Orchestrators such as Kubernetes require a service principal to dynamically adjust Azure resources. This guide shows you how to create a service principal.
Here is how to create a service principal for your cluster:
- Install the Microsoft Azure CLI 2.0 for your dev environment.
- open up a command prompt
az loginto login- If you have more than one subscription ID, execute
az account set -n SUBSCRIPTIONIDto select the correct subscription ID az ad sp create-for-rbac --role contributor --scopes /subscriptions/SUBSCRIPTIONIDreplacing SUBSCRIPTIONID with your subscription ID to create your client id and secret. Copy and paste the result in a secure location.client_idmaps directly to servicePrincipalProfile.servicePrincipalClientID, andclient_secretmaps directly to servicePrincipalClientSecret. Note that, you can further scope to resource group if you would like to target a specific resource group, eg scope of/subscriptions/SUBSCRIPTIONID/resourcegroups/mygroup