Kubernetes has a variety of objects to manage your cluster and your applications. Your applications run in workload nodes (virtual machines) and the containers are managed by the control plane.
You use manifests to tell the control plane how you want to configure your Kubernetes objects using manifests, and the control plane changes the state of the cluster to your desired state.
In other words, you tell the control plane how to configure the workload nodes with your containers, networking, security, and storage. And the control plane makes it happen.
In this article, learn the definitions of the workload objects. And learn some initial best practices to use when defining your Kubernetes objects.
Continue reading “Understanding Kubernetes workload node objects”
kubectlto interact with Kubernetes resources, such as Pod, Services, Volumes, and more. When you use
kubectl commands, you are querying or setting the desired state of the cluster.
kubectlis calling into the API and manipulating or getting status from the primitives.
In this post, learn about the important resources that developers use and how you go about getting information about and creating a resource using
Continue reading “Understand kubectl to manage Kubernetes objects”
In this article, you will learn what you need to know to become an expert at Kubernetes. The curriculum for developers is outlined in the Certified Kubernetes Application Developer (CKAD) program.
It has been developed by the Cloud Native Computing Foundation (CNCF), in collaboration with The Linux Foundation. These organizations provide certifications to demonstrate competence in Kubernetes for both software and for individual contributors, including administrators, developers, and security specialists.
As you dive into Kubernetes, take a look at what the exams measure. The curriculum is published https://github.com/cncf/curriculum as a set of PDF that describe the high level concepts you will need the following CNCF exams:
- Certified Kubernetes Administrator (CKA)
- Certified Kubernetes Application Developer (CKAD)
- Certified Kubernetes Security Specialist (CKS)
For developers, the exam certifies that you can design, build, configure, and expose cloud native applications for Kubernetes. In this article, learn about the overall categories and some sample challenges you may see.
Continue reading “What developers should learn about Kubernetes”
Git is distributed version control system designed to handle everything from small to very large projects with speed and efficiency.The foundation of DevOps, begins with using source code control. This includes the source control for your Infrastructure as Code.But sometimes, when you check in your code, either you or someone else has been working made a change that creates a conflict between branches.
When the same part of the same file in two branches have been changed, Git won’t be able to figure out which version to use. When such a situation occurs, Git stope your right before the merge commit, where you will need to resolve the conflicts manually.
In this walkthrough, you set up a new repository, make changes to the repository where so changes conflict with those on your local machine, merge the changes, and push the changes to the repository.
Continue reading “Walkthrough on how to handle merge conflicts in Git”
In setting up our production environments, we’re started to get some code that we will want to backup, save, reuse, make changes, and share with others. We will want collaborate. And a source control system is idea for all this.
Git is distributed version control system designed to handle everything from small to very large projects with speed and efficiency.
Git is a primary tool for both developers and cloud engineers who are moving to infrastructure as code. In our next post you will learn more about Git workflows. But first, because our blog is related to enterprise production, you will you will want to set up a repository for your code.
The purpose of this article is to provide the steps to get set up and provide the steps for some common scenarios for both GitHub and Azure DevOps so you can get started checking in code.
Continue reading “Set up Git with repository on GitHub or Azure DevOps Repos”
Once you have set up your first subscription, you can set up your Management Group.
In Azure, management groups are a way to group your subscriptions. When you apply policies and governance to your management group, all of the subscriptions within a management group automatically inherit the conditions applied. Enterprises want management groups as a way to scale your operations no matter how many subscriptions you may have.
For example, you may want to restrict the regions available for your resources to those within a particular region. A policy that reflects that can be applied to a management group and will automatically be applied to all management groups, all subscriptions, and all resources under that management group.
Continue reading “Setting up Management Group for production in enterprise”
Security Center provides out of the box policies and a dashboard to identify possible security issues with your subscription.
To start with Security Center has a good set of policies that will help you do basic audits and provide security alerts.
Use Security Center to meet your cloud requirements
In this article, you will be able to meet the following requirements:
- Set up ways for your security team, developers, and operations to quickly audit subscriptions.
- Mitigate security issues
Continue reading “Setting up Security Center for production in enterprise”
Once you have set up your Azure administrators, you can begin to consider how to organize your cloud into management groups, subscriptions, resource groups. You will want to develop a naming standard, and way to tag resources.
Although you may be focused initially on just getting your resources deployed, you will want to be able to manage them. For example, a year from now you may want to know who is responsible for the virtual machine that is no longer doing anything, but is costing money. In other words, you may want lifecycle management.
You may want the ability to charge a set of resources to a cost center and to budget those resources. For example, you may want to receive alerts for both the users and for your administrators when costs are out of line with expectations.
And as we all know, it is easier to organize as you go. In this article, you will learn about some key points in organizing your Azure resources.
Continue reading “Organize Azure resources using management group, tags, naming convention”
Azure provides the Azure Cloud Shell which includes almost every tool you will need already installed. But that requires you to be logged into the portal. And it times out after a short time. So you can administer Azure from your desktop.
There are tools you will normally want on your local computer to administer Azure:
- Azure Powershell
- Azure CLI and some additional tools (such as jq and Kubernetes)
- Visual Studio Code and extensions
All are cross platform tools. In this article, you will learn how to install the tools from the command line. And you will learn about Azure providers and how to add them to your subscription.
Continue reading “Checklist of Azure tools for enterprise admin: PowerShell, AzCopy, Azure CLI, Docker, Git, Azure Providers”
Microsoft makes it easy to get started using Azure — sign up for a free subscription and get started. The tutorial show you how to use the portal to create virtual machines, storage, backups. All good.
And then it comes time to take your applications into production. You may realize that you need to show auditors your security methods. And you want to be sure to protect your customer data. Or you may have cloud sprawl and want to control costs.
And you have had a good conversations about your requirements. What then?
This article shows you how to get your subscription up and running using some important best practices for your administrators. It shows how to set up Security Center and how to set up policies that can be used to help your security team validate that you are using best practices.
Continue reading “Setting up your enterprise Azure subscription administrators”