aks-preview: Fix managedNATGatewayV2 outbound type being overwritten to loadBalancer

[christine33-creator]

The dynamic completion logic in _get_outbound_type() did not include managedNATGatewayV2 in its list of known outbound types. When a user specified --outbound-type managedNATGatewayV2, the CLI treated it as an unrecognized value and silently overwrote it to loadBalancer before sending the request to the RP.

Fixed in 3 places:

• Dynamic completion list: preserve managedNATGatewayV2 instead of overwriting to loadBalancer
• Basic LB SKU validation: reject managedNATGatewayV2 with basic SKU
• Multi-zone warning: show zone-redundancy warning for V2 on update

---

This checklist is used to make sure that common guidelines for a pull request are followed.

Related command

General Guidelines

• Have you run azdev style <YOUR_EXT> locally? (pip install azdev required)
• Have you run python scripts/ci/test_index.py -q locally? (pip install wheel==0.30.0 required)
• My extension version conforms to the Extension version schema

For new extensions:

• My extension description/summary conforms to the Extension Summary Guidelines.

About Extension Publish

There is a pipeline to automatically build, upload and publish extension wheels.
Once your pull request is merged into main branch, a new pull request will be created to update src/index.json automatically.
You only need to update the version information in file setup.py and historical information in file HISTORY.rst in your PR but do not modify src/index.json.

[azure-client-tools-bot-prd]

️✔️Azure CLI Extensions Breaking Change Test

️✔️Non Breaking Changes

[azure-client-tools-bot-prd]

Hi @christine33-creator,
Please write the description of changes which can be perceived by customers into HISTORY.rst.
If you want to release a new extension version, please update the version in setup.py as well.

[yonzhan]

Thank you for your contribution! We will review the pull request and get back to you soon.

[github-actions]

The git hooks are available for azure-cli and azure-cli-extensions repos. They could help you run required checks before creating the PR.

Please sync the latest code with latest dev branch (for azure-cli) or main branch (for azure-cli-extensions).
After that please run the following commands to enable git hooks:

pip install azdev --upgrade
azdev setup -c <your azure-cli repo path> -r <your azure-cli-extensions repo path>

[github-actions]

CodeGen Tools Feedback Collection

Thank you for using our CodeGen tool. We value your feedback, and we would like to know how we can improve our product. Please take a few minutes to fill our codegen survey

[github-actions]

Hi @christine33-creator

Release Suggestions

Module: aks-preview

• Update VERSION to 19.0.0b29 in src/aks-preview/setup.py

Notes

• For more info about extension versioning, please refer to Extension version schema

[Copilot]

Pull request overview

Fixes an aks-preview regression where managedNATGatewayV2 was treated as an unknown outbound type during _get_outbound_type() dynamic completion, causing it to be silently overwritten to loadBalancer before the request was sent to the RP.

Changes:

• Add managedNATGatewayV2 to the “known outbound types” list so it is preserved (not defaulted to loadBalancer) during create-time dynamic completion.
• Extend outbound-type validation to reject managedNATGatewayV2 when using Basic load balancer SKU.
• Extend the multi-zone NAT Gateway update warning to also apply to managedNATGatewayV2.

[Copilot]

Consider adding/adjusting unit tests to cover the regression fixed here: when the user explicitly sets --outbound-type managedNATGatewayV2, _get_outbound_type() should preserve it (not default to loadBalancer), and enable_validation should reject it when load balancer SKU is basic. There are existing unit tests for _get_outbound_type() but none exercise the V2 outbound type path.

[FumingZhang]

Is there an existing test case that covers this scenario to confirm the fix is correct? If not, please create one and schedule the live test to ensure it works as expected.

[christine33-creator]

Is there an existing test case that covers this scenario to confirm the fix is correct? If not, please create one and schedule the live test to ensure it works as expected.

Added a unit test in test_managed_cluster_decorator.py that verifies managedNATGatewayV2 is preserved through the dynamic completion logic instead of being overwritten to loadBalancer.

The test passes locally. A live test cannot pass yet because the RP-side feature toggle is not enabled; the RP currently returns UnsupportedOutboundType across all tested regions (eastus2, westus2, eastus2euap, centraluseuap). We can add/schedule the live test once the RP rollout begins.

[FumingZhang]

/azp run

[azure-pipelines]

Azure Pipelines successfully started running 2 pipeline(s).

[FumingZhang]

lgtm

Please leave a note about the fix in HISTORY.rst

[levimm]

bump the version to 19.0.0b29?

[christine33-creator]

bumped