| name | supportedPlatforms | description | |
|---|---|---|---|
AKS Cluster |
|
Provision a production-grade Azure Kubernetes Service (AKS) cluster with Azure AD, OIDC, Workload Identity, Log Analytics and custom VNet using Terraform.
|
This Terraform module provisions a production-ready Azure Kubernetes Service (AKS) cluster including:
- Azure AD-based authentication
- Workload Identity & OIDC issuer enabled
- Custom Virtual Network & Subnet
- Log Analytics integration (Monitoring)
- Auto-scaling node pool
- System-assigned managed identity
- ✅ Production-grade configuration
- 🔐 Integrated Azure AD admin group
- ☁️ Log Analytics Workspace (LAW) with
oms_agent - 🧠 OIDC issuer & Workload Identity support
- 🌐 Custom virtual network and subnet
- 📈 Auto-scaling system node pool
| Name | Version |
|---|---|
| terraform | >= 1.5.0 |
| azuread | 3.4.0 |
| azurerm | 4.36.0 |
No modules.
| Name | Type |
|---|---|
| azurerm_kubernetes_cluster.aks | resource |
| azurerm_log_analytics_workspace.law | resource |
| azurerm_resource_group.aks | resource |
| azurerm_subnet.aks_subnet | resource |
| azurerm_virtual_network.vnet | resource |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| agent_count | n/a | number |
3 |
no |
| aks_admin_group_object_id | Object ID of the Azure AD group used for AKS admin access | string |
n/a | yes |
| aks_cluster_name | n/a | string |
"prod-aks" |
no |
| dns_prefix | n/a | string |
"prodaks" |
no |
| kubernetes_version | n/a | string |
"1.29.2" |
no |
| location | n/a | string |
"Germany West Central" |
no |
| resource_group_name | n/a | string |
"aks-prod-rg" |
no |
| vm_size | n/a | string |
"Standard_DS3_v2" |
no |
| Name | Description |
|---|---|
| aks_identity_client_id | Client ID of the AKS system-assigned managed identity |
| kube_config | Kubeconfig raw output |
| law_id | Log Analytics Workspace ID |
| oidc_issuer_url | OIDC issuer URL for federated identity and workload identity setup |
| subnet_id | Subnet ID used by AKS |