Gardener

Appearance

Using WorkloadIdentity for Azure DNS or Azure Private DNS ​

To use WorkloadIdentity for Azure DNS or Azure Private DNS, you can create a WorkloadIdentity resource in the project namespace in the Garden cluster with the necessary configuration for Azure authentication.

Note that the spec.targetSystem.type has to be set to azure although the type of the DNS provider is azure-dns or azure-privatedns. This allows to use the same WorkloadIdentity for different types of Azure resources, e.g., for infrastructure purposes and for DNSProvider purposes.

To create a WorkloadIdentity, follow the instructions in the Azure Workload Identity Federation documentation of the Azure Provider extension.

For the required permissions, please refer to the Azure DNS Provider and the Azure Private DNS Provider.

EU and German government funding logos

Funded by the European Union – NextGenerationEU.

The views and opinions expressed are solely those of the author(s) and do not necessarily reflect the views of the European Union or the European Commission. Neither the European Union nor the European Commission can be held responsible for them.

Copyright © Linux Foundation Europe.

Azure | Gardener is a project of the Open Component Model Community. For applicable policies including privacy policy, terms of use and trademark usage guidelines, please see https://linuxfoundation.eu. Linux is a registered trademark of Linus Torvalds.

Building this site is powered by
Terms of Use|Privacy Statement|Legal Disclosure