Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Hands-on Kubernetes on Azure, Third Edition

You're reading from   Hands-on Kubernetes on Azure, Third Edition Use Azure Kubernetes Service to automate management, scaling, and deployment of containerized applications

Arrow left icon
Product type Paperback
Published in May 2021
Publisher Packt
ISBN-13 9781801079945
Length 528 pages
Edition 3rd Edition
Languages
Tools
Arrow right icon
Authors (3):
Arrow left icon
Gunther Lenz Gunther Lenz
Author Profile Icon Gunther Lenz
Gunther Lenz
Nills Franssens Nills Franssens
Author Profile Icon Nills Franssens
Nills Franssens
Shivakumar Gopalakrishnan Shivakumar Gopalakrishnan
Author Profile Icon Shivakumar Gopalakrishnan
Shivakumar Gopalakrishnan
Arrow right icon
View More author details
Toc

Table of Contents (22) Chapters Close

Preface Foreword
Section 1: The Basics FREE CHAPTER
1. Introduction to containers and Kubernetes 2. Getting started with Azure Kubernetes Service Section 2: Deploying on AKS
3. Application deployment on AKS 4. Building scalable applications 5. Handling common failures in AKS 6. Securing your application with HTTPS 7. Monitoring the AKS cluster and the application Section 3: Securing your AKS cluster and workloads
8. Role-based access control in AKS 9. Azure Active Directory pod‑managed identities in AKS 10. Storing secrets in AKS 11. Network security in AKS Section 4: Integrating with Azure managed services
12. Connecting an application to an Azure database 13. Azure Security Center for Kubernetes 14. Serverless functions 15. Continuous integration and continuous deployment for AKS Index

RBAC in Kubernetes explained

In production systems, you need to allow different users different levels of access to certain resources; this is known as RBAC. The benefit of establishing RBAC is that it not only acts as a guardrail against the accidental deletion of critical resources but also is an important security feature that limits full access to the cluster to roles that really need it. On an RBAC-enabled cluster, users can only access and modify those resources for which they have permission.

Up until now, using Cloud Shell, you have been acting as root, which allowed you to do anything and everything in the cluster. For production use cases, root access is dangerous and should be restricted as much as possible. It is a generally accepted best practice to use the principle of least privilege (PoLP) to sign in to any computer system. This prevents both access to secure data and unintentional downtime through the deletion of key resources. Anywhere between 22% and 29% of data...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image