In this tech talk, we'll cover several security best practices for Amazon EKS. You'll learn more about the security features that enable data protection and access controls within your Amazon EKS clusters. You'll also understand configuration options and available tools through demos to help secure your Kubernetes clusters on Amazon EKS.
Learning Objectives:
*Learn the security features available to you in Amazon EKS
*Learn how to secure your clusters with the various configuration options and tools
*Learn several security best practices for Amazon EKS
***To learn more about the services featured in this talk, please visit: aws.amazon.com/eks
0:52 Agenda
1:59 Amazon EKS Security Primer
4:47 Amazon EKS Security Controls
9:48 Authentication - AWS IAM
12:04 Demo 1
15:01 Authentication - OIDC IDP
17:35 Demo 2
30:52 Audit logs and CloudWatch
31:35 EKS Best Practices for Security
36:06 Resources and links to security content
1. Control plane logging: docs.aws.amazon.com/eks/lates...
2. Endpoint access: docs.aws.amazon.com/eks/lates...
3. Authentication controls: docs.aws.amazon.com/eks/lates... • #ContainersFromTheCouc...
4. ECR image scanning and encryption tech talks: • Container Image Scanni... ; • Encrypting ECR Images ...
5. IAM roles for services accounts: • #ContainersFromTheCouc... ; aws.amazon.com/blogs/opensour...
6. Secrets Encryption tech talk: • Encrypting Secrets in ...
7. CIS EKS Benchmark overview demo: • AWS Container Day - CI... ; • #ContainersFromTheCouc...
8. Security Groups for pods: • Deploying Wordpress to...
9. OIDC Identity Provider Authentication: docs.aws.amazon.com/eks/lates... aws.amazon.com/blogs/containe...
10. Fargate Runtime Security SYS_PTRACE capability demo: • Runtime security using...
11. OPA admission controller security on EKS demo: • OPA the Open Policy Ag... Subscribe to AWS Online Tech Talks On AWS:
www.youtube.com/@AWSOnlineTec...
Follow Amazon Web Services:
Official Website: aws.amazon.com/what-is-aws
Twitch: / aws
Twitter: / awsdevelopers
Facebook: / amazonwebservices
Instagram: / amazonwebservices
☁️ AWS Online Tech Talks cover a wide range of topics and expertise levels through technical deep dives, demos, customer examples, and live Q&A with AWS experts. Builders can choose from bite-sized 15-minute sessions, insightful fireside chats, immersive virtual workshops, interactive office hours, or watch on-demand tech talks at your own pace. Join us to fuel your learning journey with AWS.
#AWS
Негізгі бет Securing Your Amazon EKS Cluster - AWS Online Tech Talks
No video
Пікірлер: 6