|
| 1 | +--- |
| 2 | +title: What is Azure Kubernetes Service (AKS)? |
| 3 | +description: Learn about the features of Azure Kubernetes Service (AKS) and how to get started. |
| 4 | +ms.topic: overview |
| 5 | +ms.author: schaffererin |
| 6 | +author: schaffererin |
| 7 | +ms.date: 01/19/2024 |
| 8 | +--- |
| 9 | + |
| 10 | +# What is Azure Kubernetes Service? |
| 11 | + |
| 12 | +Azure Kubernetes Service (AKS) is a managed Kubernetes service that you can use to deploy and manage containerized applications without container orchestration expertise. Azure handles critical operational tasks such as health monitoring and maintenance. When you create an AKS cluster, Azure automatically creates and configures a control plane for you at no cost. The control plane manages the Kubernetes objects and worker nodes that you deploy to run your applications. You only pay for the worker nodes within your clusters, not for the Kubernetes cluster itself. |
| 13 | + |
| 14 | +> [!NOTE] |
| 15 | +> AKS is [CNCF-certified](https://www.cncf.io/training/certification/software-conformance/) and is compliant with SOC, ISO, PCI DSS, and HIPAA. For more information, see the [Microsoft Azure compliance overview](/explore/trusted-cloud/compliance/). |
| 16 | +
|
| 17 | +## When to use AKS |
| 18 | + |
| 19 | +Azure offers a range of container hosting services, including Azure Container Apps, Azure Kubernetes Service (AKS), and Web App for Containers, designed to accommodate various workloads, architectures, and business needs. AKS is an ideal platform for deploying and managing containerized applications that require high availability, scalability, and portability, and for deploying applications to multiple regions, using open-source tools, and integrating with existing DevOps tools. To help you better understand which Azure container service is right for your needs, see the following resources: |
| 20 | + |
| 21 | +* [Comparing the service models of Azure container solutions](/architecture/guide/choose-azure-container-service) |
| 22 | +* [Comparing Azure compute service options](/architecture/guide/technology-choices/compute-decision-tree) |
| 23 | + |
| 24 | +### Common AKS use cases |
| 25 | + |
| 26 | +The following list describes some of the common use cases for AKS, but by no means is an exhaustive list: |
| 27 | + |
| 28 | +* **[Lift and shift to containers with AKS](/cloud-adoption-framework/migrate/)**: Migrate existing applications to containers and run them in a fully-managed Kubernetes environment. |
| 29 | +* **[Microservices with AKS](/architecture/guide/aks/aks-cicd-azure-pipelines)**: Simplify the deployment and management of microservices-based applications with streamlined horizontal scaling, self-healing, load balancing, and secret management. |
| 30 | +* **[Secure DevOps for AKS](/architecture/reference-architectures/containers/aks-start-here)**: Efficiently balance speed and security by implementing secure DevOps with Kubernetes. |
| 31 | +* **[Bursting from AKS with ACI](/architecture/reference-architectures/containers/aks-start-here)**: Use virtual nodes to provision pods inside ACI that start in seconds and scale to meet demand. |
| 32 | +* **[Machine learning model training with AKS](/architecture/ai-ml/machine-learning-model-deployment-aks)**: Train models using large datasets with familiar tools, such as TensorFlow and Kubeflow. |
| 33 | +* **[Data streaming with AKS](/architecture/solution-ideas/articles/data-streaming-scenario)**: Ingest and process real-time data streams with millions of data points collected via sensors, and perform fast analyses and computations to develop insights into complex scenarios. |
| 34 | + |
| 35 | +## Features of AKS |
| 36 | + |
| 37 | +The following table lists some of the key features of AKS: |
| 38 | + |
| 39 | +| Feature | Description | |
| 40 | +| --- | --- | |
| 41 | +| **Identity and security management** | • Enforce [regulatory compliance controls using Azure Policy](./security-controls-policy.md) with built-in guardrails and internet security benchmarks. <br/> • Integrate with [Kubernetes RBAC](./azure-ad-rbac.md) to limit access to cluster resources. <br/> • Use [Microsoft Entra ID](./enable-authentication-microsoft-entra-id.md) to set up Kubernetes access based on existing identity and group membership. | |
| 42 | +| **Logging and monitoring** | • Integrate with [Container Insights](../azure-monitor/containers/kubernetes-monitoring-enable.md), a feature in Azure Monitor, to monitor the health and performance of your clusters and containerized applications. <br/> • Set up [Network Observability](./network-observability-overview.md) and [use BYO Prometheus and Grafana](./network-observability-byo-cli.md) to collect and visualize network traffic data from your clusters. | |
| 43 | +| **Streamlined deployments** | • Use prebuilt cluster configurations for Kubernetes with [smart defaults](./quotas-skus-regions.md#cluster-configuration-presets-in-the-azure-portal). <br/> • Autoscale your applications using the [Kubernetes Event Driven Autoscaler (KEDA)](./keda-about.md). </br> • Use [Draft for AKS](./draft.md) to ready source code and prepare your applications for production. | |
| 44 | +| **Clusters and nodes** | • Connect storage to nodes and pods, upgrade cluster components, and use GPUs. <br/> • Create clusters that run multiple node pools to support mixed operating systems and Windows Server containers. <br/> • Configure automatic scaling using the [cluster autoscaler](./cluster-autoscaler.md) and [horizontal pod autoscaler](./tutorial-kubernetes-scale.md#autoscale-pods). <br/> • Deploy clusters with [confidential computing nodes](../confidential-computing/confidential-nodes-aks-overview) to allow containers to run in a hardware-based trusted execution environment. | |
| 45 | +| **Storage volume support** | • Mount static or dynamic storage volumes for persistent data. <br/> • Use [Azure Disks](./azure-disk-csi.md) for single pod access and [Azure Files](./azure-files-csi.md) for multiple, concurrent pod access. <br/> • Use [Azure NetApp Files](./azure-netapp-files.md) for high-performance, high-throughput, and low-latency file shares. | |
| 46 | +| **Networking** | • Leverage [Kubenet networking](./concepts-network.md#kubenet-basic-networking) for simple deployments and [Azure Container Networking Interface (CNI) networking](./concepts-network.md#azure-cni-advanced-networking) for advanced scenarios. <br/> • [Bring your own Container Network Interface (CNI)](./use-byo-cni.md) to use a third-party CNI plugin. <br/> • Easily access applications deployed to your clusters using the [application routing add-on with nginx](./app-routing.md). | |
| 47 | +| **Development tooling integration** | • Develop on AKS with [Helm](./quickstart-helm.md). <br/> • Install the [Kubernetes extension for Visual Studio Code](https://marketplace.visualstudio.com/items?itemName=ms-kubernetes-tools.vscode-kubernetes-tools) to manage your workloads. <br/> • Leverage the features of Istio with the [Istio-baed service mesh add-on](./istio-about.md). | |
| 48 | + |
| 49 | +## Get started with AKS |
| 50 | + |
| 51 | +Get started with AKS using the following resources: |
| 52 | + |
| 53 | +* Learn the [core Kubernetes concepts for AKS](./concepts-clusters-workloads.md). |
| 54 | +* Evaluate application deployment on AKS with our [AKS tutorial series](./tutorial-kubernetes-prepare-app.md). |
| 55 | +* Review the [Azure Well-Architected Framework for AKS](/well-architected/service-guides/azure-kubernetes-service) to learn how to design and operate reliable, secure, efficient, and cost-effective applications on AKS. |
| 56 | +* [Plan your design and operations](/architecture/reference-architectures/containers/aks-start-here) for AKS using our reference architectures. |
| 57 | +* Explore [configuration options and recommended best practices for cost optimization](./best-practices-cost.md) on AKS. |
0 commit comments