Skip to main content

Kubernetes Resources

In Kubernetes, resources are like Lego blocks that represent objects you use to build and manage your cluster. Each resource is an object with metadata (like names and labels) and a desired state that tells Kubernetes what to do and stored the in etcd store. For example, a Pod resource defines how to run a group of containers, while a Service resource manages network access to those containers. Everything you can manage with kubectl or the Kubernetes API - like workloads, storage, or configuration - is a resource, making them essential for defining and controlling your cluster's behavior.

The following command will print out all relevant resources kubectl api-resources

The most relevant resources for the KCNA exam are marked red

Core-Ressourcen:Core Resources

  • Pod
  • NamespaceService
  • ServiceConfigMap
  • NamespaceSecret
  • ConfigMapNamespace
  • SecretPersistentVolume
  • PersistentVolumeClaim
  • ServiceAccount
  • Binding
  • ComponentStatus
  • Endpoints
  • Event
  • LimitRange
  • PodTemplate
  • ReplicationController
  • ResourceQuota

Workloads

  • PersistentVolume (PV)Deployment
  • PersistentVolumeClaim (PVC)ReplicaSet
  • ReplicationController
  • NodeDaemonSet
  • EventStatefulSet
  • Endpoint CronJob
  • LimitRangeJob
  • ResourceQuota ControllerRevision

Workload-Ressourcen:Networking

  • Ingress
  • NetworkPolicy
  • IngressClass

RBAC (Role-Based Access Control)

  • DeploymentRole
  • ReplicaSetRoleBinding
  • StatefulSet ClusterRole
  • DaemonSet
  • Job
  • CronJob ClusterRoleBinding

Networking-Ressourcen:Storage

  • IngressStorageClass
  • NetworkPolicy

Storage-Ressourcen:

  • StorageClassCSIDriver
  • VolumeCSINode
  • CSIStorageCapacity
  • VolumeAttachment

Policy-Ressourcen:Admission Control

  • PodDisruptionBudget (PDB)MutatingWebhookConfiguration
  • PodSecurityPolicy (PSP)
  • NetworkPolicyValidatingWebhookConfiguration

CustomAPI Resource Definitions (CRDs):Extensions

  • CustomResourceDefinition
  • APIService

Cluster-spezifischeAuthentication Ressourcen:and Authorization

  • ClusterRoleTokenReview
  • ClusterRoleBindingLocalSubjectAccessReview
  • RoleSelfSubjectAccessReview
  • RoleBindingSelfSubjectRulesReview
  • SubjectAccessReview

Autoscaling

  • HorizontalPodAutoscaler

Certificates

  • CertificateSigningRequest

Coordination

  • Lease

Discovery

  • EndpointSlice

Events

  • Event

Flow Control

  • FlowSchema
  • PriorityLevelConfiguration

Node Management

  • RuntimeClass

Policies

  • PodDisruptionBudget
  • PodSecurityPolicy

Scheduling

  • PriorityClass

Autoscaling-Ressourcen:

  • HorizontalPodAutoscaler (HPA)
  • VerticalPodAutoscaler (VPA)
  • ClusterAutoscaler (extern, aber häufig verwendet)

Monitoring- und Debugging-Ressourcen:

  • Probe (Liveness, Readiness, Startup)
  • Metrics (via Metrics Server)
  • AuditPolicy
Back to top