Azure Portal Azure Kubernetes Resource Viewer vs Kubernetes Dashboard

On By Roy Kim (MVP)In Azure, KubernetesLeave a comment

As announced, in this article Kubernetes resource view is in public preview, I will review and give my thoughts on this new feature Kubernetes Resource View in the Azure Portal compared to the OSS Kubernetes Dashboard (Web UI). A prerequisite is that the AKS Cluster needs to be enable Azure AD integration. The biggest convenience …

Continue reading Azure Portal Azure Kubernetes Resource Viewer vs Kubernetes Dashboard

Kubernetes Error & Fix: clusterroles.rbac.authorization.k8s.io is forbidden: User clusterUser cannot list resource clusterroles

On By Roy Kim (MVP)In Azure, KubernetesLeave a comment

Issue Background: With an Azure Kubernetes Service deployment (version 1.17.9) in my dev environment, I launch the Kubernetes Dashboard application and I can’t see any Kubernetes resources and I get the following error notification clusterroles.rbac.authorization.k8s.io is forbidden: User "clusterUser" cannot list resource "clusterroles" in API group "rbac.authorization.k8s.io" at the cluster scope I am attempting to …

Continue reading Kubernetes Error & Fix: clusterroles.rbac.authorization.k8s.io is forbidden: User clusterUser cannot list resource clusterroles

Error & Fix: Azure Kubernetes ‘Failed to pull image’

On By Roy Kim (MVP)In Azure, Deployment, KubernetesLeave a comment

Error Message: Failed to pull image "rkaks/dotnetcoresqldb:dev": rpc error: code = Unknown desc = Error response from daemon: pull access denied for rkaks/dotnetcoresqldb, repository does not exist or may require 'docker login': denied: requested access to the resource is denied Shown from the Kubernetes Dashboard application Context I have my application's docker image pushed into …

Continue reading Error & Fix: Azure Kubernetes ‘Failed to pull image’

Database Patterns with Azure Kubernetes Service Part 2: Azure SQL DB and Managed Identity

On By Roy Kim (MVP)In Architecture & Design, Azure, Kubernetes, Security, Web AppsLeave a comment

My Blog Post: An ASP .NET Core app hosted in Azure Kubernetes Service (AKS) that is accessing an Azure SQL Database using Azure AD Managed Identity. The benefit is the ability for the application code not to use conventional SQL credentials of username and password stored in configuration files. Also, not use Azure Key vault to retrieve any user name and password credentials. There is nothing wrong with these techniques, but using Managed Identity is more streamlined and is a security best practice. #AKS #Kubernetes #Security #managedidentity #azureAD #AzureSQL

Database Patterns with Azure Kubernetes Service Part 1: MySQL + Azure Managed Disk

On By Roy Kim (MVP)In Azure, Azure PaaS, KubernetesLeave a comment

One of the non-straight forward aspects of implementing for applications in Kubernetes is the stateful data store. I will be showing 2 relational database patterns in Azure Kubernetes Service. Since containers are the fundamental building blocks, these are stateless by default. That is the containers can lose its data when it is terminated or fail. …

Continue reading Database Patterns with Azure Kubernetes Service Part 1: MySQL + Azure Managed Disk

Walk-through of Data Migration Assistant with Azure SQL DB

On By Roy Kim (MVP)In Azure, Azure Data PlatformLeave a comment

Objectives: To migrate data from an On-premises SQL Sever to Azure SQL Database. To show a quick and summarized walk through and practical insights of this specific process. Background: I have a .NET Web app using the sample Adventure Works database all running in an on-premises dev server. Steps: Install the Data Migration Assistant Tool …

Continue reading Walk-through of Data Migration Assistant with Azure SQL DB

Managing Azure Kubernetes with Windows Subsystem for Linux

On By Roy Kim (MVP)In Azure, Kubernetes, Linux1 Comment

Scenario:Building upon my previous blog post Managing Azure with Az CLI and Windows Subsystem for Linux, I want to demonstrate examples and techniques in managing a Kubernetes cluster on Azure Kubernetes Service (AKS) in a bash shell using Windows Subsystem for Linux. As a mainstream Microsoft platform developer and engineer for most of my career, …

Continue reading Managing Azure Kubernetes with Windows Subsystem for Linux

Understanding Ingress Controllers and Azure App Gateway for Azure Kubernetes Part 2: AGIC

On By Roy Kim (MVP)In Azure, Azure PaaS, Kubernetes, Networking2 Comments

The previous part 1 blog post went over fundamental concepts of ingress and ingress controller. This part 2 post will build on this concept and give a review of the App Gateway Ingress Controller (AGIC) First of all, what happens when you deploy AKS with its default settings? The default AKS deployment when going through …

Continue reading Understanding Ingress Controllers and Azure App Gateway for Azure Kubernetes Part 2: AGIC

Understanding Ingress Controllers and Azure App Gateway for Azure Kubernetes Part 1: Intro

On By Roy Kim (MVP)In Architecture & Design, Azure, Azure PaaS, Kubernetes, Networking4 Comments

I will share my experiences with a design and implementation of Azure Application Gateway for an Azure Kubernetes Service (AKS) cluster. This is so that you may get some practical insight as you plan and design for using the Azure App Gateway. In this blog series, I will go over Fundamental Ingress conceptsArchitecture and deployment …

Continue reading Understanding Ingress Controllers and Azure App Gateway for Azure Kubernetes Part 1: Intro