33 votes3 comments · Azure Kubernetes Service (AKS) » Integration with 3rd party tools and frameworks · Flag idea as inappropriate… · Admin →
An error occurred while saving the commentKirill Volkovich commented
It would be great!
We want to avoid usage of AAD for AKS authenticating.
For our use-case it would be much better to run something like Keycloak per AKS cluster for authentication.
We can identify users by getting email from AAD/GitHub/Google account.
Problem with AAD - only directory owners can manage groups and users.
In large organizations cross-team communication can be hard and too long process.
I expect - if I have possibility to create AKS cluster and have cluster-admin rights, I should be able to manage access to this cluster without depending on centralized organization AAD.Kirill Volkovich supported this idea ·