Recently I demonstrated how to install HashiCorp Vault on Kubernetes using Helm. Whilst it’s great to get up and running, upgrades are also an important part of application lifecycle management. In this post I’ll demonstrate how we can use rolling upgrades to bring Vault to the latest version, along with any plugins you may be using in your infrastructure.
Kubernetes
Migrating HashiCorp Vault to Kubernetes using Helm
I’m a big fan of Kubernetes. It has taken a while to get my head around it, and deploying/operating it every day has helped me on my path to mastering it. As part of that journey, I decided that the HobbitCloud infrastructure would become “Kubernetes first”, and as much of it would be migrated as possible. The first item was Vault. Continue reading
Wednesday Tidbit: Fix Container Service Extension 4.1 Permissions Issue
A few weeks ago I upgraded Cloud Director CSE from 4.0.3 to 4.1. However, when I tried to deploy a new Kubernetes 1.25 cluster, I received the following error:
For this particular tenant, I clone with OrgAdmin role to a new one (OrgAdmin w/ Kubernetes) and then add the permissions of the Cluster Author role.
However, the 4.0.3 combination of this was missing a required permission for 4.1 – hence giving me the above error. After comparing my amalgamated role with the Cluster Author role, I spotted it was missing this:
After adding this permission to my “OrgAdmin w/ Kubernetes” role I was able to recreate CSE clusters.
Deploying GitLab Runner to VMware Enterprise PKS
Recently I have been deepening my learning of DevOps methodolgies, specifically around the vRealize Automation and Orchestrator platforms. I have been producing code for both in my development environment for a while and promoting it manually to test, staging and production. However, this is a very error-prone and laborious process that fails to take advantage of Continue reading
Deploy an Azure Kubernetes Service cluster from vRealize Automation – Part 2: Deploying the cluster
In part 1 of this short series we used vRO to create a bearer token for connecting to Microsoft Azure. Now we will create some new components and a master workflow for provisioning our AKS Cluster, to enable our developers to request public cloud Kubernetes straight from vRealize Automation. Continue reading
Deploy an Azure Kubernetes Service cluster from vRealize Automation – Part 1: Authentication
Kubernetes (k8s) is arguably one of the hottest technologies right now. Whether it’s building your own in the private cloud, leveraging vendor implementations to compliment your enterprise apps or consuming public cloud varieties like Amazon Web Service’s EKS – there’s no shortage of ways to deploy k8s.
Removing failed clusters from Pivotal Container Service
Recently I decided to move my cloud native workloads from my primary datacentre in Utrecht to the secondary in Southport, UK. After getting NSX-T up and running in my nested compute cluster, it was time to begin the installation of Pivotal Container Service (PKS). As PKS 1.1 had just been released, it made sense to go with the latest version. Continue reading
Wednesday Tidbit: Standing up a Kubernetes cluster in Microsoft Azure
Recently, Microsot announced the GA release of their Public Cloud Kubernetes offering – Azure Kubernetes Service (AKS). Now DevOps practioners have the ability to stand-up k8s clusters in the cloud and integrate workloads with their existing CI/CD pipelines, without having to go to another provider. Continue reading
Deploying Kubernetes with vRealize Automation
A number of customers are very excited about the upcoming release of PKS. However, some are itching to get started with Kubernetes today, and are wondering how they can leverage VMware’s Cloud Management Platform, vRealize Automation, to do so. In this post I will show how you can design a blueprint which with two clicks can deploy a Kubernetes cluster for your users. Continue reading
virtualhobbit 