Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Kubernetes on AWS Deploy and manage production-ready Kubernetes clusters on AWS

Product type Paperback

Published in Nov 2018

Publisher Packt

ISBN-13 9781788390071

Length 270 pages

Edition 1st Edition

Tools

AWS

Concepts

Containerization

Author (1):

Ed Robinson

View More author details

Table of Contents (12) Chapters

Preface

1. Google's Infrastructure for the Rest of Us FREE CHAPTER

2. Start Your Engines

3. Reach for the Cloud

4. Managing Change in Your Applications

5. Managing Complex Applications with Helm

6. Planning for Production

7. A Production-Ready Cluster

8. Sorry My App Ate the Cluster

9. Storing State

10. Managing Container Images

11. Other Books You May Enjoy

Leave a review - let other readers know what you think

Instance profiles

In order for Kubernetes to make use of its integrations with the AWS cloud APIs, we need to set up IAM instance profiles. An instance profile is a way for the Kubernetes software to authenticate with the AWS API, and for us to assign fine-grained permissions on the actions that Kubernetes can take.

It can be confusing to learn all of the permissions that Kubernetes requires to function correctly. You could just set up instance profiles that allow full access to AWS, but this would be at the expense of security best practice.

Whenever we assign security permissions, we should be aiming to grant just enough permissions for our software to function correctly. To this end, I have collated a set of minimal IAM policies that will allow our cluster to function correctly, without giving excess permissions away.

You can view these policies at https://github.com/errm/k8s...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €18.99/month. Cancel anytime

Authors (1)

Ed Robinson

Ed Robinson works as a senior site reliability engineer at Cookpad's global headquarters in Bristol, UK. He has been working with Kubernetes for the last three years, deploying clusters on AWS to deliver resilient and reliable services for global audiences. He is a contributor to several open source projects and is a maintainer of Træfɪk, the modern HTTP reverse proxy designed for containers and microservices.

See other products by Ed Robinson