Grafana, Prometheus, Kiali authentication with AzureAD and istio internal load balancer


I’m deploying istio in azure kubernetes services (AKS) and I have the following questions:

  1. Is it possible to configure Azure B2B for authentication for Granfana, Prometheus and Kiali? Right now, we have to provide the username and password to use for authentication in the manifest (.yaml) file.

  2. Is it possible to deploy istio using an internal load balancer. Looks like it is deployed in Azure with a public load balancer by default. What do I need to change to make it use an internal load balancer?