Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • DevOps with Kubernetes
  • Toc
  • feedback
DevOps with Kubernetes

DevOps with Kubernetes

By : Hideto Saito, Hui-Chuan Chloe Lee, Wu
close
DevOps with Kubernetes

DevOps with Kubernetes

By: Hideto Saito, Hui-Chuan Chloe Lee, Wu

Overview of this book

Kubernetes has been widely adopted across public clouds and on-premise data centers. As we're living in an era of microservices, knowing how to use and manage Kubernetes is an essential skill for everyone in the IT industry. This book is a guide to everything you need to know about Kubernetes—from simply deploying a container to administrating Kubernetes clusters wisely. You'll learn about DevOps fundamentals, as well as deploying a monolithic application as microservices and using Kubernetes to orchestrate them. You will then gain an insight into the Kubernetes network, extensions, authentication and authorization. With the DevOps spirit in mind, you'll learn how to allocate resources to your application and prepare to scale them efficiently. Knowing the status and activity of the application and clusters is crucial, so we’ll learn about monitoring and logging in Kubernetes. Having an improved ability to observe your services means that you will be able to build a continuous delivery pipeline with confidence. At the end of the book, you'll learn how to run managed Kubernetes services on three top cloud providers: Google Cloud Platform, Amazon Web Services, and Microsoft Azure.
Table of Contents (14 chapters)
close
close
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
Introduction to DevOps
Introduction to DevOps
Software delivery challenges
The microservices trend
Automation and tools
Summary
2
DevOps with Containers
DevOps with Containers
Understanding containers
The life cycle of a container
Working with a Dockerfile
Multi-container orchestration
Summary
3
Getting Started with Kubernetes
Getting Started with Kubernetes
Understanding Kubernetes
Getting started with Kubernetes
Multi-container orchestration
Summary
4
Managing Stateful Workloads
Managing Stateful Workloads
Kubernetes volume management
Submitting Jobs to Kubernetes
Summary
5
Cluster Administration and Extension
chevron up
Cluster Administration and Extension
Kubernetes namespaces
Kubeconfig
Service account
Authentication and authorization
Admission control
Custom resources
Summary
6
Kubernetes Network
Kubernetes Network
Kubernetes networking
Ingress
Network policy
Service mesh
Summary
7
Monitoring and Logging
Monitoring and Logging
Inspecting a container
Monitoring in Kubernetes
Hands-on monitoring
Logging events
Incorporating data from Istio
Summary
8
Resource Management and Scaling
Resource Management and Scaling
Scheduling workloads
Elastically scaling
Managing cluster resources
Summary
9
Continuous Delivery
Continuous Delivery
Updating resources
Building a delivery pipeline
Gaining a deeper understanding of pods
Summary
10
Kubernetes on AWS
Kubernetes on AWS
Introduction to AWS
Amazon EKS
Summary
11
Kubernetes on GCP
Kubernetes on GCP
Introduction to GCP
Google Kubernetes Engine (GKE)
Summary
12
Kubernetes on Azure
Kubernetes on Azure
Introduction to Azure
Azure Kubernetes service
Summary
13
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Service account

In Kubernetes, there are two kinds of user account: service account and user account. All the requests to the API server are sent either by a service account or a user account. Service accounts are managed by the Kubernetes API. In contrast, user accounts are not managed and stored in Kubernetes. The following is a simple comparison of service and user accounts:

Service account User account
Scope Namespaced Global
Used by Processes Normal user
Created by API server or via API calls Administrators, not by API calls
Managed by API server Outside the cluster

By default, a Kubernetes cluster creates different service accounts for different purposes. In GKE, there are a bunch of service accounts that have been created:

// list service account across all namespaces
# kubectl get serviceaccount --all-namespaces
NAMESPACE     NAME                      ...
End of Section 4
Next Section
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete