SOLUTION DEPLOYMENT WORKFLOW

The following figure shows the high-level workflow of the installation process:

FIGURE 7. End to End Solution Deployment Workflow

The following steps provide an overview of each step that needs to be performed for deploying the HPE ProLiant NGS-optimized solution for Red Hat OpenShift Container Platform 4.15:

The way you interact with the installation program differs depending on your installation type.

• For clusters with installer-provisioned infrastructure, you delegate the infrastructure bootstrapping and provisioning to the installation program instead of doing it yourself. The installation program creates all of the networking, machines, and operating systems that are required to support the cluster.
• If you provision and manage the infrastructure for your cluster, you must provide all of the cluster infrastructure and resources, including the bootstrap machine, networking, load balancing, storage, and individual cluster machines.

1. Set up iPXE, TFTP, and DHCP for RHCOS

In this step, the iPXE server is leveraged to boot the machine. The iPXE and TFTP server is set up to boot RHCOS. The PXE boot process is the initial stage for deploying the solution and configuring DHCP is an integral part of this process. This configuration can be done using the sudo access.

For more information on configuring the iPXE set up, see the Deploy iPXE guide (opens new window).

2. Configure a load balancer for RHOCP 4 nodes

In the multi-node RHOCP cluster deployment, the load balancer is mandatory. For this solution, Hewlett Packard Enterprise has leveraged the required traffic for HAProxy load balancing. This configuration can be done using the sudo access. For commercial load balancer such as F5 Big-IP or any other RHOCP 4 supported load balancer, visit the manufacture website.

3. Configure BindDNS

In the User-Provisioned Infrastructure (UPI), DNS records are required for each machine. These records resolve the hostnames for all other machines in a RHOCP cluster. This component can also be configured using the sudo access for Linux-based DNS solution. It provides details on configuring the sudo to allow non-root users to execute root level commands.

4. Configure firewall ports

In the User-Provisioned Infrastructure (UPI), the network connectivity between machines allows cluster components to communicate within the RHOCP cluster. Hence, the required ports must be open between RHOCP cluster nodes. This component can also be configured using the sudo access for Linux-based firewall. For third-party firewall solutions, visit the manufacture website. It provides details on configuring the sudo to allow non-root users to execute root level commands.

For more information, see the Installing a user-provisioned bare metal cluster with network customizations (opens new window) and Networking requirements for user-provisioned infrastructure (opens new window) sections in the OpenShift Container Platform 4.15 documentation.

5. Start RHOCP 4 User-Provisioned Infrastructure setup

The User-Provisioned Infrastructure (UPI) begins with installing a bastion host. This setup uses RHEL 8.9 virtual machine as a bastion host. This bastion host is used for deployment and management of the RHOCP 4 clusters. The setup and configuration of this step can be completed using the sudo user access.

For more information, see the Generating a key pair for cluster node SSH access (opens new window) section in the OpenShift Container Platform 4.15 documentation.

6. Download RHOCP 4 software version and images

To download the RHOCP 4 image, see the RHCOS image mirror (opens new window) page. Check the access token for your cluster and install it on the bastion host. The bastion host is used for deploying and managing the RHOCP 4 clusters. The setup and configuration of this step can be completed using the sudo user access.

For more information, see the Obtaining the installation program (opens new window) section in the OpenShift Container Platform 4.15 documentation.

7. Create ignition config files

This step begins with the creation of the install-config.yaml in a new folder. Use the Red Hat OpenShift installer tool to convert the YAML file to the ignition config file, which is required to install the RHOCP 4. During this process, system modification is not done on the bastion host or the provisioning server. This setup can be completed using the sudo access.

For more information, see the Manually creating the installation configuration file (opens new window) section in the OpenShift Container Platform 4.15 documentation.

8. Upload ignition config files to the web

In this step, the ignition config files are uploaded to an internal website that allows anonymous access to the iPXE boot process. Update the iPXE default file to point to the website location of the ignition file. The action required in this step can be done using the sudo user.

For more information, see the Installing RHCOS by using PXE or iPXE booting (opens new window) section in the OpenShift Container Platform 4.15 documentation.

NOTE

KVM is an open-source virtualization technology that converts your Linux machine into a type-1 bare-metal hypervisor and allows you to run multiple Virtual Machines (VMs) or guest VMs on Red Hat Linux.

For more information, see the Getting started with virtualization (opens new window) section in the Red Hat Enterprise Linux 8 documentation.

9. Deploy bootstrap node

The bootstrap node is a temporary node that is used to bring up the RHOCP cluster. After the cluster is up, this machine can be decommissioned, and the hardware can be reused. The iPXE boot process must use bootstrapping information as a part of the iPXE boot parameter to install the RHCOS on this node.

10. Deploy master node

The master node uses the iPXE image for RHCOS after the bootstrap node. The iPXE boot process must use the master.ign information as a part of the iPXE boot parameter to install the RHCOS on this node. The root user is not active by default in RHCOS. Since the root login is not available, log in as the core user.

11. Create the cluster

The four nodes, one bootstrap and three master nodes boot up and are available at the login prompt for RHCOS. To complete the bootstrap process, log in as a sudo user on the bastion host or provision server and use the Red Hat OpenShift installer tool.

For more information, see the Waiting for the bootstrap process to complete (opens new window) section in the OpenShift Container Platform 4.15 documentation.

12. Log in to the cluster

After the bootstrap process has completed successfully, login to the cluster. The kubeconfig file is present in the auth directory where the ignition files are created on the bastion host. Export the cluster kubeconfig file and log in to your cluster as a default system user. The kubeconfig file contains information about the cluster that is used by the CLI to connect a client to the correct cluster and API server. This file is specific to a cluster and is created during the RHOCP installation. After logging in, approve the pending Certificate Signing Requests (CSRs) for the nodes.

For more information, see the Approving the certificate signing requests for your machines (opens new window) section in the OpenShift Container Platform 4.15 documentation.

13. Configure operators

After the control plane initializes, you must immediately configure operators that are not available. It ensures their availability (for example, image-registry).

For more information, see the Image registry storage configuration (opens new window) section in the OpenShift Container Platform 4.15 documentation. To complete this step, you can also log in as a sudo user on the bastion host or provision server.

14. Add Worker nodes

In the RHOCP, you can add RHEL worker nodes to a User-Provisioned Infrastructure cluster or an installation-provisioned infrastructure cluster on the x86_64 architecture. For more information, see the Adding RHEL compute machines to an OpenShift Container Platform cluster (opens new window) section in the OpenShift Container Platform 4.15 documentation.