Ends in
00
days
00
hrs
00
mins
00
secs
ENROLL NOW

🔥 AWS Beginner Level Sale - Certified Cloud & AI Practitioner Mock Exams for only $12.99 each!

Azure Kubernetes Service (AKS)

Home » Azure Cheat Sheets » Azure Compute Services » Azure Kubernetes Service (AKS)

Azure Kubernetes Service (AKS)

Last updated on January 4, 2025

Azure Kubernetes Service Cheat Sheet

  • An open-source tool for orchestrating and managing many container images and applications.
  • Lets you deploy a managed Kubernetes cluster in Azure.

Features

  • Uses clusters and pods to scale and deploy applications.
  • Kubernetes can deploy more images of containers as needed.
  • It supports horizontal scaling, self-healing, load balancing, and secret management.
  • Automatic monitoring of application load to determine when to scale the number of containers used.
  • Allows you to replicate container architectures.
  • Use Kubernetes with supported Azure regions and on-premises installations using Azure Stack.
    • Tutorials dojo strip
  • The images used by AKS come from Azure Container Registry.
  • Use Azure Advisor to optimize your Kubernetes deployments with real-time, personalized recommendations.

Components

  • A control plane is a managed Azure resource. It is where the components run, including API server and cluster database (etcd).
    • kube-apiserver – allows communication for management tools (kubectl).
    • etcd – a key-value store within Kubernetes.
    • kube-scheduler – defines what nodes should run in the workload.
    • kube-controller-manager – it oversees the smaller controllers that handle node operations and replication of pods.
  • Kubernetes runs an application in your instance using pods.
  • A node is made up of several pods, and node pools are a group of nodes with the same configuration.
  • Use a node selector to control where a pod should be placed.
  • You can run at least 2 nodes in the default node pool to ensure your cluster operates reliably.
  • Multi-container pods are placed on the same node and allow containers to share the related resources.
  • You can specify maximum resource limits that prevent a given pod from consuming too much compute resources from the underlying node.
  • A deployment determines the number of replicas (pods) to be created, but you must define a manifest file in YAML format first.
  • With StatefulSets, you can maintain the application’s state within a single pod life cycle.
  • The resources are logically grouped into a namespace, and a user may only interact with resources within their assigned namespaces.

Storage

  • Persistent volumes are provided by Azure disk and file storage.
  • Create a Kubernetes DataDisk resource using Azure Disk.
  • Mount an SMB 3.0 share backed by an Azure Storage account to pods with Azure Files.
  • Volumes that are defined and created as part of the pod lifecycle only exist until the pod is deleted.
  • AKS has four initial storage classes:
    • default – uses Azure StandardSSD storage to create a Managed Disk.
    • managed-premium – uses Azure Premium storage to create Managed Disk.
    • azurefile – uses Azure Standard storage to create an Azure File Share.
    • azurefile-premium – uses Azure Premium storage to create an Azure File Share.
  • If no StorageClass is specified for a persistent volume, the default StorageClass is used.

Security

  • With Kubernetes RBAC, you can create roles to define permissions and then assign those roles to users with role bindings.
  • You can limit network traffic between pods in your cluster with Kubernetes network policies.
  • Dynamic rules enforcement across multiple clusters with Azure Policy.
  • Azure AD-integrated AKS clusters can grant users or groups access to Kubernetes resources within a namespace or across the cluster.
  • Secure communication paths between namespaces and nodes with Azure Private Link.

Azure Kubernetes Service Pricing

  • You only pay for virtual machines, associated storage, and networking resources.
  • There is no charge for cluster management.

Azure Kubernetes Service Versions

  • Uses semantic versioning: [major].[minor].
  • A user has 30 days from the version removal to upgrade into a supported patch and continue receiving support.
  • Azure updates the cluster automatically if it has been out of support for more than 3 minor versions.
  • Downgrading a version is not supported.

How to Create an Azure Kubernetes Service Cluster in the Azure Portal

Want to learn more about Azure? Watch the official Microsoft Azure YouTube channel’s video series called Azure Tips and Tricks.

Validate Your Knowledge

Question 1

Question Type: Single choice

You manage an Azure subscription with 120 virtual machines distributed across multiple resource groups.

You aim to identify unattached disks that can be safely deleted from specific resource groups to reduce costs.

You also want to ensure you only receive recommendations relevant to those selected resource groups.

What action should you take?

  1. Deploy Azure Policy definitions that tag unattached disks, then filter the tagged resources for deletion.
    2. Free AWS Courses
  2. Modify the Advisor configuration in Azure Advisor to include only the targeted resource groups, then review its cost optimization recommendations.
  3. Use Azure Monitor to create a custom log query that identifies unattached disks in the specified resource groups.
  4. View the Advisor recommendations under Azure Cost Management and apply filters to focus on the resource groups in question.

Correct Answer: 2

Azure Advisor is your go-to personalized cloud consultant, dedicated to helping you optimize your Azure deployments for maximum efficiency. By thoroughly analyzing your resource configurations and monitoring usage data, Azure Advisor delivers tailored recommendations that enhance various aspects of your cloud environment. These suggestions focus on improving cost-effectiveness, boosting performance, ensuring reliability, and fortifying security, allowing you to maximize the value of your Azure resources while minimizing potential risks. With Azure Advisor, you can confidently navigate your cloud strategy and make informed decisions that drive success.

Azure Configuration

In this scenario, you need to identify unattached disks in specific resource groups to reduce costs. Azure Advisor is specifically designed for this type of task. By modifying the Advisor configuration to focus on the targeted resource groups, you ensure that:

  1. You receive recommendations only for the resource groups you’re interested in, reducing noise from irrelevant suggestions.
  2. The cost optimization recommendations will include identifying unattached disks, which is one of Advisor’s key features.
  3. You can easily review and act on these recommendations without needing to create custom queries or implement complex policies.
  4. The process is efficient and uses Azure’s built-in capabilities, requiring minimal additional setup or maintenance.

Hence, the correct answer is: Modify the Advisor configuration in Azure Advisor to include only the targeted resource groups, then review its cost optimization recommendations.

The option that says: Deploy Azure Policy definitions that tag unattached disks, then filter the tagged resources for deletion is incorrect. While Azure Policy can be used to enforce tagging and compliance, it’s not the most direct or efficient method for identifying unattached disks. Azure Policy is more suited for ensuring resources meet specific standards and enforce rules rather than actively identifying cost-saving opportunities. An Azure Policy is primarily used for permissions management and not for analyzing resource groups

The option that says: Use Azure Monitor to create a custom log query that identifies unattached disks in the specified resource groups is incorrect. Although Azure Monitor can be used to create custom queries, it’s not the most straightforward or recommended method for identifying unattached disks. This approach would require significant custom development and may not be as comprehensive as built-in Azure services which are primarily designed for cost optimization.

The option that says: View the Advisor recommendations under Azure Cost Management and apply filters to focus on the resource groups in question is incorrect. Azure Cost Management does provide cost analysis and is able to integrate with Azure Advisor. However, for the specific task of identifying unattached disks in particular resource groups, directly configuring Azure Advisor is more appropriate.

References:

https://learn.microsoft.com/en-us/azure/advisor/advisor-overviewhttps://learn.microsoft.com/en-us/azure/advisor/view-recommendations

Check out this Azure Advisor Cheat Sheet:
https://tutorialsdojo.com/azure-advisor/

Note: This question was extracted from our AZ-104 Microsoft Azure Administrator Practice Exams.

For more Azure practice exam questions with detailed explanations, check out the Tutorials Dojo Portal:

Microsoft Azure Practice Exams Tutorials Dojo

Azure Kubernetes Service Cheat Sheet Resources:

https://docs.microsoft.com/en-us/azure/aks/intro-kubernetes
https://azure.microsoft.com/en-us/services/kubernetes-service/

AWS Beginner Level Sale – Certified Cloud & AI Practitioner Mock Exams for only $12.99 US each!

Tutorials Dojo portal

Level-Up Your Career this 2025

Learn AWS with our PlayCloud Hands-On Labs

Tutorials Dojo Exam Study Guide eBooks

tutorials dojo study guide eBook

FREE AWS Exam Readiness Digital Courses

FREE AWS, Azure, GCP Practice Test Samplers

Subscribe to our YouTube Channel

Tutorials Dojo YouTube Channel

Follow Us On Linkedin

Recent Posts

Written by: Jon Bonso

Jon Bonso is the co-founder of Tutorials Dojo, an EdTech startup and an AWS Digital Training Partner that provides high-quality educational materials in the cloud computing space. He graduated from Mapúa Institute of Technology in 2007 with a bachelor's degree in Information Technology. Jon holds 10 AWS Certifications and is also an active AWS Community Builder since 2020.

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, YouTube, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!

View Our AWS, Azure, and GCP Exam Reviewers Check out our FREE courses

Our Community

~98%
passing rate
Around 95-98% of our students pass the AWS Certification exams after training with our courses.
200k+
students
Over 200k enrollees choose Tutorials Dojo in preparing for their AWS Certification exams.
~4.8
ratings
Our courses are highly rated by our enrollees from all over the world.

What our students say about us?

All products - Video Courses, Practice Exams and eBooks
NON-PROMO
PERIOD
Beginner Level Sale
AWS Certified Cloud & AI Practitioner eBooks  $4.99 $2.99
AWS Certified Cloud Practitioner Video Course $9.99 $7.99
AWS Certified Cloud & AI Practitioner Practice Exams $14.99 $12.99
AWS Certified AI Practitioner Practice Exams + eBook Bundle $19.98 $15.98
AWS Certified Cloud Practitioner Practice Exams + eBook Bundle $19.98 $15.98
AWS Certified Cloud Practitioner Triple Bundle  $17.99 $23.97