Objectives
Be prepared for the CKAD exam
Understand the Kubernetes principles
Understand basic Kubernetes operations
Be able to deploy, monitor, protect applications effectively on Kubernetes
Topics
simplified installation of a cluster
the core principles & concepts of Kubernetes
how to define YAML manifests for the main resource types of Pods, workload controllers, volumes, services & ingress controllers
deploying stateless & stateful applications to take advantage of the high availability, orchestration & scaling features of Kubernetes
upgrading applications
troubleshooting applications
how to secure the platform through use of role-based access controls & security policies
platform extensions & monitoring
taking the CKAD exam
Audience
This course is intended for those who need to understand Kubernetes concepts, with a particular focus on passing the CKAD certification exam.
Prerequisites
be at ease working at the command-line and using a command-line text editor, such as vi or nano
Familiar with basic container and also Linux process concepts
Ability to connect using an ssh client (openssh, Putty)
Duration
4 days - other options are available for those familiar with Kubernetes who simply want to prepare for the certification.
Outline for Certified Kubernetes Application Developer Training
Day 1: Kubernetes Concepts
Review of container concepts
Why Pods? - comparison with containers, Pod principles
Launching Pods, interacting with Pods (curl, exec, logs)
Availability at scale with Kubernetes
K101: Loose coupling, desired state, Namespaces, Pods, Controllers, Services
Simplified scripted cluster Installation (using kubeadm)
The networking model
Kubeconfig file
Day 2: Application deployment with Kubernetes
Kubernetes Architecture
Pods - init containers, multi-container design patterns
Resource management
Kubernetes API (API groups, explain, API access)
Workload controllers
Application Upgrades
Storage: emptyDir, hostPath, PV/PVC, dynamic storage
Config Maps: creation, utilisation, updates
Secrets: creation, utilisation, updates
Day 3: Tools & Extensions, Services, Observability
Extending Kubernetes
- Helm package manager, CRDs, Operators
Exposing applications:
- Services, Ingress Controllers
ServiceMesh
Day 4: Troubleshooting, security, cluster HA
Troubleshooting
- application troubleshooting steps
Security
- PodSecurityPolicies (deprecated), SecurityContext
- API Server Request handling
- Authentication
- Authorization (RBAC)
- Admission Control (Policy engines)
- Network policies
Taking the Exam