OpenShift 4.x Administration – Master the Enterprise Kubernetes Platform
Become an expert in OpenShift 4.x administration with this intensive 4-day training. Master the architecture, IPI/UPI deployment, Operators, advanced networking with Multus, ODF storage, and GitOps practices to orchestrate containers in production.
Objectifs de la formation
Upon completion of this training, you will be able to:
- Master OpenShift 4.x architecture and understand the differences with vanilla Kubernetes
- Install OpenShift in IPI (Installer-Provisioned Infrastructure) and UPI (User-Provisioned Infrastructure) modes
- Manage Operators via Operator Lifecycle Manager (OLM) and create custom CatalogSources
- Configure advanced networking with Network Policies, Multus CNI, and ingress controllers
- Implement persistent storage with OpenShift Data Foundation (ODF) and Ceph RBD
- Automate deployments with Red Hat OpenShift GitOps (ArgoCD)
- Perform cluster updates and manage update channels
- Backup and restore workloads with OADP (OpenShift API for Data Protection)
- Monitor and troubleshoot the cluster with Prometheus metrics and logs
- Secure the platform with RBAC, SCC, and network policies
Public concerné
This training is designed for:
System Administrators
Linux professionals looking to evolve into enterprise container and Kubernetes platform administration
Infrastructure Engineers
Responsible for deploying and managing cloud-native infrastructures for production environments
Cloud Architects
Experts wanting to design robust architectures based on OpenShift for multi-cloud deployments
DevOps Engineers
Professionals seeking to automate CI/CD pipelines and implement GitOps practices
Site Reliability Engineers (SRE)
Engineers responsible for the reliability and performance of production applications
Training particularly suited for African enterprises seeking a sovereign alternative to proprietary cloud solutions.
Prérequis
Technical Prerequisites
Required
- Linux Administration: Solid experience with RHEL/CentOS (systemd, SELinux, firewall)
- Containers: Knowledge of Docker/Podman and containerization concepts
- Kubernetes Fundamentals: Understanding of pods, services, deployments
- Networking: Proficiency in TCP/IP, DNS, load balancing, proxies
- YAML: Ability to read and write YAML manifests
Recommended
- RHCSA certification or equivalent
- Experience with Git and Git workflows
- Automation basics with Ansible
- Knowledge of REST APIs
- Experience with a cloud provider (AWS, Azure, GCP)
Required Hardware Configuration
For hands-on labs, each participant must have:
- Red Hat Developer account (free) with pull secret
- Computer with minimum 16 GB RAM (32 GB recommended)
- 100 GB available disk space
- Stable internet connection (minimum 20 Mbps)
- Access to cloud environment or local virtualization
Programme détaillé
Detailed Training Program
Day 1: OpenShift 4.x Architecture and Installation
Module 1: OpenShift 4.x Architecture (4h)
- OpenShift vs vanilla Kubernetes overview
- Red Hat value-add: security, integrations, support
- CoreOS and system immutability
- Node architecture: control plane, compute, infra
- Essential OpenShift 4 components
- Machine Config Operator and Ignition
- Cluster Version Operator
- OpenShift API Server and OAuth
- Integrated registry and builds
- Security model
- Security Context Constraints (SCC)
- RBAC and projects
- Service Accounts and tokens
Exploring an existing OpenShift 4.x cluster, analyzing components
Module 2: IPI and UPI Installation (3h)
- IPI (Installer-Provisioned Infrastructure)
- Infrastructure prerequisites (DNS, DHCP, load balancer)
- install-config.yaml configuration
- Installation on AWS/Azure/GCP
- Installation on vSphere and bare metal
- UPI (User-Provisioned Infrastructure)
- Reference architecture
- Detailed bootstrap process
- Ignition configs and customization
- Integration with existing infrastructure
- Post-installation
- Default storage configuration
- Authentication and users
- Certificates and ingress
Complete IPI installation on cloud environment, post-install configuration
Day 2: Operators and Advanced Networking
Module 3: Operators and OLM (4h)
- Fundamental Operator concepts
- Operator pattern and maturity levels
- Custom Resource Definitions (CRD)
- Reconciliation loop
- Operator Lifecycle Manager (OLM)
- OLM architecture: Catalog, Subscription, InstallPlan
- ClusterServiceVersion (CSV)
- Channels and update strategies
- Dependency resolution
- Advanced management
- Custom CatalogSources
- Operator mirroring for disconnected environments
- OperatorGroups and multi-tenancy
- Installation troubleshooting
Installing critical operators, creating private CatalogSource
Module 4: Network Policies, Multus and Ingress (3h)
- Network Policies
- Default isolation and zero-trust
- Advanced ingress/egress rules
- Inter-namespace policies
- AdminNetworkPolicy (OpenShift 4.16+)
- Multus CNI
- Multi-network architecture
- NetworkAttachmentDefinition
- Macvlan, bridge and SR-IOV
- Use cases: dedicated storage, traffic separation
- Advanced Ingress
- HAProxy router and sharding
- Wildcard routes and SNI
- Advanced route annotations
- Multiple ingress controllers
Configuring Multus for ODF, implementing strict network policies
Day 3: Storage and GitOps
Module 5: ODF Storage and Ceph RBD (4h)
- OpenShift Data Foundation (ODF)
- ODF 4.x architecture and components
- Deployment modes: internal, external
- Requirements and sizing
- Installation via operator
- Storage Classes and provisioning
- Ceph RBD for block storage
- CephFS for shared filesystem
- Object storage with NooBaa/RGW
- Volume snapshots and clones
- Advanced configuration
- Multus for dedicated storage traffic
- Encryption at rest
- Disaster recovery with RBD mirroring
- Monitoring with ODF dashboard
Complete ODF deployment, performance testing, Multus configuration
Module 6: GitOps with OpenShift (3h)
- Red Hat OpenShift GitOps
- ArgoCD architecture on OpenShift
- Installation and initial configuration
- RBAC and multi-tenancy
- Integration with OpenShift OAuth
- GitOps Patterns
- App of Apps pattern
- Secret management with Sealed Secrets
- Kustomize vs Helm in ArgoCD
- ApplicationSets for multi-cluster
- Complete CI/CD Pipeline
- OpenShift Pipelines (Tekton)
- GitOps integration in CI/CD
- Progressive delivery
- Automatic rollback
Implementing a complete GitOps workflow with ArgoCD
Day 4: Advanced Administration
Module 7: Upgrade, Backup and Monitoring (4h)
- Update strategies
- Channels: stable, fast, eus
- Upgrade planning
- Conditional updates
- Node rollback
- Backup and restore
- OADP (OpenShift API for Data Protection)
- Velero backend configuration
- etcd backup and disaster recovery
- Application-consistent backups
- Advanced monitoring
- Integrated Prometheus stack
- Custom metrics and ServiceMonitors
- Custom alerting rules
- Log forwarding with Vector
Cluster upgrade, OADP configuration, creating custom alerts
Module 8: Performance and Troubleshooting (3h)
- Performance tuning
- Node tuning with Performance Addon Operator
- CPU Manager and hugepages
- Real-time kernel for critical workloads
- Topology Manager
- Diagnostic tools
- oc adm must-gather
- Cluster logs analysis
- Debug pods and tools
- API server audit logs
- Troubleshooting scenarios
- NotReady nodes
- Certificate issues
- Performance degradation
- Authentication problems
Resolving complex problems on production cluster
Certification and Assessment
- Skills validation test at the end of training
- ECINTELLIGENCE training certificate
- Complete course materials (350+ pages)
- Cloud lab access for 45 days post-training
- Preparation for EX280 certification (Red Hat Certified OpenShift Administrator)
- Private alumni community for ongoing support
Certification
À l'issue de cette formation, vous recevrez une attestation de participation délivrée par ECINTELLIGENCE.
Autres formations qui pourraient vous intéresser
Prêt à développer vos compétences ?
Rejoignez des centaines de professionnels qui ont fait confiance à ECINTELLIGENCE pour leur montée en compétences.
Voir toutes nos formations