UNMASKED: POLICING YOUR DEPLOYMENTS WITH OPEN POLICY AGENTS (OPA) ON KUBERNETES
It is evident that security is the cornerstone of all IT & Cloud deployments.
Whilst security is a diverse and complex subject, one aspect is the application of security policies to your deployments to prevent possible intrusions and prevent the propagation of successful intrusions (defense in depth).
In this 2-hour ITGilde Gurus session we will look in depth at Open Policy Agent (OPA), a popular Open Source Policy Engine for managing policies across your IT infrastructure. OPA is increasingly used in Kubernetes deployments, allowing great flexibility beyond the native Kubernetes security capabilities. Open Policy Agent also has the advantage that it can be used for many aspects of your infrastructure including ssh, web servers, terraform configurations, iptables.
AFTER THIS CLASS YOU KNOW
Participants takeaways from the session are:
Flexible policies require flexible policy agents.
OPA is a generalized policy agent allowing to manage policies across your entire IT stack.
OPA-gatekeeper provides integration with Kubernetes
We will also contrast it’s capabilities with another policy agent – Kyverno – which will be covered in a later session.
AUDIENCE
This class will be aimed at professionals already familiar with Kubernetes who wish to understand how policy enforcement can be used as one important element of securing the platform. Intermediate Kubernetes experienced professionals whether they be developers or operators/admins will benefit from attending this session.
Although the focus of the talk requires Kubernetes basic knowledge, OPA is also applicable for securing non-Kubernetes resources.
ABOUT ITGILDE GURUS CLASSES
Gurus classes are designed for open source specialists who wish to deepen their knowledge and expand skill-set on a specific topic.
Topics such as Linux memory, Kubernetes troubleshooting, Service Meshes, enhancing your security with systemd and much more. The selected topics are important for an outstanding performance, but most often knowledge that is very rarely transferred in a structured and concise manner.
The ITGilde Gurus are recognized experts in their field and share their insights with you which you can implement right away in your job.
In 2 hours you learn more about the Gurus Class topic and you will be able to interact with the trainer. Afterwards you will get 3 months access to the recording which can deepen your learning.
TRAINING DETAILS
- Training type: Instructor-led, Online, Recording.
- Duration: 2 hours.
- Date: Recording of June 24 2021.
- Location: Virtual Classroom
- Trainer: Michael Bright
- Language: English.
- Skill level: Intermediate, Advanced.
- Includes: 3 months access to the recording of the class.
- Training reference: ITGGC-13.
- Investment: €109 for non-members. FREE for ITGilde Knowledge Subscribers and ITGilde Cooperative Members. Interested in becoming ITGilde member? Contact us at +31 (0)20 3690256, or info@itgilde.nl. Click for more information about our ITGilde Knowledge Subscription.
Course Features
- Lectures 0
- Quizzes 0
- Duration 2 hours
- Skill level All levels
- Language English
- Students 0
- Assessments Yes
ITGilde offers open source training and represents the Linux Foundation and are your contact for training and certification in the Region Europe, Middle East, Africa and Russia (EMEAR). Our partnered training centers offer the original Linux Foundation trainings with original documentation directly from The Linux Foundation.