Blogs

Open Virtual Networking Inspection with OpenShift

Accessing the details of the software defined networking features of OpenShift can be helpful for deeper troubleshooting or enhanced understanding. You’ll not find a full explanation of Open Virtual Network or OVN-Kubernetes here, but you will learn how to quickly peer inside and investigate their inner workings.

Continue reading

Using Placements to Apply Open Cluster Management Policies to Kubernetes Clusters

Red Hat Advanced Cluster Management (RHACM) enables Open Cluster Management policy driven governance of an entire fleet of Kubernetes clusters. Associating policies with the appropriate clusters is a very flexible operation and requires understanding resources like Placements and ManagedClusterSetBindings. So let’s get familiar!

Continue reading

Storing OpenShift Credentials with 1Password

If you find yourself frequently rebuilding OpenShift clusters and potentially reusing cluster names, you may find it challanging to manage the credentials consistently and securely. Here is a solution using 1Password.

Continue reading

Accessing the Ceph CLI with OpenShift Data Foundation

The Ceph Toolbox is not recommended or supported for use with OpenShift Data Foundation, but sometimes you want a client to troubleshoot with anyway.

Continue reading

Extracting TLS CA Certificates from Kubeconfig File

OpenShift creates a number of Certificate Authorities to sign TLS certificates which secure functions including load balancing of the API and Ingress services. Recent versions of openshift-install will place all the CA certificates in the generated auth/kubeconfig file.

Here is how to extract and split those certificates into individual files which eases the process of trusting them particularly on a Mac.

Continue reading

Autoscaling OpenShift Workloads With Custom Prometheus Metrics

Kubernetes enables the automated scaling of applications to meet workload demands. Historically only memory and CPU consumption could be considered in scaling decisions, but the OpenShift Custom Metrics Autoscaler operator and KEDA remove that limitation. Read on to learn how OpenShift enables auto scaling based on the metrics that are important to your business.

Continue reading

Hybrid Cloud Management With Red Hat

Whether workloads are in the datacenter, in the cloud, or even in multiple clouds, OpenShift provides a consistent experience. And the Hybrid Cloud Console is your entry point for Red Hat cloud services to enable the most effective use of each environment. This video demo walks through the provisioning of ROSA and using Red Hat Advanced Cluster Management with EKS. Finally, RHACM policies are deployed to ensure automatic application of Red Hat Advanced Cluster Security.

Continue reading

OpenShift Virtualization on vSphere

OpenShift Virtualization builds upon KubeVirt to provide a container native home for your virtual machine workloads. While bare metal is the only officially support platform today, this post will walk through enabling OpenShift Virtualization on vSphere in a lab environment. With nested virtualization you’ll be able to spin up containerized VMs bridged to your physical networks.

Continue reading

Debugging AWS STS Authentication for OpenShift Operators

OpenShift supports granular AWS permissions for pods running cluster operators or even user applications. This enhances security by providing only the necessary privileges and nothing more. This post explores debugging authN and authZ of pods attempting to use fine grained IAM roles in combination with AWS secure token service.

Continue reading

Red Hat Advanced Cluster Security Walkthrough

Red Hat Advanced Cluster Security for Kubernetes enables organizations to securely build, deploy, and run cloud-native applications anywhere. This video demonstration walks through the major features of RHACS to demonstrate vulnerability management, network segmentation, custom security policies, and more!

Continue reading