Objectives

Be prepared for the CKAD exam

Understand the Kubernetes principles

Understand basic Kubernetes operations

Be able to deploy, monitor, protect applications effectively on Kubernetes

Topics

simplified installation of a cluster

the core principles & concepts of Kubernetes

how to define YAML manifests for the main resource types of Pods, workload controllers, volumes, services & ingress controllers

deploying stateless & stateful applications to take advantage of the high availability, orchestration & scaling features of Kubernetes

upgrading applications

troubleshooting applications

how to secure the platform through use of role-based access controls & security policies

platform extensions & monitoring

taking the CKAD exam

Audience

This course is intended for those who need to understand Kubernetes concepts, with a particular focus on passing the CKAD certification exam.

Prerequisites

be at ease working at the command-line and using a command-line text editor, such as vi or nano

Familiar with basic container and also Linux process concepts

Ability to connect using an ssh client (openssh, Putty)

Duration

4 days - other options are available for those familiar with Kubernetes who simply want to prepare for the certification.

Outline for Certified Kubernetes Application Developer

Day 1: Kubernetes Concepts 

Review of container concepts

Why Pods? - comparison with containers, Pod principles

Launching Pods, interacting with Pods (curl, exec, logs)

Availability at scale with Kubernetes

K101: Loose coupling, desired state, Namespaces, Pods, Controllers, Services

Simplified scripted cluster Installation (using kubeadm)

The networking model

Kubeconfig file

Day 2: Application deployment with Kubernetes

Kubernetes Architecture

Pods - init containers, multi-container design patterns

Resource management

Kubernetes API (API groups, explain, API access)

Workload controllers

Application Upgrades

Storage: emptyDir, hostPath, PV/PVC, dynamic storage

Config Maps: creation, utilisation, updates

Secrets: creation, utilisation, updates

Day 3: Tools & Extensions, Services, Observability

Extending Kubernetes

 - Helm package manager, CRDs, Operators

Exposing applications:

 - Services, Ingress Controllers

ServiceMesh

Day 4: Troubleshooting, security, cluster HA

Troubleshooting

  - application troubleshooting steps

Security

 - PodSecurityPolicies (deprecated), SecurityContext

 - API Server Request handling

     - Authentication

     - Authorization (RBAC)

     - Admission Control (Policy engines)

 - Network policies

Taking the Exam