OIDC provider

OIDC provider¶

It's recommended to provision Azure AKS clusters that will use OIDC with the OIDC provider from the start, as enabling OIDC Issuer on an existing cluster changes the current service account token issuer to a new value, which can cause downtime and restarts of the API server.

Follow the Azure documentation here to associate an OIDC provider with your AKS cluster: Create an OpenID Connect provider on Azure Kubernetes Service (AKS).