Azure Kubernetes Service updates for November 2020
Published date: November 17, 2020
Azure Kubernetes Service had several general availability announcements at KubeCon in November 2020:
AKS now supports creation of clusters and nodepools with containerd, an industry-standard container runtime. containerd enhances pod creation speed as well as stability.
With general availability of containerd support in AKS, containerd is now the default container runtime for AKS.
maxSurge feature for Azure Kubernetes Service is now generally available . maxSurge enables faster upgrades by leveraging multiple new buffer nodes to concurrently replace older nodes. Instead of replacing a single node at a time, users can now customize their own max surge value per node pool to define how many concurrent replacements occur.
AKS support for Kubernetes release 1.19 is now generally available. Kubernetes release 1.19 includes several new features and enhancements such as support for TLS 1.3, Ingress and seccomp feature GA, and others.
Read what’s new at GitHub.
Ephemeral OS disk for AKS Agent Nodes is now generally available. With Ephemeral OS disk, since the disk is locally attached, you get lower read/write latency on the Agent Nodes OS disk, and faster cluster operations like scale or upgrade thanks to faster re-imaging and boot times.
The AKS image now aligns to the Microsoft Security Baseline that conforms to Linux and Kubernetes benchmarks for CIS hardened images. Security Baseline contains recommendations and best practices to help improve the security posture of a cloud deployment. CIS benchmarks are published by the Center for Internet Security and are developed to help organizations securely configure their systems.
Learn more about security baselines for Azure.
Learn more about CIS Benchmarks.