I already know all the K8 specific terminology .. etc really well for on-prem, but I wasn't exactly sure how that ties into AWS, and there goes your video boom ... I totally get it now. many thanks indeed !
This is very first time I am reading about K8s security topics. I did not understand it completely. It is definitely an advanced + difficult topic. But I am pretty sure no one could have explained it with such ease. Kudos to your teaching style. Subscribed right after this video!
14:18 what is the point of this mapping of my K8s user to an AWS IAM user ? Is it to grant to my K8s-user rights to access AWS resources from K8s, or is it to specify that AWS IAM is the identity provider for that K8s user ?
The later. Since you are logged in to AWS as an IAM user, EKS needs a way to know what kubernetes user that IAM user is logged to. If you are running commands to access AWS resources from inside a pod, it'd use the IRSA of the pod and not the user IAM creds. Similar to if you run AWS commands from inside an EC2. Hope this helps.
your videos are very helpful in understanding the concepts and progressing in interviews, great , keep going, I am looking for kubernetes backup and restore topic, pls share the link if you have the video for this topic
I have 2 questions 1. If I was to create ingress and map it to the service, what kind of service type do I have to configure, clusterIP or nodeport ? 2. If I am using imperative commands and want to create service, what's the advantage of using kubectl create service over kubectl expose ?
Hi Raj bro, Please make video on how to access EKS or kubernetes cluster remotely And login user should create pods only How it’s done can you please make video on it
Hi Raj, I am using irsa to link the iam role to service account. For that, I am just annotating the service account with iam role arn. But that setup is not working. Any idea on what other steps to perform in order that to work. Please advice.
Pls help to do video on below. 1.IAM role for pods to be able to access EFS. 2. IAM role for cluster-auto scaler. 3. IAM role for alb-ingress controller
Thanks Saikat. My accent is stuck in-between haha. I grew up in Kolkata (I assume you are bengali too looking at your name) and in US for last 16 years with an american spouse, hence the in-between accent. Thanks for the kind words and thanks for watching 🙏.
This is the best explanation of Kubernetes Security
I already know all the K8 specific terminology .. etc really well for on-prem, but I wasn't exactly sure how that ties into AWS, and there goes your video boom ... I totally get it now. many thanks indeed !
Glad it was helpful!
this is the best explanation of k8s subjects like wow.. thank you so much
Just one video and it made everything clear. Impressive !!!
Glad it helped!
Raj - Great explanation, thank you! 🙏🏼
Glad it was helpful!
Dude, Thank you and I love you for breaking things down that even a person like me can understand.
YES EVEN AN IDIOT LIKE ME ABLE TO UNDERSTAND WHATS THE DIFF BETWEEN ROLE AND CLUSTER ROLE. THANKS SIR
dude your saving my day right now lol. Masterful.
This is very first time I am reading about K8s security topics. I did not understand it completely. It is definitely an advanced + difficult topic. But I am pretty sure no one could have explained it with such ease. Kudos to your teaching style. Subscribed right after this video!
Glad it was helpful! Thanks for the kind words.
Too much interesting info. to be digested by my brain in just a few minutes ! good job
Glad you enjoyed it!
It make me feel lot more clearer in terms of concept,
thanks Buddy
Most welcome 😊
awesome..just what is needed in minimal time.
very clear explanation.
Wow now it all makes sense thanks raj
amazing explanation thx
Nice - to the point !!!
Love the way you present the information. Very intuitive and easy to follow.
Keep up your good work!!!!!
Awesome!!! very nicely explained .. thank you!
Glad you liked it
Thanks. this is clearly explained.
Glad it was helpful!
You are "kube-god" ,thanks for saving us from complexity
You are most welcome
Thanks for that clear explanation.
Glad you found this video helpful. Thanks for watching!
14:18 what is the point of this mapping of my K8s user to an AWS IAM user ? Is it to grant to my K8s-user rights to access AWS resources from K8s, or is it to specify that AWS IAM is the identity provider for that K8s user ?
The later. Since you are logged in to AWS as an IAM user, EKS needs a way to know what kubernetes user that IAM user is logged to. If you are running commands to access AWS resources from inside a pod, it'd use the IRSA of the pod and not the user IAM creds. Similar to if you run AWS commands from inside an EC2. Hope this helps.
@@cloudwithraj thanks!
you are awesome
your videos are very helpful in understanding the concepts and progressing in interviews, great , keep going, I am looking for kubernetes backup and restore topic, pls share the link if you have the video for this topic
Thank you, I will keep this in mind for future videos
So since the role is namespaced so is it true to say it is non reusable for other namespaces
I have 2 questions
1. If I was to create ingress and map it to the service, what kind of service type do I have to configure, clusterIP or nodeport ?
2. If I am using imperative commands and want to create service, what's the advantage of using kubectl create service over kubectl expose ?
nice explanation
Thanks and welcome
Hi Raj bro,
Please make video on how to access EKS or kubernetes cluster remotely
And login user should create pods only
How it’s done can you please make video on it
Hi Raj, I am using irsa to link the iam role to service account. For that, I am just annotating the service account with iam role arn. But that setup is not working. Any idea on what other steps to perform in order that to work. Please advice.
nice overview👏👏
Thank you! 👍
Excellent.
Many thanks!
Can we create a cluster role for Daemonset, statefulset etc?
so what is the outcome of service account in usecase
Thank you so much. You cleared all my doubts regarding this.
I must say i don’t find this level of explanations anywhere.
Pls help to do video on below.
1.IAM role for pods to be able to access EFS.
2. IAM role for cluster-auto scaler.
3. IAM role for alb-ingress controller
Thanks Bhupathi, will keep this in mind for future videos
Raj can you provide the link for manifest files
Here you go Bharath - github.com/saha-rajdeep/eks-demos
@@cloudwithraj Thanks buddy
any discount code for the EKS course in udemy? Please provide thank you ?
here you go Sashank - www.udemy.com/course/rocking-kubernetes-with-amazon-eks-fargate-and-devops/?couponCode=GETEKSNOTCORONA
@@cloudwithraj this one expired, any other code
thank you! very much . Love the way you present the information very useful
Glad it was helpful Jagdish!
Coupon doesn’t seems to be working now. Is it expired ?
Awesome! I enrolled your EKS course in Udemy as well.
Awesome, thank you Frankie for the support!
What is kubelogin?
why someone want to associate serviceaccount to rolebinding for
Very clear explanation, any discount code for the course?
is it only me or the person has a mixed accent?
Liked the content though, just the accent tickling in-ear all the time 😅
Thanks Saikat. My accent is stuck in-between haha. I grew up in Kolkata (I assume you are bengali too looking at your name) and in US for last 16 years with an american spouse, hence the in-between accent. Thanks for the kind words and thanks for watching 🙏.