You're reading from Google Cloud for DevOps Engineers A practical guide to SRE and achieving Google's Professional Cloud DevOps Engineer certification

Product type Paperback

Published in Jul 2021

Publisher Packt

ISBN-13 9781839218019

Length 482 pages

Edition 1st Edition

Tools

Kubernetes

Concepts

DevOps

Author (1):

Sandeep Madamanchi

View More author details

Table of Contents (17) Chapters

Preface

1. Section 1: Site Reliability Engineering – A Prescriptive Way to Implement DevOps

2. Chapter 1: DevOps, SRE, and Google Cloud Services for CI/CD FREE CHAPTER

3. Chapter 2: SRE Technical Practices – Deep Dive

4. Chapter 3: Understanding Monitoring and Alerting to Target Reliability

5. Chapter 4: Building SRE Teams and Applying Cultural Practices

6. Section 2: Google Cloud Services to Implement DevOps via CI/CD

7. Chapter 5: Managing Source Code Using Cloud Source Repositories

8. Chapter 6: Building Code Using Cloud Build, and Pushing to Container Registry

9. Chapter 7: Understanding Kubernetes Essentials to Deploy Containerized Applications

10. Chapter 8: Understanding GKE Essentials to Deploy Containerized Applications

11. Chapter 9: Securing the Cluster Using GKE Security Constructs

12. Chapter 10: Exploring GCP Cloud Operations

13. Mock Exam 1

Answers

14. Mock Exam 2

15. Other Books You May Enjoy

Appendix: Getting Ready for Professional Cloud DevOps Engineer Certification

Essential security patterns in Kubernetes

A Kubernetes cluster can run multiple types of workloads. This includes stateful applications, stateless applications, jobs, and DaemonSets. However, it is critical to secure these workloads from potential security attacks. Native Kubernetes provides some essential security constructs that focus on the fundamentals, including a request being sent to the cluster and how the request is authenticated and authorized. Additionally, it is important to understand how the master plane components are secured and how the pods running the applications can also be secured. We will cover these from a native Kubernetes standpoint, but their implementation in GKE will also be discussed. The first such security construct we will deep dive into is authentication.

Authentication

Authentication is the process of determining the identity of the user. It essentially confirms that the user is who they say they are and eventually provides access to eligible...