Category: Containers

Introduction Achieving complete isolation between multiple tenants running in the same Kubernetes cluster is impossible today. The reason is because Kubernetes was designed to have a single control plane per cluster and all the tenants running in the cluster, share the same control plane. Hosting multiple tenants in a single cluster brings some advantages, the […]

With the introduction of IAM roles for services accounts (IRSA), you can create an IAM role specific to your workload’s requirement in Kubernetes. This also enables the security principle of least privilege by creating fine grained roles at a pod level instead of node level. In this blog post, we explore a use case where […]

At AWS, we are continually looking to improve customer experience by reducing complexity. Our customers want to spend more time solving business problems and less time maintaining infrastructure. Two years ago, we launched Amazon EKS to make it easy for you to operate Kubernetes clusters. And last year, at re:Invent 2019, we announced support for […]

Introduction Continuous integration (CI) and continuous delivery (CD) are vital practices in modern software development. They streamline the delivery of software to deliver business value quickly. Along with rapid delivery, current business environment also demands near zero down time for their apps. Blue/green deployments offer a solution that not only enables teams to deliver fast, […]

The AWS Containers team is hosting the inaugural AWS Cloud Containers Conference (C3), a fully virtual event, solely covering Containers at AWS. The initial event will take place on July 9th from 9:00am – 6:00pm PDT and will be a full day of technical deep dives, demos, and workshops. Attendees can look forward to learning […]

This post was contributed by Carmen Puccio, Principal Solutions Architect, AWS, and Haseeb Budhani, Co-Founder and CEO, Rafay Systems September 8, 2021: Amazon Elasticsearch Service has been renamed to Amazon OpenSearch Service. See details. Background SonicWall, a storied technology company, delivers a broad suite of security products to protect enterprises and small and medium businesses […]

Introduction Kubernetes allows you to store and manage sensitive information outside of the podSpec using a secret object, e.g. API key or certificate. Conceptually, this allows you to treat secrets differently than other types of Kubernetes objects. Nevertheless, a lot of customers avoided using Kubernetes Secrets for storing secret material because it did not include […]

Introduction A Kubernetes native application is one that is deployed on a Kubernetes cluster and managed both using Kubernetes APIs as well as client-side tools such as kubectl. A Kubernetes Operator is an abstraction for deploying non-trivial Kubernetes applications such as an etcd database cluster or a Prometheus monitoring/alerting system. It provides a mechanism to […]

This post has been co-authored by Arpan Patro, Lead Architect at Infosys and Satheesh Kumar, Solutions Architect at AWS Infosys is a global leader in next-generation digital services and consulting. Infosys has a strong workforce of over 240K employees spread across the globe providing business consulting, information technology, and outsourcing services. Challenge: Infosys serves their clients […]

Amazon Elastic Kubernetes Service (Amazon EKS) makes it easy to deploy, manage, and scale containerized applications using Kubernetes. Okta is an API service that allows developers to create, edit, and securely store user accounts and user account data and connect them with one or multiple applications. Okta helps you provide access to the AWS Management […]