Flex Volume in AKS

I wanted to start looking at a few modules helping integrate AKS with the rest of Azure. In a past article, we looked at Pod Identity. This time around, we will look at Flex Volume. Flex Volume is an integration between AKS and Key Vault. It allows keys, secrets & certificates (the three main objects … More Flex Volume in AKS

Accessing Azure Key Vault using Managed Service Identity Logic Apps

Azure Key Vault is a great service to manage secrets, keys & certificates. It uses RBAC to control access. Like all access control system, there is a chain of access. For instance, my user account has access to the vault: this means if my account’s credentials get leaked, the access to the vault is compromised. … More Accessing Azure Key Vault using Managed Service Identity Logic Apps

Service Principal for Logic App Connector

Azure Logic Apps is a powerful integration platform. It integrates with different services (inside and outside Azure) using connectors. Connectors are responsible to authenticate to the service they represent. Some connectors will hold the credentials. This is the case, for instance, of the SQL connector. Other connectors will by default take the AAD identity of … More Service Principal for Logic App Connector

Understanding identities in Azure AKS / Kubernetes

We’ve recently looked at Azure AKS (Kubernetes Cluster Managed Services).  We’ve looked at how to create a Kubernetes Cluster with 3 lines of Azure CLI. With this we are able to interact with the cluster & deploy containers. There is a bit of “auto magic” happening in there.  In this article we will focus on … More Understanding identities in Azure AKS / Kubernetes