Download PDF version
|
interno |
succo Passando |
Configure Liveness, Readiness and Startup Probes
|
esterni |
succo Passando |
Container Lifecycle Hooks
|
esterni |
succo Passando |
Horizontal Pod Autoscaler
|
esterni |
succo Passando |
Kubernetes Event-driven Autoscaling (KEDA)
|
esterni |
succo Passando |
Azure Key Vault Provider for Secret Store CSI Driver
|
esterni |
succo Passando |
AKV2K8S
|
esterni |
succo Passando |
Key Vault and flex volumes (Deprecated)
|
esterni |
succo Passando |
Use pod identity
|
esterni |
succo Passando |
Do not use Pod Identity v1 with kubenet !
|
esterni |
succo Passando |
Namespaces
|
esterni |
succo Passando |
Managing Compute Resources for Containers
|
esterni |
succo Passando |
Take benefit of the Quality of Service
|
esterni |
succo Passando |
Configure a Security Context for a Pod or Container
|
esterni |
succo Passando |
Kubernetes YAML: Enforcing best practices and security policies
|
esterni |
succo Passando |
13 Best Practices for Using Helm
|
esterni |
succo Passando |
kube-score
|
esterni |
succo Passando |
Checkov
|
esterni |
succo Passando |
kubelinter
|
esterni |
succo Passando |
SNYK 10 Docker Image Security Best Practices
|
esterni |
succo Passando |
21 Best Practises in 2021 for Dockerfile
|
esterni |
succo Passando |
Dockle
|
esterni |
succo Passando |
Hadolint
|
esterni |
succo Passando |
Introduction to Azure Defender for container registries
|
esterni |
succo Passando |
Identify vulnerable container images in your CI/CD workflows
|
esterni |
succo Passando |
Palo Alto CI/CD Integration (twistcli)
|
esterni |
succo Passando |
Aquasec CI/CD Integration
|
esterni |
succo Passando |
Qualys CI/CD Integration
|
esterni |
succo Passando |
StackRox CI/CD Integration
|
esterni |
succo Passando |
Clair CI/CD Integration
|
esterni |
succo Passando |
Prisma Threshold enforcement
|
esterni |
succo Passando |
AquaSec Proactive Risk Management
|
esterni |
succo Passando |
Azure Built-In Policy
|
esterni |
succo Passando |
Prisma Managing Compliance
|
esterni |
succo Passando |
Aqua Image Assurance Policies
|
esterni |
succo Passando |
StackRox Compliance
|
esterni |
succo Passando |
Accelerate application modernization with Azure Migrate: App Containerization
|
esterni |
succo Passando |
Kubernetes Deployment Strategies
|
esterni |
succo Passando |
Updating images
|
esterni |
succo Passando |
Azure Security Center : scanning feature (Qualys)
|
esterni |
succo Passando |
Prisma (ex Twistlock)
|
esterni |
succo Passando |
Aqua
|
esterni |
succo Passando |
Anchore
|
esterni |
succo Passando |
Use the Azure Policy : Ensure only allowed container images in AKS
|
esterni |
succo Passando |
Using ImagePolicyWebhook
|
esterni |
succo Passando |
Using egress lockdown and authorizing only the URL of your registry
|
esterni |
succo Passando |
Prisma Runtime defense
|
esterni |
succo Passando |
Aqua Runtime Policies Overview
|
esterni |
succo Passando |
StackRox Threat Detection
|
esterni |
succo Passando |
Falco
|
esterni |
succo Passando |
ACR Quarantine
|
esterni |
succo Passando |
Azure Container Registry roles and permissions
|
esterni |
succo Passando |
Azure Container Registry Private Link
|
esterni |
succo Passando |
Google distroless images
|
esterni |
succo Passando |
Isolating cluster
|
esterni |
succo Passando |
Isolating cluster
|
esterni |
succo Passando |
Secure access to the API server using authorized IP address ranges
|
esterni |
succo Passando |
AKS-managed Azure Active Directory integration
|
esterni |
succo Passando |
Disable local accounts
|
esterni |
succo Passando |
AKS System Pools
|
esterni |
succo Passando |
Use managed identities in Azure Kubernetes Service
|
esterni |
succo Passando |
Use FIPS-enabled node pool (preview)
|
esterni |
succo Passando |
AKS CIS benchmark
|
esterni |
succo Passando |
AKS architecture reference for PCI-DSS 3.2.1
|
esterni |
succo Passando |
Set AKS auto-upgrade channel
|
esterni |
succo Passando |
Limit cluster access via K8S RBAC for users & workloads
|
esterni |
succo Passando |
Create a private cluster
|
esterni |
succo Passando |
Use azure CLI to run command on a private cluster
|
esterni |
succo Passando |
Use public DNS with a private cluster
|
esterni |
succo Passando |
AKS Autoscaler
|
esterni |
succo Passando |
Choosing a worker node size
|
esterni |
succo Passando |
Choose the right storage type
|
esterni |
succo Passando |
Automatically build new images on base image update
|
esterni |
succo Passando |
Azure DevOps - Trigger pipeline from Docker image update
|
esterni |
succo Passando |
Authenticate with Azure Container Registry from AKS
|
esterni |
succo Passando |
Reduce latency with proximity placement groups
|
esterni |
succo Passando |
Kubernetes KMS
|
esterni |
succo Passando |
Use Azure Traffic Manager to route traffic
|
esterni |
succo Passando |
Enable geo-replication for container images
|
esterni |
succo Passando |
Create an AKS cluster across availability zones
|
esterni |
succo Passando |
Plan for multiregion deployment
|
esterni |
succo Passando |
Create a storage migration plan
|
esterni |
succo Passando |
Backup, restore and migrate Kubernetes resources including state to another AKS cluster with Velero
|
esterni |
succo Passando |
Azure Kubernetes Service (AKS) Uptime SLA
|
esterni |
succo Passando |
Inter-pod affinity and anti-affinity
|
esterni |
succo Passando |
Size the nodes for storage needs
|
esterni |
succo Passando |
Dynamically provision volumes
|
esterni |
succo Passando |
Secure and back up your data
|
esterni |
succo Passando |
Remove service state from inside containers
|
esterni |
succo Passando |
Kubenet vs CNI
|
esterni |
succo Passando |
Plan IP addressing for your cluster
|
esterni |
succo Passando |
Distribute ingress traffic
|
esterni |
succo Passando |
Secure traffic with a web application firewall (WAF)
|
esterni |
succo Passando |
Tutorial: only allow approved domain names as ingress hostnames
|
esterni |
succo Passando |
Create an ingress controller to an internal virtual network
|
esterni |
succo Passando |
Control traffic flow with network policies
|
esterni |
succo Passando |
Calico
|
esterni |
succo Passando |
Cillium
|
esterni |
succo Passando |
Recipes of best default network policies
|
esterni |
succo Passando |
Enforce resource quotas
|
esterni |
succo Passando |
Resources quotas
|
esterni |
succo Passando |
LimitRange
|
esterni |
succo Passando |
Assign Memory Resources to container
|
esterni |
succo Passando |
Plan for availability using pod disruption budgets
|
esterni |
succo Passando |
Specifying a Disruption Budget for your Application
|
esterni |
succo Passando |
Windows container version compatibility
|
esterni |
succo Passando |
Limitations of Windows containers
|
esterni |
succo Passando |
Understand pod lifecycle
|
esterni |
succo Passando |
What network plug-ins are supported?
|
esterni |
succo Passando |
How do patch my Windows nodes?
|
esterni |
succo Passando |
Regularly update to the latest version of Kubernetes
|
esterni |
succo Passando |
Use the auto-upgrade feature
|
esterni |
succo Passando |
Azure Kubernetes Service (AKS) node image upgrades
|
esterni |
succo Passando |
Process Linux node updates and reboots using Kured (not recommended because it can behave incorrectly in some cluster configurations like autoscaling)
|
esterni |
succo Passando |
Use Event Grid to know when an upgrade is available
|
esterni |
succo Passando |
Kured (KUbernetes REboot Daemon)
|
esterni |
succo Passando |
Securely connect to nodes through a bastion host
|
esterni |
succo Passando |
AKS Periscope
|
esterni |
succo Passando |
kubestriker
|
esterni |
succo Passando |
Kube-advisor by Alcide.io
|
esterni |
succo Passando |
kubebench
|
esterni |
succo Passando |
Azure Kubernetes Services integration with Security Center
|
esterni |
succo Passando |
Azure Monitor for AKS
|
esterni |
succo Passando |
Elastic Cloud
|
esterni |
succo Passando |
Datadog
|
esterni |
succo Passando |
Enable and review Kubernetes master node logs
|
esterni |
succo Passando |
Configure scraping of Prometheus metrics
|
esterni |
succo Passando |
Deploying ELK
|
esterni |
succo Passando |
Solution for onboarding Kubernetes/AKS workloads onto Application Insights monitoring.
|
esterni |
succo Passando |
Zero instrumentation application monitoring for Kubernetes hosted applications (deprecated)
|
esterni |
succo Passando |
Azure Policies for AKS
|
esterni |
succo Passando |
Gatekeeper
|
esterni |
succo Passando |
The Definitive Guide to Securing Kubernetes
|
esterni |
succo Passando |
Introduction to Azure Defender for Kubernetes
|
esterni |
succo Passando |
Tutorial: Configure and run the Azure Key Vault provider for the Secrets Store CSI driver on Kubernetes
|
esterni |
succo Passando |
Guide To GitOps
|
esterni |
succo Passando |
What is Azure Arc enabled Kubernetes?
|
esterni |
succo Passando |
Helm
|
esterni |
succo Passando |
kubectl aliases
|
esterni |
succo Passando |
kubectx
|
esterni |
succo Passando |
k9s
|
esterni |
succo Passando |
Recommended labels
|
esterni |
succo Passando |