The objective of this hack is to dive deeply into all aspects of integration between Kubernetes, the Azure Kubernetes Service (AKS), and various Azure services. We have included challenges for many components that are required to operate a Kubernetes cluster on Azure (eg: networking, storage, etc)
In this hack you will start by deploying a 3-tier application to AKS with very specific networking requirements.
The complexity will quickly evolve towards security and storage, finishing with the last challenge focusing on Arc-enabled Kubernetes clusters and Arc-enabled data services.
- Challenge 00: Prerequisites - Ready, Set, GO!
- Prepare your workstation to work with Azure.
- Challenge 01: Containers
- Get familiar with the sample application for this hack, and roll it out locally or with Azure Container Instances
- Challenge 02: AKS Network Integration and Private Clusters
- Deploy the application in an AKS cluster with strict network requirements
- Challenge 03: AKS Monitoring
- Monitor the application, either using Prometheus or Azure Monitor
- Challenge 04: Secrets and Configuration Management
- Harden secret management with the help of Azure Key Vault
- Challenge 05: AKS Security
- Explore AKS security concepts such as Azure Policy for Kubernetes
- Challenge 06: Persistent Storage in AKS
- Evaluate different storage classes by deploying the database in AKS
- Challenge 07: Service Mesh
- Explore the usage of a Service Mesh to further protect the application
- Challenge 08: Arc-Enabled Kubernetes and Arc-Enabled Data Services
- Leverage Arc for Kubernetes to manage a non-AKS cluster, and Arc for data to deploy a managed database there
- Access to an Azure subscription (owner privilege is required in some exercises)
- Visual Studio Code
- Windows Subsystem for Linux (Windows-only)
- Azure CLI
- Docker Desktop (Optional)
- Adrian Joian
- Gitte Vermeiren
- Jose Moreno
- Victor Viriya-ampanond
- Peter Laudati
- Pete Rodriguez