Ensure AKS enables private clusters

Error: AKS is not enabled for private clusters

Bridgecrew Policy ID: BC_AZR_KUBERNETES_6
Checkov Check ID: CKV_AZURE_115
Severity: LOW

AKS is not enabled for private clusters

Description

Enable the private cluster feature for your Azure Kubernetes Service cluster to ensure network traffic between your API server and your node pools remains on the private network only. This is a common requirement in many regulatory and industry compliance standards.

Fix - Buildtime

Terraform

  • Resource: azurerm_kubernetes_cluster
  • Argument: private_cluster_enabled
resource "azurerm_kubernetes_cluster" "example" {
                  ...
  +               private_cluster_enabled = true
                  
                }