This repository was archived by the owner on Oct 29, 2021. It is now read-only.

intelygenz/lab-microk8s-pod-security-policiesPublic archive

NotificationsYou must be signed in to change notification settings
Fork1
Star16

This laboratory is developed to have a first contact with the Pod Security Policies locally using microk8s

16 stars 1 fork Branches Tags Activity

Star

Notifications

You must be signed in to change notification settings

Branches Tags

Folders and files

Name		Name	Last commit message	Last commit date
Latest commit History 16 Commits
examples		examples
helper		helper
psp		psp
rbac		rbac
.gitignore		.gitignore
0.Default-kubeconfig.md		0.Default-kubeconfig.md
1.Configure-RBAC.md		1.Configure-RBAC.md
2.Create-cluster-admin-kubeconfig.md		2.Create-cluster-admin-kubeconfig.md
3.Create-user-space.md		3.Create-user-space.md
4.Expose-secure-api-server.md		4.Expose-secure-api-server.md
5.Modify-kubeconfig-secure-server.md		5.Modify-kubeconfig-secure-server.md
6.Enable-Pod-Security-Policy.md		6.Enable-Pod-Security-Policy.md
7.Configure-default-pod-security-policy.md		7.Configure-default-pod-security-policy.md
8.Configure-kube-system-pod-security-policy.md		8.Configure-kube-system-pod-security-policy.md
README.md		README.md

Repository files navigation

[LAB] microk8s with pod security policies

Introduction

This laboratory is developed to have a first contact with thePod Security Policies locally usingmicrok8s.

LAB assumptions and requirements

This lab assumes you have basic knowledge aboutkubernetes,RBAC and basic linux commands and concepts.As a requirement, you must have installed(default installation)microk8s on your linux PC. Then enable thedns microk8s plugin:microk8s.enable dns.

To check thatmicrok8s is running correctly, execute the following command, you should have an output like the one shown below:

$ sudo microk8s.inspectInspecting services  Service snap.microk8s.daemon-docker is running  Service snap.microk8s.daemon-apiserver is running  Service snap.microk8s.daemon-proxy is running  Service snap.microk8s.daemon-kubelet is running  Service snap.microk8s.daemon-scheduler is running  Service snap.microk8s.daemon-controller-manager is running  Service snap.microk8s.daemon-etcd is running  Copy service arguments to the final report tarballInspecting AppArmor configurationGathering system info  Copy network configuration to the final report tarball  Copy processes list to the final report tarball  Copy snap list to the final report tarball  Inspect kubernetes clusterBuilding the report tarball  Report tarball is at /var/snap/microk8s/383/inspection-report-20190123_110858.tar.gz

Guide

Notes

This is a laboratory and therefore may not function properly. It is designed to show the capabilities offered by pod security policies.Following this laboratory is enough to know at a high level the functionality of them.

Based on

https://joshrosso.com/posts/setting-up-psps

About

This laboratory is developed to have a first contact with the Pod Security Policies locally using microk8s

Languages

Shell100.0%

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Folders and files

Latest commit

History

Repository files navigation

[LAB] microk8s with pod security policies

Introduction

LAB assumptions and requirements

Guide

Notes

Based on

About

Topics

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages

Contributors2

Uh oh!

Languages

Movatterモバイル変換

intelygenz/lab-microk8s-pod-security-policies

Folders and files

Latest commit

History

Repository files navigation

[LAB] microk8s with pod security policies

Introduction

LAB assumptions and requirements

Guide

Notes

Based on

About

Topics

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages0

Contributors2

Uh oh!

Languages

Packages