Can a noob install Kubernetes? RKE2, Rancher, and Longhorn
HTML-код
- Опубликовано: 8 сен 2024
- This was a fun video to make with Nick G!
Here is the Gist if you wanted to follow along:
gist.github.co...
Also check out the other resources at: rfed.io/links
You can contact us at:
Nick G: nicholas.s.grasso@gmail.com
Andy C: clemenko@gmail.com
Thanks for watching and consider subscribing
can you make a video about how you use STIG, keycloak, and rox? ty!!! super interesting I am finding in your videos and Github
Great suggestion! keycloak is a little more complicated with the integration with Rancher. Let me see if I can put something together. May with Nick.
@@clemenkoIn which way do you think Keycloak is difficult?. Under the Keycloak realm create a client called rancher and do the necessary client configs. Keycloak could be on the same k8s or on another.
@@premierde oidc with its double reference is not easy to explain to a new person. Would it make sense to cover key cloak and other security concepts with Nic?
👏Thanks for uploading this. Let more of it come in👍Yes I agree the OIDC concept takes time. With Nic involved it is at Hardware level security.
For authentication why not use Keycloak as OIDC instead of Okta?
You can use any any OIDC provider. We tend to see keycloak a lot with our customers. Okta does not work on air gap networks.
hi there, I have a suggestion for a video. Could you give a definitive explanation of an scenario with the proper tools where rke2 can have security?
I am on my way to have k8s with rke2 v1.28. I managed to have this running thanks to your videos and others: rke2 - metallb - longhorn - postgres-oprator - kong using postgres - Rancher. I am on my way to deploy knative for the serverless, and istio oc. I am using Ansible, Vagrant, Packer, plus MAAS to manage all of these.
The thing is that I am missing the security stack and firewall. I have read about NeuVector, authentik, keycloak, stackrox, stig, wazuh, and Crowdsec. But to be honest I don't know where to start, and where to end. I need help from the pros to decide my security/firewall security for my staing and prod clusters. I think this would make a great video :)
Hi Carlos, I have a video on setting up the Neuvector Federation : ruclips.net/video/SthUj8TtesM/видео.html. I think I see where you are coming from. So a video from the 50 foot view how all these pieces fit together?
@@clemenko yeah a video about how all the pieces fit together and how to set them up would be amazing. Also, I'd love to hear in one of your videos about STIG. I am trying to figure out the security stack for my cluster, there is so much stuff and I am kinda lost xD
To keep the video short I think a 50 foot view will make sense. Let me see what I can do for next week.