Binding K8S cluster to our own Azure Container Registry ONLY

Porsche Me 136 Reputation points
2021-07-29T05:47:29.987+00:00

How can we bind AKS cluster to our own Azure Container Registry?

We wanted to make sure an adversary cannot spin-off a rogue pod in our cluster.

Azure Container Registry
Azure Container Registry
An Azure service that provides a registry of Docker and Open Container Initiative images.
458 questions
Azure Kubernetes Service (AKS)
Azure Kubernetes Service (AKS)
An Azure service that provides serverless Kubernetes, an integrated continuous integration and continuous delivery experience, and enterprise-grade security and governance.
2,120 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. SRIJIT-BOSE-MSFT 4,336 Reputation points Microsoft Employee
    2021-08-02T07:00:55.437+00:00

    @Porsche Me , Thank you for your question.

    Assuming that you want to integrate your AKS cluster with your own Azure Container Registry and ensure that images from this registry only can be used to create pods on the aforementioned AKS cluster, you can:

    For more information please check this document. For how-to on enforcing Azure Policy for Kubernetes please check out this document.

    ----------

    Hope this helps.

    Please "Accept as Answer" if it helped, so that it can help others in the community looking for help on similar topics.

    1 person found this answer helpful.
    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.