I wanted to start looking at a few modules helping integrate AKS with the rest of Azure. A big integration point is identity. For many reasons, we’ll want our pods to use service principal identities: Access an Azure service supporting AAD-integration Data Lake Store Azure SQL DB Azure Key Vault Many more… Access Azure Resource … More Azure AD Pod Identity in AKS
Azure Key Vault is a great service to manage secrets, keys & certificates. It uses RBAC to control access. Like all access control system, there is a chain of access. For instance, my user account has access to the vault: this means if my account’s credentials get leaked, the access to the vault is compromised. … More Accessing Azure Key Vault using Managed Service Identity Logic Apps
We discussed using Role Name to separate telemetries from different applications in a previous article. We discuss the Nuget package I developed to set the role name for each telemetry in a backend application. In this article I wanted to cover another element that receives little coverage: how to do that for the HTML / … More Azure Application Insights Role Name in web page
Let’s look at a concrete problem: I have containers deployed in AKS Those container log into custom files I want to analyse those logs using Azure Monitor (Log Analytics) We’ll look at how to do that. We leverage Azure Monitor for containers. Custom logs in Log Analytics also is interesting. That component allows us to … More Custom Logs on AKS & Azure Monitor
I’ve been using Azure Application Insights to monitor micro-services. Since I have many micro-services, it isn’t practical to have an Application Insight resource per service. Given that those micro-services interact with each other and I want to monitor those interactions, it makes sense to get all telemetry in one place. The issue with that is … More Azure Application Insights Role Name Nuget Package
Some workloads running on Azure Kubernetes Service (AKS) requires persisting state on disk. In general, I recommend to use external PaaS services, i.e. Azure Blob Storage, Azure SQL DB, Azure Cosmos DB, etc. . Those services take care of the stateful nature of the service, manages HA, backups, geo-replication, etc. . Persisting state on disks … More Dynamic disks in AKS
In this article I wanted to talk about a book I just finished reading. Although its title and scope is around distributed systems in general, Brendan Burns discussion is mostly using containers & Kubernetes. Brendan Burns is currently (as of this writing in November 2018) at Microsoft. He is a cofounder of the Kubernetes project. … More Designing Distributed Systems by Brendan Burns
