EX288 Merge Flashcards

Question 1

Q

Create image stream

Answer

A

oc import-image stream-name --from URL/${USER}/image-name --confirm

Question 2

Q

Get OCP internal registry URL

Answer

A

oc get route -n openshift-image-registry

Question 3

Q

Enable access to internal registry

Answer

A

oc patch config.imageregistry cluster -n openshift-image-registry --type merge -p '{"spec":{"defaultRoute":true}}'

Question 4

Q

Create webhook

Answer

A

oc set triggers bc/name --from-gitlab

Question 5

Q

Mount cm into deployment

Answer

A

oc set env deployment/my-deployment-name --from configmap/mycm

Question 6

Q

Create secrets for OCP to access external registry using username & password

Answer

A

oc create secret docker-registry quayio --docker-server=$SERVER --docker-username=$USERNAME --docker-password=$PASSWORD

Question 7

Q

Link secrets to access external registry

Answer

A

oc secret link builder credential-name --for=pull oc secret link default credential-name --for=pull

oc secrets link deployer quayio --for=pull

Question 8

Q

Set a command as post commit build hook

Answer

A

oc set build-hook bc/name --post-commit --command -- bundle exec rake test --verbose

Question 9

Q

Set a post commit build hook using the shell approach

Answer

A

oc set build-hook bc/name --post-commit --script="curl http://api.com/user/${USER}"

Question 10

Q

How do you check if credentials have been added properly for accessing external registry?

Answer

A

oc describe serviceaccount default

Question 11

Q

Determine which SCC permissions are required for a pod to run

Answer

A

oc get pod podname -o yaml | oc adm policy scc-subject-review -f -

Question 12

Q

Create a service account

Answer

A

oc create sa nginx-sa

Question 13

Q

Connect the service accountnginx-sato the SCCanyuid:

Answer

A

oc adm policy add-scc-to-user anyuid -z nginx-sa

Question 14

Q

Bind the service accountnginx-sato the pod orsccnginxdeployment to allow it to run with its new permissions

Answer

A

oc set sa deploy podname nginx-sa

Question 15

Q

List of steps to resolve nginx CrashLoopBackoff

Answer

A

<ul> <li>oc get pod podname -o yaml | oc adm policy scc-subject-review -f -</li> <li>oc create sa nginx-sa</li> <li>oc adm policy add-scc-to-user anyuid -z nginx-sa</li> <li>oc set sa deploy sccnginx nginx-sa</li></ul>

Question 16

Q

Kubernetes main resource types

Answer

A

POD (po) Persistent Volumes (pv) Persistent Volume Claims (pvc) Build Config (bc) Deployment / deployment Confg (dc) Services (svc) Config Maps (cm) Secrets

Question 17

Q

Login to OCP cluster using CLI

Answer

A

oc login -u user1 -p passwd URL

Question 18

Q

Forward port to mysql server

Answer

A

oc port-forward mysql 3306:3306

Question 19

Q

Deploy mysql using template

Answer

A

oc new-app --template=mysql-persistent -p MYSQL_USER=user1 -p MYSQL_PASSWORD=mypa55 -p MYSQL_DATABASE=testdb -p MYSQL_ROOT_PASSWORD=r00tpa55 -p VOLUME_CAPACITY=10Gi

Question 20

Q

Deploy mysql using image from registry

Answer

A

oc new-app --image=myregistry.com/mycompany/myapp --name=myapp

Question 21

Q

Deploy app using github url

Answer

A

oc new-app https://github.com/openshift/ruby-hello-world --name=ruby-hello

Question 22

Q

Deploy mysql using mysql image

Answer

A

oc new-app mysql MYSQL_USER=user MYSQL_PASSWORD=pass MYSQL_DATABASE=testdb -l db=mysql

Question 23

Q

Get list of pv

Answer

A

oc get pv

Question 24

Q

Create pv

Answer

A

oc create -f pvc.yaml

Question 25

Q

get certain resources

Answer

A

oc get RESOURCE_TYPE RESOURCE_NAME

Question 26

Q

Show detailed of the resource

Answer

A

oc describe resource_type resource_name

Question 27

Q

oc create

Answer

A

oc create

Question 28

Q

edit resource

Answer

A

oc edit deploymentconfig/parksmap-katacoda

Question 29

Q

Delete resource

Answer

A

oc delete RESOURCE_TYPE name

Question 30

Q

Search by label

Answer

A

oc get svc,deployments -l app=nexus

Question 31

Q

Create a route

Answer

A

oc expose svc quotedb --name quote oc expose object_type object_name

Question 32

Q

Restart an OCP build

Answer

A

oc start-build myapp

Question 33

Q

Create an app with s2i

Answer

A

oc new-app -i php http://services.lab.example.com/app --name=myapp

Question 34

Q

Get list of image streams for a specific project.

Answer

A

oc get is -n openshift

Question 35

Q

Get list of builds

Answer

A

oc get builds

Question 36

Q

Get list of bc

Answer

A

oc get buildconfig

Question 37

Q

Get list of templates inside a project where you are not currently

Answer

A

oc get templates -n openshift

Question 38

Q

Explain: oc process --parameters mysql-persistent -n openshift

Answer

A

list available parameters/resources from a template

Question 39

Q

Process a template and redirect output to a file

Answer

A

oc process -o yaml -f filename > myapp.yaml

Question 40

Q

Which OCP resource is responsible for the build step in the S2I process

Answer

A

BuildConfig (BC)

Question 41

Q

How do you retrieve logs resulting from the S2I build step?

Answer

A

oc logs bc/appname

Question 42

Q

How do you retrieve logs resulting from the S2I deployment step?

Answer

A

oc logs -f deployment/appname

Question 43

Q

How do you troubleshoot volume issues in OCP?

Answer

A

1) Delete the persistent volume claim 2) Delete the persistent volume. 3) Recreate the persistent volume

Question 44

Q

Delete persistent volume

Answer

A

oc delete pv

Question 45

Q

Monitor logs from a build

Answer

A

oc logs -f bc/temps

Question 46

Q

Flag to configure oc new-app to create a DeploymentConfig resource instead of a Deployment

Answer

A

--as-deployment-config

Question 47

Q

Flag to provide the image stream to be used

Answer

A

--image-stream -i

Question 48

Q

Flag to specify if deployment is docker or pipeline or source

Answer

A

--strategy

Question 49

Q

Flag to provide the URL to a Git repository to be used as input to an S2I build

Answer

A

--code

Question 50

Q

Flag to provide the URL to a container image to be deployed.

Answer

A

--docker-image

Question 51

Q

Flag to show the result of the operation without performing it

Answer

A

--dry-run

Question 52

Q

Flag to provide the path to a directory to treat as the root when creating an app from a git URL

Answer

A

--context-dir

Question 53

Q

Build app from git url using specific builder image

Answer

A

oc new-app php~http://gitserver.example.com/mygitrepo oc new-app -i php http://gitserver.example.com/mygitrepo oc new-app php:7.0~http://gitserver.example.com/mygitrepo oc new-app -i php:7.0 http://gitserver.example.com/mygitrepo

Question 54

Q

Diff between tilde (~) and --image-stream (-i) options

Answer

A

-i : requires git client installed locally

- i:language detection needs to clone the repo forinspection

~ : no language detection

~ : no git client needed

Question 55

Q

Command to retrieve a file inside a running container file system

Answer

A

oc cp frontend-1-zvjhb:/var/log/httpd/error_log \ /tmp/frontend-server.log

Question 56

Q

Diff between Linux cp and oc cp

Answer

A

oc cp does not copy a file to a folder.

Question 57

Q

execute commands inside the container

Answer

A

oc rsh frontend-1-zvjhb ps ax

Question 58

Q

Start and interactive shell to container

Answer

A

oc rsh -t frontend-1-zvjhb

Question 59

Q

create a new configuration map that stores string literals

Answer

A

oc create cm config_map_name \ --from-literal key1=value1 \ --from-literal key2=value2

Question 60

Q

create a new secret that stores string literals

Answer

A

oc create secret generic secret_name \ --from-literal username=user1 \ --from-literal password=mypa55w0rd

Question 61

Q

create a new configuration map that stores the contents of a file or a directory containing a set of files

Answer

A

oc create cm config_map_name \ --from-file /home/demo/conf.txt

Question 62

Q

create a new secret that stores the contents of a file or a directory containing a set of files

Answer

A

oc create secret generic secret_name \ --from-file /home/demo/mysecret.txt

Question 63

Q

Command to retrieve cm in json

Answer

A

oc get configmap/myconf -o json

Question 64

Q

Command to edit cm

Answer

A

oc edit configmap/myconf

Answer 65

A

oc patch cm/myconf --patch '{"data":{"key1":"newvalue1"}}'

Answer 66

A

oc set env deployment/my-deployment-name --from configmap/mycm

Answer 67

A

oc create secret docker-registry registrycreds \ --docker-server registry.example.com \ --docker-username youruser \ --docker-password yourpassword

Answer 68

A

oc secrets link default registry-creds-name --for=pull

Answer 69

A

oc secrets link builder registrycreds --for=pull,mount

Answer 70

A

oc patch config.imageregistry cluster -n openshift-image-registry \ --type merge -p '{"spec":{"defaultRoute":true}}'

Answer 71

A

oc get route -n openshift-image-registry

Answer 72

A

1) TOKEN=$(oc whoami -t) 2) podman login -u myuser -p ${TOKEN} internal-registry-url

Answer 73

A

oc policy add-role-to-user system:image-puller \ user_name -n project_name

Answer 74

A

oc get istag -n openshift

Answer 75

A

oc import-image myimagestream[:tag] --confirm \ --from registry/myorg/myimage[:tag] oc import-image myimagestream:1.0 --confirm \ --from registry/myorg/myimage

Answer 76

A

oc import-image myimagestream --confirm --all \ --from registry/myorg/myimage

Answer 77

A

oc import-image myimagestream[:tag] --confirm

Answer 78

A

oc start-build name

Answer 79

A

oc cancel-build name

Answer 80

A

oc delete bc/name

Answer 81

A

oc delete build/name-1

Answer 82

A

oc describe bc name

Answer 83

A

oc describe build name-1

Answer 84

A

Edit the bc and change following properties: successfulBuildsHistoryLimit, and the failedBuildsHistoryLimit

Answer 85

A

oc set env bc/name BUILD_LOGLEVEL="4"

Answer 86

A

oc new-app --docker-image=registry.access.redhat.com/rhel7-mysql57

Answer 87

A

--as-deployment-config

--image-stream

--strategy

--code

--docker-image

--dry-run

--context-dir

Answer 88

A

<ol> <li>docker</li> <li>source</li> <li>pipeline</li></ol>

Answer 89

A

Helps in disambiguating if URL contains both docker file and source code

Answer 90

A

Used in oc new-app to use deployment config for the deployment of the app instead of deployment.

Answer 91

A

oc import-image myis --confirm --from registry.com/acme/awesome --insecure

Answer 92

A

1) points to new container tag

2) alternative friendlyname for the container image

Examples:

1) ruby:2.5for container imagerhel8/ruby-25.

2) ruby:2.6for container imagerhel8/ruby-26

Answer 93

A

<ol> <li>basic-auth</li> <li>opaque</li> <li>service-account-token</li> <li>ssh-auth</li> <li>tls</li></ol>

Answer 94

A

Image change triggers Webhook triggers

Answer 95

A

oc describe bc/name

Answer 96

A

oc set triggers bc/name --from-image=project/image:tag

Answer 97

A

oc set triggers bc/name --from-image=project/image:tag --remove

Answer 98

A

oc set triggers bc/name --from-gitlab oc set triggers bc/name --from-github oc set triggers bc/name --from-bitbucket

Answer 99

A

oc set triggers bc/name --from-gitlab --remove oc set triggers bc/name --from-github --remove oc set triggers bc/name --from-bitbucket --remove

Answer 100

A

Command: A executed using the exec system call. Shell script: Runs a build hook with the /bin/sh -ic command

Answer 101

A

oc set build-hook bc/name --post-commit \ --command -- bundle exec rake test --verbose

Answer 102

A

oc set build-hook bc/name --post-commit \ --script="curl http://api.com/user/${USER}"

Answer 103

A

Set io.openshift.s2i.scripts-url as label in the builder image

Answer 104

A

1) override the default S2I scripts by providing your own S2I scripts in the .s2i/bin 2) create a wrapper script that invokes the default scripts, and then adds the necessary customization before or after the invocation

Answer 105

A

skopeo inspect docker://myregistry.com/rhscl/php-73-rhel7 | grep io.openshift.s2i.scripts-url

Answer 106

A

s2i create image_name directory

Answer 107

A

--build-env MAVEN_MIRROR_URL=${URL}

Answer 108

A

--build-env ENV_VAR_NAME=VALUE

Do not put a space after the environment variableENV_VAR_NAME=VALUE. The environment variable follows theNAME=VALUEformat.

Answer 109

A

<ol> <li>Command</li> <li>Shell script</li></ol>

Answer 110

A

oc set build-hook bc/name --post-commit --command -- bundle exec rake test --verbose

Answer 111

A

oc set build-hook bc/name --post-commit \ --script="curl http://api.com/user/${USER}"

Answer 112

A

oc start-build hook -F

Answer 113

A

In your project under.s2i/bin

Answer 114

A

exec /usr/libexec/s2i/run

You must useexectoensurethat the defaultrunscript still runs withprocess ID 1.

Answer 115

A

oc new-app --file mytemplate.yaml -p PARAM1=value1

Answer 116

A

oc process -f mytemplate.yaml -p PARAM1=value1 > myresourcelist.yaml

Answer 117

A

oc process -f mytemplate.yaml --parameters

Answer 118

A

oc set env bc/hook --list

Answer 119

A

helm lint hello-world

Answer 120

A

helm template ./hello-world

Answer 121

A

helm install --name hello-world ./hello-world

Answer 122

A

helm ls --all

Answer 123

A

helm upgrade hello-world ./hello-world

Answer 124

A

helm rollback hello-world 1

Answer 125

A

helm uninstall hello-world

Answer 126

A

helm package ./hello-world

Answer 127

A

helm search repo

Answer 128

A

helm status RELEASE_NAME

Answer 129

A

helm dependency update

Answer 130

A

helm create hello-world

Answer 131

A

In values.yaml, change the value of image.repository and image.tag.

Answer 132

A

in Chats.yaml add:

dependencies: - name: mariadb version: 11.0.13 repository: https://charts.bitnami.com/bitnami Then run: helm dependency update

Answer 133

A

In values.yaml, add: env: - name: "QUOTES_HOSTNAME" value: "famousapp-mariadb" - name: "QUOTES_DATABASE" value: "quotesdb" - name: "QUOTES_USER" value: "quotes" - name: "QUOTES_PASSWORD" value: "quotespwd"

Answer 134

A

startup, readiness, liveness

Answer 135

A

whether or not a container is ready to serve requests

Answer 136

A

OpenShift removes the IP address for the container from the endpoints of all services.

Answer 137

A

OCP kills the container and tries to redeploy it

Answer 138

A

spec.containers.readinessprobe

Answer 139

A

spec.containers.livenessprobe

Answer 140

A

<ol> <li>initialDelaySeconds</li> <li>timeoutSeconds</li> <li>periodSeconds</li> <li>successThreshold</li> <li>failureThreshold</li></ol>

Answer 141

A

<ol> <li>http</li> <li>exec</li> <li>tcp socket</li></ol>

Answer 142

A

Edith the deployment YAML by going toWorkloads→Deployment→

Answer 143

A

oc set probe deployment myapp --readiness--get-url=http://:8080/healthz --period=20

Answer 144

A

oc set probe deployment myapp --liveness--open-tcp=3306 --period=20--timeout-seconds=1

Answer 145

A

oc set probe --help

Answer 146

A

watch -n 2 oc get pods

Answer 147

A

oc set env dc/mysql HOOK_RETRIES=5

Answer 148

A

oc rolloutlatest dc/name

Answer 149

A

oc rollout history dc/name

Answer 150

A

oc rollout history dc/name --revision=1

Answer 151

A

oc rollout retry dc/name

Answer 152

A

oc scale dc/name --replicas=3

Answer 153

A

<ul> <li>Configuration change</li> <li>Image change</li></ul>

Answer 154

A

oc set triggers dc/name--from-image=myproject/origin-ruby-sample:latest -c helloworld

Answer 155

A

oc new-app --as-deployment-config --name quip

--build-env MAVEN_MIRROR_URL=URL

https://github.com/user/app-deploy

Answer 156

A

oc set probe dc/quip --liveness --readiness --get-url=http://:8080/ready --initial-delay-seconds=30 --timeout-seconds=2

Brainscape's Knowledge GenomeTM

EX288 Merge Flashcards

Brainscape's Knowledge Genome^TM