Overview
Explore Kubernetes cluster guardrails using Open Policy Agent (OPA) and Gatekeeper in this 45-minute tech talk from Mirantis Labs. Learn about enforcing best practices on Kubernetes clusters, including namespace labeling, container resource limits, and non-root user execution. Discover the Open Policy Agent's role in policy enforcement, its implementation in Kubernetes through Gatekeeper, and common policies. Watch a live demonstration of OPA deployment on Kubernetes, gain insights into writing custom policies, and explore additional use-cases for OPA. Dive into Kubernetes architecture, object request flow, and the OPA ecosystem to enhance your cluster management skills.
Syllabus
- Introduction, housekeeping & agenda
- Kubernetes architecture
- Kubernetes Object Request flow
- What is Policy Enforcement in Kubernetes?
- Introduction to Open Policy Agent OPA
- Gatekeeper: OPA Implementation
- Live Demo: deploying OPA on Kubernetes
- The OPA ecosystem
- A look at the upcoming Tech Talks
- Outro
Taught by
Mirantis