Adding a new Podman container

A new Podman container must be configured before it can be used to run service instances.

Before you begin

You must be a cluster administrator or have the Services Manage permission.

About this task

Follow these steps to add a new Podman container for an IBM® Spectrum Symphony service.

Procedure

  1. From the cluster management console Dashboard, select Workload > Symphony > Application Profiles.
  2. Click the application name.
    The Application Profile window displays.
  3. Expand Container Definition, and then click Add.
    1. Enter a name for the Podman container to associate with an IBM Spectrum Symphony service. The maximum length is 128 characters. Click Add.
    2. In the Image name field, enter the name of the image that will be used to create the Podmancontainer.
    3. In the Registry URL field, enter the URL of the Podman public registry or your own private registry where the container image resides.
    4. In the Container user field, enter the name of the user who will execute workload and own files created within the Podman container.
      Note: Podman rootless containers do not support specifying a container user. The container user will be the consumer’s execution user.

      If you configured a user for the container image, specify the name of this built-in user to start your command inside the container. If the container image is not configured with a built-in user, you can mount the /etc/passwd and /etc/shadow files to the container; then, specify the name of the host OS user as the container user.

      When your cluster is set up for LDAP, if the container image is not configured with a built-in user or you want container access for specific users, specify the user ID or group ID (instead of the user name) as the container user. Use the format uid:gid; for example, when user ABC's user ID is 34251 and group ID is 10007, enter 34251:10007.

    5. For Podman rootless containers, to keep the same UID and GID inside the container as on the host, select the Podman keep same ID (Only valid for Podman container) checkbox. For Podman rootless containers, without selecting this option, the user on the host will be the consumer's execution user and the user inside the container will be root.
  4. Expand Mounts, and then click Add Mount. The following steps bind the data volumes in the host directory to the mounted directory in the Podman container.
    1. In the Host directory field, enter the mounted directory available on each of the hosts on which the container can run. The directory must be specified with an absolute path.
    2. In the Container directory field, enter the mounted directory in the Podman container.
    3. Set the access permission for the data volumes.