wooden-branch-26004
07/20/2020, 12:15 PMcli
using --attach-acr <acr_name>
(ex. az aks ... create --attach-acr <acr_name>
) . How can I do the same via Pulumi? I haven't found anything related to it in KubernetesCluster
or KubernetesClusterArgs
.
Thanks!better-rainbow-14549
07/20/2020, 12:49 PMconst acrRole = new azure.authorization.Assignment(`Cluster-${args.Name}-ACR-Role`, {
principalId: ClusterServicePrincipal.id,
scope: ContainerRegistry.id,
roleDefinitionName: "AcrPull"
});
i believe all it does is this -- grants AcrPull against the cluster's Service Principalwooden-branch-26004
07/20/2020, 5:09 PMService Principal
assigned. I'm using system-assigned managed identity
.better-rainbow-14549
07/21/2020, 10:45 AMwooden-branch-26004
07/21/2020, 1:59 PMacr
when you create a cluster. I need to check. Thanks!better-rainbow-14549
07/21/2020, 2:07 PMwooden-branch-26004
07/21/2020, 2:42 PM