KubeCon + CloudNativeCon Europe 2019: Lifecycle of a kubectl Command: Harden K...

Barcelona, Spain
May 20–23, 2019
Click here for more information and registration

View Conference Venue and Sponsor Showcase Map

Lifecycle of a kubectl Command: Harden Kubernetes Setup with Automation - Sanjary Rahman, Booking.com

Feedback form is now closed.

We at Booking.com run tens of on-premise multi-tenant Kubernetes clusters at scale. To automate integration with our existing bare-metal infrastructure and for running kubectl auth pipeline, we run an ecosystem using custom Kubernetes Controllers, Pod Security Policies and Kubernetes Auth & Admission Webhooks.

Kubernetes provides end users with limitless possibilities of automation to harden cluster setup, secure authentication and authorization pipelines and validate workload definition as per organization requirements which most of the users are not aware of or make use of. Most of the time hardening Kubernetes setup in a multi-tenant cluster with per namespace based setup itself can turn into a huge toil for the operators.

In this talk, you will see how we at Booking.com have achieved the aforementioned features in a fully automated fashion with zero human intervention involved.

Speakers

Sanjary Rahman

Site Reliability Engineer, Booking.com

Sanjary Rahman is a Site Reliability Engineer at Booking.com where he works with Kubernetes infrastructure to provide a PaaS for the developers to have a rapid product development ecosystem. The projects that he worked on includes building and hardening managed on-prem PaaS built... Read More →

Lifecycle of a kubectl command Sanjary pdf

Wednesday May 22, 2019 14:00 - 14:35
Hall 8.1 G1

Customizing + Extending Kubernetes

Skill Level Intermediate (Mid-level experience)
Link to Session Recording https://youtu.be/vHGnL0vSr4E

KubeCon + CloudNativeCon Europe 2019

Sign up or log in to save this to your schedule and see who's attending!

Sanjary Rahman