VMware Cloud Native Master Specialist

Yesterday I passed my VMware Cloud Native Master Specialist exam.


It was a tough one and I really enjoyed the thought out questions based on real world scenarios, so kudos to the team that put the exam together.

Here is the easier to read format of the sections with the accompanied links from the guide. Please review the exam guide for accuracy since my list might get outdated.

Exam Sections

Section 1 – Application Deployment to a Cluster

Objective 1.1 Identify the situation that would require a secret.


Objective 1.2 Identify the situation that would require a config map.


Objective 1.3 Given a scenario, identify proper logging for the application.


Objective 1.4 Given a scenario, identify proper metrics for the application.


Objective 1.5 Given a scenario, identify proper probes for the application.


Objective 1.6 Given a scenario, identify the proper way to expose an application to outside users.

https://kubernetes.io/docs/concepts/services-networking/connect-applications-service/ – Ingress / Ingress

Controllers / Service of Type LoadBalancer – all available in this section of the kubernetes.io doc

Objective 1.7 Given a scenario, identify the proper way to expose a container.


Objective 1.8 Given a scenario, identify helm best practice.


Objective 1.9 Given a common complex error, identify appropriate next steps or identify what the error implies.

Objective 1.10 Given a scenario, identify how to influence scheduling in a cluster.



Objective 1.11 Given an application architecture scenario, identify the changes that should be made to the application to make it suitable for Cloud Native platforms.


Objective 1.12 Given a Dockerfile, identify changes that best suit container best practices.


Section 2 – Cluster Security

Objective 2.1 Given a scenario, identify proper RBAC to implement.


Objective 2.2 Given a scenario, identify proper audit capabilities to implement.


Objective 2.3 Given a scenario, identify the Proper Pod Security Policy to implement.


Objective 2.4 Given a scenario, identify appropriate admission control options to implement on a cluster.


Objective 2.5 Given a scenario, identify appropriate open policy agent configuration to implement.


Objective 2.6 Given a scenario, identify appropriate network policy to implement.


Section 3 – Cluster Operations

Objective 3.1 Given a scenario, identify an appropriate option for configuring backup on a cluster.


Objective 3.2 Given a scenario, identify appropriate options for cluster.


Objective 3.3 Given a scenario, identify the appropriate options for logging configuration.


Objective 3.4 Given a scenario, identify an appropriate option for configuring cluster conformance tests.


Objective 3.5 Given a scenario, identify an appropriate option for configuring an ingress controller to satisfy ingress options on cluster.


Objective 3.6 Given a scenario, identify the appropriate option for separation of application teams.


Objective 3.7 Given a scenario, identify why to use one networking plugin over another.


Objective 3.8 Given a scenario, configure authentication




Exam details can be found here.

Remember that CKA certification is a prerequisite for this exam and in order to schedule this exam you first need to upload your CKA certification for verification which can take up to 24 hours so plan accordingly.


vExpert 2020!

Very happy to be acknowledged as a for the 3rd year in a row! Probably not as deserving as my previous 2 years, but I am very grateful.  It was a very busy and challenging year for me, but with the great acquisitions that @VMware has made as well as delivering some stellar new products, this year is going to be big and I am very excited for the future. #ProjectPacific #TanzuMissionControl #PKS

We have a great and I love being part of it.  Congrats to all the other 2020 vExperts.

CKA Certification

Finally had some time in between projects to get my CKA certification.

First off I would like to say I hate multiple choice questions, and I feel like these days they are making MC exams harder by trying to trick you in the way they ask the question or providing subtle difference in answers which are difficult to distinguish especially for us where English is a second language.

So writing an exam in a physical lab environment is refreshing and the way all certifications should be, but that’s a story for another day and I am probably just saying that since I found it much easier and passed with score in the 90s 🙂

Most of my studies revolved around A LOT of lab time, but what I also found as an excellent source of learning is Mumshad Mannambeth course on Udemy, which also includes test KodeKloud lab exercises and mock exams.  I also went though Linux Academy’s course, but did not find it as comprehensive as that of Mumshads.

Good luck!