How to use Azure service principal in cloud agent to connect AKS cluster

tfbubu111 · April 5, 2024, 4:42am

Hi team,

I have deployed Jekins controller in AKS cluster: Kubernetes. Now need to configure cloud agent with k8s plugin.

here are steps we have done:

enable AAD for AKS at first.
az aks update -g myResourceGroup -n myManagedCluster --enable-aad
Create SP and assign the “Azure Kubernetes Service Cluster User Role" to make sure it is able to get AKS credentials.
az role assignment create --assignee $objectID --role “Azure Kubernetes Service Cluster User Role” --scope $AKS_ID
Create role and rolebinding for SP.
Run command “az aks get-credentials -g RGname -n AKSname”, not it won’t return any cert yet.
Configure kubelogin with SP, now you can check kubeconfig file, the client is changed to SP.
kubelogin convert-kubeconfig -l spn --client-id $AAD_SERVICE_PRINCIPAL_CLIENT_ID --client-secret $AAD_SERVICE_PRINCIPAL_CLIENT_SECRET
Use the new kubeconfig file in Jekin credential.

But when test connection, it reports kubelogin command not found. I am wondering how can we install kubelogin in cloudagent.

Thanks for your help!

Topic		Replies	Views
Jenkins agents not coming up on openshift kubernetes cluster Ask a question kubernetes	0	405	September 30, 2022
Request for help with constraining jobs to specific nodepool in kubernetes AKS cluster Ask a question	0	250	June 20, 2022
Using multiple k8s cloud Using Jenkins question , kubernetes	1	347	September 27, 2023
Az cli not found Using Jenkins	5	1012	October 4, 2022
Remote Agent Can't Connect to Jenkins Controller (HELM) Using Jenkins	2	2820	December 28, 2023