In order for the cluster app registration to create new load balancers, it needs to have the Network Contributor role for the virtual network. In the future, we should create a custom policy scoped to exactly the permissions the cluster needs, per: https://docs.microsoft.com/en-us/azure/aks/configure-azure-cni#prerequisites
14 lines
260 B
HCL
14 lines
260 B
HCL
output "subnets" {
|
|
value = azurerm_subnet.subnet["private"].id #FIXED: this is now legacy, use subnet_list
|
|
}
|
|
|
|
output "subnet_list" {
|
|
value = {
|
|
for k, id in azurerm_subnet.subnet : k => id
|
|
}
|
|
}
|
|
|
|
output "id" {
|
|
value = azurerm_virtual_network.vpc.id
|
|
}
|