Installation Guide¶

Overview¶

This installation guide provides step-by-step instructions to deploy the RH OVE ecosystem using a multi-cluster architecture. The deployment follows a hub-and-spoke pattern with one management cluster and multiple application clusters for different environments (production, staging, development).

Multi-Cluster Architecture¶

The RH OVE ecosystem consists of:

• 1 Management Cluster: Centralized control plane for governance, policy, monitoring, and GitOps

• N Application Clusters: Dedicated workload execution environments for virtual machines and containers

Installation Flow¶

graph TD
    A[Prerequisites Check] --> B[Management Cluster Setup]
    B --> C[Install RHACM Hub]
    C --> D[Deploy ArgoCD Hub]
    D --> E[Setup RHACS Central]
    E --> F[Configure Observability Stack]
    F --> G[Application Cluster Provisioning]
    G --> H[Deploy RH OVE to App Clusters]
    H --> I[Configure Multi-Network]
    I --> J[Setup Backup & DR]
    J --> K[Validation & Testing]

Core Component Installation¶

OpenShift Cluster Setup¶

1. Install OpenShift
2. Follow OpenShift Installation Docs to set up the cluster.

3. Choose between IPI or UPI depending on your infrastructure.

4. Verify Cluster Health

   oc get nodes
   oc get pods -n openshift-apiserver
   

Virtualization Operator¶

1. Install OpenShift Virtualization

   oc apply -f https://path/to/virtualization-operator.yaml
   

2. Verify Installation

   oc get pods -n openshift-cnv
   oc get kubevirt.kubevirt.io/kubevirt -n openshift-cnv
   

Cilium CNI¶

1. Install Cilium

   helm repo add cilium https://helm.cilium.io/
   helm install cilium cilium/cilium --namespace kube-system
   

2. Verify Cilium Status

   cilium status
   

Kyverno Policy Engine¶

1. Install Kyverno

   kubectl create -f https://github.com/kyverno/kyverno/releases/download/v1.5.2/install.yaml
   

2. Apply Policies

   kubectl apply -f /path/to/policy-files
   

Monitoring Setup¶

Dynatrace Integration¶

1. Install Dynatrace Operator

   oc apply -f https://path/to/dynatrace-operator.yaml
   

2. Configure DynaKube

   oc apply -f /path/to/dynakube-config.yaml
   

3. Verify Monitoring

   oc get pods -n dynatrace
   

Prometheus and Grafana¶

1. Install Prometheus Operator

   oc apply -f https://path/to/prometheus-operator.yaml
   

2. Setup Grafana

   oc apply -f https://path/to/grafana-deployment.yaml
   

Backup Configuration¶

Rubrik Integration¶

1. Install Rubrik Operator

   oc apply -f https://path/to/rubrik-operator.yaml
   

2. Verify Backup

   oc get pods -n rubrik
   

GitOps Setup¶

Argo CD Installation¶

1. Install Argo CD

   oc apply -n argocd -f https://path/to/argocd-install.yaml
   

2. Access Argo CD UI

3. Forward Argo CD API server port:

   oc port-forward svc/argocd-server -n argocd 8080:443
   

4. Login to Argo CD

5. Open https://localhost:8080 in your browser.

6. Deploy Applications

   argocd app create my-app --repo https://git.example.com/my-app --path ./
   argocd app sync my-app
   

Security Hardening¶

1. Configure RBAC

   oc apply -f /path/to/rbac-config.yaml
   

2. Enable Pod Security

   oc apply -f /path/to/pod-security.yaml
   

3. Firewall Adjustments

4. Ensure only necessary ports are open (refer to prerequisites).

Validation Steps¶

Verify All Deployments¶

oc get all --all-namespaces

Check Monitoring Dashboards¶

• Confirm metrics collection in Grafana and Dynatrace.

Post-Installation Tasks¶

Documentation¶

• Update MkDocs with new components.

Backup Verification¶

• Test Rubrik backups for VM and container data.

Conclusion¶

This guide ensures a smooth installation process for RH OVE, covering all critical steps and components necessary for successful deployment and operation. Follow each section carefully to complete the installation.