Skip to content

Latest commit

 

History

History
41 lines (29 loc) · 933 Bytes

aks-policies.md

File metadata and controls

41 lines (29 loc) · 933 Bytes

Enabling Pod policies

  • Run the below command to Register pod security policy feature preview
az feature register --name PodSecurityPolicyPreview --namespace Microsoft.ContainerService
  • Enable pod security policy on an AKS cluster
az aks update \
    --resource-group rg-aks-demo \
    --name aks-cf-demo-eus \
    --enable-pod-security-policy

Viewing AKS Pod Security policies

To view the policies available

kubectl get psp

Installing & Uninstalling OPA Gatekeeper

kubectl apply -f https://raw.githubusercontent.com/open-policy-agent/gatekeeper/master/deploy/gatekeeper.yaml

kubectl delete -f https://raw.githubusercontent.com/open-policy-agent/gatekeeper/master/deploy/gatekeeper.yaml

K8 working with Constraints

kubectl get constrainttemplates
kubectl delete  constrainttemplates 'k8srequiredlabels"

kubectl delete -f constraints
kubectl delete -f templates