Introducing Enhanced Security in Azure Kubernetes Service: Disabling SSH Access on Cluster Nodes

Reading Time: 3 minutes In the ever-evolving landscape of cloud computing and Kubernetes management, Microsoft’s Azure Kubernetes Service (AKS) continuously introduces features to bolster security and ease of management. A significant new feature now in preview is the ability to control SSH access to AKS cluster nodes, providing administrators with enhanced security capabilities. This Read more…

We now have Agentless Discovery for Kubernetes in Defender for Containers

Reading Time: 2 minutes In the ever-evolving world of cloud native technologies, keeping your Kubernetes cluster, including Azure Kubernetes Service (Kubernetes), secure is paramount. On August 31, 2023, Microsoft added Agentless Discovery for Kubernetes to Defender for Containers. This exciting addition allows you to enhance your Kubernetes security without the hassle of installing extra Read more…

Automatic Azure Kubernetes Service (AKS) node Image updates

Reading Time: 3 minutes If you have been following along with my blog, you may have come across some previous posts about updating Azure Kubernetes Service (AKS).  One (https://pixelrobots.co.uk/2019/05/apply-os-updates-to-aks-nodes-without-an-upgrade/) talked about kured (KUbernetes REboot Daemon) by weaveworks  https://github.com/weaveworks/kured. The issue with this method is it only supported Linux Kubernetes nodes. So, your windows Kubernetes Read more…

Disable local user account (–admin) in Azure Kubernetes Service

Reading Time: 4 minutes Did you know that even when you have enabled Azure AD integration with your AKS cluster, a subscription Owner and Contributor can still access you AKS cluster with the -admin switch? In fact, anyone who is a member of the Azure Kubernetes Service Cluster Admin Role (https://docs.microsoft.com/en-us/azure/role-based-access-control/built-in-roles#azure-kubernetes-service-cluster-admin-role) can. You were Read more…

Azure Kubernetes Service (AKS) node Image upgrade – Preview

Reading Time: 4 minutes You may have read my previous blog post on applying OS updates to your Azure Kubernetes Cluster (AKS) without doing a cluster upgrade https://pixelrobots.co.uk/2019/05/apply-os-updates-to-aks-nodes-without-an-upgrade/. This method used kured (KUbernetes REboot Daemon) by weaveworks  https://github.com/weaveworks/kured. This method installed some Kubernetes resources onto your cluster. This new method, which is still in Read more…

Sponsored: ALTARO Software – Webinar Critical Security Features in Office/Microsoft 365 Admins Simply Can’t Ignore

Reading Time: 2 minutes According to reports, since COVID-19 forced millions to work remotely, hackers have been taking this opportunity to exploit new vulnerabilities that have arisen. If your business uses Microsoft 365 or Office 365 to support remote workers, you need to be sure your security is as strong as it can be Read more…