Lightrun
question-mark
Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

az aks get-credentials should not point to privatelink dns zone

See original GitHub issue

Describe the bug

az aks get-credentials generate an entry on ~/.kube/config pointing to privatelink via private zone. Example:

https://my-aks-cluster-my-aks-cluster-a12345-a1234567.privatelink.<region>.azmk8s.io:443
name: my-aks-cluster

The correct address should be:

https://my-aks-cluster-my-aks-cluster-a12345-a1234567.hcp.<region>azmk8s.io

If I’m understanding this wrongly, maybe the documentation on https://docs.microsoft.com/en-us/azure/private-link/private-endpoint-dns#on-premises-workloads-using-a-dns-forwarder should be updated.

Environment Summary

macOS-11.6.3-x86_64-i386-64bit, Darwin 20.6.0
Python 3.10.2
Installer: HOMEBREW

azure-cli 2.32.0 *

Extensions:
azure-devops 0.23.0
ssh 1.0.0

Dependencies:
msal 1.16.0
azure-mgmt-resource 20.0.0

Additional Context

Issue Analytics

  • State:closed
  • Created 2 years ago
  • Comments:7 (4 by maintainers)

github_iconTop GitHub Comments

1reaction
weltonrodrigocommented, Mar 23, 2022

—public-fqdn gives me the public zone. Thank you.

Em 22 de mar. de 2022, à(s) 21:59, SaurabhSharma-MSFT @.***> escreveu:

@weltonrodrigo https://github.com/weltonrodrigo Can you please try using az aks get-credentials -n <cluster> -g <rg> --public-fqdn ?

— Reply to this email directly, view it on GitHub https://github.com/Azure/azure-cli/issues/21584#issuecomment-1075799164, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAMRQZE7BCR753LHRFK3NU3VBJUH3ANCNFSM5QNDTBHQ. You are receiving this because you were mentioned.

0reactions
SaurabhSharma-MSFTcommented, Mar 23, 2022

@weltonrodrigo No problem. Thanks. We will now proceed to close this thread. If there are further questions regarding this matter, please reopen it and we will gladly continue the discussion.

Read more comments on GitHub >

github_iconTop Results From Across the Web

Not resolving private dns zone over point to site VPN ...
az aks get-credentials creates the required credentials on my local laptop BUT it refernces the DNS Name of the Api Server, not the...
Read more >
Accessing a Private AKS Cluster with Additional Private ...
When creating an AKS cluster, you have the option to make it a private cluster. When you do this, it means the managed...
Read more >
Private Azure Kubernetes Service DNS Options - YouTube
In this video, we look at DNS options for private AKS clusters. There are several options available. In this video, we look at...
Read more >
Securing AKS & ACR with Private Endpoint [1/2] - YouTube
Video part 2/2: https://www.youtube.com/watch?v=0OzMJyyvgWs&list=PLpbcUe4chE79sB7Jg7B4z3HytqUUEwcNE&index=51Article part 1/2: ...
Read more >
Azure Hybrid DNS Architecture - IT Insights Blog
Azure Private DNS zones can be used to resolve names to a specific ... for the zone that points to CoreDNS running on...
Read more >

github_iconTop Related Medium Post

No results found

github_iconTop Related StackOverflow Question

No results found

github_iconTroubleshoot Live Code

Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free

github_iconTop Related Reddit Thread

No results found

github_iconTop Related Hackernoon Post

No results found

github_iconTop Related Tweet

No results found

github_iconTop Related Dev.to Post

No results found

github_iconTop Related Hashnode Post

No results found
Previous page

az webapp up - with F0 - when F0 is already taken - improve error text

Next page

az resource show fails for Azure Compute Gallery image versions with API 2022-01-03