Package com.azure.resourcemanager.containerservice.models

Class ManagedClusterPodIdentityProfile

java.lang.Object
com.azure.resourcemanager.containerservice.models.ManagedClusterPodIdentityProfile
public final class ManagedClusterPodIdentityProfile extends Object
The pod identity profile of the Managed Cluster.

See [use AAD pod identity](https://docs.microsoft.com/azure/aks/use-azure-ad-pod-identity) for more details on pod identity integration.

  • Constructor Details

    • ManagedClusterPodIdentityProfile

      public ManagedClusterPodIdentityProfile()

  • Method Details

    • enabled

      public Boolean enabled()
      Get the enabled property: Whether the pod identity addon is enabled.
      Returns:
      the enabled value.

    • withEnabled

      public ManagedClusterPodIdentityProfile withEnabled(Boolean enabled)
      Set the enabled property: Whether the pod identity addon is enabled.
      Parameters:
      enabled - the enabled value to set.
      Returns:
      the ManagedClusterPodIdentityProfile object itself.

    • allowNetworkPluginKubenet

      public Boolean allowNetworkPluginKubenet()
      Get the allowNetworkPluginKubenet property: Whether pod identity is allowed to run on clusters with Kubenet networking.

      Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See [using Kubenet network plugin with AAD Pod Identity](https://docs.microsoft.com/azure/aks/use-azure-ad-pod-identity#using-kubenet-network-plugin-with-azure-active-directory-pod-managed-identities) for more information.

      Returns:
      the allowNetworkPluginKubenet value.

    • withAllowNetworkPluginKubenet

      public ManagedClusterPodIdentityProfile withAllowNetworkPluginKubenet(Boolean allowNetworkPluginKubenet)
      Set the allowNetworkPluginKubenet property: Whether pod identity is allowed to run on clusters with Kubenet networking.

      Running in Kubenet is disabled by default due to the security related nature of AAD Pod Identity and the risks of IP spoofing. See [using Kubenet network plugin with AAD Pod Identity](https://docs.microsoft.com/azure/aks/use-azure-ad-pod-identity#using-kubenet-network-plugin-with-azure-active-directory-pod-managed-identities) for more information.

      Parameters:
      allowNetworkPluginKubenet - the allowNetworkPluginKubenet value to set.
      Returns:
      the ManagedClusterPodIdentityProfile object itself.

    • userAssignedIdentities

      public List<ManagedClusterPodIdentity> userAssignedIdentities()
      Get the userAssignedIdentities property: The pod identities to use in the cluster.
      Returns:
      the userAssignedIdentities value.

    • withUserAssignedIdentities

      public ManagedClusterPodIdentityProfile withUserAssignedIdentities(List<ManagedClusterPodIdentity> userAssignedIdentities)
      Set the userAssignedIdentities property: The pod identities to use in the cluster.
      Parameters:
      userAssignedIdentities - the userAssignedIdentities value to set.
      Returns:
      the ManagedClusterPodIdentityProfile object itself.

    • userAssignedIdentityExceptions

      public List<ManagedClusterPodIdentityException> userAssignedIdentityExceptions()
      Get the userAssignedIdentityExceptions property: The pod identity exceptions to allow.
      Returns:
      the userAssignedIdentityExceptions value.

    • withUserAssignedIdentityExceptions

      public ManagedClusterPodIdentityProfile withUserAssignedIdentityExceptions(List<ManagedClusterPodIdentityException> userAssignedIdentityExceptions)
      Set the userAssignedIdentityExceptions property: The pod identity exceptions to allow.
      Parameters:
      userAssignedIdentityExceptions - the userAssignedIdentityExceptions value to set.
      Returns:
      the ManagedClusterPodIdentityProfile object itself.

    • validate

      public void validate()
      Validates the instance.
      Throws:
      IllegalArgumentException - thrown if the instance is not valid.