Skip to content

Commit

Permalink
Add key management service profile of a managed cluster for version 2…
Browse files Browse the repository at this point in the history 
…022-02-02-preview (#17955)

* Add key management service profile of a managed cluster for version 2022-02-02-preview

* add kmsProfile

* update after api review

* add more details in description

* update for comments
  • Loading branch information
@bingosummer
bingosummer committed Feb 24, 2022
1 parent e115922 commit d0459cf
Showing 1 changed file with 18 additions and 0 deletions.
18 changes: 18 additions & 0 deletions ...source-manager/Microsoft.ContainerService/preview/2022-02-02-preview/managedClusters.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5510,6 +5510,10 @@
"azureDefender": {
"$ref": "#/definitions/ManagedClusterSecurityProfileAzureDefender",
"description": "Azure Defender settings for the security profile."
},
"azureKeyVaultKms": {
"$ref": "#/definitions/AzureKeyVaultKms",
"description": "Azure Key Vault [key management service](https://kubernetes.io/docs/tasks/administer-cluster/kms-provider/) settings for the security profile."
}
},
"description": "Security profile for the container service cluster."
Expand All @@ -5528,6 +5532,20 @@
},
"description": "Azure Defender settings for the security profile."
},
"AzureKeyVaultKms": {
"type": "object",
"properties": {
"enabled": {
"type": "boolean",
"description": "Whether to enable Azure Key Vault key management service. The default is false."
},
"keyId": {
"type": "string",
"description": "Identifier of Azure Key Vault key. See [key identifier format](https://docs.microsoft.com/en-us/azure/key-vault/general/about-keys-secrets-certificates#vault-name-and-object-name) for more details. When Azure Key Vault key management service is enabled, this field is required and must be a valid key identifier. When Azure Key Vault key management service is disabled, leave the field empty."
}
},
"description": "Azure Key Vault key management service settings for the security profile."
},
"CreationData": {
"description": "Data used when creating a target resource from a source resource.",
"type": "object",
Expand Down

0 comments on commit d0459cf

Please sign in to comment.