Engineer for the future of Cloud
June 10-13, 2019
San Jose, CA

Sharing is caring: Your Kubernetes cluster, namespaces, and you

Amy Chen (VMware)
3:50pm4:30pm Wednesday, June 12, 2019
Kubernetes
 Location: LL21 C/D
Average rating: ***..
(3.83, 6 ratings)

Who is this presentation for?

  • Cluster operators and administrators

Level

Intermediate

Prerequisite knowledge

  • A basic understanding of Kubernetes

What you'll learn

  • Learn how organizations use namespaces today and the pros and cons of various approaches
  • Discover how to enforce role-based access control (RBAC), resource limits, and your application’s security posture within namespaces
  • Find solutions to reduce friction in managing namespaces

Description

Kubernetes namespaces partition workloads into virtual clusters so multiple teams or applications can safely share a physical cluster. Today, there is no common consensus on how to use Kubernetes namespaces and namespaced objects in relation to identity, resource limits, and security. As the number of teams, clusters, and namespaces grows within an organization, it becomes increasingly difficult to maintain any kind of coherence.

Amy Chen discusses how, by aligning identity, resource limits, and your application’s security posture, cluster operators can get more organizational mileage out of Kubernetes namespaces. She walks you through common scenarios of how organizations use namespaces today; breaks down namespaces in relation to your workloads and users; compares various approaches to namespace management; shows how to enforce RBAC, resource limits, and your application’s security posture within namespaces; and outlines friction in existing namespace management workflows.

Photo of Amy Chen

Amy Chen

VMware

Amy Chen is a systems software engineer at VMware through the Heptio acquisition. She’s passionate about Kubernetes, Go, containers, and distributed systems. In her free time, she also runs a YouTube channel, Amy Codes, that discusses software engineering and distributed systems topics.