How to enable the Azure Key Vault Provider for Secrets Store CSI Driver in an Azure Kubernetes Cluster (AKS) cluster using Bicep

October 28, 2022February 7, 2023 Jordan

The Azure Key Vault Provider for Secrets Store CSI Driver allows code running on pods in AKS to pull secrets from an Azure Key Vault. The existing documentation shows you how to do this using the Azure CLI. Here is how to do the same using a Bicep template.

YAML

resource aks 'Microsoft.ContainerService/managedClusters@2021-03-01' = {
  name: aksName
  location: location  
  properties: {
    kubernetesVersion: '1.24.6'
    ...
    addonProfiles: {     
      azureKeyVaultSecretsProvider: {
        enabled: true
        config: {
          enableSecretRotation: 'true'
          rotationPollInterval: '120s'
        }
      }
    }
  }
  identity: {
    type: 'SystemAssigned'
  }
}

Leave a Reply Cancel reply

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

How to enable the Azure Key Vault Provider for Secrets Store CSI Driver in an Azure Kubernetes Cluster (AKS) cluster using Bicep

Related Posts

How to deploy Logic Apps (Standard) with Bicep & Azure DevOps

How to query Azure Monitor for logs based upon Kubernetes Pod labels

Leave a Reply Cancel reply