Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AZ-500 > Containers and Kubernetes > Flashcards

Containers and Kubernetes Flashcards

1
Q

Your company wants to deploy an Azure Kubernetes cluster. Azure AD users need to authenticate to the cluster using Azure AD creds. 3 Steps:

A
  1. Create a server application: to provide Azure AD authentication for an AKS cluster, two applications are created. The first is a server component that provices user authentication.
  2. Create the client application: this client application uses the server application for the actual authentication of the credentials provided by the client
  3. Deploy the AKS cluster
  4. Create an RBAC binding - before you use an Azure AD account with an AKS cluster, you must create role-binding or cluster role-binding. Bindings apply them to desired users. These assignments can be applied to a given namespace, or acros the entire cluster
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Kubernetes RBAC

A

Allows for grandular filtering of user actions within an AKS cluster

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Role-Bindings

A

grant permissions defined in a role to Azure AD users to perform actions within the cluster

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Cluster-Role Bindings

A

grant that acces cluster wide

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Ways to ensure the use of trusted container images

A

Azure Container Registry and Docker Trusted Registry

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Azure Container Registry Roles

A

ArcPush: can push an image and Pull (Contributor role can also Push images!)

ArcPull: can pull an image only

ArcSign is the only one that can sign an image

Reader: Can only do ARM things

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

When integrated with Azure AD authentication, AKS clusters utilize OpenID Connect

A

Azure AD integrated allows for secure access control to Kubernetes resources in AKS cluster by using user identities or directory group memberships

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Ingress controller

A

a pieve of software that provides reverse proxy, configurable traffic routing, and TLS termination for Kubernetes service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Container Network Interface plug-in

A

-This is to connect Docker containers to the host-VMs VNet. the plug in supports both Linux and Windows.
-The plug in assigns IP addresses from a VNet to containers brought up in the VM, attaching them to the VNet, and connecting them directly to other containers and VNet resources

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Container Groups

A

a collection of containers that get scheduled on the same host machine. The containers in the container group share a lifecycle, resources, local network, and storage volumes. It is a similar concept to a pod in Kubernetes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

AZ-500 (21 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions