Add cluster-level FIPS to AKS 2026-03 preview#42799
Merged
ttruongatl merged 1 commit intoMay 4, 2026
Merged
Conversation
Add the cluster-level enableFIPS property to ManagedClusterProperties for the 2026-03-02-preview AKS API. Regenerate the 2026-03-02-preview managedClusters swagger and add C# and Java client naming customizations for the FIPS acronym. Co-authored-by: Copilot <[email protected]>
Next Steps to MergeImportant checks have failed. As of today they are not blocking this PR, but in near future they may.Addressing the following failures is highly recommended:
Comment generated by summarize-checks workflow run. |
API Change CheckAPIView identified API level changes in this PR and created the following API reviews
Comment generated by After APIView workflow run. |
palma21
approved these changes
May 1, 2026
matthchr
approved these changes
May 4, 2026
ttruongatl
merged commit 532ef2a
into
dev-containerservice-Microsoft.ContainerService-2026-03
101 of 108 checks passed
FumingZhang
added a commit
that referenced
this pull request
May 9, 2026
…le/2026-03-01 and preview/2026-03-02-preview (#42502) * Adds base for updating Microsoft.ContainerService/aks from version 2026-02-01 to 2026-03-01 and 2026-02-02-preview to 2026-03-02-preview * Add definitions for multi-NIC support to v2026_03_02_preview (#42513) * Add definitions for multi-NIC support * Post-review fixes * Post-review fixes * Regen JSON * Remove newlines, align a comment * add nodeDisruptionProfile to managedClusterProperties (#42548) * add node disruption profile to managed cluster properties * nits * recompile * nits * recompile * formatting * Add AzureContainerLinux value to OSSKU enum in AKS API (stable 2026-03-01) (#42614) * [AKS] Add ArtifactStreamingProfile to v2026-03-01 GA API (#42703) Promote artifactStreamingProfile from v2026-03-02-preview to GA in v2026-03-01, mirroring #40808 (which does the same for v2026-02-01). - AgentPoolModels.tsp: bump @added decorator on the property and on the AgentPoolArtifactStreamingProfile model from v2026_03_02_preview to v2026_03_01. - stable/2026-03-01/managedClusters.json: add the AgentPoolArtifactStreamingProfile definition and the artifactStreamingProfile $ref under agent pool properties. * Add nodePublicIPPrefixIDs to AgentPoolNetworkProfile for IPv6 ILPIP Support (#42519) * Add nodePublicIPPrefixIDs to AgentPoolNetworkProfile for IPv6 ILPIP support Add a new nodePublicIPPrefixIDs array property to AgentPoolNetworkProfile in the 2026-03-02-preview API version. This enables dual-stack (IPv4+IPv6) node public IP assignment via public IP prefixes. - Array of armResourceIdentifier scoped to Microsoft.Network/publicIPPrefixes - @Maxitems(2): at most one IPv4 and one IPv6 prefix - @added(Versions.v2026_03_02_preview): version-gated to new preview - Mutually exclusive with top-level nodePublicIPPrefixID property * Address review: use single-line description for nodePublicIPPrefixIDs * chore: remove disk driver version from 2026-03-02-preview (#42561) Co-authored-by: Huichan Cheng <[email protected]> * Kubereserved and hardeviction customization - Dev containerservice microsoft.container service 2026 03 (#42655) * Add kubelet kubeReserved and hard eviction schema * Sync kubelet descriptions from private swagger * Move kubelet schema changes into TypeSpec sources * Fix spellcheck for millicores --------- Co-authored-by: Ubuntu <[email protected]> * resolve go sdk failure * feat(api): add AKS cluster-level FIPS property (#42799) Add the cluster-level enableFIPS property to ManagedClusterProperties for the 2026-03-02-preview AKS API. Regenerate the 2026-03-02-preview managedClusters swagger and add C# and Java client naming customizations for the FIPS acronym. Co-authored-by: Thanh Truong <[email protected]> Co-authored-by: Copilot <[email protected]> --------- Co-authored-by: jumpinthefire <[email protected]> Co-authored-by: Erin Borders <[email protected]> Co-authored-by: aadhar-agarwal <[email protected]> Co-authored-by: Ganeshkumar Ashokavardhanan <[email protected]> Co-authored-by: Christine DOSSA <[email protected]> Co-authored-by: hccheng72 <[email protected]> Co-authored-by: Huichan Cheng <[email protected]> Co-authored-by: Sercan Guler <[email protected]> Co-authored-by: Ubuntu <[email protected]> Co-authored-by: tadelesh <[email protected]> Co-authored-by: ttruongatl <[email protected]> Co-authored-by: Thanh Truong <[email protected]> Co-authored-by: Copilot <[email protected]>
saprakas
pushed a commit
to iyyappam/azure-rest-api-specs
that referenced
this pull request
May 12, 2026
…le/2026-03-01 and preview/2026-03-02-preview (Azure#42502) * Adds base for updating Microsoft.ContainerService/aks from version 2026-02-01 to 2026-03-01 and 2026-02-02-preview to 2026-03-02-preview * Add definitions for multi-NIC support to v2026_03_02_preview (Azure#42513) * Add definitions for multi-NIC support * Post-review fixes * Post-review fixes * Regen JSON * Remove newlines, align a comment * add nodeDisruptionProfile to managedClusterProperties (Azure#42548) * add node disruption profile to managed cluster properties * nits * recompile * nits * recompile * formatting * Add AzureContainerLinux value to OSSKU enum in AKS API (stable 2026-03-01) (Azure#42614) * [AKS] Add ArtifactStreamingProfile to v2026-03-01 GA API (Azure#42703) Promote artifactStreamingProfile from v2026-03-02-preview to GA in v2026-03-01, mirroring Azure#40808 (which does the same for v2026-02-01). - AgentPoolModels.tsp: bump @added decorator on the property and on the AgentPoolArtifactStreamingProfile model from v2026_03_02_preview to v2026_03_01. - stable/2026-03-01/managedClusters.json: add the AgentPoolArtifactStreamingProfile definition and the artifactStreamingProfile $ref under agent pool properties. * Add nodePublicIPPrefixIDs to AgentPoolNetworkProfile for IPv6 ILPIP Support (Azure#42519) * Add nodePublicIPPrefixIDs to AgentPoolNetworkProfile for IPv6 ILPIP support Add a new nodePublicIPPrefixIDs array property to AgentPoolNetworkProfile in the 2026-03-02-preview API version. This enables dual-stack (IPv4+IPv6) node public IP assignment via public IP prefixes. - Array of armResourceIdentifier scoped to Microsoft.Network/publicIPPrefixes - @Maxitems(2): at most one IPv4 and one IPv6 prefix - @added(Versions.v2026_03_02_preview): version-gated to new preview - Mutually exclusive with top-level nodePublicIPPrefixID property * Address review: use single-line description for nodePublicIPPrefixIDs * chore: remove disk driver version from 2026-03-02-preview (Azure#42561) Co-authored-by: Huichan Cheng <[email protected]> * Kubereserved and hardeviction customization - Dev containerservice microsoft.container service 2026 03 (Azure#42655) * Add kubelet kubeReserved and hard eviction schema * Sync kubelet descriptions from private swagger * Move kubelet schema changes into TypeSpec sources * Fix spellcheck for millicores --------- Co-authored-by: Ubuntu <[email protected]> * resolve go sdk failure * feat(api): add AKS cluster-level FIPS property (Azure#42799) Add the cluster-level enableFIPS property to ManagedClusterProperties for the 2026-03-02-preview AKS API. Regenerate the 2026-03-02-preview managedClusters swagger and add C# and Java client naming customizations for the FIPS acronym. Co-authored-by: Thanh Truong <[email protected]> Co-authored-by: Copilot <[email protected]> --------- Co-authored-by: jumpinthefire <[email protected]> Co-authored-by: Erin Borders <[email protected]> Co-authored-by: aadhar-agarwal <[email protected]> Co-authored-by: Ganeshkumar Ashokavardhanan <[email protected]> Co-authored-by: Christine DOSSA <[email protected]> Co-authored-by: hccheng72 <[email protected]> Co-authored-by: Huichan Cheng <[email protected]> Co-authored-by: Sercan Guler <[email protected]> Co-authored-by: Ubuntu <[email protected]> Co-authored-by: tadelesh <[email protected]> Co-authored-by: ttruongatl <[email protected]> Co-authored-by: Thanh Truong <[email protected]> Co-authored-by: Copilot <[email protected]>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
ARM (Control Plane) API Specification Update Pull Request
Purpose of this PR
Adds the cluster-level
enableFIPSproperty to AKSManagedClusterPropertiesin2026-03-02-preview. This is an additive preview API change for cluster-level FIPS enablement and includes generated swagger plus SDK client naming customizations for the FIPS acronym.Approved proposal: https://github.com/azure-management-and-platforms/aks-handbook/pull/128
What's the purpose of this PR? Check the specific option that applies. This is mandatory!
Due diligence checklist
To merge this PR, you must go through the following checklist and confirm you understood
and followed the instructions by checking all the boxes:
ARM resource provider contract and
REST guidelines (estimated time: 4 hours).
I understand this is required before I can proceed to the diagram Step 2, "ARM API changes review", for this PR.
Additional information
Changed files:
specification/containerservice/resource-manager/Microsoft.ContainerService/aks/CommonModels.tspspecification/containerservice/resource-manager/Microsoft.ContainerService/aks/client.tspspecification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2026-03-02-preview/managedClusters.jsonValidation performed:
npx tsp compile . --warn-as-errornpx tsp compile client.tsp --no-emit --warn-as-errornpx tsp format --check specification/containerservice/resource-manager/Microsoft.ContainerService/aks/CommonModels.tsp specification/containerservice/resource-manager/Microsoft.ContainerService/aks/client.tspnpx prettier --check specification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2026-03-02-preview/managedClusters.jsongit diff --checkViewing API changes
For convenient view of the API changes made by this PR, refer to the URLs provided in the table
in the
Generated ApiViewcomment added to this PR. You can use ApiView to show API versions diff.Suppressing failures
If one or multiple validation error/warning suppression(s) is detected in your PR, please follow the
suppressions guide to get approval.
Getting help
Purpose of this PRandDue diligence checklist.write accessper aka.ms/azsdk/access#request-access-to-rest-api-or-sdk-repositoriesNext Steps to Mergecomment. It will appear within few minutes of submitting this PR and will continue to be up-to-date with current PR state.and https://aka.ms/ci-fix.
queuedstate, please add a comment with contents/azp run.This should result in a new comment denoting a
PR validation pipelinehas started and the checks should be updated after few minutes.