General questions about Managed Service for Kubernetes

• What services are available in Managed Service for Kubernetes clusters by default?

• Which Kubernetes CLI (kubectl) version do I need to install for comprehensive cluster management?

• Can Yandex Cloud restore the health of my cluster if I configure it incorrectly?

• Who will be monitoring the cluster health?

• How quickly does Yandex Cloud address vulnerabilities discovered in the security system? What should I do if an attacker has taken advantage of a vulnerability and my data is compromised?

• Can I connect to a cluster node via OS Login, similar to a Yandex Cloud VM?

What services are available in Managed Service for Kubernetes clusters by default?What services are available in Managed Service for Kubernetes clusters by default?

The following services are available by default:

• Metrics Server for aggregating data on resource usage in a Kubernetes cluster.
• Kubernetes plugin for CoreDNS for name resolution in a cluster.
• DaemonSet supporting CSI plugins to work with persistent volumes (PersistentVolume).

Which Kubernetes CLI (kubectl) version do I need to install for comprehensive cluster management?Which Kubernetes CLI (kubectl) version do I need to install for comprehensive cluster management?

We recommend using the latest official version of kubectl to avoid compatibility issues.

Can Yandex Cloud restore the health of my cluster if I configure it incorrectly?Can Yandex Cloud restore the health of my cluster if I configure it incorrectly?

The master is fully managed by Yandex Cloud, so you cannot damage it. If you have issues with Kubernetes cluster components, contact support.

Who will be monitoring the cluster health?Who will be monitoring the cluster health?

Yandex Cloud. We will monitor your cluster for corrupted file system, kernel deadlock, lost internet connection, and Kubernetes component issues. We are also developing a solution to automatically restore faulty components.

How quickly does Yandex Cloud address vulnerabilities discovered in the security system? What should I do if an attacker has taken advantage of a vulnerability and my data is compromised?How quickly does Yandex Cloud address vulnerabilities discovered in the security system? What should I do if an attacker has taken advantage of a vulnerability and my data is compromised?

Yandex Cloud services, images and master configuration undergo various security and compliance checks from the start.

Users can set the update frequency depending on their workloads and cluster configuration. It is important to consider attack vectors and the vulnerabilities of applications deployed in the Kubernetes cluster. Such factors as network security policies between applications, Docker container vulnerabilities, and improper container runtime configuration in the cluster may affect application security.

Can I connect to a cluster node via OS Login, similar to a Yandex Cloud VM?Can I connect to a cluster node via OS Login, similar to a Yandex Cloud VM?

Yes, you can. To do this, follow this guide.