»Everything You Needed to Know about Kubernetes TLS, But Were Afraid to Ask«
2019-11-16, 17:00–17:30, Room1

Do you know how to inspect Kubernetes TLS when it's broken and identify what the problem is? Maybe not as well as you think -- but you're in good company: even experienced admins often don't know the basics. Let's fix that.

In this session Joe Thompson starts with a quick level-setting "TLS 101" and then dives in to examining TLS in a live Kubernetes cluster, focusing on the way cluster components use TLS and showing what various kinds of issues look like and how to use standard tools available to any admin to diagnose them. You'll also get practical general advice for managing TLS in your environment, including how (and when) to be your own certificate authority.