Hardening Default GKE Cluster Configurations Reviews
9628 reviews
Lab is using PodSecurityPolicies which are deprecated and even no longer available at all on the kubernetes version running in GCP currently. Not possible to complete with 100% rate.
Maximilian W. · Reviewed 11 months ago
cant finish this labb bcs the instruction is deprecated!!!
HAIDAR W. · Reviewed 11 months ago
THANK YOU FOR WASTING MY TIME!! PLEASE CHECK ALL THE DEPRECATED DEPENDENCY!!! cat <<EOF | kubectl apply -f - --- apiVersion: policy/v1beta1 kind: PodSecurityPolicy metadata: name: restrictive-psp annotations: seccomp.security.alpha.kubernetes.io/allowedProfileNames: 'docker/default' apparmor.security.beta.kubernetes.io/allowedProfileNames: 'runtime/default' seccomp.security.alpha.kubernetes.io/defaultProfileName: 'docker/default' apparmor.security.beta.kubernetes.io/defaultProfileName: 'runtime/default' spec: privileged: false # Required to prevent escalations to root. allowPrivilegeEscalation: false # This is redundant with non-root + disallow privilege escalation, # but we can provide it for defense in depth. requiredDropCapabilities: - ALL # Allow core volume types. volumes: - 'configMap' - 'emptyDir' - 'projected' - 'secret' - 'downwardAPI' # Assume that persistentVolumes set up by the cluster admin are safe to use. - 'persistentVolumeClaim' hostNetwork: false hostIPC: false hostPID: false runAsUser: # Require the container to run without root privileges. rule: 'MustRunAsNonRoot' seLinux: # This policy assumes the nodes are using AppArmor rather than SELinux. rule: 'RunAsAny' supplementalGroups: rule: 'MustRunAs' ranges: # Forbid adding the root group. - min: 1 max: 65535 fsGroup: rule: 'MustRunAs' ranges: # Forbid adding the root group. - min: 1 max: 65535 EOF
Astawan Z. · Reviewed 11 months ago
cant finish this labb bcs the instruction is deprecated!!!
HAIDAR W. · Reviewed 11 months ago
Richard A. · Reviewed 11 months ago
THANK YOU FOR WASTING MY TIME!! PLEASE CHECK ALL THE DEPRECATED DEPENDENCY!!!
Astawan Z. · Reviewed 11 months ago
Wahyu L. · Reviewed 11 months ago
BUGGG
HAIDAR W. · Reviewed 11 months ago
YOU NEED to specify the version. On task 1 no 2, paste this instead <gcloud container clusters create simplecluster --zone $MY_ZONE --num-nodes 2 --metadata=disable-legacy-endpoints=false --cluster-version=1.24.13-gke.500> After that, you wont get error on task 7 no 2.
Moch A. · Reviewed 11 months ago
Moch A. · Reviewed 11 months ago
Fahrul a. · Reviewed 11 months ago
Ewen L. · Reviewed 11 months ago
ayu a. · Reviewed 11 months ago
Fahrul a. · Reviewed 11 months ago
stuck on task 7 no 2 edit : YOU NEED to specify the version. On task 1 no 2, paste this instead gcloud container clusters create simplecluster --zone $MY_ZONE --num-nodes 2 --metadata=disable-legacy-endpoints=false --cluster-version=1.24.13-gke.500 After that, you wont get error on task 7 no 2. (sometime there's may an error at some task, just wait and retry)
Muhammad I. · Reviewed 11 months ago
Archie C. · Reviewed 11 months ago
Damar S. · Reviewed 11 months ago
Task 7 & 8 deprecated
Ayu Sudi D. · Reviewed 11 months ago
Alhafiz Z. · Reviewed 11 months ago
Task 7 deprecated
Ayu Sudi D. · Reviewed 11 months ago
Deny K. · Reviewed 11 months ago
anil k. · Reviewed 11 months ago
Mocel R. · Reviewed 11 months ago
Mocel R. · Reviewed 11 months ago
anil k. · Reviewed 11 months ago
We do not ensure the published reviews originate from consumers who have purchased or used the products. Reviews are not verified by Google.