Jurgen and Dinant are going to tell how they have overcome the challenges in setting up Azure Kubernetes Service (AKS) in such a way that it is secure, multi-tenant and compliant with the local government regulations (SCF, SMCF, DPIA, NORA and BIO).

Like many companies, the City of Amsterdam is adopting Container Technology as part of their Cloud Roadmap Strategy. The goal is to empower the workload teams with the latest technology and the DevOps way of working. On the Cloud Journey, the Cloud-Ops and Workload teams concluded that it isn’t just enabling “AKS”. It also requires a lot of management and Kubernetes knowledge, which is currently not present by most of the workload teams.

The decision was made to create a Shared-AKS (DTAP) offering for all the workload teams within the City of Amsterdam, which led to cost savings and central management. To achieve this goal, the choice of multi-tenancy was born. New challenges arose concerning the security and compliance regulations. One of the biggest challenges was segmentation of applications, which is by default not in nature of Kubernetes.