add new paramter to enable AAD profile

plugins/modules/azure_rm_aks.py

@@ -225,6 +225,15 @@
                 description:
                     - The AAD tenant ID to use for authentication.
                     - If not specified, will use the tenant of the deployment subscription.
+            managed:
+                description:
+                    - Whether to enable manged AAD.
+                type: bool
+                default: false
+            admin_group_object_ids:
+                description:
+                    - AAD group object IDs that will have admin role of the cluster.
+                type: str
     addon:
         description:
             - Profile of managed cluster add-on.
@@ -619,7 +628,9 @@ def create_addon_profiles_spec():
     client_app_id=dict(type='str'),
     server_app_id=dict(type='str'),
     server_app_secret=dict(type='str', no_log=True),
-    tenant_id=dict(type='str')
+    tenant_id=dict(type='str'),
+    managed=dict(type='bool', default='false'),
+    admin_group_object_ids=dict(type='str')
 )
 
 

tests/integration/targets/azure_rm_aks/tasks/minimal-cluster.yml

@@ -13,6 +13,9 @@
     resource_group: "{{ resource_group }}"
     kubernetes_version: "{{ versions.azure_aks_versions[0] }}"
     dns_prefix: "aks{{ rpfx }}"
+    enable_rbac: true
+    aad_profile:
+      managed: true
     agent_pool_profiles:
       - name: default
         count: 1
@@ -46,6 +49,7 @@
     that:
       - "fact.aks | length == 1"
       - fact.aks[0].id == output.id
+      - fact.aks[0].properties.aadProfile.managed == true
 
 - name: Use minimal parameters and system-assigned identity (idempotent)
   azure_rm_aks:
@@ -54,6 +58,9 @@
     resource_group: "{{ resource_group }}"
     kubernetes_version: "{{ versions.azure_aks_versions[0] }}"
     dns_prefix: "aks{{ rpfx }}"
+    enable_rbac: true
+    aad_profile:
+      managed: true
     agent_pool_profiles:
       - name: default
         count: 1