Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
Achieving DevSecOps Sovereignty with GitLab
- Comparison of features and control between GitLab CE, EE, and GitLab.com.
- Omnibus architecture and Kubernetes Helm deployment options.
- Risks associated with SaaS lock-in and data residency requirements.
Installation and Architecture
- Omnibus installation on Ubuntu with PostgreSQL and Redis.
- GitLab Helm chart deployment on Kubernetes with persistent volumes.
- Configuration of external services: object storage, SMTP, and LDAP.
- Implementing Geo replication for multi-region disaster recovery.
Repository and Project Management
- Managing groups, subgroups, and project hierarchies.
- Merge request workflows, code reviews, and approval rules.
- Using issue boards, epics, and milestones for Agile planning.
- Utilizing wikis, snippets, and release management tools.
CI/CD Pipeline Engineering
- Understanding .gitlab-ci.yml syntax, stages, and job dependencies.
- Different runner types: shared, group, and specific runners.
- Utilizing Docker executor, Kubernetes executor, and autoscaling features.
- Managing artifact caching, registry publishing, and deployment stages.
Security Scanning
- Conducting SAST, DAST, dependency scanning, and container scanning.
- Detecting secrets and ensuring license compliance.
- Using vulnerability dashboards and tracking remediation efforts.
Authentication and Authorization
- Implementing LDAP, SAML, and OpenID Connect SSO.
- Enabling two-factor authentication and managing personal access tokens.
- Configuring IP allowlisting and audit event logging.
Registry and Package Management
- Managing the container registry: authentication, cleanup policies, and replication.
- Utilizing the package registry for Maven, npm, PyPI, and Conan.
- Uploading generic packages for internal artifacts.
Monitoring and Scaling
- Viewing GitLab Exporter metrics and Grafana dashboards.
- Tuning the database and configuring PgBouncer connection pooling.
- Horizontally scaling web, API, and sidekiq nodes.
- Implementing backup strategies: rake tasks, object storage, and restore verification.
Requirements
- Advanced Linux system administration skills and foundational knowledge of Ruby/Go.
- Understanding of CI/CD, container orchestration, and Git workflows.
- Experience managing PostgreSQL and Redis at scale.
Audience
- Enterprise DevOps teams looking to replace GitLab.com or GitHub Enterprise.
- Organizations requiring complete sovereignty over their DevSecOps toolchain.
- Regulated industries needing on-premise CI/CD and registry solutions.
21 Hours
Testimonials (2)
I like that I've got immediately answer to my questions.
Szabolcs Kriston - Ericsson
Course - Advanced GitLab
I liked the easy communication between trainer and us, care given to our problems, insights and additional knowledge provided in anwers to our questions. I liked the pace, it didn't feel rushed at any point, even with technical problems. Each subject was taken care of properly.
