Book Overview & Buying
Table Of Contents

Hands-On Kubernetes on Azure

By : Shivakumar Gopalakrishnan, Gunther Lenz

3 (2)

Buy this Book

Hands-On Kubernetes on Azure

3 (2)

By: Shivakumar Gopalakrishnan, Gunther Lenz

Buy this Book

Overview of this book

Microsoft is now one of the most significant contributors to Kubernetes open source projects. Kubernetes helps to create, configure, and manage a cluster of virtual machines that are preconfigured to run containerized applications. This book will be your guide to performing successful container orchestration and deployment of Kubernetes clusters on Azure. You will get started by learning how to deploy and manage highly scalable applications, along with understanding how to set up a production-ready Kubernetes cluster on Azure. As you advance, you will learn how to reduce the complexity and operational overheads of managing a Kubernetes cluster on Azure. By the end of this book, you will not only be capable of deploying and managing Kubernetes clusters on Azure with ease, but also have the knowledge of best practices for working with advanced AKS concepts for complex systems.

Preface

Who this book is for

What this book covers

To get the most out of this book

Get in touch

Free Chapter

Section 1: The Basics

Introduction to Docker and Kubernetes

Technical requirements

The foundational technologies that enable AKS

Summary

Kubernetes on Azure (AKS)

Technical requirements

Entering the Azure portal

Navigating the Azure portal

Summary

Section 2: Deploying on AKS

Application Deployment on AKS

Technical requirements

Deploying the sample guestbook application

Fully deploying of the sample guestbook application

The helm way of installing complex applications

Summary

Scaling Your Application to Thousands of Deployments

Technical requirements

Scaling your application

Handling failure in AKS

Upgrading your application

Summary

Single Sign-On with Azure AD

Technical requirements

HTTPS support

Authentication versus authorization

Deploying the oauth2_proxy side car

Summary

Monitoring the AKS Cluster and the Application

Technical requirements

Commands for monitoring applications

Debugging applications

Metrics reported by Kubernetes

Metrics reported from OMS

Summary

Operation and Maintenance of AKS Applications

Technical requirements

Service roles in Kubernetes

Attaching service roles to AAD users

Verifying RBAC

Summary

Section 3: Leveraging Advanced Azure PaaS Services in Combination with AKS

Connecting an App to an Azure Database - Authorization

Technical requirements

Extending an app to connect to an Azure Database

Restoring from backup

Reviewing audit logs

DR options

Summary

Connecting to Other Azure Services (Event Hub)

Technical requirements

Introducing to microservices

Deploying a set of microservices

Using Azure Event Hubs

Summary

Securing AKS Network Connections

Technical requirements

Setting up secrets management

The Istio service mesh at your service

Summary

Serverless Functions

Technical requirements

Kubeless services

Events and serverless functions

Summary

Other Books You May Enjoy

Leave a review - let other readers know what you think

Single Sign-On with Azure AD

HTTPs has become a necessity for any public-facing website, given phishing attacks. Luckily, with the LetsEncrypt service and helpers in Kubernetes, it is very easy to set verified SSL certificates. In this chapter, we will see how to set up Ingress services and certificate managers to interface with LetsEncrypt.

Different approaches for authentication to the guestbook app will be explored in this chapter. We will look at the oauth2_proxy side car for adding authentication to the sample guest app using Azure AD. The reader will be able to secure apps with no built-in authentication easily. The authentication scheme can be extended to use GitHub, Google, GitLab, LinkedIn, or Facebook.

The following topics will be covered in this chapter: