Satyam Pandey
Reputation: 743
Enable rbac and aad on existing aks
I have created Azure Kubernetes Cluster, However RBAC and AKS-managed Azure Active Directory are disabled, i want to enable both, but unable to do so
Environment : Azure AKS Cluster v1.19.11
I have tried command to enable rbac & aad
$ az aks update -g k8s-azwe-rg-01 -n k8s-azwe-aks-01 --enable-azure-rbac
Cannot specify "--enable-azure-rbac" if managed AAD is not enabled
$ az aks update -g k8s-azwe-rg-01 -n k8s-azwe-aks-01 --enable-aad --aad-admin-group-object-ids 4b-58-0c-7a --aad-tenant-id e-ece23-19d66-9d4
(RBACNotEnabledForAAD) RBAC must be enabled for AAD to be enabled.
$ az aks update -g k8s-azwe-rg-01 -n k8s-azwe-aks-01 --enable-aad --enable-azure-rbac
(RBACNotEnabledForAAD) RBAC must be enabled for AAD to be enabled.
Code: RBACNotEnabledForAAD
Message: RBAC must be enabled for AAD to be enabled.
Upvotes: 4
Views: 2751
Answers (2)
Ricky Gummadi
Reputation: 5222
In case anyone is still looking, it is now possible to enable RBAC to an existing cluster.
Upvotes: -1
zposloncec
Reputation: 426
RBAC can only be enabled during cluster creation, you cannot enable it after the aks cluster is formed.
Upvotes: 3
Related Questions
- AKS RBAC - Rolebinding has no effect
- How can I add an existing AKS to AAD?
- Azure RBAC and AKS not working as expected
- Azure DevOp Pipelines authentication to AKS with Azure AD RBAC configured?
- Azure AKS User Credentials Login to K8 Dashboard and RBAC Built-in Roles
- connect AAD to existing AKS that has
- How to achieve the RBAC functionality in Azure kubernetes service?
- Disabling Azure Active Directory RBAC in Azure Kubernetes Service
- Azure Active Directory Integration with Custom RBAC
- Bypassing role based AAD access in Azure?