Back To Schedule
Thursday, December 7 • 11:10am - 11:45am
Deploying Kubernetes Without Scaring Off Your Security Team [I] - Paul CzarkowskI, Pivotal & Major Hayden, Rackspace

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

subtitle: "The Major Hayden Center For Kubernauts Who Can't Security Good And Wanna Learn To Do Other Stuff Good Too"

One of the larger roadblocks we face in the enterprise when trying to adopt new technologies is getting the security and compliance teams onboard.

Tools like kubicorn and kubeadm are likely the foundation on which Kubernetes deployments will be performed in the future as they help simplify the deployment and operations of Kubernetes a very complex distributed system.

However concerns about security and compliance, which are not as yet addressed by those tools, may act as inhibitors and road blocks to using these them and thus Kubernetes in the enterprise.

Thankfully the techniques and tools for deploying Enterprise Linux distributions, securing them, and ensuring compliance already exist and can be very easily combined with kubernetes.

In this talk we’ll expand upon these enterprise requirements and use cases and show how we can use existing Ansible tooling to deploy kubernetes on bare metal or the cloud, monitor it with common enterprise monitoring tools, secure it with a 2fa SSH bastion, and ensure [DISA STIG] compliance.

avatar for Paul Czarkowski

Paul Czarkowski

Principal Technologist, Pivotal Software
Paul Czarkowski is a recovering Systems Administrator who has run infrastructure for longer than he cares to admit. After cutting his teeth in the ISP and Gaming industries Paul changed his focus to using (and contributing to) Open Source Software to improve the Operability of complex... Read More →
avatar for Major Hayden

Major Hayden

Principal Software Engineer, Red Hat
Major Hayden is a principal software engineer at Red Hat and he is the technical lead for the Continuous Kernel Integration (CKI) project. He spends most of his day wrestling with kernel tests on various architectures using GitLab, Python, and OpenShift. He maintains a technical blog... Read More →

Thursday December 7, 2017 11:10am - 11:45am CST
Meeting Room 12AB, Level 4