This creates Managed Identites on Azure for ExternalDNS, cert-manager, and a CloudNative-PG cluster named postgres. It also associates Federated Credentials with them. These Managed Identities' Client IDs can then be reference in Kubernetes ServiceAccounts. I could have created those here, but--at least for Azure--the ServiceAccounts are created by KOTS/Helm.
This creates Managed Identites on Azure for ExternalDNS, cert-manager, and a CloudNative-PG cluster named
postgres. It also associates Federated Credentials with them. These Managed Identities' Client IDs can then be reference in Kubernetes ServiceAccounts. I could have created those here, but--at least for Azure--the ServiceAccounts are created by KOTS/Helm.