Deploy and manage cluster extensions for Azure Kubernetes Service (AKS)
Cluster extensions provide an Azure Resource Manager driven experience for installation and lifecycle management of services like Azure Machine Learning or Kubernetes applications on an AKS cluster. This feature enables:
- Azure Resource Manager-based deployment of extensions, including at-scale deployments across AKS clusters.
- Lifecycle management of the extension (Update, Delete) from Azure Resource Manager
Cluster extension requirements
Cluster extensions can be used on AKS clusters in the regions listed in Azure Arc enabled Kubernetes region support.
For supported Kubernetes versions, refer to the corresponding documentation for each extension.
Important
Ensure that your AKS cluster is created with a managed identity, as cluster extensions won't work with service principal-based clusters.
For new clusters created with az aks create, managed identity is configured by default. For existing service principal-based clusters that need to be switched over to managed identity, it can be enabled by running az aks update with the --enable-managed-identity flag. For more information, see Use managed identity.
Note
If you have enabled Microsoft Entra pod-managed identity on your AKS cluster or are considering implementing it, we recommend you first review Workload identity overview to understand our recommendations and options to set up your cluster to use a Microsoft Entra Workload ID (preview). This authentication method replaces pod-managed identity (preview), which integrates with the Kubernetes native capabilities to federate with any external identity providers.
The open source Microsoft Entra pod-managed identity (preview) in Azure Kubernetes Service has been deprecated as of 10/24/2022.
Currently available extensions
| Extension | Description |
|---|---|
| Dapr | Dapr is a portable, event-driven runtime that makes it easy for any developer to build resilient, stateless and stateful applications that run on cloud and edge. |
| Azure Machine Learning | Use Azure Kubernetes Service clusters to train, inference, and manage machine learning models in Azure Machine Learning. |
| Flux (GitOps) | Use GitOps with Flux to manage cluster configuration and application deployment. See also supported versions of Flux (GitOps) and Tutorial: Deploy applications using GitOps with Flux v2. |
| Azure Container Storage | Use Azure Container Storage to manage block storage on AKS clusters to store data in persistent volumes. |
| Azure Backup for AKS | Use Azure Backup for AKS to protect your containerized applications and data stored in Persistent Volumes deployed in the AKS clusters. |
You can also select and deploy Kubernetes applications available through Marketplace.
Note
Cluster extensions provides a platform for different extensions to be installed and managed on an AKS cluster. If you are facing issues while using any of these extensions, please open a support ticket with the respective service.
Next steps
- Learn how to deploy cluster extensions by using Azure CLI.
- Read about cluster extensions for Azure Arc-enabled Kubernetes clusters.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for