Duration
4 days (we can adjust the duration for teams who are already familiar with Kubernetes and want to prepare for the certification)
Objectives
- Prepare for the CKA exam
- Understand the Kubernetes principles
- Understand basic Kubernetes Administration
- Deploy, monitor, and protect applications effectively on Kubernetes
- Install, upgrade, and troubleshoot a cluster
- Define YAML manifests for the main resource types of Pods, workload controllers, volumes, services, and ingress controllers
- Deploy stateless and stateful applications to take advantage of the high availability, orchestration, and scaling features of Kubernetes
- Upgrade applications
- Secure the platform through the use of role-based access controls and security policies
- Apply platform extensions
Prerequisites
- Experience working at the command line and using a text editor, such as vi or nano
- Familiarity with the basic container and Linux process concepts
- Ability to connect using an ssh client (openssh, Putty)
Outline for Certified Kubernetes Administrator Training
- Kubernetes Concepts
- Review of container concepts
- Why Pods? - comparison with containers, Pod principles
- Launching Pods, and interacting with Pods (curl, exec, logs)
- Availability at scale with Kubernetes
- K101: Loose coupling, desired state, Namespaces, Pods, Controllers, Services
- Detailed step-by-step cluster Installation & upgrades using kubeadm
- The networking model
- Kubeconfig file
- Bootstrapping Kubernetes (systemd, kubelet manifests, etc.)
- Application Deployment with Kubernetes
- Kubernetes Architecture
- Pods - init containers, multi-container design patterns
- Resource management
- Kubernetes API (API groups, explain, API access)
- Workload controllers
- Application Upgrades
- Storage: emptyDir, hostPath, PV/PVC, dynamic storage
- Config Maps: creation, utilization, updates
- Secrets: creation, utilization, updates
- Tools, Extensions, Services, Observability
- Extending Kubernetes
- Helm package manager, CRDs, Operators
- Exposing applications:
- Services, Ingress Controllers
- ServiceMesh
- Observability
- Metrics Server, dashboard, Logging, Metrics, Prometheus/Grafana
- Troubleshooting, Security, Cluster HA
- Troubleshooting
- Application, cluster troubleshooting steps
- Security
- PodSecurityPolicies (deprecated), SecurityContext
- API Server Request handling
- Authentication
- Authorization (RBAC)
- Admission Control (Policy engines)
- Network policies
- Cluster HA
- Taking the Exam