Objectives

Be prepared for the CKA exam

Understand the Kubernetes principles

Understand basic Kubernetes Administration

Be able to deploy, monitor, protect applications effectively on Kubernetes

Topics

how to install, upgrade or troubleshoot a cluster & its applications

the core principles & concepts of Kubernetes

how to define YAML manifests for the main resource types of Pods, workload controllers, volumes, services & ingress controllers

deploying stateless & stateful applications to take advantage of the high availability, orchestration & scaling features of Kubernetes

upgrading applications

how to secure the platform through use of role-based access controls & security policies

platform extensions & monitoring

taking the CKA exam

Audience

This course is intended for those who need to understand Kubernetes concepts, with a particular focus on administration and passing the CKA certification exam.

 

Prerequisites

be at ease working at the command-line and using a command-line text editor, such as vi or nano

Familiar with basic container and also Linux process concepts

Ability to connect using an ssh client (openssh, Putty)

Duration

4 days - other options are available for those familiar with Kubernetes who simply want to prepare for the certification.

Outline for Certified Kubernetes Administrator

Day 1: Kubernetes Concepts 

Review of container concepts

Why Pods? - comparison with containers, Pod principles

Launching Pods, interacting with Pods (curl, exec, logs)

Availability at scale with Kubernetes

K101: Loose coupling, desired state, Namespaces, Pods, Controllers, Services

Detailed step by step cluster Installation & upgrades using kubeadm

The networking model

Kubeconfig file

Bootstrapping kubernetes (systemd, kubelet manifests, etcd)

Day 2: Application deployment with Kubernetes

Kubernetes Architecture

Pods - init containers, multi-container design patterns

Resource management

Kubernetes API (API groups, explain, API access)

Workload controllers

Application Upgrades

Storage: emptyDir, hostPath, PV/PVC, dynamic storage

Config Maps: creation, utilisation, updates

Secrets: creation, utilisation, updates

Day 3: Tools & Extensions, Services, Observability

Extending Kubernetes

 - Helm package manager, CRDs, Operators

Exposing applications:

 - Services, Ingress Controllers

ServiceMesh

Observability

 - Metrics Server, dashboard, Logging, Metrics, Prometheus/Grafana

Day 4:Troubleshooting, security, cluster HA

Troubleshooting

 - application, cluster troubleshooting steps

Security

 - PodSecurityPolicies (deprecated), SecurityContext

 - API Server Request handling

    - Authentication

    - Authorization (RBAC)

    - Admission Control (Policy engines)

 - Network policies

Cluster HA

Taking the Exam