Kubernetes Administration (GL360) (HJ7F2S)

This course covers the topics of the Certified Kubernetes Administrator (CKA) exam. Topics include installation, application lifecycle management, networking, storage, security, scheduling, logging, maintenance, and troubleshooting of Kubernetes.


Audience

Systems administrators and DevOps professionals


Prerequisites

  • Proficiency with the Linux CLI (U8583S: Linux Fundamentals (GL120))
  • A broad understanding of Linux system administration (H7091S: Enterprise Linux Systems Administration (GL250))
  • Basic knowledge of Linux containers, e.g. Docker (H0DS3S: Docker (GL340))


Course Objectives

During this course, students will learn:

  • Kubernetes architecture
  • Kubernetes core concepts (clusters, objects, etc.)
  • Fundamentals:
    • Images
    • Containers
    • Pods
  • Installation
  • Application lifecycle management
  • Networking
  • Storage
  • Security
  • Scheduling
  • Jobs and CronJobs
  • Linux containers
Show details


Detailed Course Outline

Core Concepts 

  • CKA objectives covered
  • Kubernetes architecture
  • Cluster communication
  • Objects
  • Object properties
  • Labels and selectors
  • Annotations
  • Object management
  • Image fundamentals
  • Container fundamentals
  • Pod fundamentals
  • Working with pods
  • Writing YAML files


Installation 

  • CKA objectives covered
  • Installation prerequisites
  • Installation (single node)
  • Installation (production)
  • Client tool optimizations
  • Installing HA control plane (demo)


Application Lifecycle Management 

  • CKA objectives covered
  • Pod lifecycle
  • Container lifecycle
  • Init containers
  • Container: command and args
  • Container: defining environment
  • ReplicaSet
  • Deployments
  • Working with deployments
  • Deployment rollouts


Networking 

  • CKA objectives covered
  • Network overview
  • Service discovery and CoreDNS
  • Container Network Interface (CNI)
  • Services
  • Ingress objects


Storage 

  • CKA objectives covered
  • Storage
  • Volume types
  • Static volumes (demo)
  • ConfigMaps
  • Secrets


Security 

  • Controlling access to the Kubernetes API
  • Kubectl configuration
  • Admission controllers
  • Pod security policies admission controller
  • Default admission controllers


Scheduling 

  • CKA objectives covered
  • Controlling and tracking resources
  • Scheduler operation
  • DaemonSet
  • Node affinity and anti-affinity
  • Pod affinity and anti-affinity
  • Taints and tolerations


Jobs and CronJobs 

  • Jobs 
  • CronJobs


Linux Containers 

  • Application management landscape
  • Application isolation
  • Resource measurement and control
  • Container security
  • OverlayFS overview
  • Container security
  • Open container initiative