This lab provides practice scenarios to help prepare you for the Certified Kubernetes Security Specialist (CKS) exam. You will be presented with tasks to complete, as well as server(s) and/or an existing Kubernetes cluster to complete them in. You will need to use your knowledge of Kubernetes to successfully complete the provided tasks, much like you would on the real CKS exam. Good luck!
Successfully complete this lab by achieving the following learning objectives:
- Create a RuntimeClass to Use for Untrusted Workloads
Create a RuntimeClass called
sandboxthat uses the preconfigured
runscruntime for untrusted workloads.
Note: You can find a skeleton manifest in
/home/cloud_user/sandbox.ymlon the CLI server.
- Configure Pods to Use gVisor
Configure all Pods in the
sunnydalenamespace to use gVisor.