Kubernetes – Manage TLS Certificates, CA, Certificate Signing Request CSR, Signers, Usage
Liinks:
https://kubernetes.io/docs/reference/access-authn-authz/certificate-signing-requests/
https://kubernetes.io/docs/tasks/tls/managing-tls-in-a-cluster/
https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/1513-certificate-signing-request/README.md
https://github.com/kelseyhightower/kubernetes-the-hard-way
https://serverfault.com/questions/9708/what-is-a-pem-file-and-how-does-it-differ-from-other-openssl-generated-key-file
Chapters
00:00 About
00:08 Https – TLS
02:30 1st TCP – Connection
03:32 2nd TLS Handshake
05:03 CA Types
07:19 Certificate Signing
09:50 Kubernetes CA About
12:54 Kubernetes Various CAs
15:58 Kubernetes Certs & Its CA mapping
17:57 Kubernetes Components and Its certs
19:56 How Kubelet gets cerificate for node
22:53 Kubernetes TLS Communication types
31:17 CSR Manifest Explanation
35:54 CSR signers
36:23 CSR Key Usage
36:59 CSR commands
37:31 CSR with Custom CA steps
39:36 CSR Use Case
40:40 CSR Demo 1
52:45 CSR Demo 2
CKS playlist: https://www.youtube.com/playlist?list=PLFkEchqXDZx6Bw3B2NRVc499j1TavjOvm
Connect with me on Slack: https://join.slack.com/t/learnwithgvr/shared_invite/zt-17lbtt2t1-jBKILnsL3kBRO2OLk2OmZQ
Like, Comment & Subscribe Learn with GVR
#cks #kubenetes #kubernetessecurity #k8s #learnwithgvr
source
Very good information. Much needed.
would like to see CA rotation video incase cluster kube admin config was compromised how it could be rotated
Amazing work, Venkat! šš»šš»šš»
this is great work. you are a life saver. keep it coming!
Really excellent explonation….so far i have not seen this kind of explonation in YouTube….keep going and do more videos…..
Super video GVR sir ,you are the best Teacher
Keep making videos someday you will beat UDEMY we like depth content. thanks GVR.