mirror of
https://github.com/openshift/openshift-docs.git
synced 2026-02-05 12:46:18 +01:00
359 lines
18 KiB
Plaintext
359 lines
18 KiB
Plaintext
:_mod-docs-content-type: ASSEMBLY
|
|
:oke: OpenShift Kubernetes Engine
|
|
[id="oke-about"]
|
|
= About {oke}
|
|
include::_attributes/common-attributes.adoc[]
|
|
:context: oke-about
|
|
|
|
toc::[]
|
|
|
|
As of 27 April 2020, Red Hat has decided to rename Red Hat OpenShift Container Engine to Red Hat {oke}
|
|
to better communicate what value the product offering delivers.
|
|
|
|
|
|
image::oke-about-ocp-stack-image.png[Red Hat {oke}]
|
|
|
|
Red Hat {oke} is a product offering from Red Hat that lets
|
|
you use an enterprise class Kubernetes platform as a production platform for
|
|
launching containers. You download and install {oke} the same way as {product-title}
|
|
as they are the same binary distribution, but {oke} offers a subset of the
|
|
features that {product-title} offers.
|
|
|
|
[[about_oke_similarities_and_differences]]
|
|
== Similarities and differences
|
|
You can see the similarities and differences between {oke}
|
|
and {product-title} in the following table:
|
|
|
|
.Product comparison for {oke} and {product-title}
|
|
|===
|
|
2+| |{oke} |{product-title}
|
|
|
|
2+h|Fully Automated Installers
|
|
| Yes
|
|
| Yes
|
|
|
|
2+h|Over the Air Smart Upgrades
|
|
| Yes
|
|
| Yes
|
|
|
|
2+h|Enterprise Secured Kubernetes
|
|
| Yes
|
|
| Yes
|
|
|
|
2+h|Kubectl and oc automated command line
|
|
| Yes
|
|
| Yes
|
|
|
|
2+h|Operator Lifecycle Manager (OLM)
|
|
| Yes
|
|
| Yes
|
|
|
|
2+h|Administrator Web console
|
|
| Yes
|
|
| Yes
|
|
|
|
2+h|OpenShift Virtualization
|
|
| Yes
|
|
| Yes
|
|
|
|
2+h|User Workload Monitoring
|
|
|
|
|
| Yes
|
|
|
|
2+h|Cluster Monitoring
|
|
| Yes
|
|
| Yes
|
|
|
|
2+h|Cost Management SaaS Service
|
|
| Yes
|
|
| Yes
|
|
|
|
2+h|Platform Logging
|
|
|
|
|
| Yes
|
|
|
|
2+h|Developer Web Console
|
|
|
|
|
| Yes
|
|
|
|
2+h|Developer Application Catalog
|
|
|
|
|
| Yes
|
|
|
|
2+h|Source to Image and Builder Automation (Tekton)
|
|
|
|
|
| Yes
|
|
|
|
2+h|OpenShift Service Mesh (Maistra and Kiali)
|
|
|
|
|
| Yes
|
|
|
|
2+h|{DTShortName}
|
|
|
|
|
| Yes
|
|
|
|
2+h|OpenShift Serverless (Knative)
|
|
|
|
|
| Yes
|
|
|
|
2+h|OpenShift Pipelines (Jenkins and Tekton)
|
|
|
|
|
| Yes
|
|
|
|
2+h|Embedded Component of {ibm-cloud-name} Pak and RHT MW Bundles
|
|
|
|
|
| Yes
|
|
|
|
2+h|{osc}
|
|
|
|
|
| Yes
|
|
|
|
|===
|
|
|
|
[[about_oke_core_kubernetes_and_container_orchestration]]
|
|
=== Core Kubernetes and container orchestration
|
|
{oke} offers full access to an enterprise-ready Kubernetes environment that is
|
|
easy to install and offers an extensive compatibility test matrix with many of
|
|
the software elements that you might use in your data center.
|
|
|
|
{oke} offers the same service level agreements, bug fixes, and common
|
|
vulnerabilities and errors protection as {product-title}. {oke} includes a
|
|
{op-system-base-full} Virtual Datacenter and {op-system-first} entitlement that
|
|
allows you to use an integrated Linux operating system with container runtime
|
|
from the same technology provider.
|
|
|
|
The {oke} subscription is compatible with the {productwinc} subscription.
|
|
|
|
[[about_oke_enterprise_ready_configurations]]
|
|
=== Enterprise-ready configurations
|
|
{oke} uses the same security options and default settings as the {product-title}.
|
|
Default security context constraints, pod security policies, best practice
|
|
network and storage settings, service account configuration, SELinux integration,
|
|
HAproxy edge routing configuration, and all other standard protections that
|
|
{product-title} offers are available in {oke}. {oke} offers full access to the
|
|
integrated monitoring solution that {product-title} uses, which is based on
|
|
Prometheus and offers deep coverage and alerting for common Kubernetes issues.
|
|
|
|
{oke} uses the same installation and upgrade automation as {product-title}.
|
|
|
|
[[about_oke_standard_infrastructure_services]]
|
|
=== Standard infrastructure services
|
|
With an {oke} subscription, you receive support for all storage plugins that
|
|
{product-title} supports.
|
|
|
|
In terms of networking, {oke} offers full and
|
|
supported access to the Kubernetes Container Network Interface (CNI) and
|
|
therefore allows you to use any third-party SDN that supports {product-title}.
|
|
It also allows you to use the included Open vSwitch software defined network to
|
|
its fullest extent. {oke} allows you to take full advantage of the OVN
|
|
Kubernetes overlay, Multus, and Multus plugins that are supported on
|
|
{product-title}. {oke} allows customers to use a Kubernetes Network Policy to
|
|
create microsegmentation between deployed application services on the cluster.
|
|
|
|
You can also use the `Route` API objects that are found in {product-title},
|
|
including its sophisticated integration with the HAproxy edge routing layer as an
|
|
out of the box Kubernetes Ingress Controller.
|
|
|
|
[[about_oke_core_user_experience]]
|
|
=== Core user experience
|
|
{oke} users have full access to Kubernetes Operators, pod deployment strategies,
|
|
Helm, and {product-title} templates. {oke} users can use both the `oc` and
|
|
`kubectl` command-line interfaces. {oke} also offers an administrator web-based
|
|
console that shows all aspects of the deployed container services and offers a
|
|
container-as-a service experience. {oke} grants access to the Operator Life
|
|
Cycle Manager that helps you control access to content on the cluster and life
|
|
cycle operator-enabled services that you use. With an {oke} subscription, you
|
|
receive access to the Kubernetes namespace, the OpenShift `Project` API object,
|
|
and cluster-level Prometheus monitoring metrics and events.
|
|
|
|
=== Maintained and curated content
|
|
With an {oke} subscription, you receive access to the {product-title}
|
|
content from the Red Hat Ecosystem Catalog and Red Hat Connect ISV marketplace.
|
|
You can access all maintained and curated content that the {product-title}
|
|
eco-system offers.
|
|
|
|
=== OpenShift Data Foundation compatible
|
|
{oke} is compatible and supported with your purchase of {rh-storage}.
|
|
|
|
=== Red Hat Middleware compatible
|
|
{oke} is compatible and supported with individual Red Hat Middleware product solutions.
|
|
Red Hat Middleware Bundles that include OpenShift embedded in them only contain
|
|
{product-title}.
|
|
|
|
=== OpenShift Serverless
|
|
{oke} does not include OpenShift Serverless support. Use {product-title}
|
|
for this support.
|
|
|
|
=== Quay Integration compatible
|
|
{oke} is compatible and supported with a {quay} purchase.
|
|
|
|
=== OpenShift Virtualization
|
|
{oke} includes support for the Red Hat product offerings derived from
|
|
the kubevirt.io open source project.
|
|
|
|
=== Advanced cluster management
|
|
{oke} is compatible with your additional purchase of {rh-rhacm-first} for
|
|
Kubernetes. An {oke} subscription does not offer a cluster-wide log aggregation
|
|
solution or support Fluentd, or Kibana-based logging solutions.
|
|
{SMProductName} capabilities derived from the open-source istio.io and kiali.io
|
|
projects that offer OpenTracing observability for containerized services on
|
|
{product-title} are not supported in {oke}.
|
|
|
|
=== Advanced networking
|
|
The standard networking solutions in {product-title} are supported with an
|
|
{oke} subscription. The {product-title} Kubernetes CNI plugin for automation of
|
|
multi-tenant network segmentation between {product-title} projects is
|
|
entitled for use with {oke}. {oke} offers all the granular control of the
|
|
source IP addresses that are used by application services on the cluster.
|
|
Those egress IP address controls are entitled for use with {oke}.
|
|
{product-title} offers ingress routing to on cluster services that use
|
|
non-standard ports when no public cloud provider is in use via the VIP pods
|
|
found in {product-title}. That ingress solution is supported in {oke}.
|
|
{oke} users are supported for the Kubernetes ingress control object, which
|
|
offers integrations with public cloud providers. Red Hat Service Mesh, which is
|
|
derived from the istio.io open source project, is not supported in {oke}. Also,
|
|
the Kourier Ingress Controller found in OpenShift Serverless is not supported
|
|
on {oke}.
|
|
|
|
=== {osc}
|
|
{oke} does not include {osc}. Use {product-title} for this support.
|
|
|
|
=== Developer experience
|
|
With {oke}, the following capabilities are not supported:
|
|
|
|
* The {product-title} developer experience utilities and tools, such as {openshift-dev-spaces-productname}.
|
|
* The {product-title} pipeline feature that integrates a streamlined,
|
|
Kubernetes-enabled Jenkins and Tekton experience in the user's project space.
|
|
* The {product-title} source-to-image feature, which allows you to easily
|
|
deploy source code, dockerfiles, or container images across the cluster.
|
|
* Build strategies, builder pods, or Tekton for end user container
|
|
deployments.
|
|
* The `odo` developer command line.
|
|
* The developer persona in the {product-title} web console.
|
|
|
|
=== Feature summary
|
|
|
|
The following table is a summary of the feature availability in {oke} and {product-title}. Where applicable, it includes the name of the Operator that enables a feature.
|
|
|
|
.Features in {oke} and {product-title}
|
|
[%header, cols="h,,,"]
|
|
|===
|
|
| Feature | {oke} | {product-title} | Operator name
|
|
| Fully Automated Installers (IPI) | Included | Included | N/A
|
|
| Customizable Installers (UPI) | Included | Included | N/A
|
|
| Disconnected Installation | Included | Included | N/A
|
|
| {op-system-base-full} or {op-system-first} entitlement | Included | Included | N/A
|
|
| Existing RHEL manual attach to cluster (BYO) | Included | Included | N/A
|
|
| CRIO Runtime | Included | Included | N/A
|
|
| Over the Air Smart Upgrades and Operating System ({op-system}) Management | Included | Included | N/A
|
|
| Enterprise Secured Kubernetes | Included | Included | N/A
|
|
| Kubectl and `oc` automated command line | Included | Included | N/A
|
|
| Auth Integrations, RBAC, SCC, Multi-Tenancy Admission Controller | Included | Included | N/A
|
|
| Operator Lifecycle Manager (OLM) | Included | Included | N/A
|
|
| Administrator web console | Included | Included | N/A
|
|
| OpenShift Virtualization | Included | Included | OpenShift Virtualization Operator
|
|
| Compliance Operator provided by Red Hat | Included | Included | Compliance Operator
|
|
| File Integrity Operator | Included | Included | File Integrity Operator
|
|
| Gatekeeper Operator | Not Included - Requires separate subscription | Not Included - Requires separate subscription | Gatekeeper Operator
|
|
| Klusterlet | Not Included - Requires separate subscription | Not Included - Requires separate subscription | N/A
|
|
| {descheduler-operator} provided by Red Hat | Included | Included | {descheduler-operator}
|
|
| Local Storage provided by Red Hat | Included | Included | Local Storage Operator
|
|
| Node Feature Discovery provided by Red Hat | Included | Included | Node Feature Discovery Operator
|
|
| Performance Profile controller | Included | Included | N/A
|
|
| PTP Operator provided by Red Hat | Included | Included | PTP Operator
|
|
| Service Telemetry Operator provided by Red Hat | Not Included | Included | Service Telemetry Operator
|
|
| SR-IOV Network Operator | Included | Included | SR-IOV Network Operator
|
|
| Vertical Pod Autoscaler | Included | Included | Vertical Pod Autoscaler
|
|
| Cluster Monitoring (Prometheus) | Included | Included | Cluster Monitoring
|
|
| Device Manager (for example, GPU) | Included | Included | N/A
|
|
| Log Forwarding | Included | Included | Red Hat OpenShift Logging Operator
|
|
| Telemeter and Insights Connected Experience | Included | Included | N/A
|
|
s| Feature s| {oke} s| {product-title} s| Operator name
|
|
| OpenShift Cloud Manager SaaS Service | Included | Included | N/A
|
|
| OVS and OVN SDN | Included | Included | N/A
|
|
| MetalLB | Included | Included | MetalLB Operator
|
|
| HAProxy Ingress Controller | Included | Included | N/A
|
|
| Ingress Cluster-wide Firewall | Included | Included | N/A
|
|
| Egress Pod and Namespace Granular Control | Included | Included | N/A
|
|
| Ingress Non-Standard Ports | Included | Included | N/A
|
|
| Multus and Available Multus Plugins | Included | Included | N/A
|
|
| Network Policies | Included | Included | N/A
|
|
| IPv6 Single and Dual Stack | Included | Included | N/A
|
|
| CNI Plugin ISV Compatibility | Included | Included | N/A
|
|
| CSI Plugin ISV Compatibility | Included | Included | N/A
|
|
| RHT and {ibm-name} middleware à la carte purchases (not included in {product-title} or {oke}) | Included | Included | N/A
|
|
| ISV or Partner Operator and Container Compatibility (not included in {product-title} or {oke}) | Included | Included | N/A
|
|
| Embedded software catalog | Included | Included | N/A
|
|
| Embedded Marketplace | Included | Included | N/A
|
|
| Quay Compatibility (not included) | Included | Included | N/A
|
|
| OpenShift API for Data Protection (OADP) | Included | Included | OADP Operator
|
|
| RHEL Software Collections and RHT SSO Common Service (included) | Included | Included | N/A
|
|
| Embedded Registry | Included | Included | N/A
|
|
| Helm | Included | Included | N/A
|
|
| User Workload Monitoring | Not Included | Included | N/A
|
|
| Cost Management SaaS Service | Included | Included | Cost Management Metrics Operator
|
|
| Platform Logging | Not Included | Included | Red Hat OpenShift Logging Operator
|
|
| Developer Web Console | Not Included | Included | N/A
|
|
| Developer Application Catalog | Not Included | Included | N/A
|
|
| Source to Image and Builder Automation (Tekton) | Not Included | Included | N/A
|
|
| OpenShift Service Mesh | Not Included | Included | OpenShift Service Mesh Operator
|
|
s| Feature s| {oke} s| {product-title} s| Operator name
|
|
| Red Hat OpenShift Serverless | Not Included | Included | OpenShift Serverless Operator
|
|
| Web Terminal provided by Red Hat | Not Included | Included | Web Terminal Operator
|
|
| Red Hat OpenShift Pipelines Operator | Not Included | Included | OpenShift Pipelines Operator
|
|
| Embedded Component of {ibm-cloud-name} Pak and RHT MW Bundles | Not Included | Included | N/A
|
|
| Red Hat OpenShift GitOps | Not Included | Included | OpenShift GitOps
|
|
| {openshift-dev-spaces-productname} | Not Included | Included | {openshift-dev-spaces-productname}
|
|
| {openshift-local-productname} | Not Included | Included | N/A
|
|
| Quay Bridge Operator provided by Red Hat | Not Included | Included | Quay Bridge Operator
|
|
| Quay Container Security provided by Red Hat | Not Included | Included | Quay Operator
|
|
| Red Hat OpenShift distributed tracing platform | Not Included | Included | Red Hat OpenShift distributed tracing platform Operator
|
|
| Red Hat OpenShift Kiali | Not Included | Included | Kiali Operator
|
|
| Metering provided by Red Hat (deprecated) | Not Included | Included | N/A
|
|
| Migration Toolkit for Containers Operator | Not Included | Included | Migration Toolkit for Containers Operator
|
|
| Cost management for OpenShift | Not included | Included | N/A
|
|
| JBoss Web Server provided by Red Hat | Not included | Included | JWS Operator
|
|
| Red Hat Build of Quarkus | Not included | Included | N/A
|
|
| Kourier Ingress Controller | Not included | Included | N/A
|
|
| RHT Middleware Bundles Sub Compatibility (not included in {product-title}) | Not included | Included | N/A
|
|
| {ibm-cloud-name} Pak Sub Compatibility (not included in {product-title}) | Not included | Included | N/A
|
|
| OpenShift Do (`odo`) | Not included | Included | N/A
|
|
| Source to Image and Tekton Builders | Not included | Included | N/A
|
|
| OpenShift Serverless FaaS | Not included | Included | N/A
|
|
| IDE Integrations | Not included | Included | N/A
|
|
| {osc} | Not included | Not included | {osc-operator}
|
|
| Windows Machine Config Operator | Community Windows Machine Config Operator included - no subscription required | Red Hat Windows Machine Config Operator included - Requires separate subscription | Windows Machine Config Operator
|
|
| {quay} | Not Included - Requires separate subscription | Not Included - Requires separate subscription | Quay Operator
|
|
| Red Hat Advanced Cluster Management | Not Included - Requires separate subscription | Not Included - Requires separate subscription | Advanced Cluster Management for Kubernetes
|
|
| Red Hat Advanced Cluster Security | Not Included - Requires separate subscription | Not Included - Requires separate subscription | N/A
|
|
| {rh-storage} | Not Included - Requires separate subscription | Not Included - Requires separate subscription | {rh-storage}
|
|
s| Feature s| {oke} s| {product-title} s| Operator name
|
|
| Ansible Automation Platform Resource Operator | Not Included - Requires separate subscription | Not Included - Requires separate subscription | Ansible Automation Platform Resource Operator
|
|
| Business Automation provided by Red Hat | Not Included - Requires separate subscription | Not Included - Requires separate subscription | Business Automation Operator
|
|
| Data Grid provided by Red Hat | Not Included - Requires separate subscription | Not Included - Requires separate subscription | Data Grid Operator
|
|
| Red Hat Integration provided by Red Hat | Not Included - Requires separate subscription | Not Included - Requires separate subscription | Red Hat Integration Operator
|
|
| Red Hat Integration - 3Scale provided by Red Hat | Not Included - Requires separate subscription | Not Included - Requires separate subscription | 3scale
|
|
| Red Hat Integration - 3Scale APICast gateway provided by Red Hat | Not Included - Requires separate subscription | Not Included - Requires separate subscription | 3scale APIcast
|
|
| Red Hat Integration - AMQ Broker | Not Included - Requires separate subscription | Not Included - Requires separate subscription | AMQ Broker
|
|
| Red Hat Integration - AMQ Broker LTS | Not Included - Requires separate subscription | Not Included - Requires separate subscription |
|
|
| Red Hat Integration - AMQ Interconnect | Not Included - Requires separate subscription | Not Included - Requires separate subscription | AMQ Interconnect
|
|
| Red Hat Integration - AMQ Online | Not Included - Requires separate subscription | Not Included - Requires separate subscription |
|
|
| Red Hat Integration - AMQ Streams | Not Included - Requires separate subscription | Not Included - Requires separate subscription | AMQ Streams
|
|
| Red Hat Integration - Camel K | Not Included - Requires separate subscription | Not Included - Requires separate subscription | Camel K
|
|
| Red Hat Integration - Fuse Console | Not Included - Requires separate subscription | Not Included - Requires separate subscription | Fuse Console
|
|
| Red Hat Integration - Fuse Online | Not Included - Requires separate subscription | Not Included - Requires separate subscription | Fuse Online
|
|
| Red Hat Integration - Service Registry Operator | Not Included - Requires separate subscription | Not Included - Requires separate subscription | Service Registry
|
|
| API Designer provided by Red Hat | Not Included - Requires separate subscription | Not Included - Requires separate subscription | API Designer
|
|
| JBoss EAP provided by Red Hat | Not Included - Requires separate subscription | Not Included - Requires separate subscription | JBoss EAP
|
|
| Smart Gateway Operator | Not Included - Requires separate subscription | Not Included - Requires separate subscription | Smart Gateway Operator
|
|
| Kubernetes NMState Operator | Included | Included | N/A
|
|
|===
|
|
|
|
== Subscription limitations
|
|
|
|
{oke} is a subscription offering that provides {product-title} with a limited set
|
|
of supported features at a lower list price. {oke} and {product-title} are the
|
|
same product and, therefore, all software and features are delivered in both.
|
|
There is only one download, {product-title}. {oke} uses the {product-title}
|
|
documentation and support services and bug errata for this reason.
|