Overview
In this course, you'll learn about Kubernetes and Google Kubernetes Engine (GKE) security; logging and monitoring; and using Google Cloud managed storage and database services from within GKE.
This is the second course of the Architecting with Google Kubernetes Engine series. After completing this course, enroll in the Reliable Google Cloud Infrastructure: Design and Process course or the Hybrid Cloud Infrastructure Foundations with Anthos course.
Syllabus
- Production Course Introduction
- In this introduction, you'll explore the course goals and preview each section.
- Access Control and Security in Kubernetes and Google Kubernetes Engine
- In this section of the course, you'll learn about Kubernetes security, focusing on authentication and authorization. You'll explore Kubernetes Role-Based Access Control (RBAC) and its integration with IAM to secure GKE clusters. You'll also learn how to configure Workload Identity, secure GKE with Pod Security Standards and Pod Security Admission, and implement RBAC within your GKE environment.
- Google Kubernetes Engine Logging and Monitoring
- In this section of the course, you'll learn how to monitor and log your Kubernetes applications using Google Cloud's observability tools. You'll configure Google Cloud Observability to monitor the availability and performance of your applications and gain hands-on experience inspecting logs using both the kubectl command and the Google Cloud Observability tools. You'll then learn how to configure GKE-native monitoring and logging, allowing you to proactively identify and troubleshoot issues within your Kubernetes clusters.
- Using Google Cloud Managed Storage Services with Google Kubernetes Engine
- In this section of the course, you'll explore the storage and database options available for your Kubernetes applications on Google Cloud. You'll compare managed and self-managed storage, learn about Cloud Storage for Kubernetes, and get an overview of Google Cloud's managed database services. You'll then learn how to securely connect to Cloud SQL from your GKE clusters and gain hands-on experience integrating Cloud SQL with Google Kubernetes Engine.
- Using CI/CD with Google Kubernetes Engine
- In this section of the course, you'll discover the benefits of Continuous Integration and Continuous Delivery (CI/CD) for streamlining your development and deployment workflows. You'll learn what CI/CD is, why it's important, and how it can optimize application releases. You'll explore CI/CD tools supported by Google Cloud and learn Google's best practices for building CI/CD pipelines on Google Kubernetes Engine.
- Production Course Summary
- The course closes with a summary of the key points covered in each section.
Taught by
Google Cloud Training