3 arrows

Summer-Ready Savings: Up To $500 Off Training 

closeClose

Using Vault to Manage Secrets on Kubernetes

  • Contact Us For Pricing
  • Reviews star_rate star_rate star_rate star_rate star_half 4064 Ratings
  • Course Code INNO-UVMSK
  • Duration 2 days
  • Available Formats Classroom

Kubernetes has built-in secrets support, but there is room for improvement. Kubernetes secrets are encoded using base64, which is not secure encryption. Another limitation of Kubernetes secrets is that they can only be used inside of applications running on Kubernetes. Using Vault, we can address these concerns as well as introduce a myriad of new features. Vault is a single solution for secrets required inside Kubernetes or applications running outside of the Kubernetes cluster. Attendees will learn how to deploy and integrate Vault with Kubernetes and set up a secure solution for secret management.

Skills Gained

Attendees will understand best practices for building secure infrastructure using code, storing that code in version control, automating testing and deployment using Terraform and managing secrets with Vault.

Who Can Benefit

This class's audience is Developers, DevOps, Architects, Team Leads, Operations, and any other Engineering personnel interested in learning best practices for securing infrastructure and application code with Vault.

Prerequisites

Attendees should have a basic understanding of Linux and command-line experience.

Course Details

What you learn:

Kubernetes: Containers at Scale

  • Story of Kubernetes
  • Kubernetes at Google

Architecture

  • Cluster Architecture
  • Master Components
  • Node Components
  • Cluster Deployment Options

Workload Introduction

  • Pods
  • Application Pattern Controllers
  • ReplicaSets
  • Services

Secrets

  • Overview
  • Manifest Syntax
  • Using Secret Values

Vault Introduction

  • Overview
  • Architecture
  • Comparison of tools
  • Core components
  • Fundamental concepts
  • Platforms

High Availability

  • Design
  • Backend storage
  • Best practices

Configuration

  • Token Authentication
  • Key Rotation
  • Replication (Enterprise version)
  • Limits and Maximums

Secret Engines

  • Static secrets
  • Cubbyhole secret engine
  • Dynamic secrets
  • Encryption
  • Authentication

Policies

  • Configuration
  • Authentication methods
  • Syntax
  • Constraints

Vault Agent

  • Overview
  • Auto-Auth
  • Methods
  • Caching

Kubernetes Integration

  • Installation
  • Operator
  • Best practices

Wrap-up

  • Review
  • Q&A
  • Next steps

When does class start/end?

Classes begin promptly at 9:00 am, and typically end at 5:00 pm.

Does the course schedule include a Lunchbreak?

Lunch is normally an hour long and begins at noon. Coffee, tea, hot chocolate and juice are available all day in the kitchen. Fruit, muffins and bagels are served each morning. There are numerous restaurants near each of our centers, and some popular ones are indicated on the Area Map in the Student Welcome Handbooks - these can be picked up in the lobby or requested from one of our ExitCertified staff.

How can someone reach me during class?

If someone should need to contact you while you are in class, please have them call the center telephone number and leave a message with the receptionist.

What languages are used to deliver training?

Most courses are conducted in English, unless otherwise specified. Some courses will have the word "FRENCH" marked in red beside the scheduled date(s) indicating the language of instruction.

What does GTR stand for?

GTR stands for Guaranteed to Run; if you see a course with this status, it means this event is confirmed to run. View our GTR page to see our full list of Guaranteed to Run courses.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals and private on sites. View our group training page for more information.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals, and private on sites. View our group training page for more information.

Excellent facilities, excellent staff.. and the coffee is good too! Thanks for helping to advance my career and the career of my colleagues!

Great instructor, clear and concise course. Labs were easy to follow and worked perfectly.

This was a good program to get prepared for the solutions architect associate exam.

Some Labs are very good but some steps it ask to update but its already updated, but overall its very good training.

ExitCertified was a great. They gave me all the materials and information I needed ahead of time to prepare for the course.

0 options available

There are currently no scheduled dates for this course. If you are interested in this course, request a course date with the links above. We can also contact you when the course is scheduled in your area.

Contact Us 1-800-803-3948
Contact Us
FAQ Get immediate answers to our most frequently asked qestions. View FAQs arrow_forward