Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
Achieving DevSecOps Sovereignty with GitLab
- Comparative analysis of GitLab CE, EE, and GitLab.com regarding features and control.
- Overview of Omnibus architecture and Kubernetes Helm deployment options.
- Risks associated with SaaS lock-in and data residency compliance requirements.
Installation and Architecture
- Omnibus installation procedures on Ubuntu, integrating PostgreSQL and Redis.
- Deploying GitLab via Helm charts on Kubernetes with persistent volume configurations.
- Configuring external services such as object storage, SMTP, and LDAP.
- Implementing Geo replication for multi-region disaster recovery.
Repository and Project Management
- Managing groups, subgroups, and project hierarchies.
- Executing merge request workflows, code reviews, and establishing approval rules.
- Utilizing issue boards, epics, and milestones for Agile project planning.
- Leveraging wiki pages, snippets, and release management tools.
CI/CD Pipeline Engineering
- Mastering .gitlab-ci.yml syntax, defining stages, and handling job dependencies.
- Differentiating between shared, group, and specific runners.
- Configuring Docker executors, Kubernetes executors, and enabling autoscaling.
- Managing artifact caching, publishing to registries, and executing deployment stages.
Security Scanning
- Utilizing SAST, DAST, dependency scanning, and container scanning tools.
- Detecting secrets and ensuring license compliance.
- Monitoring vulnerability dashboards and tracking remediation efforts.
Authentication and Authorization
- Setting up LDAP, SAML, and OpenID Connect for Single Sign-On (SSO).
- Enforcing two-factor authentication and managing personal access tokens.
- Implementing IP allowlisting and maintaining audit event logs.
Registry and Package Management
- Managing the container registry, including authentication, cleanup policies, and replication.
- Configuring the package registry for Maven, npm, PyPI, and Conan.
- Uploading generic packages for internal artifact storage.
Monitoring and Scaling
- Utilizing GitLab Exporter metrics and creating Grafana dashboards.
- Tuning databases and implementing PgBouncer for connection pooling.
- Horizontally scaling web, API, and Sidekiq nodes.
- Developing backup strategies using rake tasks, object storage, and verifying restore procedures.
Requirements
- Proficiency in advanced Linux system administration along with foundational knowledge of Ruby and Go.
- Solid understanding of CI/CD principles, container orchestration, and Git workflows.
- Practical experience managing PostgreSQL and Redis at scale.
Target Audience
- Enterprise DevOps teams looking to migrate away from GitLab.com or GitHub Enterprise.
- Organizations that require complete sovereignty over their DevSecOps toolchain.
- Regulated industries demanding on-premise solutions for CI/CD and artifact registries.
21 Hours
Testimonials (2)
I like that I've got immediately answer to my questions.
Szabolcs Kriston - Ericsson
Course - Advanced GitLab
I liked the easy communication between trainer and us, care given to our problems, insights and additional knowledge provided in anwers to our questions. I liked the pace, it didn't feel rushed at any point, even with technical problems. Each subject was taken care of properly.
