Subscription Id — the Azure subscription containing the AKS cluster.
Resource Group Name — the resource group containing the cluster.
AKS Cluster Name — the name of the AKS cluster.
AKS Namespace — the Kubernetes namespace where workloads are dispatched.
Authentication methods
Polysync Service Principal ⭐ (recommended) — no extra attributes; grant the Polysync Enterprise Application Azure Kubernetes Service Cluster User Role on the cluster. This is the standard method for all Polysync tenants.
Service Principal — Tenant Id, Client Id, Client Secret. Use when you need a dedicated SPN per cluster. Rotate the secret regularly.
Certificate — Tenant Id, Client Id, Certificate (base64 or path), optional Certificate Password and Thumbprint.
Permissions checklist
The chosen identity must hold at minimum the Azure Kubernetes Service Cluster User Role on the cluster to retrieve credentials, plus RBAC permissions within Kubernetes for the target namespace.
For private AKS clusters, ensure the Polysync host can reach the cluster API server endpoint.