Google Cloud Skills Boost

Google Kubernetes Engine Best Practices: Security

5 hours Intermediate universal_currency_alt 18 Credits
Get Anthos Ready. This second Google Kubernetes Engine-centric Quest of best practices hands-on labs focuses on security at scale when deploying and managing production GKE environments -- specifically role-based access control, hardening, VPC networking, and binary authorization. Looking for a hands on challenge lab to demonstrate your skills and validate your knowledge? On completing this quest, enroll in and finish the additional challenge lab at the end of this quest to receive an exclusive Google Cloud digital badge.
Badge for Google Kubernetes Engine Best Practices: Security

When you complete this activity, you can earn the badge displayed above! View all the badges you have earned by visiting your profile page. Boost your cloud career by showing the world the skills you have developed!

  • Lab

    How to Use a Network Policy on Google Kubernetes Engine

    In this lab you learn how to improve the security of your Kubernetes Engine by applying fine-grained restrictions to limit intra-cluster network communication.

    1 hour
    Introductory
    1 Credit
    language
    • English
    • español (Latinoamérica)
    • français
    • 日本語
    • português (Brasil)
  • Lab

    Using Role-based Access Control in Kubernetes Engine

    After provisioning two service accounts to represent user personas and three namespaces for dev, test, and prod, you will test the access controls of the personals in each namespace.

    1 hour
    Intermediate
    5 Credits
    language
    • English
    • español (Latinoamérica)
    • français
    • 日本語
    • português (Brasil)
  • Lab

    Google Kubernetes Engine Security: Binary Authorization

    This lab deploys a Kubernetes Engine Cluster with the Binary Authorization feature enabled; you'll learn how to whitelist approved container registries and the process of creating and running a signed container.

    1 hour
    Intermediate
    5 Credits
    language
    • English
    • español (Latinoamérica)
    • français
    • 日本語
    • português (Brasil)
  • Lab

    Hardening Default GKE Cluster Configurations

    This lab demonstrates some of the security concerns of a default GKE cluster configuration and the corresponding hardening measures to prevent multiple paths of pod escape and cluster privilege escalation

    1 hour 30 minutes
    Advanced
    7 Credits
    language
    • English
    • español (Latinoamérica)
    • français
    • 日本語
    • português (Brasil)
    • info
    Quest Info
    Available languages
    English and 日本語
    What do I do when I finish this quest?
    After finishing this quest, you can explore additional content in your learning path or browse the learning catalog.
    What badges can I earn?
    Upon finishing a quest, you will earn a badge of completion. Some quests test your ability to apply your knowledge via a final assessment challenge lab. For these quests, you will receive a skill badge. Badges can be viewed on your profile and shared with your social network.