Announcing Public Preview of Argo CD extension on AKS and Azure Arc enabled Kubernetes clusters

We are excited to announce public preview of the Argo CD extension for Azure Kubernetes Service (AKS) and Azure Arc-enabled Kubernetes clusters.

As GitOps becomes the standard for deploying and operating applications at scale, enterprises need a way to implement GitOps while staying compliant with best practices for security and identity management. Argo CD extension delivers on this need across 3 pillars - 

Trusted Identity and Secure Access

The Argo CD extension integrates with Microsoft Entra ID to provide a secure, enterprise-ready experience for:

• Secure authentication using Workload Identity federation to Azure Container Registry (ACR) and Azure DevOps. This removes the need for long-lived credentials or hard-coded secrets in Git Repos, moving your CD pipelines closer to a true zero-trust architecture.
• Single Sign-On (SSO) using existing Azure identities. 

Enterprise-Grade Hardening and Security

This preview introduces several enhancements to improve your security posture:

• To minimize the attack surface, the extension’s images are built on Azure Linux, specifically engineered for reduced CVEs and improved baseline security.
• Opt-in to automatic patch releases to stay current on security fixes while maintaining full control over your change management processes.

Parity with upstream Argo CD

Argo CD extension is designed to remain fully aligned with the upstream Argo CD open‑source project, so teams can use Argo CD as they do today with support for

• Configuring Argo CD extension with High availability (HA) for production‑grade deployments of critical workloads.
• Using hub‑and‑spoke architecture for multi‑cluster GitOps scenarios.
• Application and ApplicationSet, enabling automated and scalable application delivery across large fleets of clusters.

Getting Started

We invite you to explore the Argo CD extension and provide feedback as we continue to evolve GitOps capabilities for Kubernetes.

To get started today, you can enable the extension on your clusters using the Azure CLI. Argo CD extension management via the Azure Portal will be available in a few weeks.