Red Hat® OpenShift® on IBM Cloud is a fully managed OpenShift Container Platform (OCP) (link resides outside ibm.com). Your compute hosts cluster can run on IBM Cloud Virtual Servers, IBM Cloud Bare Metal Servers, or on your own hardware or third-party cloud using IBM Cloud Satellite.
With Red Hat OpenShift on IBM Cloud, OpenShift developers have a fast and secure way to containerize and deploy enterprise workloads in Kubernetes clusters. Because IBM manages OCP, you’ll have more time to focus on your core tasks.
Offload tedious and repetitive tasks involving security management, compliance management, deployment management and ongoing lifecycle management.
Automated provisioning and configuration of infrastructure (compute, network and storage), and installation and configuration of OpenShift
Automatic multizone deployment in MZRs, including integration with CIS to execute cross-zone traffic routing
Automatic scaling, backups and failure recovery for OpenShift configurations, components and worker nodes
Automatic upgrades of all components (operating system, OpenShift components, cluster services) and performance tuning and security hardening
24x7 global SRE team maintenance of the health of the environment, with the team using its OpenShift and Kubernetes expertise to reach faster problem resolution
Built-in security, including image signing, image deployment enforcement, hardware trust, security patch management, and automatic compliance (HIPAA, PCI, SOC2, ISO)
IBM Cloud Satellite extends Red Hat OpenShift on IBM Cloud, creating a common infrastructure management layer across any number of on-prem, edge and multi-cloud environments.
Existing enterprise assets and apps were lifted and shifted while the integration to some on-premises systems that won’t be migrated was enabled.
Time-to-deploy solutions was shortened and standard DevOps and monitoring processes were implemented to address bugs that affected reporting accuracy.
Use IBM Cloud Satellite to extend and manage OpenShift, creating a common infrastructure management layer across any number of on-prem, edge and multi-environments.
IBM® Event Streams for IBM Cloud® just-in-time events platform is designed to bring in the rapidly changing information from inventory systems to IBM Streaming Analytics.
Jump-start development of mobile apps with the IBM Mobile Starter Kit and other mobile services from IBM, such as IBM Cloud® App ID.
Use containers and microservices to decompose legacy apps into portable workloads. Offload tedious and repetitive tasks around security, compliance, deployment and on-going lifecycle management to Red Hat OpenShift on IBM Cloud.
With IBM Cloud Satellite, extend these workloads into on-prem, edge, or multi-cloud environments. In each Satellite “location,” managed OpenShift clusters ensure high availability through CI/CD, and real-time data through eventing.
Customers, suppliers and operators can now access up-to-date business reporting; developers can funnel 100x updates daily to maintain reliability, while adding and testing new features.
You can use the Red Hat OpenShift on IBM Cloud command line interface (CLI) plug-in (ibmcloud oc) to create and manage your OpenShift cluster infrastructure, such as creating clusters and worker nodes. Then, you can use the OpenShift CLI (oc) to manage the resources within your OpenShift cluster, such as projects, pods and deployments.
Expose the services in your Red Hat OpenShift on IBM Cloud cluster on the router’s external IP address by using a route. By default, an OpenShift router is deployed to your cluster that functions as the ingress endpoint for external network traffic.
You can use the OpenShift router to create routes for your apps. Routes are assigned a publicly or privately accessible hostname from the router subdomain that external clients can use to send requests to your app. You can choose to create unsecured or secured routes by using the TLS certificate of the router to secure your hostname. When an external request reaches your hostname, the router proxies your request and forwards it to the private IP address that your app listens on.
Red Hat OpenShift on IBM Cloud clusters include an internal registry to build, deploy and manage container images locally. For a private registry to manage and control access to images across your enterprise, you can also set up your cluster to use IBM Cloud® Container Registry.
You can use built-in security features in Red Hat OpenShift on IBM Cloud for risk analysis and security protection. These features help you to protect your cluster infrastructure and network communication, isolate your compute resources and ensure security compliance across your infrastructure components and container deployments.
Follow the instructions in this solution tutorial to learn how to install the Red Hat OpenShift Service Mesh operator (along with other additional operators); configure an Istio ingress-gateway to expose a service outside of the service mesh; perform traffic management to set up important tasks, such as A/B testing and canary deployments; secure your microservice communications; and use metrics, logging and tracing to observe services.