Azure Kubernetes Service (AKS) Fundamentals Training
Get started with Azure Kubernetes Service in this comprehensive 2-day course. Learn to create and configure AKS clusters, deploy workloads, and integrate with Azure services like Entra ID, Azure CNI, and Container Registry.
Training Details
Section titled “Training Details”| Duration | 2 days (16 hours) |
| Level | Beginner |
| Delivery | In-person, Live online, Hybrid |
| Certification | N/A |
Who Is This For?
Section titled “Who Is This For?”- Developers deploying containerized applications on Azure
- DevOps engineers adopting AKS for container orchestration
- Azure administrators adding Kubernetes to their toolkit
- Teams migrating from self-managed Kubernetes to AKS
Learning Outcomes
Section titled “Learning Outcomes”After completing this training, participants will be able to:
- Create and configure AKS clusters using Azure CLI, Bicep, and Terraform
- Understand AKS architecture (control plane, system/user node pools)
- Deploy and manage workloads on AKS
- Configure Azure AD (Entra ID) integration and Kubernetes RBAC
- Set up Azure Application Gateway Ingress Controller
- Integrate with Azure Container Registry (ACR)
Detailed Agenda
Section titled “Detailed Agenda”Day 1: AKS Cluster Setup and Architecture
Section titled “Day 1: AKS Cluster Setup and Architecture”Module 1: Introduction to Azure Kubernetes Service
- AKS architecture and free-tier control plane
- Node pools: system vs user, VM scale sets
- Networking models: kubenet vs Azure CNI vs Azure CNI Overlay
- Provisioning tools: Azure CLI, Bicep, Terraform
- Hands-on: Create an AKS cluster with Azure CLI
Module 2: Networking and VNet Integration
- Azure CNI and Pod networking
- Azure CNI Overlay for large-scale clusters
- Network Security Groups and Azure Firewall integration
- Public vs private clusters
- Hands-on: Deploy a private AKS cluster with Azure CNI
Module 3: Identity and Access Management
- Azure AD (Entra ID) integration for cluster authentication
- Kubernetes RBAC with Azure AD groups
- Azure Managed Identities for Pods (Workload Identity)
- Azure RBAC for Kubernetes authorization
- Hands-on: Configure Entra ID authentication and Workload Identity
Day 2: Workloads and Azure Integration
Section titled “Day 2: Workloads and Azure Integration”Module 4: Deploying Workloads
- Deployments, Services, and Ingress on AKS
- Azure Application Gateway Ingress Controller (AGIC)
- NGINX Ingress Controller as alternative
- Azure Container Registry integration and image pull
- Hands-on: Deploy a multi-tier application with AGIC
Module 5: Storage and State
- Azure Disk CSI driver (managed disks)
- Azure Files CSI driver for shared storage
- Azure Blob CSI driver
- StorageClasses and dynamic provisioning
- Hands-on: Add persistent storage with Azure Disks and Files
Module 6: Monitoring and Logging
- Azure Monitor Container Insights
- Managed Prometheus and Grafana
- Log Analytics workspace integration
- Azure Monitor alerts for AKS
- Hands-on: Enable Container Insights and create monitoring dashboards
Prerequisites
Section titled “Prerequisites”- Basic Kubernetes knowledge (Pods, Deployments, Services)
- Azure fundamentals (resource groups, VNets, Azure AD — AZ-900 level)
- Command line and kubectl familiarity
Delivery Formats
Section titled “Delivery Formats”| Format | Description |
|---|---|
| In-Person | On-site at your company’s location, hands-on with direct interaction |
| Live Online | Interactive virtual sessions with screen sharing and real-time labs |
| Hybrid | Combination of on-site and remote sessions, flexible scheduling |
All formats include hands-on labs, course materials, and post-training support.