doc: connect using azure ad

Signed-off-by: Fredrik Klingenberg <[email protected]>
fredrkl · Nov 14, 2023 · 3313e91 · 3313e91
1 parent 39e0180
commit 3313e91
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/README.md b/README.md
@@ -47,6 +47,12 @@ The [terraform workflow](.github/workflows/terraform.yaml), will create the amon
 If you wanted you can turn on and off the public IP. A bastion host is used to access a private cluster. Following the guide at:
 <https://learn.microsoft.com/en-US/azure/aks/api-server-vnet-integration#enable-or-disable-private-cluster-mode-on-an-existing-cluster-with-api-server-vnet-integration>.
 
+For the jump-host this repo creates a Linux VM with the _Azure AD SSH Login for Linux_ extension installed. This enables us to login using our Azure AD credentials, e.g., 
+
+```bash
+az network bastion ssh --name "<BastionName>" --resource-group "<ResourceGroupName>" --target-resource-id "<VMResourceId or VMSSInstanceResourceId>" --auth-type "AAD"
+```
+
 ## Resources
 
 - [AKS Networking Update - John Savill's Technical Training](https://www.youtube.com/watch?v=54y986U1uYM)
@@ -58,7 +64,6 @@ If you wanted you can turn on and off the public IP. A bastion host is used to a
 
 - It is not possible to enable K8s API server whitelist when using VNet integration and private cluster.
 
-
 ## Build status
 
 [![Terraform](https://github.com/fredrkl/private-aks-demo/actions/workflows/terraform.yaml/badge.svg)](https://github.com/fredrkl/private-aks-demo/actions/workflows/terraform.yaml)