Kubernetes Cluster Component Security
Kubernetes Components
Control Plane Components
kube-apiserver-it is the front end for the Kubernetes control plane.etcd- a consistent and highly-available key value store used as Kubernetes' backing store for all cluster data.kube-scheduler- component that watches for newly created Pods with no assigned node, and selects a node for them to run on.kube-controller-manager- component that runs controller processes (e.g. Node controller, Job controller, etc.)cloud-controller-manager- component that embeds cloud-specific control logic. It only runs controllers that are specific to your cloud provider.
Node Components
kubelet- an agent that runs on each node in the cluster. It makes sure that containers are running in a Pod.kube-proxy- is a network proxy that runs on each node in your cluster, implementing part of the Kubernetes Service concept.Container runtime- is responsible for managing the execution and lifecycle of containers within the Kubernetes environment.
API Server
Controller Manager
Scheduler
Kubelet
Container Runtime
KubeProxy
Pod
Etcd
Container Networking
Client Security
Storage
Last updated