Course
Digicomp Code AK8S
Architecting with Google Kubernetes Engine («AK8S»)
Learn how to deploy and manage containerized applications on Google Kubernetes Engine (GKE).
Duration
2 days
Price
1'700.–
Course documents
Official Google Cloud courseware
Course facts
- Creating and managing workloads in Google Kubernetes Engine
- Explaining how pod networking works in Google Kubernetes Engine
- Defining and working with different Kubernetes storage abstractions
- Describing and managing authentication, authorization, and security in Google Kubernetes Engine
- Monitoring applications running in Google Kubernetes Engine
- Exploring Google Cloud managed storage services options
- Configuring CI/CD pipelines for Google Kubernetes Engine
Learn how to use other tools on Google Cloud that interact with GKE deployments. This course features a combination of lectures, demos, and hands-on labs to help you explore and deploy solution elements—including infrastructure components like pods, containers, deployments, and services—along with networks and application services. You'll also learn how to deploy practical solutions, including security and access management, resource management, and resource monitoring.
0 Course Introduction
1 Workloads: Deployments and Jobs
- Creating deployments
- Inspecting deployments
- Updating deployments
- Adopting other deployment strategies
- Using Jobs and Cronjobs
- Cluster scaling
- Controlling Pod placement with labels and affinity rules
- Controlling Pod placement with taints and tolerations
- Getting software into your cluster.
- Defining, configuring, inspecting, managing, and updating Deployments
- Defining what Jobs and CronJobs are in GKE, and exploring relevant use cases
- Creating and running Jobs
- Explaining how to scale clusters manually and automatically
- Configuring node and pod affinity
2 Google Kubernetes Engine Networking
- Pod networking
- Kubernetes Services
- Service type and load balancers
- Ingress
- Container-native load balancing
- Network policies
- Exploring Kubernetes networking, including Pod and cluster networking
- Creating services to expose to applications running within Pods
- Configuring load balancers to expose services to external clients. Explore containernative load balancing in GKE
- Configuring Google Kubernetes Engine networking
3 Persistent Data and Storage
- Volumes
- Ephemeral volumes
- Durable volumes
- Statefulsets
- Configmaps
- Secrets
- Defining and working with Kubernetes storage abstractions
- Running and maintaining sets of pods using StatefulSets
- Using ConfigMaps to decouple configuration from Pods
- Managing and storing sensitive access and authentication data
- Configuring persistent storage for Google Kubernetes Engine
4 Access Control and Security in Kubernetes and Google Kubernetes Engine
- Exploring Kubernetes authentication and authorization
- Defining Kubernetes RBAC and how it works with IAM to secure GKE clusters
- Configuring Workload Identity to access Google Cloud services from within GKE
- Securing GKE with Pod Security Standards and Pod Security Admission
- Implementing Role-Based Access Control with GKE
- Authentication and authorization
- Kubernetes role-based access control
- Workload Identity
- Kubernetes control plane security
- Pod security
5 Google Kubernetes Engine Logging and Monitoring
- Cloud Observability
- Cloud Logging
- Cloud Monitoring
- Inspecting logs with the kubectl command
- Inspecting logs with Cloud Logging and logging agents
- Identifying the tools included in the Google Cloud Observability
- Configuring the Google Cloud operations suite to monitor and manage the availability and performance
- Inspecting logs using the kubectl command
- Inspecting Kubernetes logs using Google Cloud Observability
- Configuring GKE-native Monitoring and Logging
6 Using Google Cloud Managed Storage Services with Google Kubernetes Engine
- Using Google Cloud services
- Using Cloud Storage
- Using Google Cloud databases
- Using Cloud SQL and SQL Auth Proxy
- Comparing storage options
- Contrasting managed storage services with self-managed storage
- Identifying use cases for Cloud Storage for Kubernetes applications
- Comparing the range of Google Cloud managed database services
- Exploring Cloud SQL Auth Proxy and how it connects to Cloud SQL from within GKE
- Using Cloud SQL with Google Kubernetes Engine
7 Using CI/CD with Google Kubernetes Engine
- What is CI/CD?
- CI/CD pipeline construction
- CI/CD tools available in Google Cloud
- Best practices for using CI/CD on Google Cloud
- Defining continuous integration and continuous delivery and identify why it is important
- Examining CI/CD pipelines and how they can optimize app releases
- Exploring first-party and third-party CI/CD tools supported by Google Cloud
- Exploring Google’s best practices for a GKE CI/CD pipeline
8 Course Summary
- Cloud architects, administrators, and SysOps/DevOps personnel
- Individuals using Google Cloud to create new solutions or to integrate existing systems, application environments, and infrastructure with Google Cloud
Products
- Google Kubernetes Engine
- Google Cloud networking
- Google Cloud Storage
- Cloud IAM
- Cloud Observability
- Cloud SQL
- Cloud Deploy