question

IamCoder-6455 avatar image
0 Votes"
IamCoder-6455 asked srbose-msft answered

AKS cluster is provisioned with zero node whereas I provided node-count 1

Hello Team,

I am trying to create a private cluster where I want to create the cluster with minimum 1 node using Azure CLI. The command keeps running and finally terminal is disconnected. I can see in Azure portal the Provisioning state = Succeeded and Power State = Running, but Node Count = 0.

What could be the possible reason and where I can check some logs? Thanks.

125739-capture.png


azure-kubernetes-service
capture.png (25.8 KiB)
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@IamCoder-6455 , thank you for your question.

Can you please share the command(s) you are running? (For the disconnecting idle Azure CloudShell terminal, I would recommend installing Azure CLI on your client machine)

You can check Activity logs from the menu in the AKS cluster blade on the Azure Portal. However, I doubt you will find any errors in those logs because if Azure Resource Manager would have hit an error it would have failed the operation and Provisioning State of the cluster would have been Failed. Since, that is not the case I believe that the error was on the AKS Resource Provider. Can you try scaling up the AKS cluster from the Azure Portal or from Azure CLI?

1 Vote 1 ·

Thasks @srbose-msft, While I am trying to manually create cluster through portal and choosing VNET/Subnet, I am getting below error,


It's saying I don't have necessary role assignment permission as I have restricted permission on this subscription.

Thanks for help.

125874-capture.png


0 Votes 0 ·
capture.png (8.1 KiB)

1 Answer

srbose-msft avatar image
0 Votes"
srbose-msft answered

@IamCoder-6455 ,

The permission Microsoft.Network/virtualNetworks/subnets/join/action is required by the identity creating and operating the cluster to configure the Network Security Group for the subnet when using a custom VNET and/or to configure application gateways and join the subnet. For more information please check this document.

If you currently do not have Microsoft.Authorization/roleAssignments/write permission the role assignment on the scope of the custom VNET/subnet cannot be made. Please contact your subscription owner.


Hope this helps.

Please "Accept as Answer" if it helped, so that it can help others in the community looking for help on similar topics.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.