You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/storage/container-storage/use-container-storage-with-managed-disks.md
+3-3Lines changed: 3 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -125,7 +125,7 @@ $ az aks show --resource-group <resourceGroup> --name <clusterName> --query "ide
125
125
a972fa43-1234-5678-1234-c040eb546ec5
126
126
```
127
127
128
-
1. Grant **Contributor** role of the disk to the cluster managed identity. Go to: Portal > Your disk > Access control (IAM) > Add role assignment, and select **Contributor** role and assign to the identity. It’s not required when your disk is created under AKS managed resource group (Example: MC_myResourceGroup_myAKSCluster_eastus).
128
+
1. Grant **Contributor** role of the disk to the cluster managed identity. Go to: Portal > Your disk > Access control (IAM) > Add role assignment, and select **Contributor** role and assign to the identity. When your disk is created under AKS managed resource group (Example: MC_myResourceGroup_myAKSCluster_eastus), you can skip this step.
129
129
130
130
1. Find identity of the system node pool
131
131
@@ -195,7 +195,7 @@ When creating your storage pool, you must define the CMK parameters. The require
195
195
- **keyVaultUri** is the uniform resource identifier of the Azure Key Vault, for example `https://user.vault.azure.net`
196
196
- **Identity** specifies a managed identity with access to the vault, for example `/subscriptions/XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX/resourcegroups/MC_user-acstor-westus2-rg_user-acstor-westus2_westus2/providers/Microsoft.ManagedIdentity/userAssignedIdentities/user-acstor-westus2-agentpool`
197
197
198
-
Follow these steps to create a storage pool using your own encryption key. All persistent volumes created from this storage pool will be encrypted using the same key.
198
+
Follow these steps to create a storage pool using your own encryption key. All persistent volumes created from this storage pool are encrypted using the same key.
199
199
200
200
1. Use your favorite text editor to create a YAML manifest file such as `code acstor-storagepool-cmk.yaml`.
201
201
@@ -249,7 +249,7 @@ When the storage pool is ready to use, you must select a storage class to define
249
249
Run `kubectl get sc` to display the available storage classes. You should see a storage class called `acstor-<storage-pool-name>`.
250
250
251
251
> [!IMPORTANT]
252
-
> Don't use the storage class that's marked **internal**. It's an internal storage class that's needed for Azure Container Storage to work.
252
+
> Make sure NOT to use the storage class marked as **internal**. It's an internal storage class that's needed for Azure Container Storage to work.
0 commit comments