Objectives
Be prepared for the CKA exam
Understand the Kubernetes principles
Understand basic Kubernetes Administration
Be able to deploy, monitor, protect applications effectively on Kubernetes
Topics
how to install, upgrade or troubleshoot a cluster & its applications
the core principles & concepts of Kubernetes
how to define YAML manifests for the main resource types of Pods, workload controllers, volumes, services & ingress controllers
deploying stateless & stateful applications to take advantage of the high availability, orchestration & scaling features of Kubernetes
upgrading applications
how to secure the platform through use of role-based access controls & security policies
platform extensions & monitoring
taking the CKA exam
Audience
This course is intended for those who need to understand Kubernetes concepts, with a particular focus on administration and passing the CKA certification exam.
Prerequisites
be at ease working at the command-line and using a command-line text editor, such as vi or nano
Familiar with basic container and also Linux process concepts
Ability to connect using an ssh client (openssh, Putty)
Duration
4 days - other options are available for those familiar with Kubernetes who simply want to prepare for the certification.
Outline for Certified Kubernetes Administrator Training
Day 1: Kubernetes Concepts
Review of container concepts
Why Pods? - comparison with containers, Pod principles
Launching Pods, interacting with Pods (curl, exec, logs)
Availability at scale with Kubernetes
K101: Loose coupling, desired state, Namespaces, Pods, Controllers, Services
Detailed step by step cluster Installation & upgrades using kubeadm
The networking model
Kubeconfig file
Bootstrapping kubernetes (systemd, kubelet manifests, etcd)
Day 2: Application deployment with Kubernetes
Kubernetes Architecture
Pods - init containers, multi-container design patterns
Resource management
Kubernetes API (API groups, explain, API access)
Workload controllers
Application Upgrades
Storage: emptyDir, hostPath, PV/PVC, dynamic storage
Config Maps: creation, utilisation, updates
Secrets: creation, utilisation, updates
Day 3: Tools & Extensions, Services, Observability
Extending Kubernetes
- Helm package manager, CRDs, Operators
Exposing applications:
- Services, Ingress Controllers
ServiceMesh
Observability
- Metrics Server, dashboard, Logging, Metrics, Prometheus/Grafana
Day 4:Troubleshooting, security, cluster HA
Troubleshooting
- application, cluster troubleshooting steps
Security
- PodSecurityPolicies (deprecated), SecurityContext
- API Server Request handling
- Authentication
- Authorization (RBAC)
- Admission Control (Policy engines)
- Network policies
Cluster HA
Taking the Exam