Course Includes:
- Price: FREE
- Enrolled: 32759 students
- Language: English
- Certificate: Yes
- Difficulty: Advanced
Coupon verified 10:15 AM (updated every 10 min)
Course Folder
What You'll Learn
- Learn AKS and Kubernetes network best practices
- Learn how to securely expose services in Kubernetes
- Learn how to secure pod to pod communication
- Learn to setup TLS certificates for pods and ingress
Requirements
- You will need to understand the fundamentals of kubernetes. This course build up on the basics.
Description
You started your journey learning Kubernetes ?
You have been learning the fundamentals of a Kubernetes cluster ?
And now you want to make sure your cluster is production ready in terms of security ?
If you are looking for how to secure your Kubernetes cluster then this course is for you.
Let us face it, security is not an easy task. And Kubernetes is not an exception.
Securing a Kubernetes cluster requires thinking about all these aspects:
Network security: through private cluster access to API Server with Private Endpoint.
Secure egress traffic: all egress traffic should be filtered using Firewall.
Secure ingress traffic: using TLS and HTTPS on the ingress controller.
Secure inter-pod communication: secure traffic between pods using TLS or mTLS.
Controlling traffic between pods: using Network Policy tools like Calico.
Securing access to Managed Identities: by restricting access to IMDS endpoint (169.254.169.254).
Implementing a Landing Zone: with integration into the Hub an Spoke model
Customize logging and metrics collection
Reduce the cost of the cluster infrastructure
Microsoft provides the following recommendations to secure an AKS cluster and this course will try to go deeper with demonstration.
Recommendation 1: To distribute HTTP or HTTPS traffic to your applications, use ingress resources and controllers. Compared to an Azure load balancer, ingress controllers provide extra features and can be managed as native Kubernetes resources.
Recommendation 2: To scan incoming traffic for potential attacks, use a web application firewall (WAF) such as Barracuda WAF for Azure or Azure Application Gateway. These more advanced network resources can also route traffic beyond just HTTP and HTTPS connections or basic TLS termination.
Recommendation 3: Use network policies to allow or deny traffic to pods. By default, all traffic is allowed between pods within a cluster. For improved security, define rules that limit pod communication.
Recommendation 4: Don't expose remote connectivity to your AKS nodes. Create a bastion host, or jump box, in a management virtual network. Use the bastion host to securely route traffic into your AKS cluster to remote management tasks.
Disclaimer: This course uses Azure Kubernetes Service (AKS) for demonstrations. But most of the content is applicable to any Kubernetes cluster on any environment.
Who this course is for:
- This course is for platform teams that needs to manage Kubernetes cluster and securely deploy apps.
Recommended Courses
AI-Powered Email Marketing: A Complete Guide
FREE
Make Email Marketing and Automation Easy and Effective with AI
Enrolled
2025 Master class on Data Science using Python A-Z for ML
FREE
Python NumPy, Pandas, Matplotlib and Seaborn for Data Analysis, Data Science and ML. Pre-machine learning Analysis.
Enrolled
Master Lead Generation: Grow Subscribers & Sales with Popups
FREE
Add high-converting popups and lead forms in minutes, without relying on designers or developers
Enrolled
Complete Freelance MBA 2025: Digitalize Service Businesses
FREE
3-in-1 Formula: Boost Computer Skills, Optimize SMBs, and Implement Digital Tools
Enrolled
Microsoft Word Essential Training: Master the Basics to Pro
FREE
Microsoft Word Essential Training Master the Basics to Pro for Business Professionals Formatting, Editing, Collaboration
Enrolled
Azure Container Apps: intro and deep dive
FREE
Master Azure Container Apps: Build, Deploy, and Scale Your Applications with Confidence
Enrolled
Web Design Course for Beginners to Intermediate
FREE
Learn the Basics of HTML, CSS, Wordpress and get Started with Web Design
Enrolled
Microsoft PowerPoint School to Corporate : Basic to Advance
FREE
Create engaging presentation and animation in MS PowerPoint with Canva
Enrolled
T-Shirt Design Masterclass In Photoshop | Sell Your T-Shirt
FREE
Design Stylish TShirt Photoshop With Adobe Photoshop CC and Learn How To Earn Money By T-Shirt Design
EnrolledPrevious Courses
Essential Canva Course for Graphics Design Learn in 2 Hour
FREE
Learn Logo, Banner, Social Media Thumbnail Design
Enrolled
Essential Excel With Tips Trick Shortcuts and Job Success
FREE
Master Advanced Excel Formulas. Solve Complex Problems. Learn Advanced Excel Skills to Save Time & Impress
Enrolled
Smart sales systems: repeatable processes that drive clients
FREE
Build, market, and scale your business with effort and AI
Enrolled
Investigação em Estratégia e Desenvolvimento de Produtos
FREE
Diploma Profissional em Metodologias de Investigação em Estratégia e Desenvolvimento de Produtos pelo MTF Institute
Enrolled
2025 C Programming Bootcamp - The Complete C Language Course
FREE
C Programming 2025: Master the Fundamentals of C Programming Language. Join the Comprehensive C Bootcamp Masterclass!
Enrolled
Earn Passive Income Selling Artificial Intelligence Images
FREE
Earn Passive Income Selling Artificial Intelligence Images-Artificial Intelligence Business Models
Enrolled
Comment Faire Du Marketing Prompt
FREE
Comment Faire Du Marketing Prompt-Modèles économiques de l'intelligence artificielle
Enrolled
Gana İngresos Pasivos Vendiendo Prompts
FREE
Gana İngresos Pasivos Vendiendo Prompts-Modelos empresariales de inteligencia artificial
Enrolled
Master BI, SSIS, SSRS, SSAS & MDX - Zero to Hero
FREE
Mastering Data Engineering: From SSIS Foundations to Advanced MSBI Techniques
Enrolled