k8s.github.io

Practice Test - Image Security

• Take me to Practice Test

Solutions to the practice test - Image Security

• We have an application running on our cluster. Let us explore it first. What image is the application using?

  ``` $ kubectl get deploy -o wide ```

• Use the kubectl edit deployment command to edit the image name to myprivateregistry.com:5000/nginx:alpine

  ``` $ kubectl edit deployment web ```

• Run the command kubectl get pods command and check the status of the pods

  ``` $ kubectl get pods ```

• Run command kubectl create secret docker-registry private-reg-cred –docker-username=dock_user –docker-password=dock_password –docker-server=myprivateregistry.com:5000 –docker-email=dock_user@myprivateregistry.com

  ``` $ kubectl create secret docker-registry private-reg-cred --docker-username=dock_user --docker-password=dock_password --docker-server=myprivateregistry.com:5000 --docker-email=dock_user@myprivateregistry.com ```

• Edit deployment using kubectl edit deploy web command and add imagePullSecrets section. Use private-reg-cred

  ``` $ kubectl edit deploy web ```

• Check the status of PODs. Wait for them to be running. You have now successfully configured a Deployment to pull images from the private registry

  ``` $ kubectl get pods ```