From d7c27cf359eb9b0fb367c8c0f8a9daf0136bf96b Mon Sep 17 00:00:00 2001 From: Lily Pan Date: Mon, 20 Nov 2023 14:36:27 -0800 Subject: [PATCH 1/4] add trusted launch fields to AgentPoolSecurityProfile --- .../aks/preview/2023-11-02-preview/managedClusters.json | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/specification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2023-11-02-preview/managedClusters.json b/specification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2023-11-02-preview/managedClusters.json index 2fe595857a63..659d7923c409 100644 --- a/specification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2023-11-02-preview/managedClusters.json +++ b/specification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2023-11-02-preview/managedClusters.json @@ -7146,6 +7146,14 @@ "sshAccess": { "$ref": "#/definitions/AgentPoolSSHAccess", "description": "SSH access method of an agent pool." + }, + "enableVTPM": { + "type": "boolean", + "description": "vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false." + }, + "enableSecureBoot": { + "type": "boolean", + "description": "Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false." } }, "description": "The security settings of an agent pool." From 6216da5a4e11e439d73e342a88c8dbf44c0e8990 Mon Sep 17 00:00:00 2001 From: Lily Pan Date: Mon, 27 Nov 2023 11:56:50 -0800 Subject: [PATCH 2/4] fix link to docs --- .../aks/preview/2023-11-02-preview/managedClusters.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/specification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2023-11-02-preview/managedClusters.json b/specification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2023-11-02-preview/managedClusters.json index 659d7923c409..5c41301e1781 100644 --- a/specification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2023-11-02-preview/managedClusters.json +++ b/specification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2023-11-02-preview/managedClusters.json @@ -7149,11 +7149,11 @@ }, "enableVTPM": { "type": "boolean", - "description": "vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false." + "description": "vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/trustedlaunch. If not specified, the default is false." }, "enableSecureBoot": { "type": "boolean", - "description": "Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false." + "description": "Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/trustedlaunch. If not specified, the default is false." } }, "description": "The security settings of an agent pool." From 7bbe344d1a4a8d3db34492ffeccfcdc9f22f5e51 Mon Sep 17 00:00:00 2001 From: Lily Pan Date: Wed, 29 Nov 2023 10:15:16 -0800 Subject: [PATCH 3/4] add new words to cspell.json --- cSpell.json | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/cSpell.json b/cSpell.json index 365c88ef064e..b82b4b81f76c 100644 --- a/cSpell.json +++ b/cSpell.json @@ -177,6 +177,13 @@ "Noreuse" ] }, + { + "filename": "**/specification/containerservice/resource-manager/Microsoft.ContainerService/aks/**/*json", + "words": [ + "vtpm", + "trustedlaunch" + ] + }, { "filename": "**/specification/containerregistry/data-plane/Microsoft.ContainerRegistry/preview/2018-08-10/containerregistry.json", "words": [ From 07429c6592a3c0ea37d5d41e9657a1264db566b1 Mon Sep 17 00:00:00 2001 From: Lily Pan Date: Wed, 29 Nov 2023 11:00:20 -0800 Subject: [PATCH 4/4] fix links to docs again --- .../aks/preview/2023-11-02-preview/managedClusters.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/specification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2023-11-02-preview/managedClusters.json b/specification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2023-11-02-preview/managedClusters.json index 5c41301e1781..659d7923c409 100644 --- a/specification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2023-11-02-preview/managedClusters.json +++ b/specification/containerservice/resource-manager/Microsoft.ContainerService/aks/preview/2023-11-02-preview/managedClusters.json @@ -7149,11 +7149,11 @@ }, "enableVTPM": { "type": "boolean", - "description": "vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/trustedlaunch. If not specified, the default is false." + "description": "vTPM is a Trusted Launch feature for configuring a dedicated secure vault for keys and measurements held locally on the node. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false." }, "enableSecureBoot": { "type": "boolean", - "description": "Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/trustedlaunch. If not specified, the default is false." + "description": "Secure Boot is a feature of Trusted Launch which ensures that only signed operating systems and drivers can boot. For more details, see aka.ms/aks/trustedlaunch. If not specified, the default is false." } }, "description": "The security settings of an agent pool."