what could be the minimum permission required to create AKS cluster?
Need to know the list of "Job function roles" to be attached with the app(created in App Registration) and those roles should be minimum.
Tried with contributor role only. Not much familiar with Azure cloud.
In general, if you have the contributor role assigned to your id in Azure, you can create an AKS cluster without any issue as the Contributor role provides broad permissions. If you want to specifically choose selective Job function roles for your cluster, you can use the Azure Kubernetes Service Cluster Admin role, which will allow you to create and manage AKS clusters but doesn't grant broad permissions across the entire Azure subscription. Below is the list of Job function roles. Home-> Kubernetes-> Access Control (IAM)-> Add Role assignment-> Job Function roles
You can also verify your current roles under subscription-> your-subscription-name->access-control(IAM)->View my access
This is a sample cluster on AKS with these roles enabled
FYI- If you need to interact with other resources outside of AKS, you might need additional roles or a combination of roles.
To understand better check this MS reference link
Reference MS Docs:
MS Doc MS Doc