Top 5 CI/CD Interview Q&A | DevOps FAQ |#devopsinterviewquestions | #jenkins |#devops #kubernetes

00:01

hi hello everyone welcome back to my

00:03

channel and today we will talk about

00:05

what are the top 5 most uh cacd

00:07

interview questions and their answers

00:09

we'll try to answer these questions more

00:11

on the basis of some scenarios so let's

00:13

quickly uh jump into the questions and

00:15

see their answers as well so the first

00:18

one is explain your current cicd setup I

00:20

think this question can be asked in

00:21

multiple ways like people ask you what

00:24

is your cicd tooling what are the tools

00:26

that you're using or what TCI CD

00:28

according to you

00:30

is

00:31

established in your organization so

00:34

whatever it is uh the answer to it has

00:36

to be very elaborate because this

00:38

question basically uh gives you gives

00:41

the interviewer a chance to analyze your

00:43

knowledge on cicd so tell the answer in

00:46

a most detailed way so that uh he or she

00:48

can understand uh your expertise on cicd

00:51

so basically I have written the answer

00:53

here you can probably I mean I'll not

00:55

read everything here you can go through

00:57

the answer but uh generally you can say

01:00

cicd is continuous integration and

01:02

continuous delivery and in the current

01:04

organization we are using GitHub and we

01:07

are using Jenkins for the continuous

01:09

integration where we have set up web

01:12

hook which Triggers on each and every

01:14

commit that is made to GitHub and

01:16

triggers a CI Pipeline on Jenkins and

01:19

then you can talk about multiple stages

01:21

that are in your Jenkins pipeline like

01:22

you can say you have a build stage you

01:24

have test stage you have deploy stage

01:25

and you know whenever you're talking

01:27

about these things uh basically detail

01:29

them uh like how what is your build

01:31

stage what what are the different things

01:33

that are in your build Stay like static

01:35

code analysis unit testing building and

01:38

then in your test stage uh whether

01:39

you're doing smoke testing or you're

01:41

doing functional testing in your

01:42

deployment staging in your deployment

01:44

stage basically explain uh what is your

01:46

artifactory how you're building your

01:47

Docker image or application uh archive

01:51

whatever whatever you are building and

01:52

then explain how you are deploying it

01:54

onto your kubernetes cluster or

01:57

websphere weblogic application servers

01:59

whatever your end Target cluster is

02:02

so this is about your CI CD setup and

02:05

the process and the second question I

02:08

think this is a very important question

02:09

how do you handle Secrets because mostly

02:11

people will be very prepared for the

02:13

first answer first question uh the cicd

02:16

process and everything but you need to

02:19

explain how do you handle Secrets

02:20

because secrets are integral part of

02:22

every application these days right so

02:25

whether your SSH Keys whether your API

02:27

key whether it can be your you know

02:30

kubernetes login secret or anything you

02:33

deal with a lot of Secrets these days in

02:35

your cicd pipelines so basically answer

02:38

this question depending upon where your

02:39

Jenkins or any CI tool is set up let's

02:42

say you are on GitHub right so GitHub

02:44

provides an option for securing your

02:46

secrets in the cacd uh

02:49

in the action cicd itself if you're on

02:51

gitlab there is again there is an option

02:53

for uh securing your secrets in the ca

02:56

variables itself uh on your on your

02:59

gitlab UI apart from that let's say

03:01

you're on uh cloud provider like AWS so

03:03

probably you can say you store your

03:05

secrets in AWS systems manager and

03:07

retrieve whenever it is required or if

03:09

you're on Azure you are probably using

03:11

Azure Vault and one of the popular tools

03:14

uh irrespective of the cloud or anything

03:17

that you are in a hashic or vault so

03:19

hashicorp called Vault is one of the

03:21

most used uh applications for securing

03:24

storing your secrets

03:26

so be prepared with this answer because

03:28

this is one of the most asked interview

03:30

question for cicd

03:32

after that people ask about your

03:34

deployment strategy what I have uh seen

03:36

most of the times is most of the times

03:38

is that people are very prepared with

03:40

respect to the continuous integration CI

03:42

part but uh not with the CD The

03:45

Continuous delivery but you know uh CI

03:48

is very easy to set up as well you have

03:50

tools like Jenkins GitHub actions it's

03:52

very easy to do uh CA but coming to CD

03:55

you have to be uh

03:57

very uh you know um

04:01

keen on how you are setting your CD what

04:03

is your type of application where you

04:04

are deploying your application onto so

04:07

continuous delivery is uh a key uh

04:09

component for uh your entire cacd as

04:13

well as during your interviews people

04:14

ask a lot about CD so coming to the

04:17

deployment strategy you can talk about

04:19

the popular deployment strategies if you

04:21

have employed either blue green

04:22

deployment or Canary deployment on your

04:24

uh site on your organization so

04:26

depending upon what you have set up

04:28

probably answer these things but uh to

04:31

explain what is blue green and what is

04:32

Canary in a very short way so blue green

04:34

deployment is basically where uh if you

04:37

see the picture onto the left side you

04:39

know using blue green deployment what to

04:40

do is that you already have an

04:42

application let's say the application

04:43

version is 34 and you are deploying a

04:45

new version of your application probably

04:46

call it 35 okay so firstly what you do

04:49

is that

04:51

you point your load balancer to the

04:53

application 34 which is deployed on your

04:55

cluster then you install uh application

04:57

35 on the same cluster the new version

04:59

using your cicd pipeline and what you do

05:02

is that you shift your load balancer to

05:04

the application certified and so that

05:07

no uh traffic is sent to the application

05:09

34 however you provide some grace period

05:12

Grace time for the users that are

05:14

already on application 34 and once this

05:16

grace period is over you simply Point

05:18

your load balancer I mean you already

05:20

pointed your application load balancer

05:22

to 35 you just delete application 34.

05:25

once you are confident about your

05:26

application testing and everything

05:28

okay so this is the process using blue

05:31

green deployment now the other popular

05:33

deployment strategy is the canary

05:35

deployment strategy and using Canary

05:36

what you do is that basically you shift

05:39

in the same way you deploy both

05:41

application 34 and 35 but instead of

05:43

directly pointer load balancer to

05:45

application 35 what you do is that you

05:48

limit your traffic to application 35

05:50

initially you send only 10 percent of

05:52

your traffic so all this modern day load

05:54

balances like F5 or nginx or any load

05:57

balancer using Ingress they are able to

05:59

do it uh by you know they call it ratio

06:02

based uh

06:03

ratio based load balancing or weight

06:06

based load balancing whatever it is so

06:08

uh initially route only 10 and then

06:10

probably you can switch the gears 66.33

06:12

and then finally you can do 30 so there

06:15

are very lot of I mean there are a lot

06:16

of tools which can achieve this uh for

06:18

the canary deployment model uh if you

06:21

want to learn about uh

06:23

Kennedy deployment probably you can

06:26

Google for Kennedy deployment and tools

06:27

can be used to achieve the canary

06:29

deployment but all the popular load

06:31

balancer can do it these days

06:33

now what do you do if the deployed

06:36

application is faulty or let's say your

06:38

application has security vulnerabilities

06:39

or your application is faulty it's not

06:41

working as expected so what do you do

06:44

one of the most easy ways to answer this

06:47

is uh talk about the blue green

06:48

deployment which we talked in the

06:49

previous slide because if you look here

06:51

carefully uh if something goes wrong

06:53

with your blue green deployment what you

06:55

can immediately do is that point your

06:57

load balancer from 35 to 34 or people uh

07:00

basically do it using multiple sites

07:03

right so blue site and green side and if

07:05

something goes wrong they immediately

07:07

appoint the load balancer to the green

07:09

uh from Green side to the blue side so

07:11

this is the most easy way blue green

07:13

deployment but if you are employing any

07:15

other deployment strategies you have to

07:17

be very careful on explaining how did

07:19

you roll how do you actually roll back

07:21

but blue green is the most easy way to

07:23

roll back so this question uh the way

07:26

you answer is when something goes wrong

07:28

we have a rollback pipeline or we have a

07:31

strategy for rollback uh because we are

07:33

doing blue green deployment it is very

07:35

easy for us to roll back

07:37

finally uh

07:39

Jenkins setup backup and scaling up so

07:42

how do you do this the reason why I put

07:45

this question only related to Jenkins is

07:47

that I recently

07:49

set up a poll on my YouTube channel

07:51

asking what is the most popular CI tool

07:54

that you are using 90 of the people

07:56

choose Jenkins only 10 of them choose

07:59

GitHub actions gitlab and Travis I think

08:02

nobody has actually opted for it so the

08:05

reason for me to talk about Jenkins in

08:07

this specific question is because of

08:08

that so this is again important question

08:12

because uh apart from setting up your

08:14

cicd pipelines it is always important

08:17

for you to understand how your CI tool

08:20

or gen for that

08:22

for this question Jenkins however

08:23

Jenkins is set up how do you uh take

08:26

backups for your Jenkins uh logs or

08:28

bills or artifacts anything and then how

08:31

do you scale up because you know at

08:33

times you might get more number of bills

08:35

at times you get less builds so scaling

08:37

up scale down is also one of the

08:39

interesting aspects

08:41

so it's very easy to do with Jenkins uh

08:44

I think Jenkins installation is the most

08:46

easiest thing uh you just have in uh you

08:49

can do it through Docker as well you

08:51

have a simple curl command that you can

08:53

use to install Jenkins I can show you uh

08:56

some other time how do you install

08:58

Jenkins it you can I mean nobody will

09:01

actually care about the installation

09:02

because it's just a single command but

09:04

the most important thing is a backup as

09:07

well as scaling up so for scaling up I

09:10

would say one of the

09:12

I'll take an example let's say your

09:14

Jenkins is on AWS what you can say is

09:17

that uh Jenkins is set up on AWS and we

09:19

have set up Jenkins uh on easy to

09:23

instance and we have set up an auto

09:24

scaling group so this Auto scaling group

09:27

basically takes care of scaling up

09:29

scaling down we have employed the

09:30

predictive scaling uh on the AWS Auto

09:33

scaling so predictive scaling basically

09:34

uh takes care it basically predicts like

09:37

at this time you might get more traffic

09:39

at the time you might get less traffic

09:41

so it will it will automatically scale

09:43

up an ec2 instance and once the ec2

09:45

instance is spinned up Jenkins basically

09:47

uses SSH

09:49

to interact with the newly created node

09:52

so this is the process and for backup I

09:54

think Jenkins has a DOT backup folder if

09:57

you can sorry dot Jenkins folder just

10:00

backup the dot Jenkins periodically

10:01

using some prawn jobs and that will

10:04

basically take your Jenkins backups so

10:07

uh this is the top five in cacd

10:10

interview questions that I have for you

10:12

and uh if you feel that I missed

10:15

something or there are other popular

10:16

interview questions uh related to cicd

10:18

please post them in the comment section

10:19

and I'll be more than happy to answer as

10:23

usual don't forget to like comment share

10:25

and subscribe to my channel thanks I'll

10:28

see you in the next video bye