Training > Cloud & Containers > Mastering Kubernetes Security with Kyverno (LFS255)
Training Course

Mastering Kubernetes Security with Kyverno (LFS255)

Learn to implement and enforce security policies with Kyverno to manage Kubernetes resources effectively.

Who Is It For

This course is for Kubernetes engineers, cluster operators, and security professionals whose focus is regulatory compliance, standardization, and security within Kubernetes clusters using Kyverno.
read less read more
What You’ll Learn

Learn to create, apply and manage Kyverno policies and reporting tools that help identify potential violations in real-time and proactively address security and compliance in Kubernetes clusters.
read less read more
What It Prepares You For

The course empowers you to become proficient in Kubernetes policy management and reporting, enhancing skills for roles including Kubernetes security specialists, DevSecOps engineers, or Kubernetes administrators.
read less read more
Course Outline
Chapter 1. Course Introduction
Chapter 2. Overview of Kubernetes Policies
Chapter 3. Kyverno Introduction and Installation
Chapter 4. Writing Policies
Chapter 5. Enforcing Policies
Chapter 6. Mutation Policies
Chapter 7. Policy Validation and Testing
Chapter 8. Monitoring and Troubleshooting
Chapter 9. Reporting in Kyverno
Chapter 10. Securing Kyverno
Chapter 11. Integration and Extensibility
Chapter 12. Multi-Cluster Policy Management
Chapter 13. Contributing to the Kyverno Project

Prerequisites
To effectively learn Kyverno and make the most of the training, you should have a strong foundation in the following:

  • Kubernetes fundamentals, including RBAC and policy concepts
  • YAML syntax
  • Command-line interface (CLI)
  • Containerization
Lab Info
In order to complete this course, learners should have the following:

  • Kubernetes cluster with admin access to the cluster to be able to add/manage Kubernetes resources
  • The learners’ primary system should have Helm, kubectl, and curl commands available

Note: All lab exercises have been tested against local development clusters on Minikube (v1.28.0), along with clusters provided by Civo and AWS EKS Service.

If using a cloud provider like GCP or AWS, you should be able to complete the lab exercises using the free tier or credits provided to you. However, you may incur charges if you exceed the credits initially allocated by the cloud provider, or if the cloud provider’s terms and conditions change.