Episode
Intelligent Apps with Azure Kubernetes Service Ep02: Securing Access to Azure Open AI Services with AKS Workload Identity
with Josh Duffney, Michael Bazarewsky
Today we’ll be migrating our application from using token-based authentication for Azure OpenAI to using Azure Kubernetes Service (AKS) Workload Identity. AKS Workload Identity allows specified workloads to use a Microsoft Entra Id to control access to Azure services like Azure OpenAI, removing the need to manage individual authentication tokens and providing greater visibility into access control for your Azure services.
Learning objectives
- Enable workload identities on an AKS cluster
- Create an Azure user-assigned managed identity
- Create an Azure AD federated credential
- Enable workload identity on a Kubernetes Pod
Chapters
- 00:00 - Introduction
- 05:15 - How does Azure Workload Identity work with Kubernetes?
- 05:29 - Demo
- 47:47 - Summary and resources
Recommended resources
Related episodes
Connect
- Josh Duffney | LinkedIn: /in/joshduffney
- Michael Bazarewsky | LinkedIn: /in/mikebaz
Today we’ll be migrating our application from using token-based authentication for Azure OpenAI to using Azure Kubernetes Service (AKS) Workload Identity. AKS Workload Identity allows specified workloads to use a Microsoft Entra Id to control access to Azure services like Azure OpenAI, removing the need to manage individual authentication tokens and providing greater visibility into access control for your Azure services.
Learning objectives
- Enable workload identities on an AKS cluster
- Create an Azure user-assigned managed identity
- Create an Azure AD federated credential
- Enable workload identity on a Kubernetes Pod
Chapters
- 00:00 - Introduction
- 05:15 - How does Azure Workload Identity work with Kubernetes?
- 05:29 - Demo
- 47:47 - Summary and resources
Recommended resources
Related episodes
Connect
- Josh Duffney | LinkedIn: /in/joshduffney
- Michael Bazarewsky | LinkedIn: /in/mikebaz
Have feedback? Submit an issue here.