Course curriculum

  • 1

    Introduction

    • Welcome

    • Controlling access to the Kubernetes API

    • OPA and Kubernetes admission control

  • 2

    Kubernetes admission control using OPA + Styra DAS

    • Setup, deploy policy, and monitor compliance

    • Enforce admission control

    • Multi-cluster policy management

    • Integration architecture

  • 3

    OPA + Styra DAS hands-on lab

    • Prerequisites

    • Start tutorial, create system, install agents

    • Add policy, view compliance

    • Enforce policy in admission control

    • Customizing policy

  • 4

    OPA + Styra DAS configuration deep-dive

    • Validating webhook to enforce admissions control

    • Mutating webhook to amend requests to the cluster

    • OPA server to make admissions control decisions

    • Datasource agent

    • Miscellaneous supporting configurations

  • 5

    OPA Gatekeeper hands-on lab

    • Gatekeeper overview

    • Prerequisites

    • Setup

    • Add constraints templates

    • Constraints and monitoring

    • Constraint enforcement

    • Enforcement limitation for workload resources

  • 6

    OPA Gatekeeper configuration deep-dive

    • Validating webhook to enforce admissions control

    • Mutating webhook to amend requests to the cluster

    • Main controller deployment

    • Audit controller deployment

    • Miscellaneous supporting configurations