在现有的 aks 上启用 rbac 和 aad
[英]Enable rbac and aad on existing aks
问题描述
I have created Azure Kube.netes Cluster, However RBAC and AKS-managed Azure Active Directory are disabled, i want to enable both, but unable to do so
我创建了 Azure Kube.netes 集群,但是 RBAC 和 AKS 管理的 Azure Active Directory 被禁用,我想启用两者,但无法这样做
Environment: Azure AKS Cluster v1.19.11环境:Azure AKS Cluster v1.19.11
I have tried command to enable rbac & aad我试过命令启用 rbac & aad
$ az aks update -g k8s-azwe-rg-01 -n k8s-azwe-aks-01 --enable-azure-rbac
Cannot specify "--enable-azure-rbac" if managed AAD is not enabled
$ az aks update -g k8s-azwe-rg-01 -n k8s-azwe-aks-01 --enable-aad --aad-admin-group-object-ids 4b-58-0c-7a --aad-tenant-id e-ece23-19d66-9d4
(RBACNotEnabledForAAD) RBAC must be enabled for AAD to be enabled.
$ az aks update -g k8s-azwe-rg-01 -n k8s-azwe-aks-01 --enable-aad --enable-azure-rbac
(RBACNotEnabledForAAD) RBAC must be enabled for AAD to be enabled.
Code: RBACNotEnabledForAAD
Message: RBAC must be enabled for AAD to be enabled.
2 个解决方案
解决方案1
3 已采纳 2022-02-25 23:18:03
RBAC can only be enabled during cluster creation, you cannot enable it after the aks cluster is formed. RBAC 只能在创建集群时启用,在 aks 集群形成后无法启用。
解决方案2
0 2022-11-20 09:06:52
In case anyone is still looking, it is now possible to enable RBAC to an existing cluster.如果有人还在寻找,现在可以为现有集群启用 RBAC。
https://learn.microsoft.com/en-us/azure/aks/manage-azure-rbac#integrate-azure-rbac-into-an-existing-cluster https://learn.microsoft.com/en-us/azure/aks/manage-azure-rbac#integrate-azure-rbac-into-an-existing-cluster
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.