diff --git a/docs/docs-content/clusters/public-cloud/azure/architecture.md b/docs/docs-content/clusters/public-cloud/azure/architecture.md index 5c3eb12bd3..4922b87062 100644 --- a/docs/docs-content/clusters/public-cloud/azure/architecture.md +++ b/docs/docs-content/clusters/public-cloud/azure/architecture.md @@ -25,6 +25,7 @@ The following are some architectural highlights of Azure clusters deployed by Pa - None of the control plane nodes and worker nodes have public IPs attached. The Kubernetes API Server endpoint is accessed through a public load balancer. + ![An Azure IaaS architecture diagram](/clusters_azure_architecture_iaas-overview.png) @@ -33,10 +34,10 @@ The following are some architectural highlights of Azure clusters deployed by Pa The integration between Palette and Azure AKS unlocks the following capabilities. -- Palette platform enables containerized applications' effortless deployment and management with fully managed AKS. +- Palette platform enables effortless deployment and management of containerized applications with fully managed AKS. -- Palette provides the you with a with serverless Kubernetes experience, an integrated continuous integration and continuous delivery (CI/CD) experience, and enterprise-grade security and governance. +- Palette provides you with a with serverless Kubernetes experience, an integrated continuous integration and continuous delivery (CI/CD) experience, and enterprise-grade security and governance. - Palette helps you unite the development and operations to a single platform. This unification helps you achieve faster builds, delivery, and scaling of applications with credence. @@ -58,7 +59,7 @@ During an Azure cluster deployment, Palette creates an [Azure storage account](h Before the Azure cluster creation process, you must have created custom storage accounts or containers. All custom storage accounts and containers will be listed in the **Cluster config** page during the cluster creation process. If you need help creating a custom storage account or container, check out the Azure [Create a Storage Account](https://learn.microsoft.com/en-us/azure/storage/common/storage-account-create?tabs=azure-portal) guide or the Azure [Manage Containers](https://learn.microsoft.com/en-us/azure/storage/blobs/blob-containers-portal) guide. -The following section covers a few scenarios where you have the need to customize Azure storage in an Azure cluster. +The following sections cover a few scenarios where you have the need to customize Azure storage in an Azure cluster. ## Custom Name @@ -74,6 +75,47 @@ To restrict the user access to the storage resource, apply custom policies, or l Clusters that use a Palette self-hosted [Private Cloud Gateway](gateways.md) (PCG), should use a custom storage account and container that are restricted to the VNet that the PCG and cluster are located in. Ensure you disable public access and use private access for the Azure storage account. +## Pricing Options + +You can configure Service Level Agreements (SLA)-based [pricing options](https://learn.microsoft.com/en-us/azure/aks/free-standard-pricing-tiers) for Azure AKS cluster control planes. You have the ability to set these options in the Kubernetes YAML file, allowing you to embed pricing options in the cluster profile. + +Use the `managedControlPlane.sku` parameter, as shown in the examples, to specify `Standard` for production clusters and `Free` for non-production or small clusters. + + + + + + ```yaml + managedControlPlane: + aadProfile: + managed: true + adminGroupObjectIDs: + - + sku: Standard + ``` + + + + + + ```yaml + managedControlPlane: + aadProfile: + managed: false + adminGroupObjectIDs: + - + sku: Free + ``` + + + + + + + + + + ## Tags You can assign tags to clusters deployed to Azure. Tags can help you with user access control management and more granularly restrict access to various Palette resources, including clusters. Check out the [Resource Filters](../../cluster-management/cluster-tag-filter/create-add-filter.md) documentation page to learn more about using tags to restrict resource access. diff --git a/docs/docs-content/release-notes.md b/docs/docs-content/release-notes.md index 1f3171e87a..d9ab220938 100644 --- a/docs/docs-content/release-notes.md +++ b/docs/docs-content/release-notes.md @@ -10,7 +10,25 @@ sidebar_custom_props: icon: "audits" tags: ["release-notes"] --- - + +## October 3, 2023 - Release 4.0.15 + +This release contains enhancements and minor bug fixes. + +## Enhancements + +- Configurable options to specify pricing for Azure Kubernetes Service (AKS) cluster control planes are now available in the Kubernetes **values.yaml** pack. You can review examples of how to use the `managedControlPlane.sku` parameter in [AKS Architecture](clusters/public-cloud/azure/architecture.md#pricing-options) highlights. + +- Palette now supports the space character for the `scopesDelimiter` field for OpenID Connect (OIDC) configuration. Previously, Palette used only a comma delimiter. + +### Bug Fixes + +- API calls to update edge hosts no longer time out after 60 seconds. + +- The issue where system pods in the `hubble-system` namespace restarted frequently is now resolved. + +- The issue with Palette displaying incorrect interface of an edge host during cluster deployment is now resolved. + ## September 20, 2023 - Release 4.0.13 @@ -574,6 +592,7 @@ The following packs are marked as deprecated, disabled, or deleted. Refer to the | Spectro Proxy | 1.0.0 | Deprecated | | Spectro Proxy | 1.1.0 | Deprecated | + ## September 21, 2023 - Release 3.4.114