Book Overview & Buying
Table Of Contents

Hands-On Kubernetes on Azure

By : Shivakumar Gopalakrishnan, Gunther Lenz

3 (2)

Buy this Book

Hands-On Kubernetes on Azure

3 (2)

By: Shivakumar Gopalakrishnan, Gunther Lenz

Buy this Book

Overview of this book

Microsoft is now one of the most significant contributors to Kubernetes open source projects. Kubernetes helps to create, configure, and manage a cluster of virtual machines that are preconfigured to run containerized applications. This book will be your guide to performing successful container orchestration and deployment of Kubernetes clusters on Azure. You will get started by learning how to deploy and manage highly scalable applications, along with understanding how to set up a production-ready Kubernetes cluster on Azure. As you advance, you will learn how to reduce the complexity and operational overheads of managing a Kubernetes cluster on Azure. By the end of this book, you will not only be capable of deploying and managing Kubernetes clusters on Azure with ease, but also have the knowledge of best practices for working with advanced AKS concepts for complex systems.

Preface

Who this book is for

What this book covers

To get the most out of this book

Get in touch

Free Chapter

Section 1: The Basics

Introduction to Docker and Kubernetes

Technical requirements

The foundational technologies that enable AKS

Summary

Kubernetes on Azure (AKS)

Technical requirements

Entering the Azure portal

Navigating the Azure portal

Summary

Section 2: Deploying on AKS

Application Deployment on AKS

Technical requirements

Deploying the sample guestbook application

Fully deploying of the sample guestbook application

The helm way of installing complex applications

Summary

Scaling Your Application to Thousands of Deployments

Technical requirements

Scaling your application

Handling failure in AKS

Upgrading your application

Summary

Single Sign-On with Azure AD

Technical requirements

HTTPS support

Authentication versus authorization

Deploying the oauth2_proxy side car

Summary

Monitoring the AKS Cluster and the Application

Technical requirements

Commands for monitoring applications

Debugging applications

Metrics reported by Kubernetes

Metrics reported from OMS

Summary

Operation and Maintenance of AKS Applications

Technical requirements

Service roles in Kubernetes

Attaching service roles to AAD users

Verifying RBAC

Summary

Section 3: Leveraging Advanced Azure PaaS Services in Combination with AKS

Connecting an App to an Azure Database - Authorization

Technical requirements

Extending an app to connect to an Azure Database

Restoring from backup

Reviewing audit logs

DR options

Summary

Connecting to Other Azure Services (Event Hub)

Technical requirements

Introducing to microservices

Deploying a set of microservices

Using Azure Event Hubs

Summary

Securing AKS Network Connections

Technical requirements

Setting up secrets management

The Istio service mesh at your service

Summary

Serverless Functions

Technical requirements

Kubeless services

Events and serverless functions

Summary

Other Books You May Enjoy

Leave a review - let other readers know what you think

Securing AKS Network Connections

Loose lips sink ships is a phrase that describes how easy it can be to jeopardize the security of a Kubernetes-managed cluster (Kubernetes, by the way, is Greek for helmsman of a ship). If your cluster is left open with the wrong ports or services exposed, or plain text is used for secrets in application definitions, bad actors can take advantage of this lax security and do pretty much whatever they want in your cluster.

In this chapter, we will explore Kubernetes secrets in more depth. You will learn about different secrets backends and how to use them. You'll get a brief introduction to service mesh concepts, and you'll be able to follow along with a practical example.

The following topics will be covered briefly in this chapter: