DO280

Course description

Configure, manage, and troubleshoot OpenShift clusters and containerized applications

Red Hat OpenShift Administration II: Operating a Production Kubernetes Cluster (DO280) prepares OpenShift Cluster Administrators to perform daily administration tasks on clusters that host applications provided by internal teams and external vendors, enable self-service for cluster users with different roles, and deploy applications that require special permissions such as such as CI/CD tooling, performance monitoring, and security scanners. This course focuses on configuring multi-tenancy and security features of OpenShift as well as managing OpenShift add-ons based on operators.

The skills you learn in this course can be applied using all versions of OpenShift, including Red Hat OpenShift on AWS (ROSA), Azure Red Hat OpenShift, and OpenShift Container Platform.

This course is based on OpenShift Container Platform 4.12.

Course Topics

• Deploying packaged applications using manifests, templates, kustomize, and helm.
• Configuring authentication and authorization for users and applications.
• Protecting network traffic with network policies and exposing applications with proper network access.
• Deploying and managing applications using resources manifests.
• Enabling developer self-service of application projects.
• Managing OpenShift cluster updates and Kubernetes operator updates.

Target Audience

• System Administrators and Platform Operators interested in the ongoing management of OpenShift clusters, applications, users, and add-ons.
• Site Reliability Engineers interested in the ongoing maintenance and troubleshooting of Kubernetes clusters.
• System and Software Architects interested in understanding the security of an OpenShift cluster.

Recommended Training

• Take our free assessment to gauge whether this offering is the best fit for your skills.
• Prerequisite: Red Hat OpenShift I: Containers & Kubernetes (DO180 v4.12), or equivalent skills deploying and managing Kubernetes applications using the OpenShift web console and command-line interfaces.

Technology considerations

• This course requires internet access to access the cloud-based classroom environment that provides an OpenShift cluster and a remote administrator’s workstation.

Outline for this course

Declarative Resource Management

Deploy and update applications from resource manifests that are parameterized for different target environments.

Deploy Packaged Applications

Deploy and update applications from resource manifests that are packaged for sharing and distribution.

Authentication and Authorization

Configure authentication with the HTPasswd identity provider and assign roles to users and groups.

Network Security

Protect network traffic between applications inside and outside the cluster.

Expose non-HTTP/SNI Applications

Expose applications to external access without using an Ingress controller.

Enable Developer Self-Service

Configure clusters for safe self-service by developers from multiple teams and disallow self-service if projects have to be provisioned by the operations staff.

Manage Kubernetes Operators

Install and update Operators that are managed by the Operator Lifecycle Manager and by the Cluster Version Operator.

Application Security

Run applications that require elevated or special privileges from the host Operating System or Kubernetes.

OpenShift Updates

Update an OpenShift cluster and minimize disruption to deployed applications.

Impact on the organization

This course is intended to develop the skills needed to manage Red Hat OpenShift clusters and support containerized applications that are highly available, resilient, and scalable. Red Hat OpenShift is an enterprise-hardened application platform based on Kubernetes that provides a common set of APIs and abstractions that enable application portability across cloud providers and traditional data centers. Red Hat OpenShift adds consistency and portability of operational processes across these environments and can also be deployed as a managed service. A Red Hat SRE team shares the responsibility of managing Red Hat OpenShift clusters with a customer’s IT operations team when using a managed OpenShift offering such as Red Hat OpenShift on AWS (ROSA) or Azure Red Hat OpenShift (ARO).

Impact on the individual

As a result of attending this course, students will be able to perform the set of tasks that OpenShift cluster administrators are expected to perform in their daily jobs for on-premises, cloud-based, and vendor-managed clusters, including enabling add-on operators. Students will also be able manage multi-tenant permissions for different roles and configure applications that require privileged access to cluster and host resources.

Recommended next exam or course

• Red Hat Certified OpenShift Administrator exam (EX280)
• Red Hat OpenShift Administration III: Scaling Kubernetes Deployments in the Enterprise (DO380)
• Red Hat Certified Specialist in OpenShift Automation and Integration exam (EX380)
• Introduction to Red Hat OpenShift Service on AWS (DO120)
• Introduction to Microsoft Azure Red Hat OpenShift (DO121)