Skip to content

Commit

Permalink
Merge pull request #1125 from jnoller/master
Browse files Browse the repository at this point in the history 
07-22-2019 "Belligerent Bulbasaur"
  • Loading branch information
@jnoller
jnoller authored Jul 25, 2019
2 parents 8a68d96 + 8e3f38f commit 5f0922b
Show file tree
Hide file tree
Showing 2 changed files with 15 additions and 20 deletions.
13 changes: 12 additions & 1 deletion CHANGELOG.md
View file
Original file line number Diff line number Diff line change
@@ -1,9 +1,20 @@
# Azure Kubernetes Service Changelog

## Release 2019-07-15
## Release 2019-07-22

**This release is currently being rolled out to all regions**

* Preview Features
* An issue where New Windows node pools in existing cluster would not get
updated Windows versions has been fixed.
* TCP reset has been set for all new clusters using the SLB preview.
* An issue where AKS would trigger a scale operation requested on a previously
deleted VMSS cluster has been fixed.
* Component Updates
* AKS-Engine has been updated to v0.38.3

## Release 2019-07-15

**Important behavioral change**: All AKS clusters are being updated to pull all
needed container images for cluster operations from Azure Container Registry,
this means if you have custom allow/deny lists, port filtering, etc you will
Expand Down
22 changes: 3 additions & 19 deletions previews.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -179,26 +179,10 @@ To create a cluster with VMSS enabled, use the `--enable-vmss` switch in `az aks
### Kubernetes Audit Log <a name="noauditforu"></a>

The [Kubernetes audit log][3] provides a detailed account of security-relevant
events that have occurred in the cluster. You can enable it for your
subscription by turning on the **AKSAuditLog** feature flag.
events that have occurred in the cluster.

First, register the feature flag:

```
az feature register --name AKSAuditLog --namespace Microsoft.ContainerService
```

Then refresh your registration of the AKS resource provider:

```
az provider register -n Microsoft.ContainerService
```

Once you've done this, you will see a new **kube-audit** log source in the
diagnostic settings for your cluster, as described in [this doc][2].

**Please note:** AKS will only capture audit logs for clusters which are
created or upgraded after the feature flag is enabled.
Kubernetes audit log support is GA, the documentation for enabling it
on AKS clusters is here: https://docs.microsoft.com/en-us/azure/aks/view-master-logs

## Kubernetes Pod Security Policies <a name="psp"></a>

Expand Down

0 comments on commit 5f0922b

Please sign in to comment.