AKS initial setup

Cluster Name

Enter a unique name for the AKS cluster.

Pricing Tier

Select the pricing tier for your cluster.

AKS Version

Select the desired Kubernetes version.

Cluster Type

Choose between: • Public: Exposes the API server via public IP • Private: Restricts access to the cluster within the virtual network

Node Count

Specify the number of nodes to deploy in the system node pool.

Max Pods per NodePool

Set the maximum number of pods that can run on each node. Increasing this allows more pods per node but can affect node performance. Defaults depend on VM size.

Node VM Size

Select the Azure VM size for the Kubernetes worker nodes (e.g., Standard_DS2_v2).

System NodePool Autoscaling

Optionally, enable autoscaling for the system node pool and specify the minimum and maximum number of nodes. DuploCloud will automatically scale the node count within this range based on workload demand.

Workload Identity

Enable this if you want Kubernetes workloads to use Workload Identity for accessing cloud resources. Select it only if your environment requires identity-based access.

Image Cleaner

Enable this to automatically remove unused container images from nodes. If enabled, specify how often unused images should be cleaned up in the Image Cleaner Interval (Days) field.

System Node Pool AutoScaling

Enable this to allow the system node pool to scale automatically based on workload demand. If enabled, specify:

• Min Count: Enter the minimum number of system nodes you want available at all times.

• Max Count: Enter the maximum number of system nodes the node pool is allowed to scale up to.

AAD Managed

Enable this to use Azure Active Directory–managed authentication for the cluster. If enabled, provide the following:

• Azure RBAC: Select this to enable Azure role-based access control for Kubernetes authorization.

• Tenant Id: Enter the Azure AD tenant ID for the directory that will manage access.

• Admin Group Object Ids: Enter the object IDs of the Azure AD groups whose members should have administrative access to the cluster.

Network Plugin

Select the network plugin to use for your cluster.

• Azure: Integrates AKS networking with Azure VNETs (recommended).

• Kubenet: Basic plugin with limited Azure network integration.

K8s Resource Group

Enter the Azure resource group that will contain your Kubernetes cluster.

Outbound Connectivity

Select how outbound internet traffic from the AKS cluster is routed:

• Load Balancer: Outbound traffic goes through a standard Azure public load balancer.

• User Defined Routing: Outbound traffic is routed via custom Azure route tables you configure.

Blob CSI Driver

Enable this to allow Kubernetes to mount Azure Blob storage via the CSI driver.

Disable Run Command

Enable this to prevent running remote commands on cluster nodes.

Linux Admin Username

Enter the username for the Linux administrator account.

Linux SSH Public Key

Enter the public SSH key for accessing Linux nodes via SSH.

System Agent Pool Critical Taint

Select this option to specify any System Agent Pool Taints to apply to system agent nodes to control pod scheduling.

UI Field

Terraform Parameter

Workload Identity

workload_identity = true

Image Cleaner

image_cleaner { interval_days = X }

System NodePool AutoScaling

system_nodepool_autoscaling { min_count = X, max_count = Y }

AAD Managed

aad_managed { azure_rbac = true, tenant_id = "...", admin_group_object_ids = [...] }