Certified Cloud Native Platform Engineer (CNPE)
Comprehensive preparation for the CNCF Certified Cloud Native Platform Engineer (CNPE) certification. Master platform architecture, GitOps workflows with Argo CD and Flux, self-service provisioning with Crossplane and Kubernetes operators, observability with Prometheus and OpenTelemetry, and security policy enforcement with OPA Gatekeeper and Kyverno. This hands-on course covers all five exam domains with 65% practical lab exercises, preparing you for senior platform engineering roles.
Course Preview
Why This Course is Different
Get everything you need to master platform engineering and advance your career
Certificate of Completion
Earn a certificate while gaining real-world skills that go beyond traditional certification prep
Hands-on Labs
30 practical labs with real-world scenarios in pre-configured cloud environments
Expert-Led
Learn from Sam Gabrail, Former HashiCorp Sr. Solutions Engineer with 18+ years experience
Community Support
Join our community where members help each other and collaborate on learning
What You'll Master
Design and implement platform architectures that optimize networking, storage, and compute resources
Build GitOps-driven deployment pipelines using Argo CD and Flux
Implement progressive delivery strategies including blue/green and canary deployments
Create Custom Resource Definitions (CRDs) and Kubernetes Operators for platform automation
Design self-service provisioning workflows using platform APIs and Crossplane
Deploy comprehensive observability solutions with Prometheus, Grafana, and OpenTelemetry
Configure service mesh security with mTLS and zero-trust networking using Istio
Implement policy enforcement using OPA Gatekeeper and Kyverno
Integrate security scanning and compliance checks into deployment pipelines
Measure and optimize platform performance using deployment metrics and SLIs/SLOs
Configure cost management and visibility using OpenCost
Implement multi-tenant resource isolation and quota management
Course Curriculum
SECTION 1 β PLATFORM ARCHITECTURE AND INFRASTRUCTURE
Master platform architecture best practices for networking, storage, and compute. Learn multi-tenancy patterns, cost management with OpenCost, scaling strategies, and self-service infrastructure provisioning with Crossplane.
- β’Community
- β’Platform Engineering Principles and Multi-Tenancy
- β’Platform Networking, Storage, and Compute
- β’Namespace Isolation, Quotas, and Limit Ranges
- β’Network Policies, Hierarchical Namespaces, and Virtual Clusters
- β’Multi-Tenant Resource Isolation for PlatformsLab
- β’Kubernetes Cost Challenges and OpenCost Architecture
- β’Cost Optimization and FinOps Practices
- β’Implementing Platform Cost Management with OpenCostLab
- β’HPA and VPA for Pod Scaling
- β’Cluster Autoscaler and KEDA
- β’Configuring HPA, VPA, and Cluster AutoscalerLab
- β’Crossplane Overview, Architecture, and Providers
- β’Crossplane XRDs and Compositions
- β’Crossplane Claims and GitOps Integration
- β’Building Self-Service Platform Infrastructure with CrossplaneLab
- β’Platform Architecture and Infrastructure QuizQuiz
SECTION 2 β GITOPS AND CONTINUOUS DELIVERY
Implement GitOps workflows with Argo CD and Flux CD. Build CI/CD pipelines with Tekton, and deploy applications using progressive delivery strategies including canary and blue/green deployments with Flagger and Argo Rollouts.
- β’GitOps Principles and Reconciliation
- β’GitOps Repository Strategies and Environment Promotion
- β’Argo CD Architecture and Core Components
- β’Argo CD Sync Policies and Health Assessment
- β’Argo CD Multi-Cluster Management and RBAC
- β’Deploying Production-Grade Argo CDLab
- β’Argo CD App-of-Apps and Sync Waves
- β’Argo CD Self-Healing, Drift Detection, and Secrets
- β’Deploying Applications Using GitOps PatternsLab
- β’Flux CD Architecture and Source Controllers
- β’Flux Helm Controller, Notifications, and Image Automation
- β’Implementing GitOps Workflows with Flux CDLab
- β’Tekton Architecture, Tasks, and Pipelines
- β’Tekton Triggers and GitOps Integration
- β’Building CI Pipelines with Tekton and GitOpsLab
- β’Progressive Delivery Concepts and Canary Analysis
- β’Flagger Rollback, Webhooks, and Load Testing
- β’Argo Rollouts Blue/Green and Canary Strategies
- β’Argo Rollouts Analysis Templates and Experiments
- β’Implementing Canary Deployments with FlaggerLab
- β’Blue/Green Deployments with Argo RolloutsLab
- β’GitOps and Continuous Delivery QuizQuiz
SECTION 3 β PLATFORM APIS AND SELF-SERVICE CAPABILITIES
Design platform CRDs, build Kubernetes operators for automation, implement self-service provisioning workflows, and create event-driven automation with Argo Workflows and Events.
- β’Designing Platform CRDs: Fundamentals and Schema Validation
- β’CRD Versioning, Status Subresources, and Printer Columns
- β’CRD Best Practices for Platform Services
- β’Designing and Implementing Platform CRDsLab
- β’Operator Pattern and Reconciliation Design
- β’Operator Event Handling and Maturity Model
- β’Operator SDK: Setup, Scaffolding, and CRD Types
- β’Operator SDK: Controller Logic, Testing, and Distribution
- β’Building a Kubernetes Operator for Platform AutomationLab
- β’Platform API Design: Self-Service Principles and Admission Control
- β’Quota Management, Audit Logging, and API Discovery
- β’Crossplane Composition Functions and Dynamic Provisioning
- β’Crossplane Secrets, Dependencies, and Composition Revisions
- β’Building Self-Service Database Provisioning PlatformLab
- β’Argo Workflows: Architecture and Templates
- β’Argo Workflows: Parameters, Artifacts, and Scheduling
- β’Automating Platform Tasks with Argo WorkflowsLab
- β’Event-Driven Automation with Argo Events
- β’Implementing Event-Driven Platform AutomationLab
- β’Platform APIs and Self-Service QuizQuiz
SECTION 4 β OBSERVABILITY AND OPERATIONS
Deploy comprehensive observability solutions with Prometheus, Grafana, AlertManager, OpenTelemetry, Jaeger, and Loki. Define SLIs/SLOs and implement error budgets for platform reliability.
- β’Prometheus Architecture and Data Model
- β’Prometheus Operator, Federation, and Scaling
- β’PromQL Selectors, Functions, and Aggregations
- β’PromQL Binary Operators, Platform Patterns, and Recording Rules
- β’Implementing Platform Monitoring with PrometheusLab
- β’Grafana Architecture, Data Sources, and Panel Types
- β’Grafana Variables, Provisioning, and Dashboard Patterns
- β’Creating Platform Dashboards in GrafanaLab
- β’AlertManager Architecture, Routing, and Receivers
- β’AlertManager Inhibitions, Silences, and Incident Response
- β’Configuring Platform AlertingLab
- β’Distributed Tracing Fundamentals and Context Propagation
- β’OpenTelemetry SDK and Collector Pipeline Patterns
- β’Trace Backends, Sampling Strategies, and Correlation
- β’Implementing Distributed Tracing with OpenTelemetryLab
- β’Logging Architecture, Loki, and Collection Agents
- β’LogQL Queries, Log-Based Alerting, and Correlation
- β’Implementing Centralized Logging with LokiLab
- β’SLIs, SLOs, Error Budgets, and Burn Rate Alerting
- β’DORA Metrics, Incident Diagnosis, and Continuous Improvement
- β’Defining and Measuring Platform SLOsLab
- β’Observability and Operations QuizQuiz
SECTION 5 β SECURITY AND POLICY ENFORCEMENT
Configure service mesh security with Istio and Linkerd mTLS, implement multi-tenant RBAC, enforce policies with OPA Gatekeeper and Kyverno, integrate security scanning, and configure audit logging for compliance.
- β’Zero-Trust Networking and Istio Security
- β’Linkerd Security and Service Mesh Comparison
- β’Configuring Zero-Trust Security with IstioLab
- β’Securing Services with Linkerd mTLSLab
- β’Kubernetes RBAC Fundamentals and Platform Patterns
- β’Network Policies and Pod Security Standards
- β’Implementing Multi-Tenant RBACLab
- β’OPA Gatekeeper: Architecture and ConstraintTemplates
- β’Gatekeeper: Common Policies and Operations
- β’Kyverno: Architecture, Validation, and Mutation
- β’Kyverno: Generation, Image Verification, and Gatekeeper Comparison
- β’Implementing Policy Governance with GatekeeperLab
- β’Implementing Policies with KyvernoLab
- β’Image and IaC Security Scanning in Pipelines
- β’Supply Chain Security, SBOMs, and Admission Control
- β’Integrating Security Scanning into CI/CDLab
- β’Kubernetes Audit Logging and Security Alerting
- β’Compliance Frameworks and Runtime Security
- β’Implementing Audit and Compliance ControlsLab
- β’Security and Policy Enforcement QuizQuiz
SECTION 6 β CAPSTONE AND EXAM PREPARATION
Apply all learned skills in a comprehensive capstone lab building a production-ready platform, practice exam scenarios, and prepare for the CNPE certification exam.
- β’CNPE Exam Overview and Strategies
- β’Building a Production-Ready PlatformLab
- β’CNPE Exam Practice ScenariosLab
- β’CNPE Comprehensive AssessmentQuiz
Course Features
Hands-on Labs
Lots of hands-on labs to learn by doing
Join our Community
Community support to ask questions and collaborate
Test Your Knowledge
Quizzes to help you grasp the material well
See what others are saying about our Courses
βI like the Crossplane 101 course a lot. I think it is one of the best online courses I have taken (and I've taken a lot in the last 2 years, transitioning into DevOps). The labs are phenomenal β every task has a long tutorial with lots of explanations, gotchas, and recaps, and you always provide the reasoning for implementing a certain solution.β
βI just completed the Crossplane 101 course! Managing infrastructure as Kubernetes resources is a total game-changer. A huge thanks to TeKanAid and Sam Gabrail for the incredible training and insights.β
βAlthough I've worked with Crossplane in real production environments, I always felt there were gaps in my understanding. Completing this course filled those gaps perfectly. I had to unlearn and relearn quite a few things, especially around Crossplane v2.0 concepts. Well structured and thoughtfully put together. Highly recommended for building a strong, foundational understanding of Crossplane.β
βDear Sam, I hope this email finds you well. If you remember before the end of last year I register for one your courses Terraform 101 β Certified Terraform Associate, I must admit that I learned a lot even though I was not patient enough for all videos to be available. All in all I enjoy the way you structured the course and how you went through it. The main reason of this email, to send you my gratitude for the content you created and to let you know that I passed my exam/test last week.β
βThis course was a perfect introduction to Terraform and Infrastructure as Code. Loved the gitpod, saving me a lot of time for developer environment setup. We have a project at work where we want to go from a click-ops version of server-deploy to a more automated flow using ci/cd and terraform for deploying virtual servers.β
βI want to thank you for such wonderful courses. They are more comprehensive than other courses I have taken in the past. You take the time to explain every detail of the code and what it does exactly, further enforcing your student's understanding and confidence in what they are learning. Your methods are very effective and set you apart from other instructors.β
Choose your plan
Simple, Transparent Pricing
Unlock full access to TeKanAid courses, labs, and bootcamps
Pro
Course content without labs
Renews automatically. Cancel anytime.
Final price verified at checkout.
- Full access to all courses
- Progress tracking
- Certificate of completion
- Community access
- Bootcamp participation
- New content access
Premium
Full access with hands-on labs
Renews automatically. Cancel anytime.
Final price verified at checkout.
- Everything in Pro
- Unlimited hands-on labs
- Lab AI Assistant
- Accelerator bootcamps with live office hours
- Priority support
Prefer just this course?
Purchase Certified Cloud Native Platform Engineer (CNPE) for a one-time fee of $79. Full access to course content, quizzes, certificates, and community features, lab access is not included.
Buy this course for $79 βTry it free, no credit card
Three free ways to start. All bridge into the paid Premium catalog when you're ready.
Not ready to commit? The crash course is email-only. No academy account required.
Hi there, I'm Sam
I'm a husband and father of two wonderful boys. I'm also very passionate π₯ about all things technology. From when I was 10, I had a dream to become a computer π» engineer one day. Here I am today living the dream!
Thanks for visiting TeKanAid Academy. My goal is to teach you all things DevOps. Below are some of the things I've done over the years. I'm confident that I can help you achieve your dreams too.
- 18+ years of experience in various Information Technology fields from Telecommunications, Computer Networks, Digital Transformation, DevOps, Cybersecurity, and IoT
- President of TeKanAid Solutions Inc. building online content in the DevOps space
- Previous β Sr. Solutions Engineer at HashiCorp
View my Certifications
Terraform: Authorized HashiCorp Instructor
Verify my certificate
HashiCorp Authorized Instructors are experienced DevOps professionals who deliver official HashiCorp training courses in person and virtually.
Issued by HashiCorp Partner Network (HPN)
Vault: Authorized HashiCorp Instructor
Verify my certificate
HashiCorp Authorized Instructors are experienced DevOps professionals who deliver official HashiCorp training courses in person and virtually.
Issued by HashiCorp Partner Network (HPN)
HashiCorp Certified: Terraform Associate (002)
Verify my certificate
Earners of the HashiCorp Certified: Terraform Associate certification know the basic concepts, skills, and use cases associated with open source HashiCorp Terraform.
Issued by HashiCorp
HashiCorp Certified: Vault Associate (002)
Verify my certificate
Earners of the HashiCorp Certified: Vault Associate certification know the basic concepts, skills, and use cases associated with open source HashiCorp Vault.
Issued by HashiCorp
Featured Products
Week 4: AI Agents and Agentic Workflows
Part of the AI Platform Engineering Bootcamp. Week 4 of 8. The bootcamp follows an 8-week arc that culminates in a capstone Platform Assistant: a production-ready AI system you build by combining the LLM, RAG, agent, MLOps, model serving, and observability layers introduced across each week.
Learn More β
Week 1: AI Foundations for Infrastructure Engineers
Part of the AI Platform Engineering Bootcamp. Week 1 of 8. The bootcamp follows an 8-week arc that culminates in a capstone Platform Assistant: a production-ready AI system you build by combining the LLM, RAG, agent, MLOps, model serving, and observability layers introduced across each week.
Learn More β
Week 7: AI Observability and LLMOps
Part of the AI Platform Engineering Bootcamp. Week 7 of 8. The bootcamp follows an 8-week arc that culminates in a capstone Platform Assistant: a production-ready AI system you build by combining the LLM, RAG, agent, MLOps, model serving, and observability layers introduced across each week.
Learn More β
30-Day Money-Back Guarantee
Try it risk-free
I'm confident you'll get everything you need from this course and be 100% satisfied. But in the unlikely event you decide it's not for you just ask for a refund any time during the first 30 days and you'll get your money back with no questions asked.