Azure Kubernetes Service (AKS) Private Link is now generally available. Use it to isolate your Kubernetes API server within your Azure virtual network, enabling fully private communication with the managed Kubernetes control plane hosted by AKS.
Source: Azure Roadmap