From 61ee315a5f6ba5b15aa4e26f595367838dd3849a Mon Sep 17 00:00:00 2001 From: Ananya Garg Date: Mon, 1 Aug 2022 10:12:38 -0700 Subject: [PATCH] MSFT reviews addressed --- articles/aks/use-multiple-node-pools.md | 4 ++-- articles/confidential-computing/TOC.yml | 2 +- ...pool-in-aks.md => confidential-node-pool-aks.md} | 2 +- articles/confidential-computing/index.yml | 2 +- ...-image.png => snp-on-aks-architecture-image.png} | Bin cli/azure/aks | 0 6 files changed, 5 insertions(+), 5 deletions(-) rename articles/confidential-computing/{confidential-node-pool-in-aks.md => confidential-node-pool-aks.md} (93%) rename articles/confidential-computing/media/confidential-vm-node-pools-on-aks/{snp-on-aks-architechture-image.png => snp-on-aks-architecture-image.png} (100%) create mode 100644 cli/azure/aks diff --git a/articles/aks/use-multiple-node-pools.md b/articles/aks/use-multiple-node-pools.md index b04a60ddec623..4155532815e94 100644 --- a/articles/aks/use-multiple-node-pools.md +++ b/articles/aks/use-multiple-node-pools.md @@ -171,11 +171,11 @@ az aks nodepool add \ ``` ### Add a confidential VM (with AMD SEV-SNP support) node pool (preview) -AKS node pools now support the generally available [confidential VM sizes (DCav5/ECav5)](https://aka.ms/AMD-ACC-VMs-GA-Inspire-2022) to create confidential VM node pools. Confidential VMs with AMD SEV-SNP support bring a new set of security features to protect date-in-use with full VM memory encryption. This enables confidential VM node pools to target the migration of highly sensitive container workloads to AKS without any code refactoring while benefiting from the full AKS feature support. To learn more, check out our [latest offering](../confidential-computing/confidential-node-pool-in-aks.md). +AKS node pools now support the generally available [confidential VM sizes (DCav5/ECav5)](https://aka.ms/AMD-ACC-VMs-GA-Inspire-2022) to create confidential VM node pools. Confidential VMs with AMD SEV-SNP support bring a new set of security features to protect date-in-use with full VM memory encryption. This enables confidential VM node pools to target the migration of highly sensitive container workloads to AKS without any code refactoring while benefiting from the full AKS feature support. To learn more, check out our [latest offering](../confidential-computing/confidential-node-pool-aks.md). [!INCLUDE [preview features callout](./includes/preview/preview-callout.md)] -Add a confidential node pool using the [az aks nodepool add][az-aks-nodepool-add] command. This time, specify the name *cvmnodepool*, and use the `--node-vm-size` parameter to specify the *Standard_DC2as_v5* size: +Add a confidential node pool using the [az aks nodepool add][az-aks-nodepool-add] command. Specify the name *cvmnodepool*, and use the `--node-vm-size` parameter to specify the *Standard_DC2as_v5* size: ```azurecli-interactive az aks nodepool add \ diff --git a/articles/confidential-computing/TOC.yml b/articles/confidential-computing/TOC.yml index d4adb00c06754..8bc214de43d9d 100644 --- a/articles/confidential-computing/TOC.yml +++ b/articles/confidential-computing/TOC.yml @@ -43,7 +43,7 @@ - name: Confidential node pools in AKS items: - name: Add a confidential VM node pool to your AKS cluster - href: confidential-node-pool-in-aks.md + href: confidential-node-pool-aks.md - name: Concept expanded: true items: diff --git a/articles/confidential-computing/confidential-node-pool-in-aks.md b/articles/confidential-computing/confidential-node-pool-aks.md similarity index 93% rename from articles/confidential-computing/confidential-node-pool-in-aks.md rename to articles/confidential-computing/confidential-node-pool-aks.md index 39e913968f2c9..0401a35daebab 100644 --- a/articles/confidential-computing/confidential-node-pool-in-aks.md +++ b/articles/confidential-computing/confidential-node-pool-aks.md @@ -24,7 +24,7 @@ In addition to the hardened security profile, confidential node pools on AKS als - Lift and Shift with full AKS feature support - to enable a seamless lift-and-shift of Linux container workloads - Heterogenous Node Pools - to store sensitive data in a VM-level TEE node pool with memory encryption keys generated from the chipset itself -:::image type="content" source="media/confidential-vm-node-pools-on-aks/snp-on-aks-architechture-image.png" alt-text="Graphic of VM nodes in AKS with encrypted code and data in confidential VM node pools 1 and 2, on top of the hypervisor"::: +:::image type="content" source="media/confidential-vm-node-pools-on-aks/snp-on-aks-architecture-image.png" alt-text="Graphic of VM nodes in AKS with encrypted code and data in confidential VM node pools 1 and 2, on top of the hypervisor"::: Get started and add confidential node pools to existing AKS cluster with [this quick start guide](../aks/use-multiple-node-pools.md#add-a-confidential-vm-with-amd-sev-snp-support-node-pool-preview). diff --git a/articles/confidential-computing/index.yml b/articles/confidential-computing/index.yml index 755bbaffc1361..2672459380e64 100644 --- a/articles/confidential-computing/index.yml +++ b/articles/confidential-computing/index.yml @@ -93,7 +93,7 @@ landingContent: - text: App enclave nodes in AKS url: confidential-nodes-aks-overview.md - text: Confidential VM node pool in AKS - url: confidential-node-pool-in-aks.md + url: confidential-node-pool-aks.md - linkListType: quickstart links: - text: CLI based provisioning with a hello from enclave container app on AKS diff --git a/articles/confidential-computing/media/confidential-vm-node-pools-on-aks/snp-on-aks-architechture-image.png b/articles/confidential-computing/media/confidential-vm-node-pools-on-aks/snp-on-aks-architecture-image.png similarity index 100% rename from articles/confidential-computing/media/confidential-vm-node-pools-on-aks/snp-on-aks-architechture-image.png rename to articles/confidential-computing/media/confidential-vm-node-pools-on-aks/snp-on-aks-architecture-image.png diff --git a/cli/azure/aks b/cli/azure/aks new file mode 100644 index 0000000000000..e69de29bb2d1d