10. Securing your AKS cluster

Loose lips sink ships is a phrase that describes how easy it can be to jeopardize the security of a Kubernetes-managed cluster (Kubernetes, by the way, is Greek for helmsman, as in the helmsman of a ship). If your cluster is left open with the wrong ports or services exposed, or plain text is used for secrets in application definitions, bad actors can take advantage of this negligent security and do pretty much whatever they want in your cluster.

In this chapter, we will explore Kubernetes security in more depth. You will be introduced to the concept of role-based access control (RBAC) in Kubernetes. After that, you will learn about secrets and how to use them. You will first create secrets in Kubernetes itself, ...

Get Hands-On Kubernetes on Azure - Second Edition now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.