Home > Net >  How to obtain Azure credentials using kubectl?
How to obtain Azure credentials using kubectl?

Time:09-25

I have following kubectl command to obtain the credentials for my Azure cluster:

kubectl config set-credentials token --token="$(cat /var/run/secrets/kubernetes.io/serviceaccount/token)" --auth-provider=azure

However, this throws following error:

creating a new azure token source for device code authentication: client-id is empty

After doing some investigation, I found out that we need to supply additional information for client id, tenant id, and apiserver id:

kubectl config \
  set-credentials "<username>" \
  --auth-provider=azure \
  --auth-provider-arg=environment=AzurePublicCloud \
  --auth-provider-arg=client-id=<kubectl-app-id> \
  --auth-provider-arg=tenant-id=<tenant-id> \
  --auth-provider-arg=apiserver-id=<apiserver-app-id>

How should we obtain the client id, tenant id, and apiserver id details?

CodePudding user response:

Command kubectl config set-credentials is used to set credentials as the name implies. If you want to get some information from your cluster you have several ways to do. For example you can use Azure Portal. Everything is described in this article. For example to get Tenant ID you need to:

  1. Login into your azure account.
  2. Select azure active directory in the left sidebar.
  3. Click properties.
  4. Copy the directory ID.

To get Client ID:

  1. Login into your azure account.
  2. Select azure active directory in the left sidebar.
  3. Click Enterprise applications.
  4. Click All applications.
  5. Select the application which you have created.
  6. Click Properties.
  7. Copy the Application ID .

To get Client Secret:

  1. Login into your azure account.
  2. Select azure active directory in the left sidebar.
  3. Click App registrations.
  4. Select the application which you have created.
  5. Click on All settings.
  6. Click on Keys.
  7. Type Key description and select the Duration.
  8. Click save.
  9. Copy and store the key value. You won't be able to retrieve it after you leave this page.

You can also find these informations using cli based on oficial documentation.

You can also find additional example for Tenant ID (example with Azure portal and cli options):

az login
az account list
az account tenant list

Page link:https//www.codepudding.com/net/126530.html

Prev:GCP Kuberentes Cloud Deploy vs Cloud build
Next:selenium python load more button not working
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding