I was trying to upgrade the AKS cluster using C#/Pulumi to upgrade the aks cluster version from 1.23.8 to 1.24.6. Getting below error enter image description here
I have tried assigning PrivateDNSZonecontributor, contributor, Networkcontributor permissions for the aksmanaged identity. but no luck. Did any one got above issues? any suggesions/ideas to the resolutions appreciated. Thanks, Praveen
It seems you are granting the permissions to the wrong identity. You should grant the cluster assigned identity at least the Private DNS Zone Contributor and Network Contributor roles as mentioned here.
To get the identity, use the ID found in the output of
az aks show -g <RG> -n <name> --query identity