Day 21/40 - Manage TLS Certificates In a Kubernetes Cluster - Create Certificate Signing Request
Вставка
- Опубліковано 7 січ 2025
- Welcome to day 21/40; in this video, we will explore how TLS certificates work in Kubernetes; we will look at the concept in detail, followed by a demo of how to create a certificate signing request, how to approve the request, and how to share the certificates with the users.
🚀 Reinforce your knowledge with practical tasks in the Day 21 folder of our GitHub repository: github.com/piy...
👨🏼💻 #40daysofKubernetes Challenge:
Join our 40-day challenge and solidify your Kubernetes skills. Details can be found in the "#40daysofkubernetes.md" file on GitHub or by watching our Day 0 video.
📖 Course Schedule:
I'll release 3-4 videos per week and host live Q&A sessions on weekends to answer your questions and guide you through the CKA certification process.
🕵🏻♂️ Who Should Watch:
This CKA course is designed for beginners, college students, and working professionals who want to learn Kubernetes from scratch, prepare for the CKA certification exam, or enhance their knowledge. It was designed based on the latest curriculum for the CKA exam in May 2024 and uses 1.30.2 as the Kubernetes version.
Let's start your Kubernetes journey together!
𝗖𝗢𝗠𝗣𝗟𝗘𝗧𝗘 𝗧𝗨𝗧𝗢𝗥𝗜𝗔𝗟 𝗦𝗘𝗥𝗜𝗘𝗦 👌 It’s 🅵🆁🅴🅴 ⛳
✅ 𝗔𝘇𝘂𝗿𝗲 𝗗𝗲𝘃𝗢𝗽𝘀 𝗭𝗲𝗿𝗼 𝘁𝗼 𝗛𝗲𝗿𝗼:
• Azure DevOps Zero to H...
✅ 𝗔𝗭𝟵𝟬𝟬 𝗔𝘇𝘂𝗿𝗲 𝗙𝘂𝗻𝗱𝗮𝗺𝗲𝗻𝘁𝗮𝗹𝘀 𝗙𝘂𝗹𝗹 𝗖𝗼𝘂𝗿𝘀𝗲
• AZ900WithPiyush - Azur...
✅ 𝗡𝗮𝗺𝗮𝘀𝘁𝗲 𝗚𝗼𝗼𝗴𝗹𝗲 𝗖𝗹𝗼𝘂𝗱 | 𝗚𝗖𝗣 𝗧𝘂𝘁𝗼𝗿𝗶𝗮𝗹 𝗳𝗼𝗿 𝗯𝗲𝗴𝗶𝗻𝗻𝗲𝗿𝘀, 𝗮 𝗰𝗼𝗺𝗽𝗹𝗲𝘁𝗲 𝗽𝗹𝗮𝘆𝗹𝗶𝘀𝘁 𝗳𝗼𝗿 𝘁𝗵𝗲 𝗔𝘀𝘀𝗼𝗰𝗶𝗮𝘁𝗲 𝗖𝗹𝗼𝘂𝗱 𝗘𝗻𝗴𝗶𝗻𝗲𝗲𝗿 (𝗔𝗖𝗘) 𝗖𝗲𝗿𝘁𝗶𝗳𝗶𝗰𝗮𝘁𝗶𝗼𝗻 𝗘𝘅𝗮𝗺:
• Namaste Google Cloud, ...
✅ 𝗔𝘇𝘂𝗿𝗲 𝗗𝗮𝘁𝗮 𝗳𝘂𝗻𝗱𝗮𝗺𝗲𝗻𝘁𝗮𝗹𝘀 𝗗𝗣 𝟵𝟬𝟬 𝗳𝘂𝗹𝗹 𝗰𝗼𝘂𝗿𝘀𝗲
• Microsoft Azure Data F...
✅ 𝗝𝗲𝗻𝗸𝗶𝗻𝘀 𝗧𝘂𝘁𝗼𝗿𝗶𝗮𝗹 𝗳𝗼𝗿 𝗕𝗲𝗴𝗶𝗻𝗻𝗲𝗿𝘀
• Jenkins Tutorial For B...
✅ #𝟭𝟬𝘄𝗲𝗲𝗸𝘀𝗼𝗳𝗰𝗹𝗼𝘂𝗱𝗼𝗽𝘀 - 𝗥𝗲𝗮𝗹-𝘁𝗶𝗺𝗲 𝗰𝗼𝗺𝗽𝗹𝗲𝘅 𝗵𝗮𝗻𝗱𝘀-𝗼𝗻 𝗽𝗿𝗼𝗷𝗲𝗰𝘁𝘀 𝗼𝗻 𝗖𝗹𝗼𝘂𝗱 𝗮𝗻𝗱 𝗗𝗲𝘃𝗢𝗽𝘀
• 10WeeksOfCloudOps Chal...
✅ 𝗗𝗲𝘃𝗢𝗽𝘀 𝗮𝗻𝗱 𝗖𝗹𝗼𝘂𝗱 𝗣𝗼𝗱𝗰𝗮𝘀𝘁𝘀:
• DevOps and Cloud Podcasts
✅ 𝗚𝗶𝘁𝗹𝗮𝗯 𝗖𝗜 𝗖𝗗 𝗧𝘂𝘁𝗼𝗿𝗶𝗮𝗹 | 𝗘𝗻𝗱 𝗧𝗼 𝗘𝗻𝗱 𝗥𝗲𝗮𝗹-𝘁𝗶𝗺𝗲 𝗣𝗿𝗼𝗷𝗲𝗰𝘁 [𝗙𝘂𝗹𝗹 𝗖𝗼𝘂𝗿𝘀𝗲]
• Gitlab CI CD Tutorial ...
Subscribe to our channel to get notified about the latest videos.
🔥 / techtutorialswithpiyush
-----------------------------------------------------------------------------------------------------------------------
𝗖𝗼𝗻𝗻𝗲𝗰𝘁 𝗺𝗲 𝗛𝗲𝗿𝗲:👇👇
🔥𝗬𝗼𝘂𝗧𝘂𝗯𝗲 ▶ / techtutorialswithpiyush
⛳𝗟𝗶𝗻𝗸𝗲𝗱𝗜𝗻 ▶ / piyush-sachdeva
🚀𝗜𝗻𝘀𝘁𝗮𝗴𝗿𝗮𝗺 ▶ / techtutorialswithpiyush
🌍𝗧𝘄𝗶𝘁𝘁𝗲𝗿 ▶ / techie_piyush
👨💻 𝗚𝗶𝘁𝗵𝘂𝗯 ▶ github.com/piy...
✍ 𝗠𝗲𝗱𝗶𝘂𝗺.𝗰𝗼𝗺 ▶ / piyush.sachdeva055
📚 𝗱𝗲𝘃.𝘁𝗼 ▶ dev.to/piyushs...
✨𝗗𝗶𝘀𝗰𝗼𝗿𝗱 ▶ / discord
-----------------------------------------------------------------------------------------------------------------------
References 📚:
#devops #techtutorialswithpiyush
Simply amazing, I liked your way of teaching sir, how easily you explain these these complicated topics. Learning new things daily. Thanks for this amazing series 🙂
Thank you so much! Keep learning and practicing.
This is exactly what i was looking for since longtime. Thank you!!! Sir. Thanks alot such a great Explanation. ✨🎉💙
You're most welcome 😊
thank you for the great explanation and your effort 🙌🙌
Glad it was helpful!
Thank you for the Video! It's an interesting topic and how Kubernetes handles it!
Glad you enjoyed it!
Thanks Piyush, great explanation about TLS certificates. Really understoood well and need to practice more. Thank you
Thanks buddy! Try to complete the task in GitHub repo as well
Great work Piyush, thank you so much, everyday i am getting stronger
Always welcome, keep up with your learning journey!
thank you Piyush for good sharing again ...
just feel more confidence on CKA exam :)
All the best for your CKA exam 👍
Nice video bhai, keep doing more videos
Completed the video
Thanks Piyush!! Clear explanations on TLS certificates in k8s 👍
happy to help buddy
great explanation, thank you
You're welcome! 🙏
Great!Good explanation with practice!
let's go 🤠
Great Video, Thanks Piyush
welcome
@@TechTutorialswithPiyush ❤
thank you for the explanation and your effort
Welcome buddy
Awsome thank you Piyush #cka 🚀
You're welcome
Mind blowing
Going for rbac
For Full details.!
Thanks 😊
Most welcome 😊
Great explanation
thank you
Thank you.
Nice video
Thanks
Great! Thanks
You're welcome!
thank you piyush
Comment for target...!!!!!!
Bro Can u create some end to end projects
Which may help to grasp concepts in much better way
Thank you...
Yes, We will create one end to end project at the end of the series. I wanted to cover all the fundamental concepts before implementing a complete project
@@TechTutorialswithPiyush thank you broo 🙌
I completed your 40 days in 10 days I say for 2 hours daily along lab which I have from kodekloud so it was easy for me to do labs as I did not have to setup k8 all time
I had a question I understand your busy schedule but plz if u cud ans this
I've completed this very well I've seen you suggesting not to rely on CKA courses to get jobs or clear interview so plz guide where and what to do to completely be experienced in K8 or atleast something to clear interview a pathway or guide would be a blessing
Great job completing the course. The reason I suggested to build the lab yourself so that you understand the administration part of it, installation, upgrades, setup and troubleshooting issues, when you build everything from scratch, you face a lot of issues, you then research and fix those issues hence, you learn a lot during that process. After this, I'd suggest below:-
- Learn a managed cloud service such as GKE, AKS, EKS, Openshift etc
- Learn kubernetes related tools Kustomize, Helm, ArgoCD and implement projects using those.
- Implement a few k8s specific tasks such as Certificate rotation, hardening the kubernetes cluster for compliance, implement policy as code, implement best practises for performance, cost optimization, HA and failure etc
- Implement projects for Kubernetes Infra provisioning using Terraform and create project on Github for the same
- Setup Monitoring, alerting and logging on Kubernetes using the opensource tools.
I know it's a long list but do whatever you can. All the best.
@@TechTutorialswithPiyush I was not expecting a reply or a short reply thinking about your busy schedule
But u gave me the guidance I wanted the most
Thanks a lot bhai this is a lot ❤️
I loved your videos because you jave explained dot on point waiting for your next videos
👍
Instead of running "#kubectl certificate approve adam" to approve the request , can we update the csr.yml file directly with status:true , type:Approved ?
I would suggest trying it out and let me know what results you get :) It will make things clear
Hi Piyush,
i am getting below error....
Error from server (BadRequest): error when creating "csr.yaml": CertificateSigningRequest in version "v1" cannot be handled as a CertificateSigningRequest: illegal base64 data at input byte 0
Looks like the file is corrupted, please perform the steps again, I might have used /n incorrectly which corrupted my file as well. Make sure to take of that
Hi Piyush,
I am getting below error can you please add the csr.yaml file in the github repo ?
Error from server (BadRequest): error when creating "csr.yaml": CertificateSigningRequest in version "v1" cannot be handled as a CertificateSigningRequest: illegal base64 data at input byte 0
try following command when converting your plain text csr to base64 encoded:
cat adam.csr | base64 -w 0
then paste it in the yaml file and apply
What is Cert manager ?
@@naveensilver
It's a mechanism to issue ssl certificates for services hosted on k8s. Mostly via ingress controller (using http01) or dns01
Cert Manager is a tool that automatically issues and renews the certificates. I will create a seperate video for the same.
Thank you for replying
@@TechTutorialswithPiyush thank you so much !!
hi piyush i guess tls have a higher latency time
compared to what?
@@TechTutorialswithPiyush tls have a higher latency time over ssl