Configuring with an IBM FlashSystem cluster

During the installation of Fusion Data Foundation, you can connect it with an IBM FlashSystem cluster to serve as a storage provider.

Before you begin

Ensure that you installed Fusion Data Foundation.

Procedure

  1. Log in to the OpenShift® Container Platform web console and select your from the Project list.
  2. Click Operators > Installed Operators to view all installed operators.
  3. Click Fusion Data Foundation and click Create StorageSystem in the Storage System tab.
  4. In the Backing storage window, select the following options:
    1. Select Full deployment from the Deployment type list.
    2. Select Connect an external storage platform from the available options.
    3. Select IBM FlashSystem Storage from the Storage platform list.
    4. Click Next.
  5. In the Create storage class window, provide the following information:
    1. Enter a name for the storage class.
      Remember: The storage class name must not exceed 40 characters and must not match any of the following predefined storage classes:
      • ocs-storagecluster-cephfs
      • ocs-storagecluster-ceph-rbd
      • ocs-storagecluster-ceph-rgw
      • openshift-storage.noobaa.io
      • ocs-storagecluster-ceph-rbd-virtualization

      To create block storage persistent volumes, select the storage class <storage_class_name> for the best performance. The storage class allows a direct I/O path to the IBM FlashSystem.

    2. Enter the following details of IBM FlashSystem connection:
      • IP address
      • Username
      • Password
      • Pool name
    3. Select the required value from the Volume mode list.
    4. Click Next.
  6. In the Capacity and nodes window, provide the necessary details:
    1. Select a value from the Requested capacity list.
      The available options are 0.5 TiB, 2 TiB, and 4 TiB. The requested capacity is dynamically allocated on the infrastructure storage class.
    2. Select at least three nodes in three different zones.
      Start with at least 14 CPUs and 34 GiB of RAM per node. If the selected nodes do not meet the aggregated requirement of 30 CPUs and 72 GiB of RAM for Fusion Data Foundation, a minimal cluster is deployed instead.
    3. Click Next.
  7. Optional: In the Security and network window, provide the necessary details:
    1. To enable encryption, select Enable data encryption for block and file storage.

      1. Choose any one or both encryption level:

        • Cluster-wide encryption to encrypt the entire cluster (block and file).
        • StorageClass encryption to create encrypted persistent volume (block only) by using encryption-enabled storage class.

      2. Select the Connect to an external key management service checkbox, which is optional for cluster-wide encryption.

        1. Key Management Service Provider is set to Vault by default.
        2. Enter the details for the Vault Service Name, Host Address of Vault server ('https://<hostname or ip>'), Port number, and Token fields.

      3. Expand Advanced Settings to enter the following details based on your vault configuration:

        1. Enter the key value secret path that is dedicated and unique to Fusion Data Foundation in the Backend Path field.
        2. Optional: Enter the details for the TLS Server Name and Vault Enterprise Namespace fields.
        3. Upload the respective PEM-encoded certificate file to fill the CA Certificate, Client Certificate, and Client Private Key fields.
        Note: In case you need to enable key rotation for Vault KMS, run the following command in the OpenShift web console after the storage cluster is created:
        oc patch storagecluster ocs-storagecluster -n openshift-storage --type=json -p '[{"op": "add", "path":"/spec/encryption/keyRotation/enable", "value": true}]'
      4. Click Save.

      5. Select Default (SDN) for a single network and Custom (Multus) for multiple network interfaces.

        1. Select an interface from the Public Network Interface list.
        2. Select an interface from the Cluster Network Interface list.
          Note: If you are using only one additional network interface, select the single NetworkAttachementDefinition, that is, ocs-public-cluster for the Public Network Interface field, and leave the Cluster Network Interface field empty.
      6. Click Next.
    2. If you select In-transit encryption, add the details in the Network field and click Next.
  8. In the Review and create window, verify whether all details are correct.
    To modify any configuration settings, click Back to go back to the previous configuration page.
  9. Click Create StorageSystem.

What to do next

Verify whether the IBM FlashSystem cluster is configured successfully with the Fusion Data Foundation. For more information, see Verifying the configuration.