Book Image

Hands-On Kubernetes on Azure - Second Edition

By : Nills Franssens, Shivakumar Gopalakrishnan, Gunther Lenz
Book Image

Hands-On Kubernetes on Azure - Second Edition

By: Nills Franssens, Shivakumar Gopalakrishnan, Gunther Lenz

Overview of this book

From managing versioning efficiently to improving security and portability, technologies such as Kubernetes and Docker have greatly helped cloud deployments and application development. Starting with an introduction to Docker, Kubernetes, and Azure Kubernetes Service (AKS), this book will guide you through deploying an AKS cluster in different ways. You’ll then explore the Azure portal by deploying a sample guestbook application on AKS and installing complex Kubernetes apps using Helm. With the help of real-world examples, you'll also get to grips with scaling your application and cluster. As you advance, you'll understand how to overcome common challenges in AKS and secure your application with HTTPS and Azure AD (Active Directory). Finally, you’ll explore serverless functions such as HTTP triggered Azure functions and queue triggered functions. By the end of this Kubernetes book, you’ll be well-versed with the fundamentals of Azure Kubernetes Service and be able to deploy containerized workloads on Microsoft Azure with minimal management overhead.

Related Content you might be interested in

Current Title:

Small book image
Hands-On Kubernetes on Azure - Second Edition
Nills Franssens | Shivakumar Gopalakrishnan | Gunther Lenz
May, 2020 | 368 pages
Small book image
Hands-On Kubernetes on Windows
Piotr Tylenda
Mar, 2020 | 592 pages
Small book image
The Kubernetes Bible
Nassim Kebbani | Russ McKendrick | Piotr Tylenda
Feb, 2022 | 680 pages
Small book image
Introduction to DevOps with Kubernetes
Onur Yilmaz | Sleyman Akba
May, 2019 | 374 pages
Table of Contents (16 chapters)
Preface
Preface
About Hands-On Kubernetes on Azure, Second Edition
1
Section 1: The Basics
Section 1: The Basics
Free Chapter
2
1. Introduction to Docker and Kubernetes
1. Introduction to Docker and Kubernetes
The software evolution that brought us here
Fundamentals of Docker containers
Kubernetes as a container orchestration platform
Azure Kubernetes Service
Summary
3
2. Kubernetes on Azure (AKS)
2. Kubernetes on Azure (AKS)
Different ways to deploy an AKS cluster
Getting started with the Azure portal
Summary
4
Section 2: Deploying on AKS
Section 2: Deploying on AKS
5
3. Application deployment on AKS
3. Application deployment on AKS
Deploying the sample guestbook application
Complete deployment of the sample guestbook application
Installing complex Kubernetes applications using Helm
Summary
6
4. Building scalable applications
4. Building scalable applications
Scaling your application
Scaling your cluster
Upgrading your application
Summary
7
5. Handling common failures in AKS
5. Handling common failures in AKS
Handling node failures
Solving out-of-resource failures
Fixing storage mount issues
Summary
8
6. Securing your application with HTTPS and Azure AD
6. Securing your application with HTTPS and Azure AD
HTTPS support
Authentication versus authorization
Summary
9
7. Monitoring the AKS cluster and the application
7. Monitoring the AKS cluster and the application
Commands for monitoring applications
Readiness and liveness probes
Metrics reported by Kubernetes
Metrics reported from Azure Monitor
Summary
10
Section 3: Leveraging advanced Azure PaaS services
Section 3: Leveraging advanced Azure PaaS services
11
8. Connecting an app to an Azure database
8. Connecting an app to an Azure database
Setting up OSBA
Deploying WordPress
Exploring advanced database operations
Summary
12
9. Connecting to Azure Event Hubs
9. Connecting to Azure Event Hubs
Deploying a set of microservices
Using Azure Event Hubs
Summary
13
10. Securing your AKS cluster
10. Securing your AKS cluster
Role-based access control
Setting up secrets management
Using secrets stored in Key Vault
The Istio service mesh at your service
Summary
14
11. Serverless functions
11. Serverless functions
Multiple functions platforms
Setting up prerequisites
Creating an HTTP-triggered Azure function
Creating a queue-triggered function
Summary
15
Index
Index

Role-based access control

In production systems, you need to allow different users different levels of access to certain resources; this is known as role-based access control (RBAC). This section will take you through how to configure RBAC in AKS, and how to assign different roles with different rights. The benefits of establishing RBAC are that it not only acts as a guardrail against the accidental deletion of critical resources but also that it is an important security feature that limits full access to the cluster to roles that really need it. On an RBAC-enabled cluster, users will be able to observe that they can modify only those resources to which they have access.

Up till now, using Cloud Shell, we have been acting as root, which allowed us to do anything and everything in the cluster. For production use cases, root access is dangerous and should be restricted as much as possible. It is a generally accepted best practice to use the principle of least privilege (PoLP) to log...

Previous Section
End of Section 2
Next Section