Skip to content
This repository has been archived by the owner on Aug 13, 2024. It is now read-only.

Support for Use of Managed Ids? #163

Open
lmcdasm opened this issue Nov 11, 2022 · 0 comments
Open

Support for Use of Managed Ids? #163

lmcdasm opened this issue Nov 11, 2022 · 0 comments
Labels
enhancement New feature or request

Comments

@lmcdasm
Copy link

lmcdasm commented Nov 11, 2022

Hello

When we want to run ADO runners on Hosted Agents (thus inside Azure and with Sys/User Managed Identities) and trying out the az capi extension, it seems there is only support for SP (alrways looking for AZURE CLIENT ID and Secret).

However, in the CAPV Crd there is support for ManagedIdentities (MSI) so we know it can be done via CAPV and clusterctl.

Would it be possible to pass the --identity or other flag so that if the az capi command is execute on a machine with a System or User Assigned ID, it can work with just the CLIENT_ID (and thus no SP Key is exposed ? - Service Princpals are getting harder and harder to come by in big orgs.)

Cheers!

@mboersma mboersma added the enhancement New feature or request label Nov 29, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
enhancement New feature or request
Projects
None yet
Development

No branches or pull requests

2 participants