Azure Kubernetes Service (AKS): How to change Windows node pool password

Published by Pixel Robots. on

Reading Time: 2 minutes
Share:
Twitter
LinkedIn
Facebook
Reddit
Whatsapp
Follow by Email

With release 2021-04-22 of AKS you can now Update your Windows node passwords via the CLI. Before this update you were unable to. This can be super annoying as you can set the node pools up without specifying passwords.

So, if you needed to login to the node for any reason you were unable to. One reason might have been to set the time on the Windows nodes. By default, Windows containers use the node’s time zone which is always UTC. Some applications might need the time zone set to a local one. With Windows 2022 containers you can use virtual time zones within the containers, but that’s another story all together.

Below I will walk you through the steps to change your Windows node pool password.

Warning

Warning: Currently in preview

So, for this you will need the AKS-Preview extension of AZ CLI. If you do not already have this installed, you can add it using.

Shell

Or to update your existing use.

Shell

Now that you have this you can use the az aks update command below. Just change the resource group and cluster name to yours.

Shell

It will take some time as it seems to do some nodes updates. So, a new node will be created in the background so it can update your existing. In the portal you will see something like this.

In a different terminal tab you can run kubectl get nodes and you will see a new one spinning up.

Once the password update has happened you will notice that the original node is back. So, when doing a password update it does the same thing a Kubernetes version update would do.

Some things to note on the password. You have some rules to follow.

  •                 – Minimum-length: 14 characters
  •                 – Max-length: 123 characters
  •                 – Complexity requirements: 3 out of 4 conditions below need to be fulfilled
  •                   * Has lower characters
  •                   * Has upper characters
  •                   * Has a digit
  •                   * Has a special character (Regex match [\\W_])
  •                 – Disallowed values:  “[email protected]”, “[email protected]$$w0rd”, “[email protected]”, “[email protected]”, “Pa$$word”, “[email protected]”, “Password!”, “Password1”, “Password22”, “iloveyou!”

Reference: https://docs.microsoft.com/en-us/dotnet/api/microsoft.azure.management.compute.models.virtualmachinescalesetosprofile.adminpassword?view=azure-dotnet

I hope you found this post helpful. Any comments or questions feel free to reach out.

Share:
Twitter
LinkedIn
Facebook
Reddit
Whatsapp
Follow by Email
Categories: AKSAzureKubernetes
Tags:

Pixel Robots.

I’m Richard Hooper aka Pixel Robots. I started this blog in 2016 for a couple reasons. The first reason was basically just a place for me to store my step by step guides, troubleshooting guides and just plain ideas about being a sysadmin. The second reason was to share what I have learned and found out with other people like me. Hopefully, you can find something useful on the site.

0 Comments

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Posts

AKS

The hands-on Kubernetes on Azure book has been updated for 2021!

Reading Time: < 1 minute Share: Over the last few months or so I have had the pleasure of tech reviewing the “Hands-on Kubernetes on Azure” third edition book by Packt Publishing. This edition has so much more than the Read more…

AKS

Azure Key vault access on Azure Kubernetes Service using the new AKS add-on

Reading Time: 3 minutes Share: When working with Kubernetes and secrets in particular you will know that they are not secure by default. In fact, they are just base64 encoded strings which can be easily decoded. You can use Read more…

AKS

Azure Kubernetes Service (AKS): How to over-provision node pools

Reading Time: 3 minutes Share: Sometimes you have an application that needs to scale super-fast, so fast that you can’t wait for a new Kubernetes node to spin up before your pods can be scheduled. Azure Kubernetes Service has a Read more…