Book Image

Certified Kubernetes Administrator (CKA) Exam Guide

By : Mélony Qin
4 (1)
Book Image

Certified Kubernetes Administrator (CKA) Exam Guide

4 (1)
By: Mélony Qin

Overview of this book

Kubernetes is the most popular container orchestration tool in the industry. The Kubernetes Administrator certification will help you establish your credibility and enable you to efficiently support the business growth of individual organizations with the help of this open source platform. The book begins by introducing you to Kubernetes architecture and the core concepts of Kubernetes. You'll then get to grips with the main Kubernetes API primitives, before diving into cluster installation, configuration, and management. Moving ahead, you’ll explore different approaches while maintaining the Kubernetes cluster, perform upgrades for the Kubernetes cluster, as well as backup and restore etcd. As you advance, you'll deploy and manage workloads on Kubernetes and work with storage for Kubernetes stateful workloads with the help of practical scenarios. You'll also delve into managing the security of Kubernetes applications and understand how different components in Kubernetes communicate with each other and with other applications. The concluding chapters will show you how to troubleshoot cluster- and application-level logging and monitoring, cluster components, and applications in Kubernetes. By the end of this Kubernetes book, you'll be fully prepared to pass the CKA exam and gain practical knowledge that can be applied in your day-to-day work.

Related Content you might be interested in

Current Title:

Small book image
Certified Kubernetes Administrator (CKA) Exam Guide
Mélony Qin
Nov, 2022 | 322 pages
Small book image
The Kubernetes Workshop
Meacutelony Qin | Wei Huang | Mohammed Abu Taleb | Zachary Arnold | Sahil Dua | Faisal Masood
Sep, 2020 | 780 pages
Small book image
50 Kubernetes Concepts Every DevOps Engineer Should Know
Michael Levan
Jan, 2023 | 278 pages
Small book image
Kubernetes Cookbook.
HuiChuan Chloe Lee | KeJou Carol Hsu | Hideto Saito
May, 2018 | 554 pages
Table of Contents (17 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the color images
Conventions used
Get in touch
Share Your Thoughts
1
Part 1: Cluster Architecture, Installation, and Configuration
Part 1: Cluster Architecture, Installation, and Configuration
Free Chapter
2
Chapter 1: Kubernetes Overview
Chapter 1: Kubernetes Overview
CKA exam overview
Cluster architecture and components
Kubernetes core concepts
Kubernetes basic workflow
Kubernetes API primitives
Sharing a cluster with namespaces
Kubernetes in-market distribution and ecosystems
Summary
3
Chapter 2: Installing and Configuring Kubernetes Clusters
Chapter 2: Installing and Configuring Kubernetes Clusters
Technical requirements
Hands-on Kubernetes tooling
Installing and configuring a Kubernetes cluster
Using minikube to set up a single node Kubernetes cluster
Using kubeadm to install a basic Kubernetes cluster
Setting up a highly available cluster with kubeadm
Summary
Mock CKA scenario-based practice test
FAQs
4
Chapter 3: Maintaining Kubernetes Clusters
Chapter 3: Maintaining Kubernetes Clusters
Demystifying Kubernetes cluster maintenance
Upgrading a Kubernetes cluster using kubeadm
Working with etcd
Summary
Mock CKA scenario-based practice test
FAQs
5
Part 2: Managing Kubernetes
Part 2: Managing Kubernetes
6
Chapter 4: Application Scheduling and Lifecycle Management
Chapter 4: Application Scheduling and Lifecycle Management
Technical requirements
The basics of Kubernetes workloads
Deploying and managing applications
Performing rolling updates and rollbacks
Scaling applications
Workload scheduling
Resource management
Configuring applications
Summary
Mock CKA scenario-based practice test
FAQs
7
Chapter 5: Demystifying Kubernetes Storage
Chapter 5: Demystifying Kubernetes Storage
Technical requirements
Stateful versus stateless workloads
Kubernetes volumes
Cracking stateful applications in Kubernetes
Summary
Mock CKA scenario-based practice test
FAQs
8
Chapter 6: Securing Kubernetes
Chapter 6: Securing Kubernetes
Technical requirements
Securing Kubernetes in layers
Kubernetes authentication and authorization
Kubernetes RBAC
Managing the security of Kubernetes applications
Summary
Mock CKA scenario-based practice test
FAQs
9
Chapter 7: Demystifying Kubernetes Networking
Chapter 7: Demystifying Kubernetes Networking
Technical requirements
Understanding the Kubernetes networking model
Choosing an appropriate Container Network Interface plugin
Configuring Ingress controllers and Ingress resources
Configuring and leveraging CoreDNS
Summary
Mock CKA scenario-based practice test
FAQs
10
Part 3: Troubleshooting
Part 3: Troubleshooting
11
Chapter 8: Monitoring and Logging Kubernetes Clusters and Applications
Chapter 8: Monitoring and Logging Kubernetes Clusters and Applications
Technical requirements
Monitoring on a cluster node
Monitoring applications on a Kubernetes cluster
Managing logs at the cluster node and Pod levels
Managing container stdout and stderr logs
Summary
Mock CKA scenario-based practice test
FAQs
12
Chapter 9: Troubleshooting Cluster Components and Applications
Chapter 9: Troubleshooting Cluster Components and Applications
Technical requirements
General practices in Kubernetes troubleshooting
Troubleshooting cluster components
Troubleshooting applications
Summary
FAQs
13
Chapter 10: Troubleshooting Security and Networking
Chapter 10: Troubleshooting Security and Networking
Technical requirements
Troubleshooting RBAC failures
Troubleshooting networking
Summary
FAQs
14
Index
Index
Why subscribe?
15
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Appendix - Mock CKA scenario-based practice test resolutions
Chapter 2 – Installing and Configuring Kubernetes Clusters
Chapter 3 – Maintaining Kubernetes Clusters
Chapter 4 – Application scheduling and lifecycle management
Chapter 5 – Demystifying Kubernetes Storage
Chapter 6 – Securing Kubernetes
Chapter 7 – Demystifying Kubernetes networking
Chapter 8 – Monitoring and logging Kubernetes Clusters and Applications

Kubernetes basic workflow

We saw earlier a typical workflow showing how Kubernetes works with Kubernetes components, and how they collaborate with each other, in the Cluster architecture and components section. When you’re using kubectl commands, a YAML specification, or another way to invoke an API call, the API server creates a Pod definition and the scheduler identifies the available node to place the new Pod on. The scheduler does two things: filtering and scoring. The filtering step finds a set of available candidate nodes to place the Pod, and the scoring step ranks the most fitting Pod placement.

The API server then passes that information to the kubelet agent on the target worker node. The kubelet then creates the Pod on the node and instructs the container runtime engine to deploy the application image. Once it’s done, the kubelet communicates the status back to the API server, which then updates the data in the etcd store, and the user will be notified that the Pod has been created.

This mechanism is repeated every time we perform a task and talk to the Kubernetes cluster, either by using kubectl commands, deploying a YAML definition file, or using other ways to trigger a REST API call through the API server.

The following diagram shows the process that we just described:

Figure 1.5 – Kubernetes cluster basic workflow

Figure 1.5 – Kubernetes cluster basic workflow

Knowing the basic Kubernetes workflow will help you understand how Kubernetes cluster components collaborate with each other and lay the foundation for learning about the Kubernetes plugin model and API objects.

Kubernetes plugin model

One of the most important reasons for Kubernetes to dominate the market and become the new normal of the cloud-native ecosystem is that it is flexible, highly configurable, and has a highly extensible architecture. Kubernetes is highly configurable and extensible on the following layers:

  • Container runtime: The container runtime is the lowest software virtualization layer running containers. This layer supports a variety of runtimes in the market thanks to the Container Runtime Interface (CRI) plugin. The CRI contains a set of protocol buffers, specifications, a gRPC API, libraries, and tools. We’ll cover how to cooperate with different runtimes when provisioning the Kubernetes cluster in Chapter 2, Installing and Configuring Kubernetes Clusters.
  • Networking: The networking layer of Kubernetes is defined by kubenet or the Container Network Interface (CNI), which is responsible for configuring network interfaces for Linux containers, in our case, mostly Kubernetes Pods. The CNI is actually a Cloud Native Computing Foundation (CNCF) project that includes CNI specifications, plugins, and libraries. We’ll cover more details about Kubernetes networking in Chapter 7, Demystifying Kubernetes Networking.
  • Storage: The storage layer of Kubernetes was one of the most challenging parts at a time prior to Container Storage Interface (CSI) being introduced as a standard interface for exposing block and file storage systems. The storage volumes are managed by storage drivers tailored by storage vendors, this part previously being part of Kubernetes source code. The CSI compatible volume drivers are served for users to attach or mount the CSI volumes to the Pods running in the Kubernetes cluster. We’ll cover storage management in Kubernetes in Chapter 5, Demystifying Kubernetes Storage.

They can be easily laid out as shown in the following diagram:

Figure 1.6 – Kubernetes plugin model

Figure 1.6 – Kubernetes plugin model

A good understanding of the Kubernetes plugin model will help you not only in your daily work as a Kubernetes administrator but also to lay the foundation to help you quickly learn about Kubernetes ecosystems and cloud-native community standards.

Previous Section
End of Section 5
Next Section