OPA for K8s Admission Control
Learn to deploy OPA with Kubernetes for security guardrails and governance. Topics include Kubernetes admission control, Gatekeeper, and the Styra DAS OPA policy platform for the enterprise.
Course curriculum
-
1
Introduction
-
Welcome
-
Controlling access to the Kubernetes API
-
OPA and Kubernetes admission control
-
-
2
Kubernetes admission control using OPA + Styra DAS
-
Setup, deploy policy, and monitor compliance
-
Enforce admission control
-
Multi-cluster policy management
-
Integration architecture
-
-
3
OPA + Styra DAS hands-on lab
-
Prerequisites
-
Start tutorial, create system, install agents
-
Add policy, view compliance
-
Enforce policy in admission control
-
Customizing policy
-
-
4
OPA + Styra DAS configuration deep-dive
-
Validating webhook to enforce admissions control
-
Mutating webhook to amend requests to the cluster
-
OPA server to make admissions control decisions
-
Datasource agent
-
Miscellaneous supporting configurations
-
-
5
OPA Gatekeeper hands-on lab
-
Gatekeeper overview
-
Prerequisites
-
Setup
-
Add constraints templates
-
Constraints and monitoring
-
Constraint enforcement
-
Enforcement limitation for workload resources
-
-
6
OPA Gatekeeper configuration deep-dive
-
Validating webhook to enforce admissions control
-
Mutating webhook to amend requests to the cluster
-
Main controller deployment
-
Audit controller deployment
-
Miscellaneous supporting configurations
-