Plugins

turbot/azure

GitHub
Overview
149Tables
Versions
GitHub
steampipe plugin install azuresteampipe plugin install azure
azure_ad_groupazure_ad_service_principalazure_ad_userazure_alert_managementazure_api_managementazure_app_configurationazure_app_service_environmentazure_app_service_function_appazure_app_service_planazure_app_service_web_appazure_app_service_web_app_slotazure_application_gatewayazure_application_insightazure_application_security_groupazure_automation_accountazure_automation_variableazure_bastion_hostazure_batch_accountazure_cognitive_accountazure_compute_availability_setazure_compute_diskazure_compute_disk_accessazure_compute_disk_encryption_setazure_compute_disk_metric_read_opsazure_compute_disk_metric_read_ops_dailyazure_compute_disk_metric_read_ops_hourlyazure_compute_disk_metric_write_opsazure_compute_disk_metric_write_ops_dailyazure_compute_disk_metric_write_ops_hourlyazure_compute_imageazure_compute_resource_skuazure_compute_snapshotazure_compute_ssh_keyazure_compute_virtual_machineazure_compute_virtual_machine_metric_cpu_utilizationazure_compute_virtual_machine_metric_cpu_utilization_dailyazure_compute_virtual_machine_metric_cpu_utilization_hourlyazure_compute_virtual_machine_scale_setazure_compute_virtual_machine_scale_set_network_interfaceazure_compute_virtual_machine_scale_set_vmazure_container_groupazure_container_registryazure_cosmosdb_accountazure_cosmosdb_mongo_collectionazure_cosmosdb_mongo_databaseazure_cosmosdb_restorable_database_accountazure_cosmosdb_sql_databaseazure_data_factoryazure_data_factory_datasetazure_data_factory_pipelineazure_data_lake_analytics_accountazure_data_lake_storeazure_databox_edge_deviceazure_databricks_workspaceazure_diagnostic_settingazure_dns_zoneazure_eventgrid_domainazure_eventgrid_topicazure_eventhub_namespaceazure_express_route_circuitazure_firewallazure_firewall_policyazure_frontdoorazure_hdinsight_clusterazure_healthcare_serviceazure_hpc_cacheazure_hybrid_compute_machineazure_hybrid_kubernetes_connected_clusterazure_iothubazure_iothub_dpsazure_key_vaultazure_key_vault_deleted_vaultazure_key_vault_keyazure_key_vault_key_versionazure_key_vault_managed_hardware_security_moduleazure_key_vault_secretazure_kubernetes_clusterazure_kubernetes_service_versionazure_kusto_clusterazure_lbazure_lb_backend_address_poolazure_lb_nat_ruleazure_lb_outbound_ruleazure_lb_probeazure_lb_ruleazure_locationazure_log_alertazure_log_profileazure_logic_app_workflowazure_machine_learning_workspaceazure_management_groupazure_management_lockazure_mariadb_serverazure_monitor_activity_log_eventazure_mssql_elasticpoolazure_mssql_managed_instanceazure_mssql_virtual_machineazure_mysql_flexible_serverazure_mysql_serverazure_nat_gatewayazure_network_interfaceazure_network_security_groupazure_network_watcherazure_network_watcher_flow_logazure_policy_assignmentazure_policy_definitionazure_postgresql_flexible_serverazure_postgresql_serverazure_private_dns_zoneazure_providerazure_public_ipazure_recovery_services_backup_jobazure_recovery_services_vaultazure_redis_cacheazure_resource_groupazure_resource_linkazure_role_assignmentazure_role_definitionazure_route_tableazure_search_serviceazure_security_center_auto_provisioningazure_security_center_automationazure_security_center_contactazure_security_center_jit_network_access_policyazure_security_center_settingazure_security_center_sub_assessmentazure_security_center_subscription_pricingazure_service_fabric_clusterazure_servicebus_namespaceazure_signalr_serviceazure_spring_cloud_serviceazure_sql_databaseazure_sql_serverazure_storage_accountazure_storage_blobazure_storage_blob_serviceazure_storage_containerazure_storage_queueazure_storage_share_fileazure_storage_syncazure_storage_tableazure_storage_table_serviceazure_stream_analytics_jobazure_subnetazure_subscriptionazure_synapse_workspaceazure_tenantazure_virtual_networkazure_virtual_network_gateway
On This Page
Examples
Query examples
Control examples
.inspect
Get Involved
Edit on GitHub
Discuss on Slack

Table: azure_kubernetes_cluster

Azure Kubernetes orchestrates clusters of virtual machines and schedules containers to run on those virtual machines based on their available compute resources and the resource requirements of each container.

Examples

Basic Info

select
  name,
  id,
  location,
  type,
  sku
from
  azure_kubernetes_cluster;

List clusters with a system assigned identity

select
  name,
  id,
  location,
  type,
  identity ->> 'type' as identity_type,
  sku
from
  azure_kubernetes_cluster
where
  identity ->> 'type' = 'SystemAssigned';

List clusters that have role-based access control (RBAC) disabled

select
  name,
  id,
  location,
  type,
  identity,
  enable_rbac,
  sku
from
  azure_kubernetes_cluster
where
  not enable_rbac;

List clusters with an undesirable version (older than 1.20.5)

select
  name,
  id,
  location,
  type,
  kubernetes_version
from
  azure_kubernetes_cluster
where
  kubernetes_version < '1.20.5';

Query examples

Control examples

.inspect azure_kubernetes_cluster

Azure Kubernetes Cluster

NameTypeDescription
_ctxjsonbSteampipe context in JSON form, e.g. connection_name.
aad_profilejsonbProfile of Azure Active Directory configuration.
addon_profilesjsonbProfile of managed cluster add-on.
agent_pool_profilesjsonbProperties of the agent pool.
akasjsonbArray of globally unique identifier strings (also known as) for the resource.
api_server_access_profilejsonbAccess profile for managed cluster API server.
auto_scaler_profilejsonbParameters to be applied to the cluster-autoscaler when enabled.
auto_upgrade_profilejsonbProfile of auto upgrade configuration.
azure_portal_fqdntextFQDN for the master pool which used by proxy config.
cloud_environmenttextThe Azure Cloud Environment.
disk_encryption_set_idtextResourceId of the disk encryption set to use for enabling encryption at rest.
dns_prefixtextDNS prefix specified when creating the managed cluster.
enable_pod_security_policybooleanWhether to enable Kubernetes pod security policy (preview).
enable_rbacbooleanWhether to enable Kubernetes Role-Based Access Control.
fqdntextFQDN for the master pool.
fqdn_subdomaintextFQDN subdomain specified when creating private cluster with custom private dns zone.
idtextThe ID of the cluster.
identityjsonbThe identity of the managed cluster, if configured.
identity_profilejsonbIdentities associated with the cluster.
kubernetes_versiontextVersion of Kubernetes specified when creating the managed cluster.
linux_profilejsonbProfile for Linux VMs in the container service cluster.
locationtextThe location where the cluster is created.
max_agent_poolsbigintThe max number of agent pools for the managed cluster.
nametextThe name of the cluster.
network_profilejsonbProfile of network configuration.
node_resource_grouptextName of the resource group containing agent pool nodes.
pod_identity_profilejsonbProfile of managed cluster pod identity.
power_statejsonbRepresents the Power State of the cluster.
private_fqdntextFQDN of private cluster.
provisioning_statetextThe current deployment or provisioning state.
regiontextThe Azure region/location in which the resource is located.
resource_grouptextThe resource group which holds this resource.
service_principal_profilejsonbInformation about a service principal identity for the cluster to use for manipulating Azure APIs.
skujsonbThe managed cluster SKU.
subscription_idtextThe Azure Subscription ID in which the resource is located.
tagsjsonbA map of tags for the resource.
titletextTitle of the resource.
typetextThe type of the cluster.
windows_profilejsonbProfile for Windows VMs in the container service cluster.