Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
> Applies to: AKS on Azure Local version 2508 and earlier
The Windows node pool feature is disabled by default in Azure Local release 2509 and later. If you are using Azure Local version 2508 or earlier, you can follow the steps in this article to disable the Windows node pool feature. For versions 2509 and later, see Enable the Windows node pool feature.
This article describes how to disable the Windows node pool feature for Azure Kubernetes Service (AKS) on Azure Local versions 2508 and earlier. You can disable this feature to prevent the automatic download of Windows Virtual Hard Disks (VHDs), which are approximately 20 GB in size, and are required for creating Windows-based node pools. By doing so, enterprises with limited internet bandwidth can avoid unnecessary downloads, especially if their workloads are exclusively using Linux containers. This helps optimize bandwidth usage and simplifies resource management for environments where Windows nodes aren't needed.
Before you begin
Before you begin, make sure you have the following prerequisites in place:
- Azure Local deployed. This article is only applicable if you already deployed Azure Local (release 2508 or earlier). You can't run the commands in this article before you deploy Azure Local. We currently don't support the ability to make this change before the initial Azure Local deployment.
- Azure RBAC permissions to update Azure Local configuration. Make sure you have the following roles. For more information, see required permissions for deployment:
- Azure Local Administrator
- Reader
- Custom Location. The name of the custom location. The custom location is configured during the Azure Local deployment. If you're in the Azure portal, go to the Overview > Server page in the Azure Local system resource. You should see a custom location for your cluster.
- Azure resource group. The Azure resource group in which Azure Local is deployed.
Recommended option: disable Windows node pool from an Azure CloudShell session
To help simplify configuration, the following steps define environment variables that are referenced in this article. Remember to replace the values shown with your own values.
Set the custom location and the resource group values in environment variables:
$customlocationName = <The custom location name for Azure Local>
$resourceGroup = <The Azure resource group in which Azure Local is deployed>
Next, run the following command to obtain the clusterName parameter. This parameter is the name of the Arc Resource Bridge that you deployed on Azure Local:
az customlocation show -n $customlocationName -g $resourceGroup --query hostResourceId
Expected output:
/subscriptions/f3dwer-00000-4383-2345-00000/resourceGroups/SanJose/providers/Microsoft.ResourceConnector/appliances/sanjose-arcbridge
In this output, sanjose-arcbridge is the name of the Arc resource bridge you deployed on the Azure local cluster. This name is different for your deployment.
$clusterName = <Name of Arc resource bridge deployed on the Azure Local cluster>
Next, obtain the name of the AKS Arc extension you deployed to the custom location. To get this name, run the following command to list the extensions installed on the custom location:
az customlocation show -n $customlocationID -g $resourceGroup --query clusterExtensionIds -o tsv
Expected output:
/subscriptions/fbaf508b-cb61-4383-9cda-a42bfa0c7bc9/resourceGroups/SanJose/providers/Microsoft.ResourceConnector/appliances/sanjose-arcbridge/providers/Microsoft.KubernetesConfiguration/extensions/hybridaksextension
/subscriptions/fbaf508b-cb61-4383-9cda-a42bfa0c7bc9/resourceGroups/SanJose/providers/Microsoft.ResourceConnector/appliances/sanjose-arcbridge/providers/Microsoft.KubernetesConfiguration/extensions/vmss-hci
You should have two extensions installed on your custom location: AKS Arc and Arc VM management. Copy the extension name for AKS into an environment variable. In the example output, the extension name is hybridaksextension. It might be different from what you see:
$extensionName = <Name of AKS Arc extension you deployed on the custom location>
After you have the extension name, create variables for the following parameters, and then disable the Windows node pool feature:
$extensionVersion = "$(az k8s-extension show -n $extensionName -g $resourceGroup -c $clusterName --cluster-type appliances --query version -o tsv)"
$releaseTrain = "$(az k8s-extension show -n $extensionName -g $resourceGroup -c $clusterName --cluster-type appliances --query releaseTrain -o tsv)"
az k8s-extension update --resource-group $resourceGroup --cluster-name $clusterName --cluster-type appliances --name $extensionName --version $extensionVersion --release-train $releaseTrain --config disable-windows-nodepool=true --yes
Alternate option: disable Windows node pool after connecting to an Azure Local physical node via Remote Desktop
If for some reason you're not able to use Azure CloudShell or a machine with connectivity to Azure in order to disable the Windows node pool, you can disable the Windows node pool after connecting to any one of the Azure Local physical nodes with Remote Desktop. You must first sign in to Azure.
az login --use-device-code --tenant <Azure tenant ID>
az account set -s <subscription ID>
$res=get-archcimgmt
az k8s-extension update --resource-group $res.HybridaksExtension.resourceGroup --cluster-name $res.ResourceBridge.name --cluster-type appliances --name $res.HybridaksExtension.name --version $res.HybridaksExtension.version --release-train $res.HybridaksExtension.releaseTrain --config disable-windows-nodepool=true --yes
Validate if the Windows node pool feature is disabled
You can check if the configuration settings were applied by running az k8s-extension show, as follows:
az k8s-extension show --name $extensionName --resource-group $resourceGroup --cluster-name $clusterName --cluster-type appliances --query configurationSettings
Expected output:
...
"disable-windows-nodepool": "true",
...
Next, check if Windows node pools were disabled by running the following command:
az aksarc get-versions --resource-group $resourceGroup --custom-location $customlocationName
The output for osType=Windows should say "Windows node pool feature is disabled" and the ready state should be false, for each Kubernetes version option:
...
"1.27.7": {
"readiness": [
{
"errorMessage": null,
"osSku": "CBLMariner",
"osType": "Linux",
"ready": true
},
{
"errorMessage": "Windows node pool feature is disabled",
"osSku": "Windows2019",
"osType": "Windows",
"ready": false
},
{
"errorMessage": "Windows node pool feature is disabled",
"osSku": "Windows2022",
"osType": "Windows",
"ready": false
}
],
...
FAQ
What happens if I try disabling Windows node pools and Windows node pools exist on at least 1 AKS cluster on the Azure local deployment?
You must delete the Windows node pool manually before you disable the feature. If there are existing Windows node pools, you can't disable the feature.
What happens to downloaded Windows VHDs if I disable Windows node pools?
The Windows VHDs that were previously downloaded are automatically deleted if the Windows node pools feature is disabled. You can verify if Windows VHDs were removed by checking the Azure Local storage paths. Deletion can take some time. Wait 30 minutes before checking. You must check all the storage paths, because Windows VHDs are assigned to storage paths in round-robin fashion, based on available storage capacity.