Secure Access you own this product

basic RESTful API • basic client-server model
skills learned
role-based access control • authentication • authorization • service accounts
Chad Crowell and Michael Levan
1 week · 4-6 hours per week · INTERMEDIATE

pro $24.99 per month

  • access to all Manning books, MEAPs, liveVideos, liveProjects, and audiobooks!
  • choose one free eBook per month to keep
  • exclusive 50% discount on all purchases

lite $19.99 per month

  • access to all Manning books, including MEAPs!


5, 10 or 20 seats+ for your team - learn more

Look inside

Welcome to Interpop, a popular audio streaming service that has over 30 million users and gets about a million requests per second to its service running on Kubernetes. As Interpop’s new Kubernetes administrator, your task is to secure its Kubernetes cluster, ensuring a more secure connection for end users. You’ll create user accounts with client certificates that allow limited access to the cluster, and you’ll grant different levels of user access with Roles, Bindings, ClusterRoles, and ClusterBindings. You’ll create service accounts that allow users to deploy pods so that developers can run them, and you’ll empower Interpop’s engineers to check what kind of access they have using auth can-I. When you’re done, you’ll have practical experience securing access to Kubernetes with users, certs, groups, and role-based access control (RBAC), as well as a solid understanding of Kubernetes security in a production environment.

This project is designed for learning purposes and is not a complete, production-ready application or solution.

project authors

Chad Crowell

Chad Crowell is a certified Microsoft trainer (MCT) and the author of dozens of courses on Kubernetes and DevOps with Pluralsight and INE. A Windows administrator turned DevOps professional, he works as a consultant helping companies with cloud and DevOps transformations. He currently holds the Certified Kubernetes Administrator certification and has been teaching Kubernetes to professionals for four years.

Michael Levan

Michael Levan is a seasoned engineer and consultant in the Kubernetes space who works with startups and enterprises around the globe on Kubernetes and cloud native projects. He also coaches aspiring engineers as they embark on their engineering journeys, and creates real-world, project-focused content, which he enjoys sharing with the tech community through books, blogs, and international speaking engagements.


This liveProject is for systems administrators with an intermediate level of knowledge of the Linux command line, YAML, and containers using tools like Docker or CRI-O. To begin these liveProjects you’ll need to be familiar with the following:

  • Kubernetes basics
  • Familiarity with vim (how to enter insert mode, how to save, and how to close a file in vim)
  • Linux command line basics (how to change the directory, modify permissions for files, and copy and move files from one directory to another)
  • Kubernetes cluster where you can run Kubernetes
  • Deploy and manage Kubernetes resources with kubectl
  • Secure Linux applications
  • Create deployments, pods, and services in Kubernetes


You choose the schedule and decide how much time to invest as you build your project.
Project roadmap
Each project is divided into several achievable steps.
Get Help
While within the liveProject platform, get help from other participants and our expert mentors.
Compare with others
For each step, compare your deliverable to the solutions by the author and other participants.
book resources
Get full access to select books for 90 days. Permanent access to excerpts from Manning products are also included, as well as references to other resources.

choose your plan


only $41.67 per month
  • five seats for your team
  • access to all Manning books, MEAPs, liveVideos, liveProjects, and audiobooks!
  • choose another free product every time you renew
  • choose twelve free products per year
  • exclusive 50% discount on all purchases
  • Secure Access project for free