ManagedClusterSecurityProfile interface

Package:: @azure/arm-containerservice

Security profile for the container service cluster.

Properties

azureKeyVaultKms	Azure Key Vault key management service settings for the security profile.
customCATrustCertificates	A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
defender	Microsoft Defender settings for the security profile.
imageCleaner	Image Cleaner settings for the security profile.
imageIntegrity	Image integrity is a feature that works with Azure Policy to verify image integrity by signature. This will not have any effect unless Azure Policy is applied to enforce image signatures. See https://aka.ms/aks/image-integrity for how to use this feature via policy.
kubernetesResourceObjectEncryptionProfile	Encryption at rest of Kubernetes resource objects. More information on this can be found under https://aka.ms/aks/kubernetesResourceObjectEncryption
nodeRestriction	Node Restriction settings for the security profile.
workloadIdentity	Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.

Property Details

azureKeyVaultKms

Azure Key Vault key management service settings for the security profile.

azureKeyVaultKms?: AzureKeyVaultKms

Property Value

AzureKeyVaultKms

customCATrustCertificates

A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.

customCATrustCertificates?: Uint8Array[]

Property Value

Uint8Array[]

defender

Microsoft Defender settings for the security profile.

defender?: ManagedClusterSecurityProfileDefender

Property Value

ManagedClusterSecurityProfileDefender

imageCleaner

Image Cleaner settings for the security profile.

imageCleaner?: ManagedClusterSecurityProfileImageCleaner

Property Value

ManagedClusterSecurityProfileImageCleaner

imageIntegrity

Image integrity is a feature that works with Azure Policy to verify image integrity by signature. This will not have any effect unless Azure Policy is applied to enforce image signatures. See https://aka.ms/aks/image-integrity for how to use this feature via policy.

imageIntegrity?: ManagedClusterSecurityProfileImageIntegrity

Property Value

ManagedClusterSecurityProfileImageIntegrity

kubernetesResourceObjectEncryptionProfile

Encryption at rest of Kubernetes resource objects. More information on this can be found under https://aka.ms/aks/kubernetesResourceObjectEncryption

kubernetesResourceObjectEncryptionProfile?: KubernetesResourceObjectEncryptionProfile

Property Value

KubernetesResourceObjectEncryptionProfile

nodeRestriction

Node Restriction settings for the security profile.

nodeRestriction?: ManagedClusterSecurityProfileNodeRestriction

Property Value

ManagedClusterSecurityProfileNodeRestriction

workloadIdentity

Workload identity settings for the security profile. Workload identity enables Kubernetes applications to access Azure cloud resources securely with Azure AD. See https://aka.ms/aks/wi for more details.

workloadIdentity?: ManagedClusterSecurityProfileWorkloadIdentity

Property Value

ManagedClusterSecurityProfileWorkloadIdentity

Feedback

Was this page helpful?

Share via

ManagedClusterSecurityProfile interface

Properties

Property Details

azureKeyVaultKms

Property Value

customCATrustCertificates

Property Value

defender

Property Value

imageCleaner

Property Value

imageIntegrity

Property Value

kubernetesResourceObjectEncryptionProfile

Property Value

nodeRestriction

Property Value

workloadIdentity

Property Value

Feedback