ADLER-TECH

OpenShift 4 Administration

4 days

Day 1: Application Lifecycle and Persistence

Chapter 1: Enterprise Storage Management

  • Storage Abstraction (Understanding the relationship between PVs, PVCs, and dynamic Provisioners)
  • Container Storage Interface (CSI) (Implementing CSI-compliant storage for snapshotting, cloning, and volume resizing)
  • Regional Disaster Recovery (Introduction to regional-DR patterns using native storage replication)

Chapter 2: Streamlined Application Delivery (S2I)

  • The Source-to-Image (S2I) Workflow (Transforming code into container images without manual Dockerfiles)
  • Build Triggers and Automation (Configuring Webhooks and ImageStream triggers to enable Continuous Deployment)
  • Developer Perspective Mastery (Using the OpenShift Web Console to visualize application topology and deployment health)

Day 2: Modern Cluster Provisioning

Chapter 3: The Evolution of OpenShift Installation

  • Deployment Methodologies (Deep dive into Installer-Provisioned Infrastructure (IPI) vs. User-Provisioned Infrastructure (UPI))
  • The Assisted Installer Experience (Utilizing the web-based SaaS installer for simplified bare-metal and vSphere deployments)
  • Agent-Based Installations (Configuring disconnected environments using the new Agent-based Installer for edge and restricted networks)
  • RHCOS Fundamentals (Understanding Red Hat Enterprise Linux CoreOS as the immutable, container-optimized host OS)

Chapter 4: Control Plane and Node Management

  • Masters and Workers (Configuring the highly available control plane and worker node pools)
  • Machine Management Framework (Using MachineSets and the Machine Config Operator (MCO) to automate node scaling and configuration)
  • Infrastructure Nodes (Segregating workload traffic by creating dedicated nodes for Ingress, Monitoring, and Registry)

Day 3: Security Hardening and Platform Observability

Chapter 5: Securing the OpenShift Ecosystem

  • Identity and Access Management (Integrating with external providers like Microsoft Entra ID (LDAP/OIDC) and configuring the internal OAuth server)
  • Workload Isolation (Applying Security Context Constraints (SCC) and Pod Security Admissions (PSA) to enforce zero-trust)
  • Network Security (Implementing OVN-Kubernetes as the default CNI and managing Egress Firewalls and Ingress Controllers)

Chapter 6: Advanced Monitoring and Insights

  • The Observability Stack (Overview of the Prometheus, Grafana, and Alertmanager integration for cluster-level health)
  • User Workload Monitoring (Enabling opt-in observability for business-critical applications in non-system namespaces)
  • Network Observability (Using the Network Observability Operator to visualize flow traffic and identify bottlenecks)

Day 4: Operational Continuity and Future Roadmapping

Chapter 7: Cluster Maintenance and Upgrades

  • The Over-the-Air (OTA) Update System (Managing cluster versioning via Update Channels and the Cluster Version Operator)
  • Handling Node Disruptions (Implementing Node Disruption Policies to minimize impact during automated maintenance)

Chapter 8: Summary and the Path Forward

  • Advanced Capabilities (Brief overview of OpenShift Virtualization, Serverless, and Service Mesh)
  • AI and Hybrid Cloud (Introducing OpenShift AI and the integration with modern GPU-accelerated workloads)
  • Final Workshop Review (Q&A session and guidance on Red Hat Certification pathways)