No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

Alright it seems that I was quite off-target. This seems to cover what im trying to achieve: <https://docs.microsoft.com/en-us/azure/aks/azure-ad-rbac>

Now I need a way to do it the pulumi way. Might be a good opportunity for a new sample : D

let me know if I can help here, I have a little experience in this area!

Thanks <@UCWG26BH7> I'll make sure to poke you tomorrow morning (in the middle of the night in your TZ) :smile: ! jk

I started following the same steps I used to set up the AKS service principal which has too much rights (provisioning load balancers and network resources).
I think that this is what I actually need: <https://www.pulumi.com/docs/guides/crosswalk/kubernetes/configure-access-control/>

Just need to adapt it to our env, test it a bit, figure out how to get the kubeconfig and its probably gonna be half past midnight again :man-shrugging: