs check-expiration" for a Kubernetes cluster running in Azure?
What is equivalent command of "kubeadm certs check-expiration" for a Kubernetes cluster running in Azure
asked 2024-07-09T22:06:32.0866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 76%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESB%3C/text%3E%3C/svg%3E)
Shyam Bollu
0
Reputation points
commented 2024-07-12T06:46:09.9333333+00:00
Nikhil Duserla
1,300
Reputation points Microsoft Vendor
0 answers
Unintentionally deletion of a WAF HTTP Listener Association with an AGW + AGIC + AKS. Meanwhile, the associcated AGW HTTP Listener still existing.
Here are existing components: WAF Policy: Custome rule Associated application gateways: HTTP Listener, fl-2991a50d204b26a829717bbebe722d00 AGW + AGIC + AKS: AGW has fl-2991a50d204b26a829717bbebe722d00 ->…
asked 2024-06-30T12:32:18.98+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 65%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELD%3C/text%3E%3C/svg%3E)
LyTien Dung
5
Reputation points
edited the question 2024-07-12T01:18:20.94+00:00
vipullag-MSFT
26,021
Reputation points
0 answers
Not able to establish connectivity from App Gateway to Cluster Services
We have now running service on AKS Cluster with its own Internal POD IPs (2 pod) and external IP mapped to these PODs. The service is also having a path associated with it in the URL. We have now created an application gateway and created all backend…
asked 2024-07-06T14:25:41.1633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 66%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYB%3C/text%3E%3C/svg%3E)
Yogesh Bansal
0
Reputation points
commented 2024-07-10T07:15:49.17+00:00
KapilAnanth-MSFT
41,491
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Is it possible to mount keyvault secrets as environment variables?
Hello, I would like to know if it is possible that by obtaining the secrets from the keyvault, they can be mounted to the pod as environment variables. I was reviewing the documentation and in the examples I have only found that they are mounted within…
asked 2024-07-09T15:42:30.1333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 6%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGO%3C/text%3E%3C/svg%3E)
Gerald Ortiz Candela
40
Reputation points
accepted 2024-07-09T19:16:22.1566667+00:00
Gerald Ortiz Candela
40
Reputation points
1 answer
AKS cluster stuck in failed state
The cluser is in a a failed state and I am unable to update, upgrade or stop it. The errorCode is ResourceOperationFailure when running kubectl get nodes and kubectl get apiservices - E0706 10:06:16.489936 30640 memcache.go:287] couldn't get resource…
asked 2024-07-06T10:08:03.5733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 73%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDW%3C/text%3E%3C/svg%3E)
David Wilson
0
Reputation points
edited a comment 2024-07-09T17:38:05.28+00:00
Nikhil Duserla
1,300
Reputation points Microsoft Vendor
0 answers
High CPU Utilization on Windows Core Machine with Kubernetes Pods Every Six Hours
Hello Azure Community, I have a Windows Core machine running Kubernetes pods, and I'm experiencing high CPU utilization spikes every six hours. Since I don't have a GUI, I need to diagnose and resolve this issue using command-line tools. Could someone…
asked 2024-06-27T10:09:51.71+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 14.000000000000002%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJD%3C/text%3E%3C/svg%3E)
JEET DAGAR
0
Reputation points
commented 2024-07-09T11:34:58.1333333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(76.8, 74%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAN%3C/text%3E%3C/svg%3E)
Anveshreddy Nimmala
3,535
Reputation points Microsoft Vendor
0 answers
Persistent TCP connections to AKS are dropping
I have a device-gateway application (ASP.NET) that accepts incoming TCP connections and keeps them alive. We have an increasing amount of connections with now close to 3.000 connections. We are expecting around 10.000 by the end of the year. I see that…
asked 2024-07-05T06:35:20.4966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 55.00000000000001%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHV%3C/text%3E%3C/svg%3E)
Hans van den Elsen
0
Reputation points
edited the question 2024-07-09T09:47:29.5+00:00
vipullag-MSFT
26,021
Reputation points
0 answers
Increase in Network Out Bytes After AKS Upgrade to 1.29.x
I am upgrading my AKS cluster from version 1.27.x to 1.29.x. The upgrade process involves updating the control plane first, then creating new node pools with the same configuration as the old ones but with the newer version. After that, I drain and…
asked 2024-07-05T07:07:01.3133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 36%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EUF%3C/text%3E%3C/svg%3E)
Umar Farook
20
Reputation points
commented 2024-07-09T09:45:51.72+00:00
vipullag-MSFT
26,021
Reputation points