Kubernetes

Hardening Kubernetes Nodes on Ubuntu

A CIS Benchmark Approach

Hardening a Kubernetes cluster begins at the node level. This guide explains how to secure Ubuntu-based Kubernetes nodes by applying the CIS (Center for Internet Security) Benchmark, which provides a detailed set of best practices for reducing vulnerabilities and strengthening your security posture. The CIS Benchmark outlines comprehensive security standards for various systems, including operating systems, applications, and network devices. Its recommendations help organizations adhere to...

Understanding the Components of Kubernetes

Understanding the Basics Part 2

Kubernetes is renowned for its ability to orchestrate containerized applications at scale. To fully appreciate how it works, it’s important to understand the key components that make up its architecture. In this article, we’ll dive into the core building blocks of Kubernetes, the Control Plane and the Worker Nodes, explaining their roles and how they work together to deliver a resilient, scalable system. The Kubernetes Control Plane The control plane acts as the “brain” of a Kubernetes cluster....

Introduction to Kubernetes

Understanding the Basics

Kubernetes has emerged as one of the leading platforms for managing containerized applications at scale. In this article, we’ll provide a high-level overview of Kubernetes, explore its core architecture and highlight how it compares to Docker or Nomad, setting the stage for deeper dives in future posts. What is Kubernetes? Kubernetes is an open-source container orchestration platform designed to automate the deployment, scaling, and management of containerized applications. It evolved from the...

Configuring ArgoCD with Zitadel via Helm

Using External Secrets for OIDC

When integrating ArgoCD with an OpenID Connect (OIDC) provider like Zitadel, managing secrets securely is crucial. While the official documentation provides comprehensive guidance, this article focuses on a Helm-based setup where ArgoCD retrieves OIDC credentials from an external Kubernetes Secret. In this guide, we’ll configure ArgoCD’s OIDC integration with Zitadel via Helm, ensuring that client credentials are stored securely in a Kubernetes Secret rather than being embedded in...

Integrating Zitadel as an OIDC Provider in Grafana

Improve your Grafana authentication flow with Zitadel’s OpenID Connect integration

While securing my Grafana instance with Zitadel as an OpenID Connect (OIDC) provider, I encountered several challenges and gained valuable insights. Since documentation on this integration is limited, I’m sharing my step-by-step guide to help others set up Zitadel authentication for Grafana with ease. What is Grafana? Grafana is an open-source platform for monitoring and observability, widely used to visualize and analyze time-series data from various sources like Prometheus, InfluxDB, and...

Resume

Career Objective To leverage over five years of expertise in DevOps, cloud-native technologies, and infrastructure automation to design and implement scalable, secure, and high-performance solutions. As a certified Kubernetes and Azure specialist, I am dedicated to driving innovation by building robust CI/CD pipelines, automating workflows, and developing custom tools and Kubernetes Operators to streamline operations. I aim to contribute to transformative projects, such as those in the...