Configure-AKSWorkloadCluster creates cluster with no service account?

[joshmouch]

Is your issue related to a Jumpstart scenario, ArcBox, HCIBox, or Agora? The issue is on the AKS step of HCIBox (https://arcjumpstart.com/azure_jumpstart_hcibox/AKS)

Describe the issue or the bug After running the Configure-AKSWorkloadCluster.ps1 script, an AKS cluster is created, but it seems to be missing a piece of authentication.

Also, the step on that page that starts a proxy then tells you to open a shell to access kubectl has this error:

I don't see any errors in the "Configure-AKSWorkloadCluster.log" file on the HCIBox-Client VM.

Any idea what step may have failed?

[dkirby-ms]

You need to manually create a service account bearer token to get Azure portal access to the Kubernetes resources. You can view instructions to do that here - https://learn.microsoft.com/en-us/azure/azure-arc/kubernetes/cluster-connect?tabs=azure-powershell%2Cagent-version#service-account-token-authentication-option. Does this help?

[likamrat]

Closing this for now. @joshmouch please let us know if you have more question.