YoVDO

Replacing PSPs - Keep Bad Pods out of Your Cluster Using Kyverno

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Conference Talks Courses Kubernetes Security Courses Admission Controllers Courses Kyverno Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore effective strategies for maintaining cluster security in the absence of PodSecurityPolicy (PSP) in this 26-minute conference talk from KubeCon + CloudNativeCon Europe 2022. Learn how to leverage Kyverno, a Kubernetes-native admission controller, to set and validate security contexts for pods and pod controllers. Discover Kyverno's audit mode capabilities for identifying security violations without impacting existing clusters, and its Command Line Tool for executing policies in CI/CD pipelines. Follow along as Shuting Zhao demonstrates how to generate policy reports, enforce Pod security best practices, and improve overall cluster security posture using Kyverno's features, including policy libraries, validation policies, autogen functionality, and mutation policies.

Syllabus

Introduction
Pod Security
PSP Security Emission
PSP Security Recommendations
Why use Kyverno
Kyverno Policy Library
Kyverno Validation Policy
Kyverno Autogen
Kyverno Enforce Policy
Kyverno Policy Report
Grandfather Dashboard
Mutate Policy
Conclusion


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

Building Geospatial Apps on Postgres, PostGIS, & Citus at Large Scale
Microsoft via YouTube Unlocking the Power of ML for Your JavaScript Applications with TensorFlow.js
TensorFlow via YouTube Managing the Reactive World with RxJava - Jake Wharton
ChariotSolutions via YouTube What's New in Grails 2.0
ChariotSolutions via YouTube Performance Analysis of Apache Spark and Presto in Cloud Environments
Databricks via YouTube