Catégorie : Azure

AKS | Remove the Defender Profile from an AKS Cluster

Hi!

In this article, I will show you how you can remove the Defender for Containers profile from an existing AKS Cluster.

az login az account set --subscription <subscription-id> az aks update --disable-defender --resource-group <your-resource-group> --name <your-cluster-name> 

To verify that the profile was successfully removed, run the following command:

kubectl get pods -n azuredefender

Maxime.

Filter security alerts by IP address

Hi!

In this article, I will show how you can filter the Microsoft Defender for Cloud security alerts by IP address. In many cases of attacks, you want to track alerts based on the IP address of the entity involved in the attack.

Maxime.

AKS | Subnet per node pool

Hi!

A workload may require splitting a cluster’s nodes into separate pools for logical isolation. This isolation can be supported with separate subnets dedicated to each node pool in the cluster. This can address requirements such as having non-contiguous virtual network address space to split across node pools.

To create a node pool with a dedicated subnet, pass the subnet resource ID as an additional parameter when creating a node pool.

az aks nodepool add \
    --resource-group myResourceGroup \
    --cluster-name myAKSCluster \
    --name mynodepool \
    --node-count 3 \
    --vnet-subnet-id <YOUR_SUBNET_RESOURCE_ID>

Maxime.