Hardening Default GKE Cluster Configurations avis

Hardening Default GKE Cluster Configurations avis

9967 avis

Fandi H. · Examiné il y a plus d'un an

error trying to implement Task 7.....error: resource mapping not found for name: "restrictive-psp" namespace: "" from "STDIN": no matches for kind "PodSecurityPolicy" in version "policy/v1beta1" ensure CRDs are installed first

Randyansyah .. · Examiné il y a plus d'un an

Bruno F. · Examiné il y a plus d'un an

As others have said. Task 7 is error. Solution " gcloud container clusters create simplecluster --zone $MY_ZONE --cluster-version 1.21.14-gke.18100 --num-nodes 2 --metadata=disable-legacy-endpoints=false " do this in step Task 1

Muhammad Ilham Akbar S. · Examiné il y a plus d'un an

Edwin T. · Examiné il y a plus d'un an

Bruno F. · Examiné il y a plus d'un an

service account v1 beta is deprecated and removed on kubernetes v1.25

Bas T. · Examiné il y a plus d'un an

Bryan P. · Examiné il y a plus d'un an

Reza K. · Examiné il y a plus d'un an

Rafi A. · Examiné il y a plus d'un an

Lab cannot be completed because step 7 is outdated.

Wolfgang G. · Examiné il y a plus d'un an

Rafael F. · Examiné il y a plus d'un an

finally finish.. huft

HAIDAR W. · Examiné il y a plus d'un an

David A. · Examiné il y a plus d'un an

Lab is using PodSecurityPolicies which are deprecated and even no longer available at all on the kubernetes version running in GCP currently. Not possible to complete with 100% rate.

Maximilian W. · Examiné il y a plus d'un an

cant finish this labb bcs the instruction is deprecated!!!

HAIDAR W. · Examiné il y a plus d'un an

THANK YOU FOR WASTING MY TIME!! PLEASE CHECK ALL THE DEPRECATED DEPENDENCY!!! cat <<EOF | kubectl apply -f - --- apiVersion: policy/v1beta1 kind: PodSecurityPolicy metadata: name: restrictive-psp annotations: seccomp.security.alpha.kubernetes.io/allowedProfileNames: 'docker/default' apparmor.security.beta.kubernetes.io/allowedProfileNames: 'runtime/default' seccomp.security.alpha.kubernetes.io/defaultProfileName: 'docker/default' apparmor.security.beta.kubernetes.io/defaultProfileName: 'runtime/default' spec: privileged: false # Required to prevent escalations to root. allowPrivilegeEscalation: false # This is redundant with non-root + disallow privilege escalation, # but we can provide it for defense in depth. requiredDropCapabilities: - ALL # Allow core volume types. volumes: - 'configMap' - 'emptyDir' - 'projected' - 'secret' - 'downwardAPI' # Assume that persistentVolumes set up by the cluster admin are safe to use. - 'persistentVolumeClaim' hostNetwork: false hostIPC: false hostPID: false runAsUser: # Require the container to run without root privileges. rule: 'MustRunAsNonRoot' seLinux: # This policy assumes the nodes are using AppArmor rather than SELinux. rule: 'RunAsAny' supplementalGroups: rule: 'MustRunAs' ranges: # Forbid adding the root group. - min: 1 max: 65535 fsGroup: rule: 'MustRunAs' ranges: # Forbid adding the root group. - min: 1 max: 65535 EOF

Astawan Z. · Examiné il y a plus d'un an

cant finish this labb bcs the instruction is deprecated!!!

HAIDAR W. · Examiné il y a plus d'un an

Richard A. · Examiné il y a plus d'un an

THANK YOU FOR WASTING MY TIME!! PLEASE CHECK ALL THE DEPRECATED DEPENDENCY!!!

Astawan Z. · Examiné il y a plus d'un an

Wahyu L. · Examiné il y a plus d'un an

BUGGG

HAIDAR W. · Examiné il y a plus d'un an

YOU NEED to specify the version. On task 1 no 2, paste this instead <gcloud container clusters create simplecluster --zone $MY_ZONE --num-nodes 2 --metadata=disable-legacy-endpoints=false --cluster-version=1.24.13-gke.500> After that, you wont get error on task 7 no 2.

Moch A. · Examiné il y a plus d'un an

Moch A. · Examiné il y a plus d'un an

Fahrul a. · Examiné il y a plus d'un an

Nous ne pouvons pas certifier que les avis publiés proviennent de consommateurs qui ont acheté ou utilisé les produits. Les avis ne sont pas vérifiés par Google.