"Identity not found" when using Azure pod-managed identities Paid Members Public
One type of incident that arised on several customer environments within the last weeks has been the result of an issue with Azure pod-managed identities. What is managed podidentity? The idea behind podidentity is that you can assign an identity (mostly a managed service identity [MSI]) to a pod running
What happens if you ask kubernetes for 1254051 replicas Paid Members Public
One of our playgrounds recently had an incident which caused control-plane to go out-of-memory. This article shows how to diagnose and especially how to fix or event prevent this.
Kubernetes Cluster & self-hosted Registry: Trusting the CA Paid Members Public
You build your OnPremise Kubernetes Cluster and set up your self-hosted private registry. To make it pretty you used your own CA to sign the certificate for the registry. Everything is fine and now you are ready to deploy your own services to your Kubernetes Cluster and develop some awesome
Running postgres in kubernetes with hugepages Paid Members Public
To run postgres in a container on nodes with huge pages enabled requires you to configure the container accordingly. This post shows how to do this on kubernetes/openshift.
Fixing WinSXS manually, when DISM resigns Paid Members Public
WinSXS corruption (the component store is repairable) is often a tedious task to repair, especially when working on Windows Server 2016 where builtin commands might not be able to fix this out of the box. This guide shows a way that worked in most circumstances to get WinSXS consistent again.
microk8s - change location of hostpath storage Paid Members Public
Adjusting the hostpath storage location on microk8s requires you to adjust parameters in the associated deployment. This easy change is shown in this post.
nginx ingress controller cannot load default-ssl-certificate Paid Members Public
nginx ingress controller supports scoping to namespaces. This can be an issue with the default-tls-certificate in case this is not part of the scoped namespaces.
Use openssl to verify certificates Paid Members Public
Certificates are essential for todays security needs. Sometimes it's required to revoke them, maybe because they are no longer needed or because they got even compromised. But how do you test manually if a certificate has been revoked?
