From cb53a2895aaf278cf980d9faeda206fabab8cebf Mon Sep 17 00:00:00 2001 From: Fernando Antivero Date: Thu, 22 Feb 2024 14:36:31 -0300 Subject: [PATCH 1/2] update kured to 1.15.0 --- 05-bootstrap-prep.md | 2 +- cluster-manifests/cluster-baseline-settings/kured.yaml | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/05-bootstrap-prep.md b/05-bootstrap-prep.md index fcdbe9bd..9c8fb48b 100644 --- a/05-bootstrap-prep.md +++ b/05-bootstrap-prep.md @@ -59,7 +59,7 @@ In addition to Azure Container Registry being deployed to support bootstrapping, echo ACR_NAME_AKS_BASELINE: $ACR_NAME_AKS_BASELINE # Import core image(s) hosted in public container registries to be used during bootstrapping - az acr import --source ghcr.io/kubereboot/kured:1.14.0 -n $ACR_NAME_AKS_BASELINE + az acr import --source ghcr.io/kubereboot/kured:1.15.0 -n $ACR_NAME_AKS_BASELINE ``` > In this walkthrough, there is only one image that is included in the bootstrapping process. It's included as a reference for this process. Your choice to use Kubernetes Reboot Daemon (Kured) or any other images, including Helm charts, as part of your bootstrapping is yours to make. diff --git a/cluster-manifests/cluster-baseline-settings/kured.yaml b/cluster-manifests/cluster-baseline-settings/kured.yaml index 84583715..bb2f82a4 100644 --- a/cluster-manifests/cluster-baseline-settings/kured.yaml +++ b/cluster-manifests/cluster-baseline-settings/kured.yaml @@ -1,4 +1,4 @@ -# Source: https://github.com/kubereboot/charts/tree/kured-5.2.0/charts/kured (1.14.0) +# Source: https://github.com/kubereboot/charts/tree/kured-5.2.0/charts/kured (1.15.0) apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: @@ -119,10 +119,10 @@ spec: # PRODUCTION READINESS CHANGE REQUIRED # This image should be sourced from a non-public container registry, such as the # one deployed along side of this reference implementation. - # az acr import --source ghcr.io/kubereboot/kured:1.14.0 -n + # az acr import --source ghcr.io/kubereboot/kured:1.15.0 -n # and then set this to - # image: .azurecr.io/kubereboot/kured:1.14.0 - image: ghcr.io/kubereboot/kured:1.14.0 + # image: .azurecr.io/kubereboot/kured:1.15.0 + image: ghcr.io/kubereboot/kured:1.15.0 imagePullPolicy: IfNotPresent securityContext: privileged: true # Give permission to nsenter /proc/1/ns/mnt From 352f1349b1b7df20e634b810bb1cfc87c95c3db4 Mon Sep 17 00:00:00 2001 From: Fernando Antivero Date: Tue, 27 Feb 2024 16:02:54 -0300 Subject: [PATCH 2/2] update with the missing addons up to resource manager for managed cluster v0.11.1 more info: https://github.com/Azure/ResourceModules/blob/01c84038146347231a2c94d68f39e23011d852af/modules/container-service/managed-cluster/main.bicep#L476j --- cluster-stamp.bicep | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/cluster-stamp.bicep b/cluster-stamp.bicep index 628b5737..0fe55da0 100644 --- a/cluster-stamp.bicep +++ b/cluster-stamp.bicep @@ -1741,6 +1741,9 @@ resource mc 'Microsoft.ContainerService/managedClusters@2023-02-02-preview' = { httpApplicationRouting: { enabled: false } + ingressApplicationGateway: { + enabled: false + } omsagent: { enabled: true config: { @@ -1756,6 +1759,12 @@ resource mc 'Microsoft.ContainerService/managedClusters@2023-02-02-preview' = { version: 'v2' } } + openServiceMesh: { + enabled: false + } + kubeDashboard: { + enabled: false + } azureKeyvaultSecretsProvider: { enabled: true config: {