Skip to content

Platform

This section explains how AKS works so you can design clusters with realistic assumptions about networking, identity, storage, ingress, and scale.

Main Content

graph TD
    A[Cluster Architecture] --> B[Node Pools]
    B --> C[Networking Models]
    C --> D[Ingress and Load Balancing]
    D --> E[Identity and Secrets]
    E --> F[Storage Options]
    F --> G[Scaling]
Document Description
Cluster Architecture Control plane, worker nodes, system components, and Azure resource relationships
Node Pools System vs user pools, OS choices, scheduling, and lifecycle boundaries
Networking Models Azure CNI Overlay, Azure CNI Pod Subnet, and Kubenet trade-offs
Ingress and Load Balancing Ingress controllers, Services, public/private exposure, and edge paths
Identity and Secrets Microsoft Entra ID, workload identity, managed identity, and Key Vault integration
Storage Options Persistent volumes, CSI drivers, Azure Disks, Azure Files, and secret mounts
Scaling Pod and node autoscaling, workload sizing, and cluster growth controls

Advanced Topics

  • Separate platform decisions into cluster baseline, workload baseline, and environment baseline.
  • Keep a cluster architecture decision record for network plugin, ingress pattern, and secret strategy.

See Also

Sources