This release is rolling out to all regions - ETA for conclusion 2020-12-11 for public cloud.
Announcements
- The Azure Kubernetes Service pod security policy (preview) feature will be retired on May 31st, 2021.
- Once GA AKS will default to its new GPU specialized image as the supported option for GPU-capable agent nodes.
- AKS will be defaulting Azure CNI to transparent mode (from its current default of bridge mode) on the next release. This should bring no impact and carries several benefits, read more about it here.
Release Notes
- Features
- Bring your Own (BYO) Control Plane Managed Identity is Now Generally Available.
- You may now update your Uptime SLA clusters to Free.
- Behavioral Changes
- AKS Clusters will from now on choose to fail the upgrade if the drain/evict operation doesn't succeed instead of timing out. This means that users must ensure their PodDisruptionBudgets (PDBs) allow their pods to be successfully moved. To see if you have any incorrect PDB check AKS Diagnostics and search for PDBs and Node Drain Failures to see if you have any problematic PDBs in your cluster.
- Preview Features
- AKS now supports Custom Node Configuration in Public Preview.
- AKS now supports Private Clusters created with no Private DNS zone, deferring all DNS to an enterprise-managed DNS server.
- You can create a cluster like this by using
--private-dns-zone none
, and making sure your custom DNS server is on the cluster subnet and contains all necessary entries including the API server endpoint IP (you can add after the cluster is created).
- You can create a cluster like this by using
- Azure AD Pod Identity Add-on is now in public preview.