Back To Schedule
Wednesday, May 22 • 14:00 - 14:35
Lifecycle of a kubectl Command: Harden Kubernetes Setup with Automation - Sanjary Rahman, Booking.com

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
We at Booking.com run tens of on-premise multi-tenant Kubernetes clusters at scale. To automate integration with our existing bare-metal infrastructure and for running kubectl auth pipeline, we run an ecosystem using custom Kubernetes Controllers, Pod Security Policies and Kubernetes Auth & Admission Webhooks.

Kubernetes provides end users with limitless possibilities of automation to harden cluster setup, secure authentication and authorization pipelines and validate workload definition as per organization requirements which most of the users are not aware of or make use of. Most of the time hardening Kubernetes setup in a multi-tenant cluster with per namespace based setup itself can turn into a huge toil for the operators.

In this talk, you will see how we at Booking.com have achieved the aforementioned features in a fully automated fashion with zero human intervention involved.

avatar for Sanjary Rahman

Sanjary Rahman

Senior Site Reliability Engineer, Booking.com
Sanjary Rahman is a Senior Site Reliability Engineer at Booking.com where he works with Kubernetes infrastructure to provide a PaaS for the developers to have a rapid product development ecosystem. The projects that he worked on includes building and hardening managed on-prem PaaS... Read More →

Wednesday May 22, 2019 14:00 - 14:35 CEST
Hall 8.1 G1