Jamie's Blog

Building the future, one line of code at a time.

CKA & important operation commands

Passed CKA exam last Sat, would like to summarize the useful commands for future reference.

Complains about the CKA exam: The CKA exam environment was changed from Terminal to Remote Desktop(VNC) from Last Jun, this is an absolutely shit decision. The huge lagging causes that large amount of candidate’s time-wasting on always-waiting, and also Mouse is nearly useless - very difficult to locate what you want on Firefox browser, and eventually it highlights the good user experience on the k8s built-in documentation - Kubectl explain, how ridiculous it is !

Explore Kubernetes Local PV & PVC access mode

A local volume represents a mounted local storage device such as a disk, partition or directory. Local volumes can only be used as a statically created PersistentVolume. Dynamic provisioning is not supported.

Vault Agent with Kubernetes

Nearly all requests to Vault must be accompanied by an authentication token. This includes all API requests, as well as via the Vault CLI and other libraries, therefore application running in kubernetes is no exception. Luckily, Vault provides Kubernetes auth method to authenticate the clients using a Kubernetes Service Account Token, and Vault Agent which could be leveraged to automatically inject the secrets from vault into kubernetes pods through init container pattern.

Vault on Kubernetes

Install Vault on K8S with integrated storage via Helm

To setup a HA Vault Cluster in Kubernetes

Kubernetes dashboard deployment

Deploy K8S dashboard with TLS enabled and Cluster Admin role user access.

Deploy K8S dashboard with TLS enabled