Hi Chetan,

Though openssl and general TLS certificate management are not instructional goals of DO280, that knowledge is necessary to pass the exam, and for any real-world sysadmin job that includes managing web servers, REST services, and other applications that use TLS security.

We are exploring alternatives to teach these topics in more depth such as tech overviews, expert extras, or even appendixes to add to course books such as the one from DO280.

Thanks for your reply ! I am sure that would be a great help for many learners ( especially the appendixes ) . 

Thanks again for your time !

Regards.

Hi rmokkink,

What you think we miss about teaching Kubernetes vs teaching OpenShift? We are open to improving our courseware.

After all OpenShift is Kubernetes, and any real production Kubernetes has to add *lots* of stuff over the "vanilla" upstream Kubernetes. Anything that works in vanilla Kubernetes should work, unchanged, with OpenShift, except things that are very infrastructure-dependent such as ingress and storage controllers, but them it would be true for any Kubernetes distribution in the market and also for all cloud-managed offerings.

The hard truth is that there's no "standard" Kubernetes for real-world, production scenarios. Don't be fooled by what you can "easily" do with minikube and kino. You'll have to make decisions and add stuff that will make your environment different than everyone's else.

For example, a friend said that his company spent six months, with two full-time engineers + one full time architect, to create a useable production Kubernetes cluster, and that was just adding things you get pre-installed with OpenShift, such as metrics and authentication. They were using a big cloud xKS service. Red Hat have a number of customers that followed that route and later switched to OpenShift because it was just better ROI.