Documentation from the MOBB
Quickstarts / Getting Started
Advanced Managed OpenShift
ROSA
- Deploying ROSA in Private Link mode
- Deploying ROSA in STS mode
- Deploying ROSA in STS mode with Private Link
- Deploying ROSA in STS mode with custom KMS Key
- Installing the AWS Load Balancer Operator on ROSA
- Adding AWS WAF in front of ROSA / OSD
- Use AWS Secrets CSI with ROSA in STS mode
- Use AWS CloudWatch Agent to push prometheus metrics to AWS CloudWatch
- Federating ROSA metrics to Prometheus with customer alerting
- Configuring Alerts for User Workloads in ROSA 4.9.x
- AWS EFS on ROSA
- Configuring a ROSA cluster to pull images from AWS Elastic Container Registry (ECR)
- Configuring a ROSA cluster to use ECR secret operator
- Deploy and use the AWS Kubernetes Controller S3 controller
- Deploy ROSA in an AWS Secure Environment Accelerator (ASEA) Landing Zone
- Verify Required Permissions for a ROSA STS deployment
- STS OIDC flow in ROSA Operators
- Dynamic Certificates for ROSA Custom Domain
- Security Reference Architecture for ROSA
ARO
- Deploying private ARO Cluster with Jump Host access
- Considerations for Disaster Recovery with ARO
- Getting Started with the Azure Key Vault CSI Driver
- Deploy and use the Azure Service Operator V1(ASO)
- Deploy and use the Azure Service Operator V2(ASO)
- Create an additional Ingress Controller for ARO
- Configure the Managed Upgrade Operator
- Configure ARO with Azure NetApp Trident Operator
- IBM Cloud Paks for Data Operator Setup
- Install ARO with Custom Domain using LetsEncrypt with cert manager
- Configure ARO for Nvidia GPU Workloads
- Configure ARO with Azure Front Door
- Create a point to site VPN connection for an ARO Cluster
- Configure access to ARO Image Registry
- Configure ARO with OpenShift Data Foundation
- Setting Up Quay on an ARO Cluster using Azure Container Storage
- Configure ARO with Azure Policy
- Create infrastructure nodes on an ARO Cluster
- Configure a load balancer service to use a static public IP
GCP
Advanced Cluster Manager (ACM)
Observability
- Configuring Alerts for User Workloads
- Federating ROSA metrics to S3
- Federating ROSA metrics to Prometheus with customer alerting
- Federating ROSA metrics to AWS Prometheus
- Configure ROSA STS Cluster Logging to CloudWatch
- Federating ARO metrics to Azure Files
- Sending ARO cluster logs to Azure Log Analytics
- Use AWS CloudWatch Agent to push prometheus metrics to AWS CloudWatch
Security
Kubernetes Secret Store CSI Driver
Configuring Specific Identity Providers
- Configure GitLab as an identity provider for ROSA/OSD
- Configure GitLab as an identity provider for ARO
- Configure Azure AD as an identity provider for ARO
- Configure Azure AD as an identitiy provider for ARO with group claims
- Configure Azure AD as an identitiy provider for ROSA with group claims
- Configure Azure AD as an identity provider for ROSA/OSD
- Configure Azure AD as an identity provider for ARO via the CLI
Configuring Group Synchronization
- Using Group Sync Operator with Azure Active Directory and ROSA/OSD
- Using Group Sync Operator with Okta and ROSA/OSD
Deploying Advanced Security for Kubernetes in ROSA/ARO
Applications
Ingress
Data Science on Jupyter Notebook on OpenShift
Miscellaneous
- Demonstrating GitOps - ArgoCD
- Migrate Kubernetes Applications with Konveyor Crane
- Red Hat Cost Management for Cloud Services
- Deploy OpenShift Advanced Data Protection on a ROSA STS cluster
Fixes / Workarounds
Here be dragons - use at your own risk