ArmContainerServiceModelFactory.ManagedClusterSecurityProfile Method
Definition
Important
Some information relates to prerelease product that may be substantially modified before it’s released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
public static Azure.ResourceManager.ContainerService.Models.ManagedClusterSecurityProfile ManagedClusterSecurityProfile(Azure.ResourceManager.ContainerService.Models.ManagedClusterSecurityProfileDefender defender = default, Azure.ResourceManager.ContainerService.Models.ManagedClusterSecurityProfileKeyVaultKms azureKeyVaultKms = default, Azure.ResourceManager.ContainerService.Models.KubernetesResourceObjectInfrastructureEncryption? infrastructureEncryption = default, bool? isWorkloadIdentityEnabled = default, Azure.ResourceManager.ContainerService.Models.ManagedClusterSecurityProfileImageCleaner imageCleaner = default, bool? isImageIntegrityEnabled = default, bool? isNodeRestrictionEnabled = default, System.Collections.Generic.IEnumerable<byte[]> customCATrustCertificates = default, Azure.ResourceManager.ContainerService.Models.ServiceAccountImagePullProfile serviceAccountImagePullProfile = default);static member ManagedClusterSecurityProfile : Azure.ResourceManager.ContainerService.Models.ManagedClusterSecurityProfileDefender * Azure.ResourceManager.ContainerService.Models.ManagedClusterSecurityProfileKeyVaultKms * Nullable<Azure.ResourceManager.ContainerService.Models.KubernetesResourceObjectInfrastructureEncryption> * Nullable<bool> * Azure.ResourceManager.ContainerService.Models.ManagedClusterSecurityProfileImageCleaner * Nullable<bool> * Nullable<bool> * seq<byte[]> * Azure.ResourceManager.ContainerService.Models.ServiceAccountImagePullProfile -> Azure.ResourceManager.ContainerService.Models.ManagedClusterSecurityProfilePublic Shared Function ManagedClusterSecurityProfile (Optional defender As ManagedClusterSecurityProfileDefender = Nothing, Optional azureKeyVaultKms As ManagedClusterSecurityProfileKeyVaultKms = Nothing, Optional infrastructureEncryption As Nullable(Of KubernetesResourceObjectInfrastructureEncryption) = Nothing, Optional isWorkloadIdentityEnabled As Nullable(Of Boolean) = Nothing, Optional imageCleaner As ManagedClusterSecurityProfileImageCleaner = Nothing, Optional isImageIntegrityEnabled As Nullable(Of Boolean) = Nothing, Optional isNodeRestrictionEnabled As Nullable(Of Boolean) = Nothing, Optional customCATrustCertificates As IEnumerable(Of Byte()) = Nothing, Optional serviceAccountImagePullProfile As ServiceAccountImagePullProfile = Nothing) As ManagedClusterSecurityProfileParameters
Microsoft Defender settings for the security profile.
- azureKeyVaultKms
- ManagedClusterSecurityProfileKeyVaultKms
Azure Key Vault key management service settings for the security profile.
- infrastructureEncryption
- Nullable<KubernetesResourceObjectInfrastructureEncryption>
Whether to enable encryption at rest of Kubernetes resource objects using service-managed keys. More information on this can be found under https://aka.ms/aks/kubernetesResourceObjectEncryption.
- imageCleaner
- ManagedClusterSecurityProfileImageCleaner
Image Cleaner settings for the security profile.
Whether to enable image integrity. The default value is false.
- customCATrustCertificates
- IEnumerable<Byte[]>
A list of up to 10 base64 encoded CAs that will be added to the trust store on all nodes in the cluster. For more information see Custom CA Trust Certificates.
- serviceAccountImagePullProfile
- ServiceAccountImagePullProfile
Defines service account based image pull settings.
Returns
A new ManagedClusterSecurityProfile instance for mocking.
