Skip to content

Release 2023-01-30
Compare
Choose a tag to compare
@EkeleAsonye EkeleAsonye released this 30 Jan 23:23
· 40 commits to main since this release
AKS-hybrid-2301
686562c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

The AKS-hybrid update for January2023 has been released. If you have installed any of the previous releases of AKS-hybrid, you can upgrade to the January 2023 update of AKS-hybrid.

Please download the latest release here.

Announcements

  • We will retire AKS-HCI versions, starting with February 2022, March 2022 and May 2022 updates in January 2023. Please update your clusters to remain in support.

  • Important: If you had shut down your AKS clusters during the holiday season or trying to update them, you likely may have internal certificates or tokens that are expired when you restart. You can follow these steps to recover your AKS cluster from expired certs.

  • GPU-enabled node pool is in preview. Follow these steps to try it out.

  • SDN + AKS Integration: If leveraging SDN + AKS, you can now upgrade your AKS clusters this month.

  • Please upgrade to the latest Kubernetes version. Current supported versions are:

Component October 2022 January 2023
AKShybrid 1.0.15.11104 1.0.16.10113
Kubernetes Versions 1.22.11, 1.22.15, 1.23.8, 1.23.12, 1.24.3, 1.24.6 1.22.11, 1.22.15, 1.23.8, 1.23.12, 1.24.3, 1.24.6

Release notes

Version numbers

  • AKShybrid version: 1.0.16.10113

  • Kubernetes versions: 1.22.11, 1.22.15, 1.23.8, 1.23.12, 1.24.3, 1.24.6

  • KVA version: 1.24.6

  • PowerShell: 1.1.60

  • WAC: 2211 GA version

  • AKS Extension in WAC: 2.131.0 (msft.sme.aks.2.131.0.nupkg)

  • ContainerD: 1.6.12

Features

Powershell changes

Install pre-checks for AKS on Azure Stack HCI and AKS on Windows Server

  • We continue to listen to your feedback; you told us that you have seen some specific problems when installing AKS hybrid on your system. To address those problems, in the last 2 releases, we have been adding validation tests to ensure that your system and configuration values will work prior to proceeding with the installation. Now you will see output messages highlighting the following tests:

    • MOC Host Internet Connectivity
    • MOC Host Limits
    • MOC Host Remoting
    • MOC Network Configuration
    • MOC SDN Configuration
    • MOC directories
    • Failover Cluster Health
    • Failover Cluster HCI Registration
    • VM Creation in Hyper-V
    • Availability of a Switch in Hyper-V
    • AKS Management cluster configuration
    • Azure user permissions
    • Proxy configuration

  • We plan to continue adding validation tests in the coming releases. Here are some PowerShell changes we did to increase the number of validation tests:

  • Changes to Set-AksHciConfig:

    • Current Behavior: Set-AksHciConfig runs validation test for the Microsoft On-Premises Cloud (MOC) and set configuration values for both MOC and AKS hybrid. Currently It does not Install MOC or run validation tests for AKS hybrid.
    • New Behavior:
      • Set-AksHciConfig will now install MOC as prerequisites for AKS hybrid, if it is not already installed. MOC is required to run AKS hybrid validation tests.
      • In addition to running validation check for MOC , It will also run validation test for AKS hybrid. Validation tests can be skipped by passing -SkipValidationCheck flag.
      • If MOC is already installed, Set-AksHciConfig will skip setting configuration for MOC and continue setting configuration for AKS hybrid. Users will have to execute 'Uninstall-Moc' first, if they want to provide new configuration for MOC before installing AKS hybrid.
      • If Set-AksHciConfig fails after installing MOC, it will automatically uninstall MOC.

  • Changes to Set-AksHciRegistration:

    • We have also added a validation check during Set-AksHciRegistration. This validation check will make sure the user has proper AAD permission to create Azure Resources in case they don't provide one. The validation check can be skipped by passing -SkipValidationCheck flag.

  • Changes to Install-AksHci: Install-AksHci will not install MOC anymore. MOC will be installed in Set-AksHciConfig.

  • Restrict SSH Access to VMs to an allowed set of IPs

    • There is a new security feature in the Jan AKS hybrid release to restrict ssh access to underlying VMs to only certain IP addresses. Today, anyone with administrator access to AKS hybrid has access to VMs through ssh on any machine.

  • Required system telemetry endpoint

    • We have introduced a new endpoint for telemetry. AKShybrid users should ensure that the endpoint gcs.prod.monitoring.core.windows.net is enabled.

Windows Admin Center

  • You can now edit the details of existing node pool configurations in the Kubernetes cluster creation wizard
  • UI improvements to DNS servers field on the Host configuration page
  • UI improvements to the Resource group and Azure region fields on the Azure registration pages

SDN + AKS Hybrid Integration

  • Upgrade Support: You can now upgrade your AKS clusters.

  • Resolution of the 80-character limit bug that may have been seen by using naming conventions.

Mariner

  • Mariner version 2.0.20221222

Bugs fixes/ Documentation

Assets 2
Loading