Jump To Close Expand all Collapse all Table of contents Installing 1. OpenShift Container Platform installation overview Expand section "1. OpenShift Container Platform installation overview" Collapse section "1. OpenShift Container Platform installation overview" 1.1. About OpenShift Container Platform installation Expand section "1.1. About OpenShift Container Platform installation" Collapse section "1.1. About OpenShift Container Platform installation" 1.1.1. About the installation program 1.1.2. About Red Hat Enterprise Linux CoreOS (RHCOS) 1.1.3. Glossary of common terms for OpenShift Container Platform installing 1.1.4. Installation process 1.1.5. Verifying node state after installation 1.2. Supported platforms for OpenShift Container Platform clusters 2. Selecting a cluster installation method and preparing it for users Expand section "2. Selecting a cluster installation method and preparing it for users" Collapse section "2. Selecting a cluster installation method and preparing it for users" 2.1. Selecting a cluster installation type Expand section "2.1. Selecting a cluster installation type" Collapse section "2.1. Selecting a cluster installation type" 2.1.1. Do you want to install and manage an OpenShift Container Platform cluster yourself? 2.1.2. Have you used OpenShift Container Platform 3 and want to use OpenShift Container Platform 4? 2.1.3. Do you want to use existing components in your cluster? 2.1.4. Do you need extra security for your cluster? 2.2. Preparing your cluster for users after installation 2.3. Preparing your cluster for workloads 2.4. Supported installation methods for different platforms 3. Cluster capabilities Expand section "3. Cluster capabilities" Collapse section "3. Cluster capabilities" 3.1. Selecting cluster capabilities 3.2. Optional cluster capabilities in OpenShift Container Platform 4.13 Expand section "3.2. Optional cluster capabilities in OpenShift Container Platform 4.13" Collapse section "3.2. Optional cluster capabilities in OpenShift Container Platform 4.13" 3.2.1. Bare-metal capability 3.2.2. Cluster storage capability 3.2.3. Console capability 3.2.4. CSI snapshot controller capability 3.2.5. Insights capability 3.2.6. Marketplace capability 3.2.7. Node Tuning capability 3.2.8. OpenShift samples capability 3.3. Additional resources 4. Disconnected installation mirroring Expand section "4. Disconnected installation mirroring" Collapse section "4. Disconnected installation mirroring" 4.1. About disconnected installation mirroring Expand section "4.1. About disconnected installation mirroring" Collapse section "4.1. About disconnected installation mirroring" 4.1.1. Creating a mirror registry 4.1.2. Mirroring images for a disconnected installation 4.2. Creating a mirror registry with mirror registry for Red Hat OpenShift Expand section "4.2. Creating a mirror registry with mirror registry for Red Hat OpenShift" Collapse section "4.2. Creating a mirror registry with mirror registry for Red Hat OpenShift" 4.2.1. Prerequisites 4.2.2. Mirror registry for Red Hat OpenShift introduction 4.2.3. Mirroring on a local host with mirror registry for Red Hat OpenShift 4.2.4. Updating mirror registry for Red Hat OpenShift from a local host 4.2.5. Mirroring on a remote host with mirror registry for Red Hat OpenShift 4.2.6. Updating mirror registry for Red Hat OpenShift from a remote host 4.2.7. Uninstalling the mirror registry for Red Hat OpenShift 4.2.8. Mirror registry for Red Hat OpenShift flags 4.2.9. Mirror registry for Red Hat OpenShift release notes Expand section "4.2.9. Mirror registry for Red Hat OpenShift release notes" Collapse section "4.2.9. Mirror registry for Red Hat OpenShift release notes" 4.2.9.1. Mirror registry for Red Hat OpenShift 1.3.6 4.2.9.2. Mirror registry for Red Hat OpenShift 1.3.5 4.2.9.3. Mirror registry for Red Hat OpenShift 1.3.4 4.2.9.4. Mirror registry for Red Hat OpenShift 1.3.3 4.2.9.5. Mirror registry for Red Hat OpenShift 1.3.2 4.2.9.6. Mirror registry for Red Hat OpenShift 1.3.1 4.2.9.7. Mirror registry for Red Hat OpenShift 1.3.0 Expand section "4.2.9.7. Mirror registry for Red Hat OpenShift 1.3.0" Collapse section "4.2.9.7. Mirror registry for Red Hat OpenShift 1.3.0" 4.2.9.7.1. New features 4.2.9.7.2. Bug fixes 4.2.9.8. Mirror registry for Red Hat OpenShift 1.2.9 4.2.9.9. Mirror registry for Red Hat OpenShift 1.2.8 4.2.9.10. Mirror registry for Red Hat OpenShift 1.2.7 Expand section "4.2.9.10. Mirror registry for Red Hat OpenShift 1.2.7" Collapse section "4.2.9.10. Mirror registry for Red Hat OpenShift 1.2.7" 4.2.9.10.1. Bug fixes 4.2.9.11. Mirror registry for Red Hat OpenShift 1.2.6 Expand section "4.2.9.11. Mirror registry for Red Hat OpenShift 1.2.6" Collapse section "4.2.9.11. Mirror registry for Red Hat OpenShift 1.2.6" 4.2.9.11.1. New features 4.2.9.12. Mirror registry for Red Hat OpenShift 1.2.5 4.2.9.13. Mirror registry for Red Hat OpenShift 1.2.4 4.2.9.14. Mirror registry for Red Hat OpenShift 1.2.3 4.2.9.15. Mirror registry for Red Hat OpenShift 1.2.2 4.2.9.16. Mirror registry for Red Hat OpenShift 1.2.1 4.2.9.17. Mirror registry for Red Hat OpenShift 1.2.0 Expand section "4.2.9.17. Mirror registry for Red Hat OpenShift 1.2.0" Collapse section "4.2.9.17. Mirror registry for Red Hat OpenShift 1.2.0" 4.2.9.17.1. Bug fixes 4.2.9.18. Mirror registry for Red Hat OpenShift 1.1.0 Expand section "4.2.9.18. Mirror registry for Red Hat OpenShift 1.1.0" Collapse section "4.2.9.18. Mirror registry for Red Hat OpenShift 1.1.0" 4.2.9.18.1. New features 4.2.9.18.2. Bug fixes 4.2.10. Troubleshooting mirror registry for Red Hat OpenShift 4.3. Mirroring images for a disconnected installation Expand section "4.3. Mirroring images for a disconnected installation" Collapse section "4.3. Mirroring images for a disconnected installation" 4.3.1. Prerequisites 4.3.2. About the mirror registry 4.3.3. Preparing your mirror host Expand section "4.3.3. Preparing your mirror host" Collapse section "4.3.3. Preparing your mirror host" 4.3.3.1. Installing the OpenShift CLI by downloading the binary 4.3.4. Configuring credentials that allow images to be mirrored 4.3.5. Mirroring the OpenShift Container Platform image repository 4.3.6. The Cluster Samples Operator in a disconnected environment Expand section "4.3.6. The Cluster Samples Operator in a disconnected environment" Collapse section "4.3.6. The Cluster Samples Operator in a disconnected environment" 4.3.6.1. Cluster Samples Operator assistance for mirroring 4.3.7. Mirroring Operator catalogs for use with disconnected clusters Expand section "4.3.7. Mirroring Operator catalogs for use with disconnected clusters" Collapse section "4.3.7. Mirroring Operator catalogs for use with disconnected clusters" 4.3.7.1. Prerequisites 4.3.7.2. Extracting and mirroring catalog contents Expand section "4.3.7.2. Extracting and mirroring catalog contents" Collapse section "4.3.7.2. Extracting and mirroring catalog contents" 4.3.7.2.1. Mirroring catalog contents to registries on the same network 4.3.7.2.2. Mirroring catalog contents to airgapped registries 4.3.7.3. Generated manifests 4.3.7.4. Post-installation requirements 4.3.8. Next steps 4.3.9. Additional resources 4.4. Mirroring images for a disconnected installation using the oc-mirror plugin Expand section "4.4. Mirroring images for a disconnected installation using the oc-mirror plugin" Collapse section "4.4. Mirroring images for a disconnected installation using the oc-mirror plugin" 4.4.1. About the oc-mirror plugin 4.4.2. oc-mirror compatibility and support 4.4.3. About the mirror registry 4.4.4. Prerequisites 4.4.5. Preparing your mirror hosts Expand section "4.4.5. Preparing your mirror hosts" Collapse section "4.4.5. Preparing your mirror hosts" 4.4.5.1. Installing the oc-mirror OpenShift CLI plugin 4.4.5.2. Configuring credentials that allow images to be mirrored 4.4.6. Creating the image set configuration 4.4.7. Mirroring an image set to a mirror registry Expand section "4.4.7. Mirroring an image set to a mirror registry" Collapse section "4.4.7. Mirroring an image set to a mirror registry" 4.4.7.1. Mirroring an image set in a partially disconnected environment Expand section "4.4.7.1. Mirroring an image set in a partially disconnected environment" Collapse section "4.4.7.1. Mirroring an image set in a partially disconnected environment" 4.4.7.1.1. Mirroring from mirror to mirror 4.4.7.2. Mirroring an image set in a fully disconnected environment Expand section "4.4.7.2. Mirroring an image set in a fully disconnected environment" Collapse section "4.4.7.2. Mirroring an image set in a fully disconnected environment" 4.4.7.2.1. Mirroring from mirror to disk 4.4.7.2.2. Mirroring from disk to mirror 4.4.8. Configuring your cluster to use the resources generated by oc-mirror 4.4.9. Keeping your mirror registry content updated Expand section "4.4.9. Keeping your mirror registry content updated" Collapse section "4.4.9. Keeping your mirror registry content updated" 4.4.9.1. About updating your mirror registry content 4.4.9.2. Updating your mirror registry content 4.4.10. Performing a dry run 4.4.11. Including local OCI Operator catalogs 4.4.12. Image set configuration parameters 4.4.13. Image set configuration examples 4.4.14. Command reference for oc-mirror 4.4.15. Additional resources 5. Installing on Alibaba Expand section "5. Installing on Alibaba" Collapse section "5. Installing on Alibaba" 5.1. Preparing to install on Alibaba Cloud Expand section "5.1. Preparing to install on Alibaba Cloud" Collapse section "5.1. Preparing to install on Alibaba Cloud" 5.1.1. Prerequisites 5.1.2. Requirements for installing OpenShift Container Platform on Alibaba Cloud 5.1.3. Registering and Configuring Alibaba Cloud Domain 5.1.4. Supported Alibaba regions 5.1.5. Next steps 5.2. Creating the required Alibaba Cloud resources Expand section "5.2. Creating the required Alibaba Cloud resources" Collapse section "5.2. Creating the required Alibaba Cloud resources" 5.2.1. Creating the required RAM user 5.2.2. Configuring the Cloud Credential Operator utility 5.2.3. Next steps 5.3. Installing a cluster quickly on Alibaba Cloud Expand section "5.3. Installing a cluster quickly on Alibaba Cloud" Collapse section "5.3. Installing a cluster quickly on Alibaba Cloud" 5.3.1. Prerequisites 5.3.2. Internet access for OpenShift Container Platform 5.3.3. Generating a key pair for cluster node SSH access 5.3.4. Obtaining the installation program 5.3.5. Creating the installation configuration file 5.3.6. Generating the required installation manifests 5.3.7. Creating credentials for OpenShift Container Platform components with the ccoctl tool 5.3.8. Deploying the cluster 5.3.9. Installing the OpenShift CLI by downloading the binary 5.3.10. Logging in to the cluster by using the CLI 5.3.11. Logging in to the cluster by using the web console 5.3.12. Telemetry access for OpenShift Container Platform 5.3.13. Next steps 5.4. Installing a cluster on Alibaba Cloud with customizations Expand section "5.4. Installing a cluster on Alibaba Cloud with customizations" Collapse section "5.4. Installing a cluster on Alibaba Cloud with customizations" 5.4.1. Prerequisites 5.4.2. Internet access for OpenShift Container Platform 5.4.3. Generating a key pair for cluster node SSH access 5.4.4. Obtaining the installation program Expand section "5.4.4. Obtaining the installation program" Collapse section "5.4.4. Obtaining the installation program" 5.4.4.1. Creating the installation configuration file 5.4.4.2. Generating the required installation manifests 5.4.4.3. Creating credentials for OpenShift Container Platform components with the ccoctl tool 5.4.4.4. Installation configuration parameters Expand section "5.4.4.4. Installation configuration parameters" Collapse section "5.4.4.4. Installation configuration parameters" 5.4.4.4.1. Required configuration parameters 5.4.4.4.2. Network configuration parameters 5.4.4.4.3. Optional configuration parameters 5.4.4.4.4. Additional Alibaba Cloud configuration parameters 5.4.4.5. Sample customized install-config.yaml file for Alibaba Cloud 5.4.4.6. Configuring the cluster-wide proxy during installation 5.4.5. Deploying the cluster 5.4.6. Installing the OpenShift CLI by downloading the binary 5.4.7. Logging in to the cluster by using the CLI 5.4.8. Logging in to the cluster by using the web console 5.4.9. Telemetry access for OpenShift Container Platform 5.4.10. Next steps 5.5. Installing a cluster on Alibaba Cloud with network customizations Expand section "5.5. Installing a cluster on Alibaba Cloud with network customizations" Collapse section "5.5. Installing a cluster on Alibaba Cloud with network customizations" 5.5.1. Prerequisites 5.5.2. Internet access for OpenShift Container Platform 5.5.3. Generating a key pair for cluster node SSH access 5.5.4. Obtaining the installation program 5.5.5. Network configuration phases Expand section "5.5.5. Network configuration phases" Collapse section "5.5.5. Network configuration phases" 5.5.5.1. Creating the installation configuration file 5.5.5.2. Generating the required installation manifests 5.5.5.3. Installation configuration parameters Expand section "5.5.5.3. Installation configuration parameters" Collapse section "5.5.5.3. Installation configuration parameters" 5.5.5.3.1. Required configuration parameters 5.5.5.3.2. Network configuration parameters 5.5.5.3.3. Optional configuration parameters 5.5.5.4. Sample customized install-config.yaml file for Alibaba Cloud 5.5.5.5. Configuring the cluster-wide proxy during installation 5.5.6. Cluster Network Operator configuration Expand section "5.5.6. Cluster Network Operator configuration" Collapse section "5.5.6. Cluster Network Operator configuration" 5.5.6.1. Cluster Network Operator configuration object 5.5.7. Specifying advanced network configuration 5.5.8. Configuring hybrid networking with OVN-Kubernetes 5.5.9. Deploying the cluster 5.5.10. Installing the OpenShift CLI by downloading the binary 5.5.11. Logging in to the cluster by using the CLI 5.5.12. Logging in to the cluster by using the web console 5.5.13. Telemetry access for OpenShift Container Platform 5.5.14. Next steps 5.6. Installing a cluster on Alibaba Cloud into an existing VPC Expand section "5.6. Installing a cluster on Alibaba Cloud into an existing VPC" Collapse section "5.6. Installing a cluster on Alibaba Cloud into an existing VPC" 5.6.1. Prerequisites 5.6.2. Using a custom VPC Expand section "5.6.2. Using a custom VPC" Collapse section "5.6.2. Using a custom VPC" 5.6.2.1. Requirements for using your VPC 5.6.2.2. VPC validation 5.6.2.3. Division of permissions 5.6.2.4. Isolation between clusters 5.6.3. Internet access for OpenShift Container Platform 5.6.4. Generating a key pair for cluster node SSH access 5.6.5. Obtaining the installation program Expand section "5.6.5. Obtaining the installation program" Collapse section "5.6.5. Obtaining the installation program" 5.6.5.1. Creating the installation configuration file 5.6.5.2. Installation configuration parameters Expand section "5.6.5.2. Installation configuration parameters" Collapse section "5.6.5.2. Installation configuration parameters" 5.6.5.2.1. Required configuration parameters 5.6.5.2.2. Network configuration parameters 5.6.5.2.3. Optional configuration parameters 5.6.5.2.4. Additional Alibaba Cloud configuration parameters 5.6.5.3. Sample customized install-config.yaml file for Alibaba Cloud 5.6.5.4. Generating the required installation manifests 5.6.5.5. Configuring the Cloud Credential Operator utility 5.6.5.6. Creating credentials for OpenShift Container Platform components with the ccoctl tool 5.6.6. Deploying the cluster 5.6.7. Installing the OpenShift CLI by downloading the binary 5.6.8. Logging in to the cluster by using the CLI 5.6.9. Logging in to the cluster by using the web console 5.6.10. Telemetry access for OpenShift Container Platform 5.6.11. Next steps 5.7. Uninstalling a cluster on Alibaba Cloud Expand section "5.7. Uninstalling a cluster on Alibaba Cloud" Collapse section "5.7. Uninstalling a cluster on Alibaba Cloud" 5.7.1. Removing a cluster that uses installer-provisioned infrastructure 6. Installing on AWS Expand section "6. Installing on AWS" Collapse section "6. Installing on AWS" 6.1. Preparing to install on AWS Expand section "6.1. Preparing to install on AWS" Collapse section "6.1. Preparing to install on AWS" 6.1.1. Prerequisites 6.1.2. Requirements for installing OpenShift Container Platform on AWS 6.1.3. Choosing a method to install OpenShift Container Platform on AWS Expand section "6.1.3. Choosing a method to install OpenShift Container Platform on AWS" Collapse section "6.1.3. Choosing a method to install OpenShift Container Platform on AWS" 6.1.3.1. Installing a cluster on a single node 6.1.3.2. Installing a cluster on installer-provisioned infrastructure 6.1.3.3. Installing a cluster on user-provisioned infrastructure 6.1.4. Next steps 6.2. Configuring an AWS account Expand section "6.2. Configuring an AWS account" Collapse section "6.2. Configuring an AWS account" 6.2.1. Configuring Route 53 Expand section "6.2.1. Configuring Route 53" Collapse section "6.2.1. Configuring Route 53" 6.2.1.1. Ingress Operator endpoint configuration for AWS Route 53 6.2.2. AWS account limits 6.2.3. Required AWS permissions for the IAM user 6.2.4. Creating an IAM user 6.2.5. IAM Policies and AWS authentication Expand section "6.2.5. IAM Policies and AWS authentication" Collapse section "6.2.5. IAM Policies and AWS authentication" 6.2.5.1. Default permissions for IAM instance profiles 6.2.5.2. Specifying an existing IAM role 6.2.5.3. Using AWS IAM Analyzer to create policy templates 6.2.6. Supported AWS Marketplace regions 6.2.7. Supported AWS regions Expand section "6.2.7. Supported AWS regions" Collapse section "6.2.7. Supported AWS regions" 6.2.7.1. AWS public regions 6.2.7.2. AWS GovCloud regions 6.2.7.3. AWS SC2S and C2S secret regions 6.2.7.4. AWS China regions 6.2.8. Next steps 6.3. Manually creating IAM for AWS Expand section "6.3. Manually creating IAM for AWS" Collapse section "6.3. Manually creating IAM for AWS" 6.3.1. Alternatives to storing administrator-level secrets in the kube-system project 6.3.2. Manually create IAM 6.3.3. Mint mode 6.3.4. Mint mode with removal or rotation of the administrator-level credential 6.3.5. Next steps 6.4. Installing a cluster quickly on AWS Expand section "6.4. Installing a cluster quickly on AWS" Collapse section "6.4. Installing a cluster quickly on AWS" 6.4.1. Prerequisites 6.4.2. Internet access for OpenShift Container Platform 6.4.3. Generating a key pair for cluster node SSH access 6.4.4. Obtaining the installation program 6.4.5. Deploying the cluster 6.4.6. Installing the OpenShift CLI by downloading the binary 6.4.7. Logging in to the cluster by using the CLI 6.4.8. Logging in to the cluster by using the web console 6.4.9. Telemetry access for OpenShift Container Platform 6.4.10. Next steps 6.5. Installing a cluster on AWS with customizations Expand section "6.5. Installing a cluster on AWS with customizations" Collapse section "6.5. Installing a cluster on AWS with customizations" 6.5.1. Prerequisites 6.5.2. Internet access for OpenShift Container Platform 6.5.3. Generating a key pair for cluster node SSH access 6.5.4. Obtaining an AWS Marketplace image 6.5.5. Obtaining the installation program 6.5.6. Creating the installation configuration file Expand section "6.5.6. Creating the installation configuration file" Collapse section "6.5.6. Creating the installation configuration file" 6.5.6.1. Installation configuration parameters Expand section "6.5.6.1. Installation configuration parameters" Collapse section "6.5.6.1. Installation configuration parameters" 6.5.6.1.1. Required configuration parameters 6.5.6.1.2. Network configuration parameters 6.5.6.1.3. Optional configuration parameters 6.5.6.1.4. Optional AWS configuration parameters 6.5.6.2. Minimum resource requirements for cluster installation 6.5.6.3. Tested instance types for AWS 6.5.6.4. Tested instance types for AWS on 64-bit ARM infrastructures 6.5.6.5. Sample customized install-config.yaml file for AWS 6.5.6.6. Configuring the cluster-wide proxy during installation 6.5.7. Deploying the cluster 6.5.8. Installing the OpenShift CLI by downloading the binary 6.5.9. Logging in to the cluster by using the CLI 6.5.10. Logging in to the cluster by using the web console 6.5.11. Telemetry access for OpenShift Container Platform 6.5.12. Next steps 6.6. Installing a cluster on AWS with network customizations Expand section "6.6. Installing a cluster on AWS with network customizations" Collapse section "6.6. Installing a cluster on AWS with network customizations" 6.6.1. Prerequisites 6.6.2. Internet access for OpenShift Container Platform 6.6.3. Generating a key pair for cluster node SSH access 6.6.4. Obtaining the installation program 6.6.5. Network configuration phases 6.6.6. Creating the installation configuration file Expand section "6.6.6. Creating the installation configuration file" Collapse section "6.6.6. Creating the installation configuration file" 6.6.6.1. Installation configuration parameters Expand section "6.6.6.1. Installation configuration parameters" Collapse section "6.6.6.1. Installation configuration parameters" 6.6.6.1.1. Required configuration parameters 6.6.6.1.2. Network configuration parameters 6.6.6.1.3. Optional configuration parameters 6.6.6.1.4. Optional AWS configuration parameters 6.6.6.2. Minimum resource requirements for cluster installation 6.6.6.3. Tested instance types for AWS 6.6.6.4. Tested instance types for AWS on 64-bit ARM infrastructures 6.6.6.5. Sample customized install-config.yaml file for AWS 6.6.6.6. Configuring the cluster-wide proxy during installation 6.6.7. Cluster Network Operator configuration Expand section "6.6.7. Cluster Network Operator configuration" Collapse section "6.6.7. Cluster Network Operator configuration" 6.6.7.1. Cluster Network Operator configuration object 6.6.8. Specifying advanced network configuration 6.6.9. Configuring an Ingress Controller Network Load Balancer on a new AWS cluster 6.6.10. Configuring hybrid networking with OVN-Kubernetes 6.6.11. Deploying the cluster 6.6.12. Installing the OpenShift CLI by downloading the binary 6.6.13. Logging in to the cluster by using the CLI 6.6.14. Logging in to the cluster by using the web console 6.6.15. Telemetry access for OpenShift Container Platform 6.6.16. Next steps 6.7. Installing a cluster on AWS in a restricted network Expand section "6.7. Installing a cluster on AWS in a restricted network" Collapse section "6.7. Installing a cluster on AWS in a restricted network" 6.7.1. Prerequisites 6.7.2. About installations in restricted networks Expand section "6.7.2. About installations in restricted networks" Collapse section "6.7.2. About installations in restricted networks" 6.7.2.1. Additional limits 6.7.3. About using a custom VPC Expand section "6.7.3. About using a custom VPC" Collapse section "6.7.3. About using a custom VPC" 6.7.3.1. Requirements for using your VPC 6.7.3.2. VPC validation 6.7.3.3. Division of permissions 6.7.3.4. Isolation between clusters 6.7.4. Internet access for OpenShift Container Platform 6.7.5. Generating a key pair for cluster node SSH access 6.7.6. Creating the installation configuration file Expand section "6.7.6. Creating the installation configuration file" Collapse section "6.7.6. Creating the installation configuration file" 6.7.6.1. Installation configuration parameters Expand section "6.7.6.1. Installation configuration parameters" Collapse section "6.7.6.1. Installation configuration parameters" 6.7.6.1.1. Required configuration parameters 6.7.6.1.2. Network configuration parameters 6.7.6.1.3. Optional configuration parameters 6.7.6.1.4. Optional AWS configuration parameters 6.7.6.2. Minimum resource requirements for cluster installation 6.7.6.3. Sample customized install-config.yaml file for AWS 6.7.6.4. Configuring the cluster-wide proxy during installation 6.7.7. Deploying the cluster 6.7.8. Installing the OpenShift CLI by downloading the binary 6.7.9. Logging in to the cluster by using the CLI 6.7.10. Disabling the default OperatorHub catalog sources 6.7.11. Telemetry access for OpenShift Container Platform 6.7.12. Next steps 6.8. Installing a cluster on AWS into an existing VPC Expand section "6.8. Installing a cluster on AWS into an existing VPC" Collapse section "6.8. Installing a cluster on AWS into an existing VPC" 6.8.1. Prerequisites 6.8.2. About using a custom VPC Expand section "6.8.2. About using a custom VPC" Collapse section "6.8.2. About using a custom VPC" 6.8.2.1. Requirements for using your VPC 6.8.2.2. VPC validation 6.8.2.3. Division of permissions 6.8.2.4. Isolation between clusters 6.8.3. Internet access for OpenShift Container Platform 6.8.4. Generating a key pair for cluster node SSH access 6.8.5. Obtaining the installation program 6.8.6. Creating the installation configuration file Expand section "6.8.6. Creating the installation configuration file" Collapse section "6.8.6. Creating the installation configuration file" 6.8.6.1. Installation configuration parameters Expand section "6.8.6.1. Installation configuration parameters" Collapse section "6.8.6.1. Installation configuration parameters" 6.8.6.1.1. Required configuration parameters 6.8.6.1.2. Network configuration parameters 6.8.6.1.3. Optional configuration parameters 6.8.6.1.4. Optional AWS configuration parameters 6.8.6.2. Minimum resource requirements for cluster installation 6.8.6.3. Tested instance types for AWS 6.8.6.4. Tested instance types for AWS on 64-bit ARM infrastructures 6.8.6.5. Sample customized install-config.yaml file for AWS 6.8.6.6. Configuring the cluster-wide proxy during installation 6.8.7. Deploying the cluster 6.8.8. Installing the OpenShift CLI by downloading the binary 6.8.9. Logging in to the cluster by using the CLI 6.8.10. Logging in to the cluster by using the web console 6.8.11. Telemetry access for OpenShift Container Platform 6.8.12. Next steps 6.9. Installing a private cluster on AWS Expand section "6.9. Installing a private cluster on AWS" Collapse section "6.9. Installing a private cluster on AWS" 6.9.1. Prerequisites 6.9.2. Private clusters Expand section "6.9.2. Private clusters" Collapse section "6.9.2. Private clusters" 6.9.2.1. Private clusters in AWS Expand section "6.9.2.1. Private clusters in AWS" Collapse section "6.9.2.1. Private clusters in AWS" 6.9.2.1.1. Limitations 6.9.3. About using a custom VPC Expand section "6.9.3. About using a custom VPC" Collapse section "6.9.3. About using a custom VPC" 6.9.3.1. Requirements for using your VPC 6.9.3.2. VPC validation 6.9.3.3. Division of permissions 6.9.3.4. Isolation between clusters 6.9.4. Internet access for OpenShift Container Platform 6.9.5. Generating a key pair for cluster node SSH access 6.9.6. Obtaining the installation program 6.9.7. Manually creating the installation configuration file Expand section "6.9.7. Manually creating the installation configuration file" Collapse section "6.9.7. Manually creating the installation configuration file" 6.9.7.1. Installation configuration parameters Expand section "6.9.7.1. Installation configuration parameters" Collapse section "6.9.7.1. Installation configuration parameters" 6.9.7.1.1. Required configuration parameters 6.9.7.1.2. Network configuration parameters 6.9.7.1.3. Optional configuration parameters 6.9.7.1.4. Optional AWS configuration parameters 6.9.7.2. Minimum resource requirements for cluster installation 6.9.7.3. Tested instance types for AWS 6.9.7.4. Tested instance types for AWS on 64-bit ARM infrastructures 6.9.7.5. Sample customized install-config.yaml file for AWS 6.9.7.6. Configuring the cluster-wide proxy during installation 6.9.8. Deploying the cluster 6.9.9. Installing the OpenShift CLI by downloading the binary 6.9.10. Logging in to the cluster by using the CLI 6.9.11. Logging in to the cluster by using the web console 6.9.12. Telemetry access for OpenShift Container Platform 6.9.13. Next steps 6.10. Installing a cluster on AWS into a government region Expand section "6.10. Installing a cluster on AWS into a government region" Collapse section "6.10. Installing a cluster on AWS into a government region" 6.10.1. Prerequisites 6.10.2. AWS government regions 6.10.3. Installation requirements 6.10.4. Private clusters Expand section "6.10.4. Private clusters" Collapse section "6.10.4. Private clusters" 6.10.4.1. Private clusters in AWS Expand section "6.10.4.1. Private clusters in AWS" Collapse section "6.10.4.1. Private clusters in AWS" 6.10.4.1.1. Limitations 6.10.5. About using a custom VPC Expand section "6.10.5. About using a custom VPC" Collapse section "6.10.5. About using a custom VPC" 6.10.5.1. Requirements for using your VPC 6.10.5.2. VPC validation 6.10.5.3. Division of permissions 6.10.5.4. Isolation between clusters 6.10.6. Internet access for OpenShift Container Platform 6.10.7. Generating a key pair for cluster node SSH access 6.10.8. Obtaining an AWS Marketplace image 6.10.9. Obtaining the installation program 6.10.10. Manually creating the installation configuration file Expand section "6.10.10. Manually creating the installation configuration file" Collapse section "6.10.10. Manually creating the installation configuration file" 6.10.10.1. Installation configuration parameters Expand section "6.10.10.1. Installation configuration parameters" Collapse section "6.10.10.1. Installation configuration parameters" 6.10.10.1.1. Required configuration parameters 6.10.10.1.2. Network configuration parameters 6.10.10.1.3. Optional configuration parameters 6.10.10.1.4. Optional AWS configuration parameters 6.10.10.2. Minimum resource requirements for cluster installation 6.10.10.3. Tested instance types for AWS 6.10.10.4. Tested instance types for AWS on 64-bit ARM infrastructures 6.10.10.5. Sample customized install-config.yaml file for AWS 6.10.10.6. Configuring the cluster-wide proxy during installation 6.10.11. Deploying the cluster 6.10.12. Installing the OpenShift CLI by downloading the binary 6.10.13. Logging in to the cluster by using the CLI 6.10.14. Logging in to the cluster by using the web console 6.10.15. Telemetry access for OpenShift Container Platform 6.10.16. Next steps 6.11. Installing a cluster on AWS into a Secret or Top Secret Region Expand section "6.11. Installing a cluster on AWS into a Secret or Top Secret Region" Collapse section "6.11. Installing a cluster on AWS into a Secret or Top Secret Region" 6.11.1. Prerequisites 6.11.2. AWS secret regions 6.11.3. Installation requirements 6.11.4. Private clusters Expand section "6.11.4. Private clusters" Collapse section "6.11.4. Private clusters" 6.11.4.1. Private clusters in AWS Expand section "6.11.4.1. Private clusters in AWS" Collapse section "6.11.4.1. Private clusters in AWS" 6.11.4.1.1. Limitations 6.11.5. About using a custom VPC Expand section "6.11.5. About using a custom VPC" Collapse section "6.11.5. About using a custom VPC" 6.11.5.1. Requirements for using your VPC 6.11.5.2. VPC validation 6.11.5.3. Division of permissions 6.11.5.4. Isolation between clusters 6.11.6. Internet access for OpenShift Container Platform 6.11.7. Uploading a custom RHCOS AMI in AWS 6.11.8. Generating a key pair for cluster node SSH access 6.11.9. Obtaining the installation program 6.11.10. Manually creating the installation configuration file Expand section "6.11.10. Manually creating the installation configuration file" Collapse section "6.11.10. Manually creating the installation configuration file" 6.11.10.1. Installation configuration parameters Expand section "6.11.10.1. Installation configuration parameters" Collapse section "6.11.10.1. Installation configuration parameters" 6.11.10.1.1. Required configuration parameters 6.11.10.1.2. Network configuration parameters 6.11.10.1.3. Optional configuration parameters 6.11.10.1.4. Optional AWS configuration parameters 6.11.10.2. Supported AWS machine types 6.11.10.3. Sample customized install-config.yaml file for AWS 6.11.10.4. Configuring the cluster-wide proxy during installation 6.11.11. Deploying the cluster 6.11.12. Installing the OpenShift CLI by downloading the binary 6.11.13. Logging in to the cluster by using the CLI 6.11.14. Logging in to the cluster by using the web console 6.11.15. Telemetry access for OpenShift Container Platform 6.11.16. Next steps 6.12. Installing a cluster on AWS China Expand section "6.12. Installing a cluster on AWS China" Collapse section "6.12. Installing a cluster on AWS China" 6.12.1. Prerequisites 6.12.2. Installation requirements 6.12.3. Internet access for OpenShift Container Platform 6.12.4. Private clusters Expand section "6.12.4. Private clusters" Collapse section "6.12.4. Private clusters" 6.12.4.1. Private clusters in AWS Expand section "6.12.4.1. Private clusters in AWS" Collapse section "6.12.4.1. Private clusters in AWS" 6.12.4.1.1. Limitations 6.12.5. About using a custom VPC Expand section "6.12.5. About using a custom VPC" Collapse section "6.12.5. About using a custom VPC" 6.12.5.1. Requirements for using your VPC 6.12.5.2. VPC validation 6.12.5.3. Division of permissions 6.12.5.4. Isolation between clusters 6.12.6. Generating a key pair for cluster node SSH access 6.12.7. Uploading a custom RHCOS AMI in AWS 6.12.8. Obtaining the installation program 6.12.9. Manually creating the installation configuration file Expand section "6.12.9. Manually creating the installation configuration file" Collapse section "6.12.9. Manually creating the installation configuration file" 6.12.9.1. Installation configuration parameters Expand section "6.12.9.1. Installation configuration parameters" Collapse section "6.12.9.1. Installation configuration parameters" 6.12.9.1.1. Required configuration parameters 6.12.9.1.2. Network configuration parameters 6.12.9.1.3. Optional configuration parameters 6.12.9.2. Sample customized install-config.yaml file for AWS 6.12.9.3. Minimum resource requirements for cluster installation 6.12.9.4. Tested instance types for AWS 6.12.9.5. Tested instance types for AWS on 64-bit ARM infrastructures 6.12.9.6. Configuring the cluster-wide proxy during installation 6.12.10. Deploying the cluster 6.12.11. Installing the OpenShift CLI by downloading the binary 6.12.12. Logging in to the cluster by using the CLI 6.12.13. Logging in to the cluster by using the web console 6.12.14. Telemetry access for OpenShift Container Platform 6.12.15. Next steps 6.13. Installing a cluster on user-provisioned infrastructure in AWS by using CloudFormation templates Expand section "6.13. Installing a cluster on user-provisioned infrastructure in AWS by using CloudFormation templates" Collapse section "6.13. Installing a cluster on user-provisioned infrastructure in AWS by using CloudFormation templates" 6.13.1. Prerequisites 6.13.2. Internet access for OpenShift Container Platform 6.13.3. Requirements for a cluster with user-provisioned infrastructure Expand section "6.13.3. Requirements for a cluster with user-provisioned infrastructure" Collapse section "6.13.3. Requirements for a cluster with user-provisioned infrastructure" 6.13.3.1. Required machines for cluster installation 6.13.3.2. Minimum resource requirements for cluster installation 6.13.3.3. Tested instance types for AWS 6.13.3.4. Tested instance types for AWS on 64-bit ARM infrastructures 6.13.3.5. Certificate signing requests management 6.13.3.6. Supported AWS machine types 6.13.4. Required AWS infrastructure components Expand section "6.13.4. Required AWS infrastructure components" Collapse section "6.13.4. Required AWS infrastructure components" 6.13.4.1. Other infrastructure components 6.13.4.2. Cluster machines 6.13.4.3. Required AWS permissions for the IAM user 6.13.5. Obtaining an AWS Marketplace image 6.13.6. Obtaining the installation program 6.13.7. Generating a key pair for cluster node SSH access 6.13.8. Creating the installation files for AWS Expand section "6.13.8. Creating the installation files for AWS" Collapse section "6.13.8. Creating the installation files for AWS" 6.13.8.1. Optional: Creating a separate /var partition 6.13.8.2. Creating the installation configuration file 6.13.8.3. Configuring the cluster-wide proxy during installation 6.13.8.4. Creating the Kubernetes manifest and Ignition config files 6.13.9. Extracting the infrastructure name 6.13.10. Creating a VPC in AWS Expand section "6.13.10. Creating a VPC in AWS" Collapse section "6.13.10. Creating a VPC in AWS" 6.13.10.1. CloudFormation template for the VPC 6.13.11. Creating networking and load balancing components in AWS Expand section "6.13.11. Creating networking and load balancing components in AWS" Collapse section "6.13.11. Creating networking and load balancing components in AWS" 6.13.11.1. CloudFormation template for the network and load balancers 6.13.12. Creating security group and roles in AWS Expand section "6.13.12. Creating security group and roles in AWS" Collapse section "6.13.12. Creating security group and roles in AWS" 6.13.12.1. CloudFormation template for security objects 6.13.13. Accessing RHCOS AMIs with stream metadata 6.13.14. RHCOS AMIs for the AWS infrastructure Expand section "6.13.14. RHCOS AMIs for the AWS infrastructure" Collapse section "6.13.14. RHCOS AMIs for the AWS infrastructure" 6.13.14.1. AWS regions without a published RHCOS AMI 6.13.14.2. Uploading a custom RHCOS AMI in AWS 6.13.15. Creating the bootstrap node in AWS Expand section "6.13.15. Creating the bootstrap node in AWS" Collapse section "6.13.15. Creating the bootstrap node in AWS" 6.13.15.1. CloudFormation template for the bootstrap machine 6.13.16. Creating the control plane machines in AWS Expand section "6.13.16. Creating the control plane machines in AWS" Collapse section "6.13.16. Creating the control plane machines in AWS" 6.13.16.1. CloudFormation template for control plane machines 6.13.17. Creating the worker nodes in AWS Expand section "6.13.17. Creating the worker nodes in AWS" Collapse section "6.13.17. Creating the worker nodes in AWS" 6.13.17.1. CloudFormation template for worker machines 6.13.18. Initializing the bootstrap sequence on AWS with user-provisioned infrastructure 6.13.19. Installing the OpenShift CLI by downloading the binary 6.13.20. Logging in to the cluster by using the CLI 6.13.21. Approving the certificate signing requests for your machines 6.13.22. Initial Operator configuration Expand section "6.13.22. Initial Operator configuration" Collapse section "6.13.22. Initial Operator configuration" 6.13.22.1. Image registry storage configuration Expand section "6.13.22.1. Image registry storage configuration" Collapse section "6.13.22.1. Image registry storage configuration" 6.13.22.1.1. Configuring registry storage for AWS with user-provisioned infrastructure 6.13.22.1.2. Configuring storage for the image registry in non-production clusters 6.13.23. Deleting the bootstrap resources 6.13.24. Creating the Ingress DNS Records 6.13.25. Completing an AWS installation on user-provisioned infrastructure 6.13.26. Logging in to the cluster by using the web console 6.13.27. Telemetry access for OpenShift Container Platform 6.13.28. Additional resources 6.13.29. Next steps 6.14. Installing a cluster using AWS Local Zones Expand section "6.14. Installing a cluster using AWS Local Zones" Collapse section "6.14. Installing a cluster using AWS Local Zones" 6.14.1. Prerequisites 6.14.2. Cluster limitations in AWS Local Zones 6.14.3. Internet access for OpenShift Container Platform 6.14.4. Obtaining an AWS Marketplace image 6.14.5. Creating a VPC that uses AWS Local Zones Expand section "6.14.5. Creating a VPC that uses AWS Local Zones" Collapse section "6.14.5. Creating a VPC that uses AWS Local Zones" 6.14.5.1. CloudFormation template for the VPC 6.14.6. Opting into AWS Local Zones 6.14.7. Creating a subnet in AWS Local Zones Expand section "6.14.7. Creating a subnet in AWS Local Zones" Collapse section "6.14.7. Creating a subnet in AWS Local Zones" 6.14.7.1. CloudFormation template for the subnet that uses AWS Local Zones 6.14.8. Obtaining the installation program 6.14.9. Generating a key pair for cluster node SSH access 6.14.10. Creating the installation files for AWS Expand section "6.14.10. Creating the installation files for AWS" Collapse section "6.14.10. Creating the installation files for AWS" 6.14.10.1. Minimum resource requirements for cluster installation 6.14.10.2. Tested instance types for AWS 6.14.10.3. Creating the installation configuration file 6.14.10.4. The edge compute pool for AWS Local Zones Expand section "6.14.10.4. The edge compute pool for AWS Local Zones" Collapse section "6.14.10.4. The edge compute pool for AWS Local Zones" 6.14.10.4.1. Edge compute pools and AWS Local Zones 6.14.10.5. Modifying an installation configuration file to use AWS Local Zones subnets 6.14.11. Deploying the cluster 6.14.12. Installing the OpenShift CLI by downloading the binary 6.14.13. Logging in to the cluster by using the CLI 6.14.14. Logging in to the cluster by using the web console 6.14.15. Verifying nodes that were created with edge compute pool 6.14.16. Telemetry access for OpenShift Container Platform 6.14.17. Next steps 6.15. Installing a cluster on AWS in a restricted network with user-provisioned infrastructure Expand section "6.15. Installing a cluster on AWS in a restricted network with user-provisioned infrastructure" Collapse section "6.15. Installing a cluster on AWS in a restricted network with user-provisioned infrastructure" 6.15.1. Prerequisites 6.15.2. About installations in restricted networks Expand section "6.15.2. About installations in restricted networks" Collapse section "6.15.2. About installations in restricted networks" 6.15.2.1. Additional limits 6.15.3. Internet access for OpenShift Container Platform 6.15.4. Requirements for a cluster with user-provisioned infrastructure Expand section "6.15.4. Requirements for a cluster with user-provisioned infrastructure" Collapse section "6.15.4. Requirements for a cluster with user-provisioned infrastructure" 6.15.4.1. Required machines for cluster installation 6.15.4.2. Minimum resource requirements for cluster installation 6.15.4.3. Tested instance types for AWS 6.15.4.4. Tested instance types for AWS on 64-bit ARM infrastructures 6.15.4.5. Certificate signing requests management 6.15.4.6. Supported AWS machine types 6.15.5. Required AWS infrastructure components Expand section "6.15.5. Required AWS infrastructure components" Collapse section "6.15.5. Required AWS infrastructure components" 6.15.5.1. Other infrastructure components 6.15.5.2. Cluster machines 6.15.5.3. Required AWS permissions for the IAM user 6.15.6. Generating a key pair for cluster node SSH access 6.15.7. Creating the installation files for AWS Expand section "6.15.7. Creating the installation files for AWS" Collapse section "6.15.7. Creating the installation files for AWS" 6.15.7.1. Optional: Creating a separate /var partition 6.15.7.2. Creating the installation configuration file 6.15.7.3. Configuring the cluster-wide proxy during installation 6.15.7.4. Creating the Kubernetes manifest and Ignition config files 6.15.8. Extracting the infrastructure name 6.15.9. Creating a VPC in AWS Expand section "6.15.9. Creating a VPC in AWS" Collapse section "6.15.9. Creating a VPC in AWS" 6.15.9.1. CloudFormation template for the VPC 6.15.10. Creating networking and load balancing components in AWS Expand section "6.15.10. Creating networking and load balancing components in AWS" Collapse section "6.15.10. Creating networking and load balancing components in AWS" 6.15.10.1. CloudFormation template for the network and load balancers 6.15.11. Creating security group and roles in AWS Expand section "6.15.11. Creating security group and roles in AWS" Collapse section "6.15.11. Creating security group and roles in AWS" 6.15.11.1. CloudFormation template for security objects 6.15.12. Accessing RHCOS AMIs with stream metadata 6.15.13. RHCOS AMIs for the AWS infrastructure 6.15.14. Creating the bootstrap node in AWS Expand section "6.15.14. Creating the bootstrap node in AWS" Collapse section "6.15.14. Creating the bootstrap node in AWS" 6.15.14.1. CloudFormation template for the bootstrap machine 6.15.15. Creating the control plane machines in AWS Expand section "6.15.15. Creating the control plane machines in AWS" Collapse section "6.15.15. Creating the control plane machines in AWS" 6.15.15.1. CloudFormation template for control plane machines 6.15.16. Creating the worker nodes in AWS Expand section "6.15.16. Creating the worker nodes in AWS" Collapse section "6.15.16. Creating the worker nodes in AWS" 6.15.16.1. CloudFormation template for worker machines 6.15.17. Initializing the bootstrap sequence on AWS with user-provisioned infrastructure 6.15.18. Logging in to the cluster by using the CLI 6.15.19. Approving the certificate signing requests for your machines 6.15.20. Initial Operator configuration Expand section "6.15.20. Initial Operator configuration" Collapse section "6.15.20. Initial Operator configuration" 6.15.20.1. Disabling the default OperatorHub catalog sources 6.15.20.2. Image registry storage configuration Expand section "6.15.20.2. Image registry storage configuration" Collapse section "6.15.20.2. Image registry storage configuration" 6.15.20.2.1. Configuring registry storage for AWS with user-provisioned infrastructure 6.15.20.2.2. Configuring storage for the image registry in non-production clusters 6.15.21. Deleting the bootstrap resources 6.15.22. Creating the Ingress DNS Records 6.15.23. Completing an AWS installation on user-provisioned infrastructure 6.15.24. Logging in to the cluster by using the web console 6.15.25. Telemetry access for OpenShift Container Platform 6.15.26. Additional resources 6.15.27. Next steps 6.16. Installing a cluster on AWS with remote workers on AWS Outposts Expand section "6.16. Installing a cluster on AWS with remote workers on AWS Outposts" Collapse section "6.16. Installing a cluster on AWS with remote workers on AWS Outposts" 6.16.1. Prerequisites 6.16.2. About using a custom VPC Expand section "6.16.2. About using a custom VPC" Collapse section "6.16.2. About using a custom VPC" 6.16.2.1. Requirements for using your VPC 6.16.2.2. VPC validation 6.16.2.3. Division of permissions 6.16.2.4. Isolation between clusters 6.16.3. Internet access for OpenShift Container Platform 6.16.4. Generating a key pair for cluster node SSH access 6.16.5. Obtaining the installation program 6.16.6. Minimum resource requirements for cluster installation 6.16.7. Identifying your AWS Outposts instance types 6.16.8. Creating the installation configuration file Expand section "6.16.8. Creating the installation configuration file" Collapse section "6.16.8. Creating the installation configuration file" 6.16.8.1. Installation configuration parameters Expand section "6.16.8.1. Installation configuration parameters" Collapse section "6.16.8.1. Installation configuration parameters" 6.16.8.1.1. Required configuration parameters 6.16.8.1.2. Network configuration parameters 6.16.8.1.3. Optional configuration parameters 6.16.8.1.4. Optional AWS configuration parameters 6.16.8.2. Sample customized install-config.yaml file for AWS 6.16.9. Generating manifest files Expand section "6.16.9. Generating manifest files" Collapse section "6.16.9. Generating manifest files" 6.16.9.1. Modifying manifest files 6.16.10. Deploying the cluster 6.16.11. Installing the OpenShift CLI by downloading the binary 6.16.12. Logging in to the cluster by using the CLI 6.16.13. Logging in to the cluster by using the web console 6.16.14. Telemetry access for OpenShift Container Platform 6.16.15. Cluster Limitations 6.16.16. Next steps 6.17. Installing a three-node cluster on AWS Expand section "6.17. Installing a three-node cluster on AWS" Collapse section "6.17. Installing a three-node cluster on AWS" 6.17.1. Configuring a three-node cluster 6.17.2. Next steps 6.18. Expanding a cluster with on-premise bare metal nodes Expand section "6.18. Expanding a cluster with on-premise bare metal nodes" Collapse section "6.18. Expanding a cluster with on-premise bare metal nodes" 6.18.1. Connecting the VPC to the on-premise network 6.18.2. Creating firewall rules for port 6183 6.19. Uninstalling a cluster on AWS Expand section "6.19. Uninstalling a cluster on AWS" Collapse section "6.19. Uninstalling a cluster on AWS" 6.19.1. Removing a cluster that uses installer-provisioned infrastructure 6.19.2. Deleting AWS resources with the Cloud Credential Operator utility 6.19.3. Deleting a cluster with a configured AWS Local Zone infrastructure 7. Installing on Azure Expand section "7. Installing on Azure" Collapse section "7. Installing on Azure" 7.1. Preparing to install on Azure Expand section "7.1. Preparing to install on Azure" Collapse section "7.1. Preparing to install on Azure" 7.1.1. Prerequisites 7.1.2. Requirements for installing OpenShift Container Platform on Azure 7.1.3. Choosing a method to install OpenShift Container Platform on Azure Expand section "7.1.3. Choosing a method to install OpenShift Container Platform on Azure" Collapse section "7.1.3. Choosing a method to install OpenShift Container Platform on Azure" 7.1.3.1. Installing a cluster on installer-provisioned infrastructure 7.1.3.2. Installing a cluster on user-provisioned infrastructure 7.1.4. Next steps 7.2. Configuring an Azure account Expand section "7.2. Configuring an Azure account" Collapse section "7.2. Configuring an Azure account" 7.2.1. Azure account limits 7.2.2. Configuring a public DNS zone in Azure 7.2.3. Increasing Azure account limits 7.2.4. Required Azure roles 7.2.5. Required Azure permissions for installer-provisioned infrastructure 7.2.6. Creating a service principal 7.2.7. Supported Azure Marketplace regions 7.2.8. Supported Azure regions 7.2.9. Next steps 7.3. Manually creating IAM for Azure Expand section "7.3. Manually creating IAM for Azure" Collapse section "7.3. Manually creating IAM for Azure" 7.3.1. Alternatives to storing administrator-level secrets in the kube-system project 7.3.2. Manually create IAM 7.3.3. Next steps 7.4. Enabling user-managed encryption for Azure Expand section "7.4. Enabling user-managed encryption for Azure" Collapse section "7.4. Enabling user-managed encryption for Azure" 7.4.1. Preparing an Azure Disk Encryption Set 7.4.2. Next steps 7.5. Installing a cluster quickly on Azure Expand section "7.5. Installing a cluster quickly on Azure" Collapse section "7.5. Installing a cluster quickly on Azure" 7.5.1. Prerequisites 7.5.2. Internet access for OpenShift Container Platform 7.5.3. Generating a key pair for cluster node SSH access 7.5.4. Obtaining the installation program 7.5.5. Deploying the cluster 7.5.6. Installing the OpenShift CLI by downloading the binary 7.5.7. Logging in to the cluster by using the CLI 7.5.8. Telemetry access for OpenShift Container Platform 7.5.9. Next steps 7.6. Installing a cluster on Azure with customizations Expand section "7.6. Installing a cluster on Azure with customizations" Collapse section "7.6. Installing a cluster on Azure with customizations" 7.6.1. Prerequisites 7.6.2. Internet access for OpenShift Container Platform 7.6.3. Generating a key pair for cluster node SSH access 7.6.4. Selecting an Azure Marketplace image 7.6.5. Obtaining the installation program 7.6.6. Configuring the user-defined tags for Azure 7.6.7. Querying user-defined tags for Azure 7.6.8. Creating the installation configuration file Expand section "7.6.8. Creating the installation configuration file" Collapse section "7.6.8. Creating the installation configuration file" 7.6.8.1. Installation configuration parameters Expand section "7.6.8.1. Installation configuration parameters" Collapse section "7.6.8.1. Installation configuration parameters" 7.6.8.1.1. Required configuration parameters 7.6.8.1.2. Network configuration parameters 7.6.8.1.3. Optional configuration parameters 7.6.8.1.4. Additional Azure configuration parameters 7.6.8.2. Minimum resource requirements for cluster installation 7.6.8.3. Tested instance types for Azure 7.6.8.4. Tested instance types for Azure on 64-bit ARM infrastructures 7.6.8.5. Sample customized install-config.yaml file for Azure 7.6.8.6. Configuring the cluster-wide proxy during installation 7.6.9. Deploying the cluster 7.6.10. Installing the OpenShift CLI by downloading the binary 7.6.11. Logging in to the cluster by using the CLI 7.6.12. Telemetry access for OpenShift Container Platform 7.6.13. Next steps 7.7. Installing a cluster on Azure with network customizations Expand section "7.7. Installing a cluster on Azure with network customizations" Collapse section "7.7. Installing a cluster on Azure with network customizations" 7.7.1. Prerequisites 7.7.2. Internet access for OpenShift Container Platform 7.7.3. Generating a key pair for cluster node SSH access 7.7.4. Obtaining the installation program 7.7.5. Creating the installation configuration file Expand section "7.7.5. Creating the installation configuration file" Collapse section "7.7.5. Creating the installation configuration file" 7.7.5.1. Installation configuration parameters Expand section "7.7.5.1. Installation configuration parameters" Collapse section "7.7.5.1. Installation configuration parameters" 7.7.5.1.1. Required configuration parameters 7.7.5.1.2. Network configuration parameters 7.7.5.1.3. Optional configuration parameters 7.7.5.1.4. Additional Azure configuration parameters 7.7.5.2. Minimum resource requirements for cluster installation 7.7.5.3. Tested instance types for Azure 7.7.5.4. Tested instance types for Azure on 64-bit ARM infrastructures 7.7.5.5. Sample customized install-config.yaml file for Azure 7.7.5.6. Configuring the cluster-wide proxy during installation 7.7.6. Network configuration phases 7.7.7. Specifying advanced network configuration 7.7.8. Cluster Network Operator configuration Expand section "7.7.8. Cluster Network Operator configuration" Collapse section "7.7.8. Cluster Network Operator configuration" 7.7.8.1. Cluster Network Operator configuration object 7.7.9. Configuring hybrid networking with OVN-Kubernetes 7.7.10. Deploying the cluster 7.7.11. Installing the OpenShift CLI by downloading the binary 7.7.12. Logging in to the cluster by using the CLI 7.7.13. Telemetry access for OpenShift Container Platform 7.7.14. Next steps 7.8. Installing a cluster on Azure into an existing VNet Expand section "7.8. Installing a cluster on Azure into an existing VNet" Collapse section "7.8. Installing a cluster on Azure into an existing VNet" 7.8.1. Prerequisites 7.8.2. About reusing a VNet for your OpenShift Container Platform cluster Expand section "7.8.2. About reusing a VNet for your OpenShift Container Platform cluster" Collapse section "7.8.2. About reusing a VNet for your OpenShift Container Platform cluster" 7.8.2.1. Requirements for using your VNet Expand section "7.8.2.1. Requirements for using your VNet" Collapse section "7.8.2.1. Requirements for using your VNet" 7.8.2.1.1. Network security group requirements 7.8.2.2. Division of permissions 7.8.2.3. Isolation between clusters 7.8.3. Internet access for OpenShift Container Platform 7.8.4. Generating a key pair for cluster node SSH access 7.8.5. Obtaining the installation program 7.8.6. Creating the installation configuration file Expand section "7.8.6. Creating the installation configuration file" Collapse section "7.8.6. Creating the installation configuration file" 7.8.6.1. Installation configuration parameters Expand section "7.8.6.1. Installation configuration parameters" Collapse section "7.8.6.1. Installation configuration parameters" 7.8.6.1.1. Required configuration parameters 7.8.6.1.2. Network configuration parameters 7.8.6.1.3. Optional configuration parameters 7.8.6.1.4. Additional Azure configuration parameters 7.8.6.2. Minimum resource requirements for cluster installation 7.8.6.3. Tested instance types for Azure 7.8.6.4. Tested instance types for Azure on 64-bit ARM infrastructures 7.8.6.5. Sample customized install-config.yaml file for Azure 7.8.6.6. Configuring the cluster-wide proxy during installation 7.8.7. Deploying the cluster 7.8.8. Installing the OpenShift CLI by downloading the binary 7.8.9. Logging in to the cluster by using the CLI 7.8.10. Telemetry access for OpenShift Container Platform 7.8.11. Next steps 7.9. Installing a private cluster on Azure Expand section "7.9. Installing a private cluster on Azure" Collapse section "7.9. Installing a private cluster on Azure" 7.9.1. Prerequisites 7.9.2. Private clusters Expand section "7.9.2. Private clusters" Collapse section "7.9.2. Private clusters" 7.9.2.1. Private clusters in Azure Expand section "7.9.2.1. Private clusters in Azure" Collapse section "7.9.2.1. Private clusters in Azure" 7.9.2.1.1. Limitations 7.9.2.2. User-defined outbound routing 7.9.3. About reusing a VNet for your OpenShift Container Platform cluster Expand section "7.9.3. About reusing a VNet for your OpenShift Container Platform cluster" Collapse section "7.9.3. About reusing a VNet for your OpenShift Container Platform cluster" 7.9.3.1. Requirements for using your VNet Expand section "7.9.3.1. Requirements for using your VNet" Collapse section "7.9.3.1. Requirements for using your VNet" 7.9.3.1.1. Network security group requirements 7.9.3.2. Division of permissions 7.9.3.3. Isolation between clusters 7.9.4. Internet access for OpenShift Container Platform 7.9.5. Generating a key pair for cluster node SSH access 7.9.6. Obtaining the installation program 7.9.7. Manually creating the installation configuration file Expand section "7.9.7. Manually creating the installation configuration file" Collapse section "7.9.7. Manually creating the installation configuration file" 7.9.7.1. Installation configuration parameters Expand section "7.9.7.1. Installation configuration parameters" Collapse section "7.9.7.1. Installation configuration parameters" 7.9.7.1.1. Required configuration parameters 7.9.7.1.2. Network configuration parameters 7.9.7.1.3. Optional configuration parameters 7.9.7.1.4. Additional Azure configuration parameters 7.9.7.2. Minimum resource requirements for cluster installation 7.9.7.3. Tested instance types for Azure 7.9.7.4. Tested instance types for Azure on 64-bit ARM infrastructures 7.9.7.5. Sample customized install-config.yaml file for Azure 7.9.7.6. Configuring the cluster-wide proxy during installation 7.9.8. Deploying the cluster 7.9.9. Installing the OpenShift CLI by downloading the binary 7.9.10. Logging in to the cluster by using the CLI 7.9.11. Telemetry access for OpenShift Container Platform 7.9.12. Next steps 7.10. Installing a cluster on Azure into a government region Expand section "7.10. Installing a cluster on Azure into a government region" Collapse section "7.10. Installing a cluster on Azure into a government region" 7.10.1. Prerequisites 7.10.2. Azure government regions 7.10.3. Private clusters Expand section "7.10.3. Private clusters" Collapse section "7.10.3. Private clusters" 7.10.3.1. Private clusters in Azure Expand section "7.10.3.1. Private clusters in Azure" Collapse section "7.10.3.1. Private clusters in Azure" 7.10.3.1.1. Limitations 7.10.3.2. User-defined outbound routing 7.10.4. About reusing a VNet for your OpenShift Container Platform cluster Expand section "7.10.4. About reusing a VNet for your OpenShift Container Platform cluster" Collapse section "7.10.4. About reusing a VNet for your OpenShift Container Platform cluster" 7.10.4.1. Requirements for using your VNet Expand section "7.10.4.1. Requirements for using your VNet" Collapse section "7.10.4.1. Requirements for using your VNet" 7.10.4.1.1. Network security group requirements 7.10.4.2. Division of permissions 7.10.4.3. Isolation between clusters 7.10.5. Internet access for OpenShift Container Platform 7.10.6. Generating a key pair for cluster node SSH access 7.10.7. Obtaining the installation program 7.10.8. Manually creating the installation configuration file Expand section "7.10.8. Manually creating the installation configuration file" Collapse section "7.10.8. Manually creating the installation configuration file" 7.10.8.1. Installation configuration parameters Expand section "7.10.8.1. Installation configuration parameters" Collapse section "7.10.8.1. Installation configuration parameters" 7.10.8.1.1. Required configuration parameters 7.10.8.1.2. Network configuration parameters 7.10.8.1.3. Optional configuration parameters 7.10.8.1.4. Additional Azure configuration parameters 7.10.8.2. Minimum resource requirements for cluster installation 7.10.8.3. Tested instance types for Azure 7.10.8.4. Sample customized install-config.yaml file for Azure 7.10.8.5. Configuring the cluster-wide proxy during installation 7.10.9. Deploying the cluster 7.10.10. Installing the OpenShift CLI by downloading the binary 7.10.11. Logging in to the cluster by using the CLI 7.10.12. Telemetry access for OpenShift Container Platform 7.10.13. Next steps 7.11. Installing a cluster on Azure using ARM templates Expand section "7.11. Installing a cluster on Azure using ARM templates" Collapse section "7.11. Installing a cluster on Azure using ARM templates" 7.11.1. Prerequisites 7.11.2. Internet access for OpenShift Container Platform 7.11.3. Configuring your Azure project Expand section "7.11.3. Configuring your Azure project" Collapse section "7.11.3. Configuring your Azure project" 7.11.3.1. Azure account limits 7.11.3.2. Configuring a public DNS zone in Azure 7.11.3.3. Increasing Azure account limits 7.11.3.4. Certificate signing requests management 7.11.3.5. Required Azure roles 7.11.3.6. Required Azure permissions for user-provisioned infrastructure 7.11.3.7. Creating a service principal 7.11.3.8. Supported Azure regions 7.11.4. Requirements for a cluster with user-provisioned infrastructure Expand section "7.11.4. Requirements for a cluster with user-provisioned infrastructure" Collapse section "7.11.4. Requirements for a cluster with user-provisioned infrastructure" 7.11.4.1. Required machines for cluster installation 7.11.4.2. Minimum resource requirements for cluster installation 7.11.4.3. Tested instance types for Azure 7.11.4.4. Tested instance types for Azure on 64-bit ARM infrastructures 7.11.5. Selecting an Azure Marketplace image 7.11.6. Obtaining the installation program 7.11.7. Generating a key pair for cluster node SSH access 7.11.8. Creating the installation files for Azure Expand section "7.11.8. Creating the installation files for Azure" Collapse section "7.11.8. Creating the installation files for Azure" 7.11.8.1. Optional: Creating a separate /var partition 7.11.8.2. Creating the installation configuration file 7.11.8.3. Configuring the cluster-wide proxy during installation 7.11.8.4. Exporting common variables for ARM templates 7.11.8.5. Creating the Kubernetes manifest and Ignition config files 7.11.9. Creating the Azure resource group 7.11.10. Uploading the RHCOS cluster image and bootstrap Ignition config file 7.11.11. Example for creating DNS zones 7.11.12. Creating a VNet in Azure Expand section "7.11.12. Creating a VNet in Azure" Collapse section "7.11.12. Creating a VNet in Azure" 7.11.12.1. ARM template for the VNet 7.11.13. Deploying the RHCOS cluster image for the Azure infrastructure Expand section "7.11.13. Deploying the RHCOS cluster image for the Azure infrastructure" Collapse section "7.11.13. Deploying the RHCOS cluster image for the Azure infrastructure" 7.11.13.1. ARM template for image storage 7.11.14. Networking requirements for user-provisioned infrastructure Expand section "7.11.14. Networking requirements for user-provisioned infrastructure" Collapse section "7.11.14. Networking requirements for user-provisioned infrastructure" 7.11.14.1. Network connectivity requirements 7.11.15. Creating networking and load balancing components in Azure Expand section "7.11.15. Creating networking and load balancing components in Azure" Collapse section "7.11.15. Creating networking and load balancing components in Azure" 7.11.15.1. ARM template for the network and load balancers 7.11.16. Creating the bootstrap machine in Azure Expand section "7.11.16. Creating the bootstrap machine in Azure" Collapse section "7.11.16. Creating the bootstrap machine in Azure" 7.11.16.1. ARM template for the bootstrap machine 7.11.17. Creating the control plane machines in Azure Expand section "7.11.17. Creating the control plane machines in Azure" Collapse section "7.11.17. Creating the control plane machines in Azure" 7.11.17.1. ARM template for control plane machines 7.11.18. Wait for bootstrap completion and remove bootstrap resources in Azure 7.11.19. Creating additional worker machines in Azure Expand section "7.11.19. Creating additional worker machines in Azure" Collapse section "7.11.19. Creating additional worker machines in Azure" 7.11.19.1. ARM template for worker machines 7.11.20. Installing the OpenShift CLI by downloading the binary 7.11.21. Logging in to the cluster by using the CLI 7.11.22. Approving the certificate signing requests for your machines 7.11.23. Adding the Ingress DNS records 7.11.24. Completing an Azure installation on user-provisioned infrastructure 7.11.25. Telemetry access for OpenShift Container Platform 7.12. Installing a three-node cluster on Azure Expand section "7.12. Installing a three-node cluster on Azure" Collapse section "7.12. Installing a three-node cluster on Azure" 7.12.1. Configuring a three-node cluster 7.12.2. Next steps 7.13. Uninstalling a cluster on Azure Expand section "7.13. Uninstalling a cluster on Azure" Collapse section "7.13. Uninstalling a cluster on Azure" 7.13.1. Removing a cluster that uses installer-provisioned infrastructure 8. Installing on Azure Stack Hub Expand section "8. Installing on Azure Stack Hub" Collapse section "8. Installing on Azure Stack Hub" 8.1. Preparing to install on Azure Stack Hub Expand section "8.1. Preparing to install on Azure Stack Hub" Collapse section "8.1. Preparing to install on Azure Stack Hub" 8.1.1. Prerequisites 8.1.2. Requirements for installing OpenShift Container Platform on Azure Stack Hub 8.1.3. Choosing a method to install OpenShift Container Platform on Azure Stack Hub Expand section "8.1.3. Choosing a method to install OpenShift Container Platform on Azure Stack Hub" Collapse section "8.1.3. Choosing a method to install OpenShift Container Platform on Azure Stack Hub" 8.1.3.1. Installing a cluster on installer-provisioned infrastructure 8.1.3.2. Installing a cluster on user-provisioned infrastructure 8.1.4. Next steps 8.2. Configuring an Azure Stack Hub account Expand section "8.2. Configuring an Azure Stack Hub account" Collapse section "8.2. Configuring an Azure Stack Hub account" 8.2.1. Azure Stack Hub account limits 8.2.2. Configuring a DNS zone in Azure Stack Hub 8.2.3. Required Azure Stack Hub roles 8.2.4. Creating a service principal 8.2.5. Next steps 8.3. Installing a cluster on Azure Stack Hub with an installer-provisioned infrastructure Expand section "8.3. Installing a cluster on Azure Stack Hub with an installer-provisioned infrastructure" Collapse section "8.3. Installing a cluster on Azure Stack Hub with an installer-provisioned infrastructure" 8.3.1. Prerequisites 8.3.2. Internet access for OpenShift Container Platform 8.3.3. Generating a key pair for cluster node SSH access 8.3.4. Uploading the RHCOS cluster image 8.3.5. Obtaining the installation program 8.3.6. Manually creating the installation configuration file Expand section "8.3.6. Manually creating the installation configuration file" Collapse section "8.3.6. Manually creating the installation configuration file" 8.3.6.1. Installation configuration parameters Expand section "8.3.6.1. Installation configuration parameters" Collapse section "8.3.6.1. Installation configuration parameters" 8.3.6.1.1. Required configuration parameters 8.3.6.1.2. Network configuration parameters 8.3.6.1.3. Optional configuration parameters 8.3.6.1.4. Additional Azure Stack Hub configuration parameters 8.3.6.2. Sample customized install-config.yaml file for Azure Stack Hub 8.3.7. Manually manage cloud credentials 8.3.8. Configuring the cluster to use an internal CA 8.3.9. Deploying the cluster 8.3.10. Installing the OpenShift CLI by downloading the binary 8.3.11. Logging in to the cluster by using the CLI 8.3.12. Logging in to the cluster by using the web console 8.3.13. Telemetry access for OpenShift Container Platform 8.3.14. Next steps 8.4. Installing a cluster on Azure Stack Hub with network customizations Expand section "8.4. Installing a cluster on Azure Stack Hub with network customizations" Collapse section "8.4. Installing a cluster on Azure Stack Hub with network customizations" 8.4.1. Prerequisites 8.4.2. Internet access for OpenShift Container Platform 8.4.3. Generating a key pair for cluster node SSH access 8.4.4. Uploading the RHCOS cluster image 8.4.5. Obtaining the installation program 8.4.6. Manually creating the installation configuration file Expand section "8.4.6. Manually creating the installation configuration file" Collapse section "8.4.6. Manually creating the installation configuration file" 8.4.6.1. Installation configuration parameters Expand section "8.4.6.1. Installation configuration parameters" Collapse section "8.4.6.1. Installation configuration parameters" 8.4.6.1.1. Required configuration parameters 8.4.6.1.2. Network configuration parameters 8.4.6.1.3. Optional configuration parameters 8.4.6.1.4. Additional Azure Stack Hub configuration parameters 8.4.6.2. Sample customized install-config.yaml file for Azure Stack Hub 8.4.7. Manually manage cloud credentials 8.4.8. Configuring the cluster to use an internal CA 8.4.9. Network configuration phases 8.4.10. Specifying advanced network configuration 8.4.11. Cluster Network Operator configuration Expand section "8.4.11. Cluster Network Operator configuration" Collapse section "8.4.11. Cluster Network Operator configuration" 8.4.11.1. Cluster Network Operator configuration object 8.4.12. Configuring hybrid networking with OVN-Kubernetes 8.4.13. Deploying the cluster 8.4.14. Installing the OpenShift CLI by downloading the binary 8.4.15. Logging in to the cluster by using the CLI 8.4.16. Logging in to the cluster by using the web console 8.4.17. Telemetry access for OpenShift Container Platform 8.4.18. Next steps 8.5. Installing a cluster on Azure Stack Hub using ARM templates Expand section "8.5. Installing a cluster on Azure Stack Hub using ARM templates" Collapse section "8.5. Installing a cluster on Azure Stack Hub using ARM templates" 8.5.1. Prerequisites 8.5.2. Internet access for OpenShift Container Platform 8.5.3. Configuring your Azure Stack Hub project Expand section "8.5.3. Configuring your Azure Stack Hub project" Collapse section "8.5.3. Configuring your Azure Stack Hub project" 8.5.3.1. Azure Stack Hub account limits 8.5.3.2. Configuring a DNS zone in Azure Stack Hub 8.5.3.3. Certificate signing requests management 8.5.3.4. Required Azure Stack Hub roles 8.5.3.5. Creating a service principal 8.5.4. Obtaining the installation program 8.5.5. Generating a key pair for cluster node SSH access 8.5.6. Creating the installation files for Azure Stack Hub Expand section "8.5.6. Creating the installation files for Azure Stack Hub" Collapse section "8.5.6. Creating the installation files for Azure Stack Hub" 8.5.6.1. Manually creating the installation configuration file 8.5.6.2. Sample customized install-config.yaml file for Azure Stack Hub 8.5.6.3. Configuring the cluster-wide proxy during installation 8.5.6.4. Exporting common variables for ARM templates 8.5.6.5. Creating the Kubernetes manifest and Ignition config files 8.5.6.6. Optional: Creating a separate /var partition 8.5.7. Creating the Azure resource group 8.5.8. Uploading the RHCOS cluster image and bootstrap Ignition config file 8.5.9. Example for creating DNS zones 8.5.10. Creating a VNet in Azure Stack Hub Expand section "8.5.10. Creating a VNet in Azure Stack Hub" Collapse section "8.5.10. Creating a VNet in Azure Stack Hub" 8.5.10.1. ARM template for the VNet 8.5.11. Deploying the RHCOS cluster image for the Azure Stack Hub infrastructure Expand section "8.5.11. Deploying the RHCOS cluster image for the Azure Stack Hub infrastructure" Collapse section "8.5.11. Deploying the RHCOS cluster image for the Azure Stack Hub infrastructure" 8.5.11.1. ARM template for image storage 8.5.12. Networking requirements for user-provisioned infrastructure Expand section "8.5.12. Networking requirements for user-provisioned infrastructure" Collapse section "8.5.12. Networking requirements for user-provisioned infrastructure" 8.5.12.1. Network connectivity requirements 8.5.13. Creating networking and load balancing components in Azure Stack Hub Expand section "8.5.13. Creating networking and load balancing components in Azure Stack Hub" Collapse section "8.5.13. Creating networking and load balancing components in Azure Stack Hub" 8.5.13.1. ARM template for the network and load balancers 8.5.14. Creating the bootstrap machine in Azure Stack Hub Expand section "8.5.14. Creating the bootstrap machine in Azure Stack Hub" Collapse section "8.5.14. Creating the bootstrap machine in Azure Stack Hub" 8.5.14.1. ARM template for the bootstrap machine 8.5.15. Creating the control plane machines in Azure Stack Hub Expand section "8.5.15. Creating the control plane machines in Azure Stack Hub" Collapse section "8.5.15. Creating the control plane machines in Azure Stack Hub" 8.5.15.1. ARM template for control plane machines 8.5.16. Wait for bootstrap completion and remove bootstrap resources in Azure Stack Hub 8.5.17. Creating additional worker machines in Azure Stack Hub Expand section "8.5.17. Creating additional worker machines in Azure Stack Hub" Collapse section "8.5.17. Creating additional worker machines in Azure Stack Hub" 8.5.17.1. ARM template for worker machines 8.5.18. Installing the OpenShift CLI by downloading the binary 8.5.19. Logging in to the cluster by using the CLI 8.5.20. Approving the certificate signing requests for your machines 8.5.21. Adding the Ingress DNS records 8.5.22. Completing an Azure Stack Hub installation on user-provisioned infrastructure 8.6. Uninstalling a cluster on Azure Stack Hub Expand section "8.6. Uninstalling a cluster on Azure Stack Hub" Collapse section "8.6. Uninstalling a cluster on Azure Stack Hub" 8.6.1. Removing a cluster that uses installer-provisioned infrastructure 9. Installing on GCP Expand section "9. Installing on GCP" Collapse section "9. Installing on GCP" 9.1. Preparing to install on GCP Expand section "9.1. Preparing to install on GCP" Collapse section "9.1. Preparing to install on GCP" 9.1.1. Prerequisites 9.1.2. Requirements for installing OpenShift Container Platform on GCP 9.1.3. Choosing a method to install OpenShift Container Platform on GCP Expand section "9.1.3. Choosing a method to install OpenShift Container Platform on GCP" Collapse section "9.1.3. Choosing a method to install OpenShift Container Platform on GCP" 9.1.3.1. Installing a cluster on installer-provisioned infrastructure 9.1.3.2. Installing a cluster on user-provisioned infrastructure 9.1.4. Next steps 9.2. Configuring a GCP project Expand section "9.2. Configuring a GCP project" Collapse section "9.2. Configuring a GCP project" 9.2.1. Creating a GCP project 9.2.2. Enabling API services in GCP 9.2.3. Configuring DNS for GCP 9.2.4. GCP account limits 9.2.5. Creating a service account in GCP Expand section "9.2.5. Creating a service account in GCP" Collapse section "9.2.5. Creating a service account in GCP" 9.2.5.1. Required GCP roles 9.2.5.2. Required GCP permissions for installer-provisioned infrastructure 9.2.5.3. Required GCP permissions for shared VPC installations 9.2.6. Supported GCP regions 9.2.7. Next steps 9.3. Manually creating IAM for GCP Expand section "9.3. Manually creating IAM for GCP" Collapse section "9.3. Manually creating IAM for GCP" 9.3.1. Alternatives to storing administrator-level secrets in the kube-system project 9.3.2. Manually create IAM 9.3.3. Mint mode 9.3.4. Mint mode with removal or rotation of the administrator-level credential 9.3.5. Next steps 9.4. Installing a cluster quickly on GCP Expand section "9.4. Installing a cluster quickly on GCP" Collapse section "9.4. Installing a cluster quickly on GCP" 9.4.1. Prerequisites 9.4.2. Internet access for OpenShift Container Platform 9.4.3. Generating a key pair for cluster node SSH access 9.4.4. Obtaining the installation program 9.4.5. Deploying the cluster 9.4.6. Installing the OpenShift CLI by downloading the binary 9.4.7. Logging in to the cluster by using the CLI 9.4.8. Telemetry access for OpenShift Container Platform 9.4.9. Next steps 9.5. Installing a cluster on GCP with customizations Expand section "9.5. Installing a cluster on GCP with customizations" Collapse section "9.5. Installing a cluster on GCP with customizations" 9.5.1. Prerequisites 9.5.2. Internet access for OpenShift Container Platform 9.5.3. Generating a key pair for cluster node SSH access 9.5.4. Obtaining the installation program 9.5.5. Creating the installation configuration file Expand section "9.5.5. Creating the installation configuration file" Collapse section "9.5.5. Creating the installation configuration file" 9.5.5.1. Installation configuration parameters Expand section "9.5.5.1. Installation configuration parameters" Collapse section "9.5.5.1. Installation configuration parameters" 9.5.5.1.1. Required configuration parameters 9.5.5.1.2. Network configuration parameters 9.5.5.1.3. Optional configuration parameters 9.5.5.1.4. Additional Google Cloud Platform (GCP) configuration parameters 9.5.5.2. Minimum resource requirements for cluster installation 9.5.5.3. Tested instance types for GCP 9.5.5.4. Using custom machine types 9.5.5.5. Enabling Shielded VMs 9.5.5.6. Enabling Confidential VMs 9.5.5.7. Sample customized install-config.yaml file for GCP 9.5.5.8. Configuring the cluster-wide proxy during installation 9.5.6. Using a GCP Marketplace image 9.5.7. Deploying the cluster 9.5.8. Installing the OpenShift CLI by downloading the binary 9.5.9. Logging in to the cluster by using the CLI 9.5.10. Telemetry access for OpenShift Container Platform 9.5.11. Next steps 9.6. Installing a cluster on GCP with network customizations Expand section "9.6. Installing a cluster on GCP with network customizations" Collapse section "9.6. Installing a cluster on GCP with network customizations" 9.6.1. Prerequisites 9.6.2. Internet access for OpenShift Container Platform 9.6.3. Generating a key pair for cluster node SSH access 9.6.4. Obtaining the installation program 9.6.5. Creating the installation configuration file Expand section "9.6.5. Creating the installation configuration file" Collapse section "9.6.5. Creating the installation configuration file" 9.6.5.1. Installation configuration parameters Expand section "9.6.5.1. Installation configuration parameters" Collapse section "9.6.5.1. Installation configuration parameters" 9.6.5.1.1. Required configuration parameters 9.6.5.1.2. Network configuration parameters 9.6.5.1.3. Optional configuration parameters 9.6.5.1.4. Additional Google Cloud Platform (GCP) configuration parameters 9.6.5.2. Minimum resource requirements for cluster installation 9.6.5.3. Tested instance types for GCP 9.6.5.4. Using custom machine types 9.6.5.5. Enabling Shielded VMs 9.6.5.6. Enabling Confidential VMs 9.6.5.7. Sample customized install-config.yaml file for GCP 9.6.6. Additional resources Expand section "9.6.6. Additional resources" Collapse section "9.6.6. Additional resources" 9.6.6.1. Configuring the cluster-wide proxy during installation 9.6.7. Network configuration phases 9.6.8. Specifying advanced network configuration 9.6.9. Cluster Network Operator configuration Expand section "9.6.9. Cluster Network Operator configuration" Collapse section "9.6.9. Cluster Network Operator configuration" 9.6.9.1. Cluster Network Operator configuration object 9.6.10. Deploying the cluster 9.6.11. Installing the OpenShift CLI by downloading the binary 9.6.12. Logging in to the cluster by using the CLI 9.6.13. Telemetry access for OpenShift Container Platform 9.6.14. Next steps 9.7. Installing a cluster on GCP in a restricted network Expand section "9.7. Installing a cluster on GCP in a restricted network" Collapse section "9.7. Installing a cluster on GCP in a restricted network" 9.7.1. Prerequisites 9.7.2. About installations in restricted networks Expand section "9.7.2. About installations in restricted networks" Collapse section "9.7.2. About installations in restricted networks" 9.7.2.1. Additional limits 9.7.3. Internet access for OpenShift Container Platform 9.7.4. Generating a key pair for cluster node SSH access 9.7.5. Creating the installation configuration file Expand section "9.7.5. Creating the installation configuration file" Collapse section "9.7.5. Creating the installation configuration file" 9.7.5.1. Installation configuration parameters Expand section "9.7.5.1. Installation configuration parameters" Collapse section "9.7.5.1. Installation configuration parameters" 9.7.5.1.1. Required configuration parameters 9.7.5.1.2. Network configuration parameters 9.7.5.1.3. Optional configuration parameters 9.7.5.1.4. Additional Google Cloud Platform (GCP) configuration parameters 9.7.5.2. Minimum resource requirements for cluster installation 9.7.5.3. Tested instance types for GCP 9.7.5.4. Using custom machine types 9.7.5.5. Enabling Shielded VMs 9.7.5.6. Enabling Confidential VMs 9.7.5.7. Sample customized install-config.yaml file for GCP 9.7.5.8. Create an Ingress Controller with global access on GCP 9.7.5.9. Configuring the cluster-wide proxy during installation 9.7.6. Deploying the cluster 9.7.7. Installing the OpenShift CLI by downloading the binary 9.7.8. Logging in to the cluster by using the CLI 9.7.9. Disabling the default OperatorHub catalog sources 9.7.10. Telemetry access for OpenShift Container Platform 9.7.11. Next steps 9.8. Installing a cluster on GCP into an existing VPC Expand section "9.8. Installing a cluster on GCP into an existing VPC" Collapse section "9.8. Installing a cluster on GCP into an existing VPC" 9.8.1. Prerequisites 9.8.2. About using a custom VPC Expand section "9.8.2. About using a custom VPC" Collapse section "9.8.2. About using a custom VPC" 9.8.2.1. Requirements for using your VPC 9.8.2.2. VPC validation 9.8.2.3. Division of permissions 9.8.2.4. Isolation between clusters 9.8.3. Internet access for OpenShift Container Platform 9.8.4. Generating a key pair for cluster node SSH access 9.8.5. Obtaining the installation program 9.8.6. Creating the installation configuration file Expand section "9.8.6. Creating the installation configuration file" Collapse section "9.8.6. Creating the installation configuration file" 9.8.6.1. Installation configuration parameters Expand section "9.8.6.1. Installation configuration parameters" Collapse section "9.8.6.1. Installation configuration parameters" 9.8.6.1.1. Required configuration parameters 9.8.6.1.2. Network configuration parameters 9.8.6.1.3. Optional configuration parameters 9.8.6.1.4. Additional Google Cloud Platform (GCP) configuration parameters 9.8.6.2. Minimum resource requirements for cluster installation 9.8.6.3. Tested instance types for GCP 9.8.6.4. Using custom machine types 9.8.6.5. Enabling Shielded VMs 9.8.6.6. Enabling Confidential VMs 9.8.6.7. Sample customized install-config.yaml file for GCP 9.8.6.8. Create an Ingress Controller with global access on GCP 9.8.7. Additional resources Expand section "9.8.7. Additional resources" Collapse section "9.8.7. Additional resources" 9.8.7.1. Configuring the cluster-wide proxy during installation 9.8.8. Deploying the cluster 9.8.9. Installing the OpenShift CLI by downloading the binary 9.8.10. Logging in to the cluster by using the CLI 9.8.11. Telemetry access for OpenShift Container Platform 9.8.12. Next steps 9.9. Installing a cluster on GCP into a shared VPC Expand section "9.9. Installing a cluster on GCP into a shared VPC" Collapse section "9.9. Installing a cluster on GCP into a shared VPC" 9.9.1. Prerequisites 9.9.2. Internet access for OpenShift Container Platform 9.9.3. Generating a key pair for cluster node SSH access 9.9.4. Obtaining the installation program 9.9.5. Creating the installation files for GCP Expand section "9.9.5. Creating the installation files for GCP" Collapse section "9.9.5. Creating the installation files for GCP" 9.9.5.1. Manually creating the installation configuration file 9.9.5.2. Enabling Shielded VMs 9.9.5.3. Enabling Confidential VMs 9.9.5.4. Sample customized install-config.yaml file for shared VPC installation 9.9.5.5. Installation configuration parameters Expand section "9.9.5.5. Installation configuration parameters" Collapse section "9.9.5.5. Installation configuration parameters" 9.9.5.5.1. Required configuration parameters 9.9.5.5.2. Network configuration parameters 9.9.5.5.3. Optional configuration parameters 9.9.5.5.4. Additional Google Cloud Platform (GCP) configuration parameters 9.9.5.6. Configuring the cluster-wide proxy during installation 9.9.6. Deploying the cluster 9.9.7. Installing the OpenShift CLI by downloading the binary 9.9.8. Logging in to the cluster by using the CLI 9.9.9. Telemetry access for OpenShift Container Platform 9.9.10. Next steps 9.10. Installing a private cluster on GCP Expand section "9.10. Installing a private cluster on GCP" Collapse section "9.10. Installing a private cluster on GCP" 9.10.1. Prerequisites 9.10.2. Private clusters Expand section "9.10.2. Private clusters" Collapse section "9.10.2. Private clusters" 9.10.2.1. Private clusters in GCP Expand section "9.10.2.1. Private clusters in GCP" Collapse section "9.10.2.1. Private clusters in GCP" 9.10.2.1.1. Limitations 9.10.3. About using a custom VPC Expand section "9.10.3. About using a custom VPC" Collapse section "9.10.3. About using a custom VPC" 9.10.3.1. Requirements for using your VPC 9.10.3.2. Division of permissions 9.10.3.3. Isolation between clusters 9.10.4. Internet access for OpenShift Container Platform 9.10.5. Generating a key pair for cluster node SSH access 9.10.6. Obtaining the installation program 9.10.7. Manually creating the installation configuration file Expand section "9.10.7. Manually creating the installation configuration file" Collapse section "9.10.7. Manually creating the installation configuration file" 9.10.7.1. Installation configuration parameters Expand section "9.10.7.1. Installation configuration parameters" Collapse section "9.10.7.1. Installation configuration parameters" 9.10.7.1.1. Required configuration parameters 9.10.7.1.2. Network configuration parameters 9.10.7.1.3. Optional configuration parameters 9.10.7.1.4. Additional Google Cloud Platform (GCP) configuration parameters 9.10.7.2. Minimum resource requirements for cluster installation 9.10.7.3. Tested instance types for GCP 9.10.7.4. Using custom machine types 9.10.7.5. Enabling Shielded VMs 9.10.7.6. Enabling Confidential VMs 9.10.7.7. Sample customized install-config.yaml file for GCP 9.10.7.8. Create an Ingress Controller with global access on GCP 9.10.8. Additional resources Expand section "9.10.8. Additional resources" Collapse section "9.10.8. Additional resources" 9.10.8.1. Configuring the cluster-wide proxy during installation 9.10.9. Deploying the cluster 9.10.10. Installing the OpenShift CLI by downloading the binary 9.10.11. Logging in to the cluster by using the CLI 9.10.12. Telemetry access for OpenShift Container Platform 9.10.13. Next steps 9.11. Installing a cluster on user-provisioned infrastructure in GCP by using Deployment Manager templates Expand section "9.11. Installing a cluster on user-provisioned infrastructure in GCP by using Deployment Manager templates" Collapse section "9.11. Installing a cluster on user-provisioned infrastructure in GCP by using Deployment Manager templates" 9.11.1. Prerequisites 9.11.2. Certificate signing requests management 9.11.3. Internet access for OpenShift Container Platform 9.11.4. Configuring your GCP project Expand section "9.11.4. Configuring your GCP project" Collapse section "9.11.4. Configuring your GCP project" 9.11.4.1. Creating a GCP project 9.11.4.2. Enabling API services in GCP 9.11.4.3. Configuring DNS for GCP 9.11.4.4. GCP account limits 9.11.4.5. Creating a service account in GCP 9.11.4.6. Required GCP roles 9.11.4.7. Required GCP permissions for user-provisioned infrastructure 9.11.4.8. Supported GCP regions 9.11.4.9. Installing and configuring CLI tools for GCP 9.11.5. Requirements for a cluster with user-provisioned infrastructure Expand section "9.11.5. Requirements for a cluster with user-provisioned infrastructure" Collapse section "9.11.5. Requirements for a cluster with user-provisioned infrastructure" 9.11.5.1. Required machines for cluster installation 9.11.5.2. Minimum resource requirements for cluster installation 9.11.5.3. Tested instance types for GCP 9.11.5.4. Using custom machine types 9.11.6. Creating the installation files for GCP Expand section "9.11.6. Creating the installation files for GCP" Collapse section "9.11.6. Creating the installation files for GCP" 9.11.6.1. Optional: Creating a separate /var partition 9.11.6.2. Creating the installation configuration file 9.11.6.3. Enabling Shielded VMs 9.11.6.4. Enabling Confidential VMs 9.11.6.5. Configuring the cluster-wide proxy during installation 9.11.6.6. Creating the Kubernetes manifest and Ignition config files 9.11.7. Exporting common variables Expand section "9.11.7. Exporting common variables" Collapse section "9.11.7. Exporting common variables" 9.11.7.1. Extracting the infrastructure name 9.11.7.2. Exporting common variables for Deployment Manager templates 9.11.8. Creating a VPC in GCP Expand section "9.11.8. Creating a VPC in GCP" Collapse section "9.11.8. Creating a VPC in GCP" 9.11.8.1. Deployment Manager template for the VPC 9.11.9. Networking requirements for user-provisioned infrastructure Expand section "9.11.9. Networking requirements for user-provisioned infrastructure" Collapse section "9.11.9. Networking requirements for user-provisioned infrastructure" 9.11.9.1. Setting the cluster node hostnames through DHCP 9.11.9.2. Network connectivity requirements 9.11.10. Creating load balancers in GCP Expand section "9.11.10. Creating load balancers in GCP" Collapse section "9.11.10. Creating load balancers in GCP" 9.11.10.1. Deployment Manager template for the external load balancer 9.11.10.2. Deployment Manager template for the internal load balancer 9.11.11. Creating a private DNS zone in GCP Expand section "9.11.11. Creating a private DNS zone in GCP" Collapse section "9.11.11. Creating a private DNS zone in GCP" 9.11.11.1. Deployment Manager template for the private DNS 9.11.12. Creating firewall rules in GCP Expand section "9.11.12. Creating firewall rules in GCP" Collapse section "9.11.12. Creating firewall rules in GCP" 9.11.12.1. Deployment Manager template for firewall rules 9.11.13. Creating IAM roles in GCP Expand section "9.11.13. Creating IAM roles in GCP" Collapse section "9.11.13. Creating IAM roles in GCP" 9.11.13.1. Deployment Manager template for IAM roles 9.11.14. Creating the RHCOS cluster image for the GCP infrastructure 9.11.15. Creating the bootstrap machine in GCP Expand section "9.11.15. Creating the bootstrap machine in GCP" Collapse section "9.11.15. Creating the bootstrap machine in GCP" 9.11.15.1. Deployment Manager template for the bootstrap machine 9.11.16. Creating the control plane machines in GCP Expand section "9.11.16. Creating the control plane machines in GCP" Collapse section "9.11.16. Creating the control plane machines in GCP" 9.11.16.1. Deployment Manager template for control plane machines 9.11.17. Wait for bootstrap completion and remove bootstrap resources in GCP 9.11.18. Creating additional worker machines in GCP Expand section "9.11.18. Creating additional worker machines in GCP" Collapse section "9.11.18. Creating additional worker machines in GCP" 9.11.18.1. Deployment Manager template for worker machines 9.11.19. Installing the OpenShift CLI by downloading the binary 9.11.20. Logging in to the cluster by using the CLI 9.11.21. Approving the certificate signing requests for your machines 9.11.22. Optional: Adding the ingress DNS records 9.11.23. Completing a GCP installation on user-provisioned infrastructure 9.11.24. Telemetry access for OpenShift Container Platform 9.11.25. Next steps 9.12. Installing a cluster into a shared VPC on GCP using Deployment Manager templates Expand section "9.12. Installing a cluster into a shared VPC on GCP using Deployment Manager templates" Collapse section "9.12. Installing a cluster into a shared VPC on GCP using Deployment Manager templates" 9.12.1. Prerequisites 9.12.2. Certificate signing requests management 9.12.3. Internet access for OpenShift Container Platform 9.12.4. Configuring the GCP project that hosts your cluster Expand section "9.12.4. Configuring the GCP project that hosts your cluster" Collapse section "9.12.4. Configuring the GCP project that hosts your cluster" 9.12.4.1. Creating a GCP project 9.12.4.2. Enabling API services in GCP 9.12.4.3. GCP account limits 9.12.4.4. Creating a service account in GCP Expand section "9.12.4.4. Creating a service account in GCP" Collapse section "9.12.4.4. Creating a service account in GCP" 9.12.4.4.1. Required GCP roles 9.12.4.5. Supported GCP regions 9.12.4.6. Installing and configuring CLI tools for GCP 9.12.5. Requirements for a cluster with user-provisioned infrastructure Expand section "9.12.5. Requirements for a cluster with user-provisioned infrastructure" Collapse section "9.12.5. Requirements for a cluster with user-provisioned infrastructure" 9.12.5.1. Required machines for cluster installation 9.12.5.2. Minimum resource requirements for cluster installation 9.12.5.3. Tested instance types for GCP 9.12.5.4. Using custom machine types 9.12.6. Configuring the GCP project that hosts your shared VPC network Expand section "9.12.6. Configuring the GCP project that hosts your shared VPC network" Collapse section "9.12.6. Configuring the GCP project that hosts your shared VPC network" 9.12.6.1. Configuring DNS for GCP 9.12.6.2. Creating a VPC in GCP Expand section "9.12.6.2. Creating a VPC in GCP" Collapse section "9.12.6.2. Creating a VPC in GCP" 9.12.6.2.1. Deployment Manager template for the VPC 9.12.7. Creating the installation files for GCP Expand section "9.12.7. Creating the installation files for GCP" Collapse section "9.12.7. Creating the installation files for GCP" 9.12.7.1. Manually creating the installation configuration file 9.12.7.2. Enabling Shielded VMs 9.12.7.3. Enabling Confidential VMs 9.12.7.4. Sample customized install-config.yaml file for GCP 9.12.7.5. Configuring the cluster-wide proxy during installation 9.12.7.6. Creating the Kubernetes manifest and Ignition config files 9.12.8. Exporting common variables Expand section "9.12.8. Exporting common variables" Collapse section "9.12.8. Exporting common variables" 9.12.8.1. Extracting the infrastructure name 9.12.8.2. Exporting common variables for Deployment Manager templates 9.12.9. Networking requirements for user-provisioned infrastructure Expand section "9.12.9. Networking requirements for user-provisioned infrastructure" Collapse section "9.12.9. Networking requirements for user-provisioned infrastructure" 9.12.9.1. Setting the cluster node hostnames through DHCP 9.12.9.2. Network connectivity requirements 9.12.10. Creating load balancers in GCP Expand section "9.12.10. Creating load balancers in GCP" Collapse section "9.12.10. Creating load balancers in GCP" 9.12.10.1. Deployment Manager template for the external load balancer 9.12.10.2. Deployment Manager template for the internal load balancer 9.12.11. Creating a private DNS zone in GCP Expand section "9.12.11. Creating a private DNS zone in GCP" Collapse section "9.12.11. Creating a private DNS zone in GCP" 9.12.11.1. Deployment Manager template for the private DNS 9.12.12. Creating firewall rules in GCP Expand section "9.12.12. Creating firewall rules in GCP" Collapse section "9.12.12. Creating firewall rules in GCP" 9.12.12.1. Deployment Manager template for firewall rules 9.12.13. Creating IAM roles in GCP Expand section "9.12.13. Creating IAM roles in GCP" Collapse section "9.12.13. Creating IAM roles in GCP" 9.12.13.1. Deployment Manager template for IAM roles 9.12.14. Creating the RHCOS cluster image for the GCP infrastructure 9.12.15. Creating the bootstrap machine in GCP Expand section "9.12.15. Creating the bootstrap machine in GCP" Collapse section "9.12.15. Creating the bootstrap machine in GCP" 9.12.15.1. Deployment Manager template for the bootstrap machine 9.12.16. Creating the control plane machines in GCP Expand section "9.12.16. Creating the control plane machines in GCP" Collapse section "9.12.16. Creating the control plane machines in GCP" 9.12.16.1. Deployment Manager template for control plane machines 9.12.17. Wait for bootstrap completion and remove bootstrap resources in GCP 9.12.18. Creating additional worker machines in GCP Expand section "9.12.18. Creating additional worker machines in GCP" Collapse section "9.12.18. Creating additional worker machines in GCP" 9.12.18.1. Deployment Manager template for worker machines 9.12.19. Installing the OpenShift CLI by downloading the binary 9.12.20. Logging in to the cluster by using the CLI 9.12.21. Approving the certificate signing requests for your machines 9.12.22. Adding the ingress DNS records 9.12.23. Adding ingress firewall rules Expand section "9.12.23. Adding ingress firewall rules" Collapse section "9.12.23. Adding ingress firewall rules" 9.12.23.1. Creating cluster-wide firewall rules for a shared VPC in GCP 9.12.24. Completing a GCP installation on user-provisioned infrastructure 9.12.25. Telemetry access for OpenShift Container Platform 9.12.26. Next steps 9.13. Installing a cluster on GCP in a restricted network with user-provisioned infrastructure Expand section "9.13. Installing a cluster on GCP in a restricted network with user-provisioned infrastructure" Collapse section "9.13. Installing a cluster on GCP in a restricted network with user-provisioned infrastructure" 9.13.1. Prerequisites 9.13.2. About installations in restricted networks Expand section "9.13.2. About installations in restricted networks" Collapse section "9.13.2. About installations in restricted networks" 9.13.2.1. Additional limits 9.13.3. Internet access for OpenShift Container Platform 9.13.4. Configuring your GCP project Expand section "9.13.4. Configuring your GCP project" Collapse section "9.13.4. Configuring your GCP project" 9.13.4.1. Creating a GCP project 9.13.4.2. Enabling API services in GCP 9.13.4.3. Configuring DNS for GCP 9.13.4.4. GCP account limits 9.13.4.5. Creating a service account in GCP 9.13.4.6. Required GCP roles 9.13.4.7. Required GCP permissions for user-provisioned infrastructure 9.13.4.8. Supported GCP regions 9.13.4.9. Installing and configuring CLI tools for GCP 9.13.5. Requirements for a cluster with user-provisioned infrastructure Expand section "9.13.5. Requirements for a cluster with user-provisioned infrastructure" Collapse section "9.13.5. Requirements for a cluster with user-provisioned infrastructure" 9.13.5.1. Required machines for cluster installation 9.13.5.2. Minimum resource requirements for cluster installation 9.13.5.3. Tested instance types for GCP 9.13.5.4. Using custom machine types 9.13.6. Creating the installation files for GCP Expand section "9.13.6. Creating the installation files for GCP" Collapse section "9.13.6. Creating the installation files for GCP" 9.13.6.1. Optional: Creating a separate /var partition 9.13.6.2. Creating the installation configuration file 9.13.6.3. Enabling Shielded VMs 9.13.6.4. Enabling Confidential VMs 9.13.6.5. Configuring the cluster-wide proxy during installation 9.13.6.6. Creating the Kubernetes manifest and Ignition config files 9.13.7. Exporting common variables Expand section "9.13.7. Exporting common variables" Collapse section "9.13.7. Exporting common variables" 9.13.7.1. Extracting the infrastructure name 9.13.7.2. Exporting common variables for Deployment Manager templates 9.13.8. Creating a VPC in GCP Expand section "9.13.8. Creating a VPC in GCP" Collapse section "9.13.8. Creating a VPC in GCP" 9.13.8.1. Deployment Manager template for the VPC 9.13.9. Networking requirements for user-provisioned infrastructure Expand section "9.13.9. Networking requirements for user-provisioned infrastructure" Collapse section "9.13.9. Networking requirements for user-provisioned infrastructure" 9.13.9.1. Setting the cluster node hostnames through DHCP 9.13.9.2. Network connectivity requirements 9.13.10. Creating load balancers in GCP Expand section "9.13.10. Creating load balancers in GCP" Collapse section "9.13.10. Creating load balancers in GCP" 9.13.10.1. Deployment Manager template for the external load balancer 9.13.10.2. Deployment Manager template for the internal load balancer 9.13.11. Creating a private DNS zone in GCP Expand section "9.13.11. Creating a private DNS zone in GCP" Collapse section "9.13.11. Creating a private DNS zone in GCP" 9.13.11.1. Deployment Manager template for the private DNS 9.13.12. Creating firewall rules in GCP Expand section "9.13.12. Creating firewall rules in GCP" Collapse section "9.13.12. Creating firewall rules in GCP" 9.13.12.1. Deployment Manager template for firewall rules 9.13.13. Creating IAM roles in GCP Expand section "9.13.13. Creating IAM roles in GCP" Collapse section "9.13.13. Creating IAM roles in GCP" 9.13.13.1. Deployment Manager template for IAM roles 9.13.14. Creating the RHCOS cluster image for the GCP infrastructure 9.13.15. Creating the bootstrap machine in GCP Expand section "9.13.15. Creating the bootstrap machine in GCP" Collapse section "9.13.15. Creating the bootstrap machine in GCP" 9.13.15.1. Deployment Manager template for the bootstrap machine 9.13.16. Creating the control plane machines in GCP Expand section "9.13.16. Creating the control plane machines in GCP" Collapse section "9.13.16. Creating the control plane machines in GCP" 9.13.16.1. Deployment Manager template for control plane machines 9.13.17. Wait for bootstrap completion and remove bootstrap resources in GCP 9.13.18. Creating additional worker machines in GCP Expand section "9.13.18. Creating additional worker machines in GCP" Collapse section "9.13.18. Creating additional worker machines in GCP" 9.13.18.1. Deployment Manager template for worker machines 9.13.19. Logging in to the cluster by using the CLI 9.13.20. Disabling the default OperatorHub catalog sources 9.13.21. Approving the certificate signing requests for your machines 9.13.22. Optional: Adding the ingress DNS records 9.13.23. Completing a GCP installation on user-provisioned infrastructure 9.13.24. Telemetry access for OpenShift Container Platform 9.13.25. Next steps 9.14. Installing a three-node cluster on GCP Expand section "9.14. Installing a three-node cluster on GCP" Collapse section "9.14. Installing a three-node cluster on GCP" 9.14.1. Configuring a three-node cluster 9.14.2. Next steps 9.15. Uninstalling a cluster on GCP Expand section "9.15. Uninstalling a cluster on GCP" Collapse section "9.15. Uninstalling a cluster on GCP" 9.15.1. Removing a cluster that uses installer-provisioned infrastructure 9.15.2. Deleting GCP resources with the Cloud Credential Operator utility 10. Installing on IBM Cloud VPC Expand section "10. Installing on IBM Cloud VPC" Collapse section "10. Installing on IBM Cloud VPC" 10.1. Preparing to install on IBM Cloud VPC Expand section "10.1. Preparing to install on IBM Cloud VPC" Collapse section "10.1. Preparing to install on IBM Cloud VPC" 10.1.1. Prerequisites 10.1.2. Requirements for installing OpenShift Container Platform on IBM Cloud VPC 10.1.3. Choosing a method to install OpenShift Container Platform on IBM Cloud VPC Expand section "10.1.3. Choosing a method to install OpenShift Container Platform on IBM Cloud VPC" Collapse section "10.1.3. Choosing a method to install OpenShift Container Platform on IBM Cloud VPC" 10.1.3.1. Installing a cluster on installer-provisioned infrastructure 10.1.4. Next steps 10.2. Configuring an IBM Cloud account Expand section "10.2. Configuring an IBM Cloud account" Collapse section "10.2. Configuring an IBM Cloud account" 10.2.1. Prerequisites 10.2.2. Quotas and limits on IBM Cloud VPC 10.2.3. Configuring DNS resolution Expand section "10.2.3. Configuring DNS resolution" Collapse section "10.2.3. Configuring DNS resolution" 10.2.3.1. Using IBM Cloud Internet Services for DNS resolution 10.2.3.2. Using IBM Cloud DNS Services for DNS resolution 10.2.4. IBM Cloud VPC IAM Policies and API Key Expand section "10.2.4. IBM Cloud VPC IAM Policies and API Key" Collapse section "10.2.4. IBM Cloud VPC IAM Policies and API Key" 10.2.4.1. Required access policies 10.2.4.2. Access policy assignment 10.2.4.3. Creating an API key 10.2.5. Supported IBM Cloud VPC regions 10.2.6. Next steps 10.3. Configuring IAM for IBM Cloud VPC Expand section "10.3. Configuring IAM for IBM Cloud VPC" Collapse section "10.3. Configuring IAM for IBM Cloud VPC" 10.3.1. Alternatives to storing administrator-level secrets in the kube-system project 10.3.2. Configuring the Cloud Credential Operator utility 10.3.3. Next steps 10.3.4. Additional resources 10.4. Installing a cluster on IBM Cloud VPC with customizations Expand section "10.4. Installing a cluster on IBM Cloud VPC with customizations" Collapse section "10.4. Installing a cluster on IBM Cloud VPC with customizations" 10.4.1. Prerequisites 10.4.2. Internet access for OpenShift Container Platform 10.4.3. Generating a key pair for cluster node SSH access 10.4.4. Obtaining the installation program 10.4.5. Exporting the API key 10.4.6. Creating the installation configuration file Expand section "10.4.6. Creating the installation configuration file" Collapse section "10.4.6. Creating the installation configuration file" 10.4.6.1. Installation configuration parameters Expand section "10.4.6.1. Installation configuration parameters" Collapse section "10.4.6.1. Installation configuration parameters" 10.4.6.1.1. Required configuration parameters 10.4.6.1.2. Network configuration parameters 10.4.6.1.3. Optional configuration parameters 10.4.6.1.4. Additional IBM Cloud VPC configuration parameters 10.4.6.2. Minimum resource requirements for cluster installation 10.4.6.3. Sample customized install-config.yaml file for IBM Cloud VPC 10.4.6.4. Configuring the cluster-wide proxy during installation 10.4.7. Manually creating IAM 10.4.8. Deploying the cluster 10.4.9. Installing the OpenShift CLI by downloading the binary 10.4.10. Logging in to the cluster by using the CLI 10.4.11. Telemetry access for OpenShift Container Platform 10.4.12. Next steps 10.5. Installing a cluster on IBM Cloud VPC with network customizations Expand section "10.5. Installing a cluster on IBM Cloud VPC with network customizations" Collapse section "10.5. Installing a cluster on IBM Cloud VPC with network customizations" 10.5.1. Prerequisites 10.5.2. Internet access for OpenShift Container Platform 10.5.3. Generating a key pair for cluster node SSH access 10.5.4. Obtaining the installation program 10.5.5. Exporting the API key 10.5.6. Creating the installation configuration file Expand section "10.5.6. Creating the installation configuration file" Collapse section "10.5.6. Creating the installation configuration file" 10.5.6.1. Installation configuration parameters Expand section "10.5.6.1. Installation configuration parameters" Collapse section "10.5.6.1. Installation configuration parameters" 10.5.6.1.1. Required configuration parameters 10.5.6.1.2. Network configuration parameters 10.5.6.1.3. Optional configuration parameters 10.5.6.1.4. Additional IBM Cloud VPC configuration parameters 10.5.6.2. Minimum resource requirements for cluster installation 10.5.6.3. Sample customized install-config.yaml file for IBM Cloud VPC 10.5.6.4. Configuring the cluster-wide proxy during installation 10.5.7. Manually creating IAM 10.5.8. Network configuration phases 10.5.9. Specifying advanced network configuration 10.5.10. Cluster Network Operator configuration Expand section "10.5.10. Cluster Network Operator configuration" Collapse section "10.5.10. Cluster Network Operator configuration" 10.5.10.1. Cluster Network Operator configuration object 10.5.11. Deploying the cluster 10.5.12. Installing the OpenShift CLI by downloading the binary 10.5.13. Logging in to the cluster by using the CLI 10.5.14. Telemetry access for OpenShift Container Platform 10.5.15. Next steps 10.6. Installing a cluster on IBM Cloud VPC into an existing VPC Expand section "10.6. Installing a cluster on IBM Cloud VPC into an existing VPC" Collapse section "10.6. Installing a cluster on IBM Cloud VPC into an existing VPC" 10.6.1. Prerequisites 10.6.2. About using a custom VPC Expand section "10.6.2. About using a custom VPC" Collapse section "10.6.2. About using a custom VPC" 10.6.2.1. Requirements for using your VPC 10.6.2.2. VPC validation 10.6.2.3. Isolation between clusters 10.6.3. Internet access for OpenShift Container Platform 10.6.4. Generating a key pair for cluster node SSH access 10.6.5. Obtaining the installation program 10.6.6. Exporting the API key 10.6.7. Creating the installation configuration file Expand section "10.6.7. Creating the installation configuration file" Collapse section "10.6.7. Creating the installation configuration file" 10.6.7.1. Installation configuration parameters Expand section "10.6.7.1. Installation configuration parameters" Collapse section "10.6.7.1. Installation configuration parameters" 10.6.7.1.1. Required configuration parameters 10.6.7.1.2. Network configuration parameters 10.6.7.1.3. Optional configuration parameters 10.6.7.1.4. Additional IBM Cloud VPC configuration parameters 10.6.7.2. Minimum resource requirements for cluster installation 10.6.7.3. Sample customized install-config.yaml file for IBM Cloud VPC 10.6.7.4. Configuring the cluster-wide proxy during installation 10.6.8. Manually creating IAM 10.6.9. Deploying the cluster 10.6.10. Installing the OpenShift CLI by downloading the binary 10.6.11. Logging in to the cluster by using the CLI 10.6.12. Telemetry access for OpenShift Container Platform 10.6.13. Next steps 10.7. Installing a private cluster on IBM Cloud VPC Expand section "10.7. Installing a private cluster on IBM Cloud VPC" Collapse section "10.7. Installing a private cluster on IBM Cloud VPC" 10.7.1. Prerequisites 10.7.2. Private clusters 10.7.3. Private clusters in IBM Cloud VPC Expand section "10.7.3. Private clusters in IBM Cloud VPC" Collapse section "10.7.3. Private clusters in IBM Cloud VPC" 10.7.3.1. Limitations 10.7.4. About using a custom VPC Expand section "10.7.4. About using a custom VPC" Collapse section "10.7.4. About using a custom VPC" 10.7.4.1. Requirements for using your VPC 10.7.4.2. VPC validation 10.7.4.3. Isolation between clusters 10.7.5. Internet access for OpenShift Container Platform 10.7.6. Generating a key pair for cluster node SSH access 10.7.7. Obtaining the installation program 10.7.8. Exporting the API key 10.7.9. Manually creating the installation configuration file Expand section "10.7.9. Manually creating the installation configuration file" Collapse section "10.7.9. Manually creating the installation configuration file" 10.7.9.1. Installation configuration parameters Expand section "10.7.9.1. Installation configuration parameters" Collapse section "10.7.9.1. Installation configuration parameters" 10.7.9.1.1. Required configuration parameters 10.7.9.1.2. Network configuration parameters 10.7.9.1.3. Optional configuration parameters 10.7.9.1.4. Additional IBM Cloud VPC configuration parameters 10.7.9.2. Minimum resource requirements for cluster installation 10.7.9.3. Sample customized install-config.yaml file for IBM Cloud VPC 10.7.9.4. Configuring the cluster-wide proxy during installation 10.7.10. Manually creating IAM 10.7.11. Deploying the cluster 10.7.12. Installing the OpenShift CLI by downloading the binary 10.7.13. Logging in to the cluster by using the CLI 10.7.14. Telemetry access for OpenShift Container Platform 10.7.15. Next steps 10.8. Uninstalling a cluster on IBM Cloud VPC Expand section "10.8. Uninstalling a cluster on IBM Cloud VPC" Collapse section "10.8. Uninstalling a cluster on IBM Cloud VPC" 10.8.1. Removing a cluster that uses installer-provisioned infrastructure 11. Installing on Nutanix Expand section "11. Installing on Nutanix" Collapse section "11. Installing on Nutanix" 11.1. Preparing to install on Nutanix Expand section "11.1. Preparing to install on Nutanix" Collapse section "11.1. Preparing to install on Nutanix" 11.1.1. Nutanix version requirements 11.1.2. Environment requirements Expand section "11.1.2. Environment requirements" Collapse section "11.1.2. Environment requirements" 11.1.2.1. Required account privileges 11.1.2.2. Cluster limits 11.1.2.3. Cluster resources 11.1.2.4. Networking requirements Expand section "11.1.2.4. Networking requirements" Collapse section "11.1.2.4. Networking requirements" 11.1.2.4.1. Required IP Addresses 11.1.2.4.2. DNS records 11.1.3. Configuring the Cloud Credential Operator utility 11.2. Installing a cluster on Nutanix Expand section "11.2. Installing a cluster on Nutanix" Collapse section "11.2. Installing a cluster on Nutanix" 11.2.1. Prerequisites 11.2.2. Internet access for OpenShift Container Platform 11.2.3. Internet access for Prism Central 11.2.4. Generating a key pair for cluster node SSH access 11.2.5. Obtaining the installation program 11.2.6. Adding Nutanix root CA certificates to your system trust 11.2.7. Creating the installation configuration file Expand section "11.2.7. Creating the installation configuration file" Collapse section "11.2.7. Creating the installation configuration file" 11.2.7.1. Installation configuration parameters Expand section "11.2.7.1. Installation configuration parameters" Collapse section "11.2.7.1. Installation configuration parameters" 11.2.7.1.1. Required configuration parameters 11.2.7.1.2. Network configuration parameters 11.2.7.1.3. Optional configuration parameters 11.2.7.1.4. Additional Nutanix configuration parameters 11.2.7.2. Sample customized install-config.yaml file for Nutanix 11.2.7.3. Configuring the cluster-wide proxy during installation 11.2.8. Installing the OpenShift CLI by downloading the binary 11.2.9. Configuring IAM for Nutanix 11.2.10. Deploying the cluster 11.2.11. Configuring the default storage container 11.2.12. Telemetry access for OpenShift Container Platform 11.2.13. Additional resources 11.2.14. Next steps 11.3. Installing a cluster on Nutanix in a restricted network Expand section "11.3. Installing a cluster on Nutanix in a restricted network" Collapse section "11.3. Installing a cluster on Nutanix in a restricted network" 11.3.1. Prerequisites 11.3.2. About installations in restricted networks Expand section "11.3.2. About installations in restricted networks" Collapse section "11.3.2. About installations in restricted networks" 11.3.2.1. Additional limits 11.3.3. Generating a key pair for cluster node SSH access 11.3.4. Adding Nutanix root CA certificates to your system trust 11.3.5. Downloading the RHCOS cluster image 11.3.6. Creating the installation configuration file Expand section "11.3.6. Creating the installation configuration file" Collapse section "11.3.6. Creating the installation configuration file" 11.3.6.1. Installation configuration parameters Expand section "11.3.6.1. Installation configuration parameters" Collapse section "11.3.6.1. Installation configuration parameters" 11.3.6.1.1. Required configuration parameters 11.3.6.1.2. Network configuration parameters 11.3.6.1.3. Optional configuration parameters 11.3.6.1.4. Additional Nutanix configuration parameters 11.3.6.2. Sample customized install-config.yaml file for Nutanix 11.3.6.3. Configuring the cluster-wide proxy during installation 11.3.7. Installing the OpenShift CLI by downloading the binary 11.3.8. Configuring IAM for Nutanix 11.3.9. Deploying the cluster 11.3.10. Post installation Expand section "11.3.10. Post installation" Collapse section "11.3.10. Post installation" 11.3.10.1. Disabling the default OperatorHub catalog sources 11.3.10.2. Installing the policy resources into the cluster 11.3.10.3. Configuring the default storage container 11.3.11. Telemetry access for OpenShift Container Platform 11.3.12. Additional resources 11.3.13. Next steps 11.4. Uninstalling a cluster on Nutanix Expand section "11.4. Uninstalling a cluster on Nutanix" Collapse section "11.4. Uninstalling a cluster on Nutanix" 11.4.1. Removing a cluster that uses installer-provisioned infrastructure 12. Installing on bare metal Expand section "12. Installing on bare metal" Collapse section "12. Installing on bare metal" 12.1. Preparing for bare metal cluster installation Expand section "12.1. Preparing for bare metal cluster installation" Collapse section "12.1. Preparing for bare metal cluster installation" 12.1.1. Prerequisites 12.1.2. Planning a bare metal cluster for OpenShift Virtualization 12.1.3. NIC partitioning for SR-IOV devices (Technology Preview) 12.1.4. Choosing a method to install OpenShift Container Platform on bare metal Expand section "12.1.4. Choosing a method to install OpenShift Container Platform on bare metal" Collapse section "12.1.4. Choosing a method to install OpenShift Container Platform on bare metal" 12.1.4.1. Installing a cluster on installer-provisioned infrastructure 12.1.4.2. Installing a cluster on user-provisioned infrastructure 12.2. Installing a user-provisioned cluster on bare metal Expand section "12.2. Installing a user-provisioned cluster on bare metal" Collapse section "12.2. Installing a user-provisioned cluster on bare metal" 12.2.1. Prerequisites 12.2.2. Internet access for OpenShift Container Platform 12.2.3. Requirements for a cluster with user-provisioned infrastructure Expand section "12.2.3. Requirements for a cluster with user-provisioned infrastructure" Collapse section "12.2.3. Requirements for a cluster with user-provisioned infrastructure" 12.2.3.1. Required machines for cluster installation 12.2.3.2. Minimum resource requirements for cluster installation 12.2.3.3. Certificate signing requests management 12.2.3.4. Networking requirements for user-provisioned infrastructure Expand section "12.2.3.4. Networking requirements for user-provisioned infrastructure" Collapse section "12.2.3.4. Networking requirements for user-provisioned infrastructure" 12.2.3.4.1. Setting the cluster node hostnames through DHCP 12.2.3.4.2. Network connectivity requirements 12.2.3.5. User-provisioned DNS requirements Expand section "12.2.3.5. User-provisioned DNS requirements" Collapse section "12.2.3.5. User-provisioned DNS requirements" 12.2.3.5.1. Example DNS configuration for user-provisioned clusters 12.2.3.6. Load balancing requirements for user-provisioned infrastructure Expand section "12.2.3.6. Load balancing requirements for user-provisioned infrastructure" Collapse section "12.2.3.6. Load balancing requirements for user-provisioned infrastructure" 12.2.3.6.1. Example load balancer configuration for user-provisioned clusters 12.2.4. Preparing the user-provisioned infrastructure 12.2.5. Validating DNS resolution for user-provisioned infrastructure 12.2.6. Generating a key pair for cluster node SSH access 12.2.7. Obtaining the installation program 12.2.8. Installing the OpenShift CLI by downloading the binary 12.2.9. Manually creating the installation configuration file Expand section "12.2.9. Manually creating the installation configuration file" Collapse section "12.2.9. Manually creating the installation configuration file" 12.2.9.1. Installation configuration parameters Expand section "12.2.9.1. Installation configuration parameters" Collapse section "12.2.9.1. Installation configuration parameters" 12.2.9.1.1. Required configuration parameters 12.2.9.1.2. Network configuration parameters 12.2.9.1.3. Optional configuration parameters 12.2.9.2. Sample install-config.yaml file for bare metal 12.2.9.3. Configuring the cluster-wide proxy during installation 12.2.9.4. Configuring a three-node cluster 12.2.10. Creating the Kubernetes manifest and Ignition config files 12.2.11. Installing RHCOS and starting the OpenShift Container Platform bootstrap process Expand section "12.2.11. Installing RHCOS and starting the OpenShift Container Platform bootstrap process" Collapse section "12.2.11. Installing RHCOS and starting the OpenShift Container Platform bootstrap process" 12.2.11.1. Installing RHCOS by using an ISO image 12.2.11.2. Installing RHCOS by using PXE or iPXE booting 12.2.11.3. Advanced RHCOS installation configuration Expand section "12.2.11.3. Advanced RHCOS installation configuration" Collapse section "12.2.11.3. Advanced RHCOS installation configuration" 12.2.11.3.1. Using advanced networking options for PXE and ISO installations 12.2.11.3.2. Disk partitioning Expand section "12.2.11.3.2. Disk partitioning" Collapse section "12.2.11.3.2. Disk partitioning" 12.2.11.3.2.1. Creating a separate /var partition 12.2.11.3.2.2. Retaining existing partitions 12.2.11.3.3. Identifying Ignition configs 12.2.11.3.4. Default console configuration 12.2.11.3.5. Enabling the serial console for PXE and ISO installations 12.2.11.3.6. Customizing a live RHCOS ISO or PXE install 12.2.11.3.7. Customizing a live RHCOS ISO image Expand section "12.2.11.3.7. Customizing a live RHCOS ISO image" Collapse section "12.2.11.3.7. Customizing a live RHCOS ISO image" 12.2.11.3.7.1. Modifying a live install ISO image to enable the serial console 12.2.11.3.7.2. Modifying a live install ISO image to use a custom certificate authority 12.2.11.3.7.3. Modifying a live install ISO image with customized network settings 12.2.11.3.8. Customizing a live RHCOS PXE environment Expand section "12.2.11.3.8. Customizing a live RHCOS PXE environment" Collapse section "12.2.11.3.8. Customizing a live RHCOS PXE environment" 12.2.11.3.8.1. Modifying a live install PXE environment to enable the serial console 12.2.11.3.8.2. Modifying a live install PXE environment to use a custom certificate authority 12.2.11.3.8.3. Modifying a live install PXE environment with customized network settings 12.2.11.3.9. Advanced RHCOS installation reference Expand section "12.2.11.3.9. Advanced RHCOS installation reference" Collapse section "12.2.11.3.9. Advanced RHCOS installation reference" 12.2.11.3.9.1. Networking and bonding options for ISO installations 12.2.11.3.9.2. coreos-installer options for ISO and PXE installations 12.2.11.3.9.3. coreos.inst boot options for ISO or PXE installations 12.2.11.4. Enabling multipathing with kernel arguments on RHCOS 12.2.11.5. Updating the bootloader using bootupd 12.2.12. Waiting for the bootstrap process to complete 12.2.13. Logging in to the cluster by using the CLI 12.2.14. Approving the certificate signing requests for your machines 12.2.15. Initial Operator configuration Expand section "12.2.15. Initial Operator configuration" Collapse section "12.2.15. Initial Operator configuration" 12.2.15.1. Image registry removed during installation 12.2.15.2. Image registry storage configuration Expand section "12.2.15.2. Image registry storage configuration" Collapse section "12.2.15.2. Image registry storage configuration" 12.2.15.2.1. Configuring registry storage for bare metal and other manual installations 12.2.15.2.2. Configuring storage for the image registry in non-production clusters 12.2.15.2.3. Configuring block registry storage 12.2.16. Completing installation on user-provisioned infrastructure 12.2.17. Telemetry access for OpenShift Container Platform 12.2.18. Next steps 12.3. Installing a user-provisioned bare metal cluster with network customizations Expand section "12.3. Installing a user-provisioned bare metal cluster with network customizations" Collapse section "12.3. Installing a user-provisioned bare metal cluster with network customizations" 12.3.1. Prerequisites 12.3.2. Internet access for OpenShift Container Platform 12.3.3. Requirements for a cluster with user-provisioned infrastructure Expand section "12.3.3. Requirements for a cluster with user-provisioned infrastructure" Collapse section "12.3.3. Requirements for a cluster with user-provisioned infrastructure" 12.3.3.1. Required machines for cluster installation 12.3.3.2. Minimum resource requirements for cluster installation 12.3.3.3. Certificate signing requests management 12.3.3.4. Networking requirements for user-provisioned infrastructure Expand section "12.3.3.4. Networking requirements for user-provisioned infrastructure" Collapse section "12.3.3.4. Networking requirements for user-provisioned infrastructure" 12.3.3.4.1. Setting the cluster node hostnames through DHCP 12.3.3.4.2. Network connectivity requirements 12.3.3.5. User-provisioned DNS requirements Expand section "12.3.3.5. User-provisioned DNS requirements" Collapse section "12.3.3.5. User-provisioned DNS requirements" 12.3.3.5.1. Example DNS configuration for user-provisioned clusters 12.3.3.6. Load balancing requirements for user-provisioned infrastructure Expand section "12.3.3.6. Load balancing requirements for user-provisioned infrastructure" Collapse section "12.3.3.6. Load balancing requirements for user-provisioned infrastructure" 12.3.3.6.1. Example load balancer configuration for user-provisioned clusters 12.3.4. Preparing the user-provisioned infrastructure 12.3.5. Validating DNS resolution for user-provisioned infrastructure 12.3.6. Generating a key pair for cluster node SSH access 12.3.7. Obtaining the installation program 12.3.8. Installing the OpenShift CLI by downloading the binary 12.3.9. Manually creating the installation configuration file Expand section "12.3.9. Manually creating the installation configuration file" Collapse section "12.3.9. Manually creating the installation configuration file" 12.3.9.1. Installation configuration parameters Expand section "12.3.9.1. Installation configuration parameters" Collapse section "12.3.9.1. Installation configuration parameters" 12.3.9.1.1. Required configuration parameters 12.3.9.1.2. Network configuration parameters 12.3.9.1.3. Optional configuration parameters 12.3.9.2. Sample install-config.yaml file for bare metal 12.3.10. Network configuration phases 12.3.11. Specifying advanced network configuration 12.3.12. Cluster Network Operator configuration Expand section "12.3.12. Cluster Network Operator configuration" Collapse section "12.3.12. Cluster Network Operator configuration" 12.3.12.1. Cluster Network Operator configuration object 12.3.13. Creating the Ignition config files 12.3.14. Installing RHCOS and starting the OpenShift Container Platform bootstrap process Expand section "12.3.14. Installing RHCOS and starting the OpenShift Container Platform bootstrap process" Collapse section "12.3.14. Installing RHCOS and starting the OpenShift Container Platform bootstrap process" 12.3.14.1. Installing RHCOS by using an ISO image 12.3.14.2. Installing RHCOS by using PXE or iPXE booting 12.3.14.3. Advanced RHCOS installation configuration Expand section "12.3.14.3. Advanced RHCOS installation configuration" Collapse section "12.3.14.3. Advanced RHCOS installation configuration" 12.3.14.3.1. Using advanced networking options for PXE and ISO installations 12.3.14.3.2. Disk partitioning Expand section "12.3.14.3.2. Disk partitioning" Collapse section "12.3.14.3.2. Disk partitioning" 12.3.14.3.2.1. Creating a separate /var partition 12.3.14.3.2.2. Retaining existing partitions 12.3.14.3.3. Identifying Ignition configs 12.3.14.3.4. Default console configuration 12.3.14.3.5. Enabling the serial console for PXE and ISO installations 12.3.14.3.6. Customizing a live RHCOS ISO or PXE install 12.3.14.3.7. Customizing a live RHCOS ISO image Expand section "12.3.14.3.7. Customizing a live RHCOS ISO image" Collapse section "12.3.14.3.7. Customizing a live RHCOS ISO image" 12.3.14.3.7.1. Modifying a live install ISO image to enable the serial console 12.3.14.3.7.2. Modifying a live install ISO image to use a custom certificate authority 12.3.14.3.7.3. Modifying a live install ISO image with customized network settings 12.3.14.3.8. Customizing a live RHCOS PXE environment Expand section "12.3.14.3.8. Customizing a live RHCOS PXE environment" Collapse section "12.3.14.3.8. Customizing a live RHCOS PXE environment" 12.3.14.3.8.1. Modifying a live install PXE environment to enable the serial console 12.3.14.3.8.2. Modifying a live install PXE environment to use a custom certificate authority 12.3.14.3.8.3. Modifying a live install PXE environment with customized network settings 12.3.14.3.9. Advanced RHCOS installation reference Expand section "12.3.14.3.9. Advanced RHCOS installation reference" Collapse section "12.3.14.3.9. Advanced RHCOS installation reference" 12.3.14.3.9.1. Networking and bonding options for ISO installations 12.3.14.3.9.2. coreos-installer options for ISO and PXE installations 12.3.14.3.9.3. coreos.inst boot options for ISO or PXE installations 12.3.14.4. Enabling multipathing with kernel arguments on RHCOS 12.3.14.5. Updating the bootloader using bootupd 12.3.15. Waiting for the bootstrap process to complete 12.3.16. Logging in to the cluster by using the CLI 12.3.17. Approving the certificate signing requests for your machines 12.3.18. Initial Operator configuration Expand section "12.3.18. Initial Operator configuration" Collapse section "12.3.18. Initial Operator configuration" 12.3.18.1. Image registry removed during installation 12.3.18.2. Image registry storage configuration 12.3.18.3. Configuring block registry storage 12.3.19. Completing installation on user-provisioned infrastructure 12.3.20. Telemetry access for OpenShift Container Platform 12.3.21. Next steps 12.4. Installing a user-provisioned bare metal cluster on a restricted network Expand section "12.4. Installing a user-provisioned bare metal cluster on a restricted network" Collapse section "12.4. Installing a user-provisioned bare metal cluster on a restricted network" 12.4.1. Prerequisites 12.4.2. About installations in restricted networks Expand section "12.4.2. About installations in restricted networks" Collapse section "12.4.2. About installations in restricted networks" 12.4.2.1. Additional limits 12.4.3. Internet access for OpenShift Container Platform 12.4.4. Requirements for a cluster with user-provisioned infrastructure Expand section "12.4.4. Requirements for a cluster with user-provisioned infrastructure" Collapse section "12.4.4. Requirements for a cluster with user-provisioned infrastructure" 12.4.4.1. Required machines for cluster installation 12.4.4.2. Minimum resource requirements for cluster installation 12.4.4.3. Certificate signing requests management 12.4.4.4. Networking requirements for user-provisioned infrastructure Expand section "12.4.4.4. Networking requirements for user-provisioned infrastructure" Collapse section "12.4.4.4. Networking requirements for user-provisioned infrastructure" 12.4.4.4.1. Setting the cluster node hostnames through DHCP 12.4.4.4.2. Network connectivity requirements 12.4.4.5. User-provisioned DNS requirements Expand section "12.4.4.5. User-provisioned DNS requirements" Collapse section "12.4.4.5. User-provisioned DNS requirements" 12.4.4.5.1. Example DNS configuration for user-provisioned clusters 12.4.4.6. Load balancing requirements for user-provisioned infrastructure Expand section "12.4.4.6. Load balancing requirements for user-provisioned infrastructure" Collapse section "12.4.4.6. Load balancing requirements for user-provisioned infrastructure" 12.4.4.6.1. Example load balancer configuration for user-provisioned clusters 12.4.5. Preparing the user-provisioned infrastructure 12.4.6. Validating DNS resolution for user-provisioned infrastructure 12.4.7. Generating a key pair for cluster node SSH access 12.4.8. Manually creating the installation configuration file Expand section "12.4.8. Manually creating the installation configuration file" Collapse section "12.4.8. Manually creating the installation configuration file" 12.4.8.1. Installation configuration parameters Expand section "12.4.8.1. Installation configuration parameters" Collapse section "12.4.8.1. Installation configuration parameters" 12.4.8.1.1. Required configuration parameters 12.4.8.1.2. Network configuration parameters 12.4.8.1.3. Optional configuration parameters 12.4.8.2. Sample install-config.yaml file for bare metal 12.4.8.3. Configuring the cluster-wide proxy during installation 12.4.8.4. Configuring a three-node cluster 12.4.9. Creating the Kubernetes manifest and Ignition config files 12.4.10. Configuring chrony time service 12.4.11. Installing RHCOS and starting the OpenShift Container Platform bootstrap process Expand section "12.4.11. Installing RHCOS and starting the OpenShift Container Platform bootstrap process" Collapse section "12.4.11. Installing RHCOS and starting the OpenShift Container Platform bootstrap process" 12.4.11.1. Installing RHCOS by using an ISO image 12.4.11.2. Installing RHCOS by using PXE or iPXE booting 12.4.11.3. Advanced RHCOS installation configuration Expand section "12.4.11.3. Advanced RHCOS installation configuration" Collapse section "12.4.11.3. Advanced RHCOS installation configuration" 12.4.11.3.1. Using advanced networking options for PXE and ISO installations 12.4.11.3.2. Disk partitioning Expand section "12.4.11.3.2. Disk partitioning" Collapse section "12.4.11.3.2. Disk partitioning" 12.4.11.3.2.1. Creating a separate /var partition 12.4.11.3.2.2. Retaining existing partitions 12.4.11.3.3. Identifying Ignition configs 12.4.11.3.4. Default console configuration 12.4.11.3.5. Enabling the serial console for PXE and ISO installations 12.4.11.3.6. Customizing a live RHCOS ISO or PXE install 12.4.11.3.7. Customizing a live RHCOS ISO image Expand section "12.4.11.3.7. Customizing a live RHCOS ISO image" Collapse section "12.4.11.3.7. Customizing a live RHCOS ISO image" 12.4.11.3.7.1. Modifying a live install ISO image to enable the serial console 12.4.11.3.7.2. Modifying a live install ISO image to use a custom certificate authority 12.4.11.3.7.3. Modifying a live install ISO image with customized network settings 12.4.11.3.8. Customizing a live RHCOS PXE environment Expand section "12.4.11.3.8. Customizing a live RHCOS PXE environment" Collapse section "12.4.11.3.8. Customizing a live RHCOS PXE environment" 12.4.11.3.8.1. Modifying a live install PXE environment to enable the serial console 12.4.11.3.8.2. Modifying a live install PXE environment to use a custom certificate authority 12.4.11.3.8.3. Modifying a live install PXE environment with customized network settings 12.4.11.3.9. Advanced RHCOS installation reference Expand section "12.4.11.3.9. Advanced RHCOS installation reference" Collapse section "12.4.11.3.9. Advanced RHCOS installation reference" 12.4.11.3.9.1. Networking and bonding options for ISO installations 12.4.11.3.9.2. coreos-installer options for ISO and PXE installations 12.4.11.3.9.3. coreos.inst boot options for ISO or PXE installations 12.4.11.4. Enabling multipathing with kernel arguments on RHCOS 12.4.11.5. Updating the bootloader using bootupd 12.4.12. Waiting for the bootstrap process to complete 12.4.13. Logging in to the cluster by using the CLI 12.4.14. Approving the certificate signing requests for your machines 12.4.15. Initial Operator configuration Expand section "12.4.15. Initial Operator configuration" Collapse section "12.4.15. Initial Operator configuration" 12.4.15.1. Disabling the default OperatorHub catalog sources 12.4.15.2. Image registry storage configuration Expand section "12.4.15.2. Image registry storage configuration" Collapse section "12.4.15.2. Image registry storage configuration" 12.4.15.2.1. Changing the image registry’s management state 12.4.15.2.2. Configuring registry storage for bare metal and other manual installations 12.4.15.2.3. Configuring storage for the image registry in non-production clusters 12.4.15.2.4. Configuring block registry storage 12.4.16. Completing installation on user-provisioned infrastructure 12.4.17. Telemetry access for OpenShift Container Platform 12.4.18. Next steps 12.5. Scaling a user-provisioned cluster with the Bare Metal Operator Expand section "12.5. Scaling a user-provisioned cluster with the Bare Metal Operator" Collapse section "12.5. Scaling a user-provisioned cluster with the Bare Metal Operator" 12.5.1. About scaling a user-provisioned cluster with the Bare Metal Operator Expand section "12.5.1. About scaling a user-provisioned cluster with the Bare Metal Operator" Collapse section "12.5.1. About scaling a user-provisioned cluster with the Bare Metal Operator" 12.5.1.1. Prerequisites for scaling a user-provisioned cluster 12.5.1.2. Limitations for scaling a user-provisioned cluster 12.5.2. Configuring a provisioning resource to scale user-provisioned clusters 12.5.3. Provisioning new hosts in a user-provisioned cluster by using the BMO 12.5.4. Optional: Managing existing hosts in a user-provisioned cluster by using the BMO 12.5.5. Removing hosts from a user-provisioned cluster by using the BMO 13. Installing on-premise with Assisted Installer Expand section "13. Installing on-premise with Assisted Installer" Collapse section "13. Installing on-premise with Assisted Installer" 13.1. Installing an on-premise cluster using the Assisted Installer Expand section "13.1. Installing an on-premise cluster using the Assisted Installer" Collapse section "13.1. Installing an on-premise cluster using the Assisted Installer" 13.1.1. Using the Assisted Installer 13.1.2. API support for the Assisted Installer 14. Installing an on-premise cluster with the Agent-based Installer Expand section "14. Installing an on-premise cluster with the Agent-based Installer" Collapse section "14. Installing an on-premise cluster with the Agent-based Installer" 14.1. Preparing to install with the Agent-based installer Expand section "14.1. Preparing to install with the Agent-based installer" Collapse section "14.1. Preparing to install with the Agent-based installer" 14.1.1. About the Agent-based Installer 14.1.2. Understanding Agent-based Installer Expand section "14.1.2. Understanding Agent-based Installer" Collapse section "14.1.2. Understanding Agent-based Installer" 14.1.2.1. Agent-based Installer workflow 14.1.2.2. Recommended resources for topologies 14.1.3. About networking Expand section "14.1.3. About networking" Collapse section "14.1.3. About networking" 14.1.3.1. DHCP 14.1.3.2. Static networking 14.1.4. Example: Bonds and VLAN interface node network configuration 14.1.5. Example: Bonds and SR-IOV dual-nic node network configuration 14.1.6. Sample install-config.yaml file for bare metal 14.1.7. Validation checks before agent ISO creation Expand section "14.1.7. Validation checks before agent ISO creation" Collapse section "14.1.7. Validation checks before agent ISO creation" 14.1.7.1. ZTP manifests 14.1.8. About root device hints 14.1.9. Next steps 14.2. Understanding disconnected installation mirroring Expand section "14.2. Understanding disconnected installation mirroring" Collapse section "14.2. Understanding disconnected installation mirroring" 14.2.1. Mirroring images for a disconnected installation through the Agent-based Installer 14.2.2. About mirroring the OpenShift Container Platform image repository for a disconnected registry Expand section "14.2.2. About mirroring the OpenShift Container Platform image repository for a disconnected registry" Collapse section "14.2.2. About mirroring the OpenShift Container Platform image repository for a disconnected registry" 14.2.2.1. Configuring the Agent-based Installer to use mirrored images 14.3. Installing a OpenShift Container Platform cluster with the Agent-based Installer Expand section "14.3. Installing a OpenShift Container Platform cluster with the Agent-based Installer" Collapse section "14.3. Installing a OpenShift Container Platform cluster with the Agent-based Installer" 14.3.1. Prerequisites 14.3.2. Installing OpenShift Container Platform with the Agent-based Installer Expand section "14.3.2. Installing OpenShift Container Platform with the Agent-based Installer" Collapse section "14.3.2. Installing OpenShift Container Platform with the Agent-based Installer" 14.3.2.1. Downloading the Agent-based Installer 14.3.2.2. Creating and booting the agent image 14.3.2.3. Verifying that the current installation host can pull release images 14.3.2.4. Tracking and verifying installation progress 14.3.3. Sample GitOps ZTP custom resources 14.4. Preparing an Agent-based installed cluster for the multicluster engine for Kubernetes Operator Expand section "14.4. Preparing an Agent-based installed cluster for the multicluster engine for Kubernetes Operator" Collapse section "14.4. Preparing an Agent-based installed cluster for the multicluster engine for Kubernetes Operator" 14.4.1. Prerequisites 14.4.2. Preparing an agent-based cluster deployment for the multicluster engine for Kubernetes Operator while disconnected 14.4.3. Preparing an agent-based cluster deployment for the multicluster engine for Kubernetes Operator while connected 15. Installing on a single node Expand section "15. Installing on a single node" Collapse section "15. Installing on a single node" 15.1. Preparing to install on a single node Expand section "15.1. Preparing to install on a single node" Collapse section "15.1. Preparing to install on a single node" 15.1.1. Prerequisites 15.1.2. About OpenShift on a single node 15.1.3. Requirements for installing OpenShift on a single node 15.2. Installing OpenShift on a single node Expand section "15.2. Installing OpenShift on a single node" Collapse section "15.2. Installing OpenShift on a single node" 15.2.1. Installing single-node OpenShift using the Assisted Installer Expand section "15.2.1. Installing single-node OpenShift using the Assisted Installer" Collapse section "15.2.1. Installing single-node OpenShift using the Assisted Installer" 15.2.1.1. Generating the discovery ISO with the Assisted Installer 15.2.1.2. Installing single-node OpenShift with the Assisted Installer 15.2.2. Installing single-node OpenShift manually Expand section "15.2.2. Installing single-node OpenShift manually" Collapse section "15.2.2. Installing single-node OpenShift manually" 15.2.2.1. Generating the installation ISO with coreos-installer 15.2.2.2. Monitoring the cluster installation using openshift-install 15.2.3. Installing single-node OpenShift on AWS Expand section "15.2.3. Installing single-node OpenShift on AWS" Collapse section "15.2.3. Installing single-node OpenShift on AWS" 15.2.3.1. Additional requirements for installing on a single node on AWS 15.2.3.2. Installing single-node OpenShift on AWS 15.2.4. Creating a bootable ISO image on a USB drive 15.2.5. Booting from an HTTP-hosted ISO image using the Redfish API 15.2.6. Creating a custom live RHCOS ISO for remote server access 16. Deploying installer-provisioned clusters on bare metal Expand section "16. Deploying installer-provisioned clusters on bare metal" Collapse section "16. Deploying installer-provisioned clusters on bare metal" 16.1. Overview 16.2. Prerequisites Expand section "16.2. Prerequisites" Collapse section "16.2. Prerequisites" 16.2.1. Node requirements 16.2.2. Planning a bare metal cluster for OpenShift Virtualization 16.2.3. Firmware requirements for installing with virtual media 16.2.4. Network requirements Expand section "16.2.4. Network requirements" Collapse section "16.2.4. Network requirements" 16.2.4.1. Increase the network MTU 16.2.4.2. Configuring NICs 16.2.4.3. DNS requirements 16.2.4.4. Dynamic Host Configuration Protocol (DHCP) requirements 16.2.4.5. Reserving IP addresses for nodes with the DHCP server 16.2.4.6. Network Time Protocol (NTP) 16.2.4.7. Port access for the out-of-band management IP address 16.2.5. Configuring nodes 16.2.6. Out-of-band management 16.2.7. Required data for installation 16.2.8. Validation checklist for nodes 16.3. Setting up the environment for an OpenShift installation Expand section "16.3. Setting up the environment for an OpenShift installation" Collapse section "16.3. Setting up the environment for an OpenShift installation" 16.3.1. Installing RHEL on the provisioner node 16.3.2. Preparing the provisioner node for OpenShift Container Platform installation 16.3.3. Configuring networking 16.3.4. Retrieving the OpenShift Container Platform installer 16.3.5. Extracting the OpenShift Container Platform installer 16.3.6. Optional: Creating an RHCOS images cache 16.3.7. Configuring the install-config.yaml file Expand section "16.3.7. Configuring the install-config.yaml file" Collapse section "16.3.7. Configuring the install-config.yaml file" 16.3.7.1. Configuring the install-config.yaml file 16.3.7.2. Additional install-config parameters 16.3.7.3. BMC addressing 16.3.7.4. BMC addressing for Dell iDRAC 16.3.7.5. BMC addressing for HPE iLO 16.3.7.6. BMC addressing for Fujitsu iRMC 16.3.7.7. Root device hints 16.3.7.8. Optional: Setting proxy settings 16.3.7.9. Optional: Deploying with no provisioning network 16.3.7.10. Optional: Deploying with dual-stack networking 16.3.7.11. Optional: Configuring host network interfaces 16.3.7.12. Optional: Configuring host network interfaces for dual port NIC 16.3.7.13. Configuring multiple cluster nodes 16.3.7.14. Optional: Configuring managed Secure Boot 16.3.8. Manifest configuration files Expand section "16.3.8. Manifest configuration files" Collapse section "16.3.8. Manifest configuration files" 16.3.8.1. Creating the OpenShift Container Platform manifests 16.3.8.2. Optional: Configuring NTP for disconnected clusters 16.3.8.3. Configuring network components to run on the control plane 16.3.8.4. Optional: Deploying routers on worker nodes 16.3.8.5. Optional: Configuring the BIOS 16.3.8.6. Optional: Configuring the RAID 16.3.8.7. Optional: Configuring storage on nodes 16.3.9. Creating a disconnected registry Expand section "16.3.9. Creating a disconnected registry" Collapse section "16.3.9. Creating a disconnected registry" 16.3.9.1. Preparing the registry node to host the mirrored registry 16.3.9.2. Mirroring the OpenShift Container Platform image repository for a disconnected registry 16.3.9.3. Modify the install-config.yaml file to use the disconnected registry 16.3.10. Validation checklist for installation 16.3.11. Deploying the cluster via the OpenShift Container Platform installer 16.3.12. Following the installation 16.3.13. Verifying static IP address configuration 16.3.14. Preparing to reinstall a cluster on bare metal 16.3.15. Additional resources 16.4. Installer-provisioned post-installation configuration Expand section "16.4. Installer-provisioned post-installation configuration" Collapse section "16.4. Installer-provisioned post-installation configuration" 16.4.1. Optional: Configuring NTP for disconnected clusters 16.4.2. Enabling a provisioning network after installation 16.4.3. Configuring an external load balancer 16.5. Expanding the cluster Expand section "16.5. Expanding the cluster" Collapse section "16.5. Expanding the cluster" 16.5.1. Preparing the bare metal node 16.5.2. Replacing a bare-metal control plane node 16.5.3. Preparing to deploy with Virtual Media on the baremetal network 16.5.4. Diagnosing a duplicate MAC address when provisioning a new host in the cluster 16.5.5. Provisioning the bare metal node 16.6. Troubleshooting Expand section "16.6. Troubleshooting" Collapse section "16.6. Troubleshooting" 16.6.1. Troubleshooting the installer workflow 16.6.2. Troubleshooting install-config.yaml 16.6.3. Bootstrap VM issues Expand section "16.6.3. Bootstrap VM issues" Collapse section "16.6.3. Bootstrap VM issues" 16.6.3.1. Bootstrap VM cannot boot up the cluster nodes 16.6.3.2. Inspecting logs 16.6.4. Cluster nodes will not PXE boot 16.6.5. Unable to discover new bare metal hosts using the BMC 16.6.6. The API is not accessible 16.6.7. Cleaning up previous installations 16.6.8. Issues with creating the registry 16.6.9. Miscellaneous issues Expand section "16.6.9. Miscellaneous issues" Collapse section "16.6.9. Miscellaneous issues" 16.6.9.1. Addressing the runtime network not ready error 16.6.9.2. Cluster nodes not getting the correct IPv6 address over DHCP 16.6.9.3. Cluster nodes not getting the correct hostname over DHCP 16.6.9.4. Routes do not reach endpoints 16.6.9.5. Failed Ignition during Firstboot 16.6.9.6. NTP out of sync 16.6.10. Reviewing the installation 17. Installing bare metal clusters on IBM Cloud Expand section "17. Installing bare metal clusters on IBM Cloud" Collapse section "17. Installing bare metal clusters on IBM Cloud" 17.1. Prerequisites Expand section "17.1. Prerequisites" Collapse section "17.1. Prerequisites" 17.1.1. Setting up IBM Cloud infrastructure 17.2. Setting up the environment for an OpenShift Container Platform installation Expand section "17.2. Setting up the environment for an OpenShift Container Platform installation" Collapse section "17.2. Setting up the environment for an OpenShift Container Platform installation" 17.2.1. Preparing the provisioner node for OpenShift Container Platform installation on IBM Cloud 17.2.2. Configuring the public subnet 17.2.3. Retrieving the OpenShift Container Platform installer 17.2.4. Extracting the OpenShift Container Platform installer 17.2.5. Configuring the install-config.yaml file 17.2.6. Additional install-config parameters 17.2.7. Root device hints 17.2.8. Creating the OpenShift Container Platform manifests 17.2.9. Deploying the cluster via the OpenShift Container Platform installer 17.2.10. Following the installation 18. Installing with z/VM on IBM zSystems and IBM LinuxONE Expand section "18. Installing with z/VM on IBM zSystems and IBM LinuxONE" Collapse section "18. Installing with z/VM on IBM zSystems and IBM LinuxONE" 18.1. Preparing to install with z/VM on IBM zSystems and IBM(R) LinuxONE Expand section "18.1. Preparing to install with z/VM on IBM zSystems and IBM(R) LinuxONE" Collapse section "18.1. Preparing to install with z/VM on IBM zSystems and IBM(R) LinuxONE" 18.1.1. Prerequisites 18.1.2. Choosing a method to install OpenShift Container Platform with z/VM on IBM zSystems or IBM(R) LinuxONE 18.2. Installing a cluster with z/VM on IBM zSystems and IBM(R) LinuxONE Expand section "18.2. Installing a cluster with z/VM on IBM zSystems and IBM(R) LinuxONE" Collapse section "18.2. Installing a cluster with z/VM on IBM zSystems and IBM(R) LinuxONE" 18.2.1. Prerequisites 18.2.2. Internet access for OpenShift Container Platform 18.2.3. Requirements for a cluster with user-provisioned infrastructure Expand section "18.2.3. Requirements for a cluster with user-provisioned infrastructure" Collapse section "18.2.3. Requirements for a cluster with user-provisioned infrastructure" 18.2.3.1. Required machines for cluster installation 18.2.3.2. Minimum resource requirements for cluster installation 18.2.3.3. Minimum IBM zSystems system environment 18.2.3.4. Preferred IBM zSystems system environment 18.2.3.5. Certificate signing requests management 18.2.3.6. Networking requirements for user-provisioned infrastructure Expand section "18.2.3.6. Networking requirements for user-provisioned infrastructure" Collapse section "18.2.3.6. Networking requirements for user-provisioned infrastructure" 18.2.3.6.1. Network connectivity requirements 18.2.3.7. User-provisioned DNS requirements Expand section "18.2.3.7. User-provisioned DNS requirements" Collapse section "18.2.3.7. User-provisioned DNS requirements" 18.2.3.7.1. Example DNS configuration for user-provisioned clusters 18.2.3.8. Load balancing requirements for user-provisioned infrastructure Expand section "18.2.3.8. Load balancing requirements for user-provisioned infrastructure" Collapse section "18.2.3.8. Load balancing requirements for user-provisioned infrastructure" 18.2.3.8.1. Example load balancer configuration for user-provisioned clusters 18.2.4. Preparing the user-provisioned infrastructure 18.2.5. Validating DNS resolution for user-provisioned infrastructure 18.2.6. Generating a key pair for cluster node SSH access 18.2.7. Obtaining the installation program 18.2.8. Installing the OpenShift CLI by downloading the binary 18.2.9. Manually creating the installation configuration file Expand section "18.2.9. Manually creating the installation configuration file" Collapse section "18.2.9. Manually creating the installation configuration file" 18.2.9.1. Installation configuration parameters Expand section "18.2.9.1. Installation configuration parameters" Collapse section "18.2.9.1. Installation configuration parameters" 18.2.9.1.1. Required configuration parameters 18.2.9.1.2. Network configuration parameters 18.2.9.1.3. Optional configuration parameters 18.2.9.2. Sample install-config.yaml file for IBM zSystems 18.2.9.3. Configuring the cluster-wide proxy during installation 18.2.9.4. Configuring a three-node cluster 18.2.10. Cluster Network Operator configuration Expand section "18.2.10. Cluster Network Operator configuration" Collapse section "18.2.10. Cluster Network Operator configuration" 18.2.10.1. Cluster Network Operator configuration object 18.2.11. Creating the Kubernetes manifest and Ignition config files 18.2.12. Configuring NBDE with static IP in an IBM zSystems or IBM(R) LinuxONE environment 18.2.13. Installing RHCOS and starting the OpenShift Container Platform bootstrap process Expand section "18.2.13. Installing RHCOS and starting the OpenShift Container Platform bootstrap process" Collapse section "18.2.13. Installing RHCOS and starting the OpenShift Container Platform bootstrap process" 18.2.13.1. Advanced RHCOS installation reference Expand section "18.2.13.1. Advanced RHCOS installation reference" Collapse section "18.2.13.1. Advanced RHCOS installation reference" 18.2.13.1.1. Networking and bonding options for ISO installations 18.2.14. Waiting for the bootstrap process to complete 18.2.15. Logging in to the cluster by using the CLI 18.2.16. Approving the certificate signing requests for your machines 18.2.17. Initial Operator configuration Expand section "18.2.17. Initial Operator configuration" Collapse section "18.2.17. Initial Operator configuration" 18.2.17.1. Image registry storage configuration Expand section "18.2.17.1. Image registry storage configuration" Collapse section "18.2.17.1. Image registry storage configuration" 18.2.17.1.1. Configuring registry storage for IBM zSystems 18.2.17.1.2. Configuring storage for the image registry in non-production clusters 18.2.18. Completing installation on user-provisioned infrastructure 18.2.19. Telemetry access for OpenShift Container Platform 18.2.20. Next steps 18.3. Installing a cluster with z/VM on IBM zSystems and IBM(R) LinuxONE in a restricted network Expand section "18.3. Installing a cluster with z/VM on IBM zSystems and IBM(R) LinuxONE in a restricted network" Collapse section "18.3. Installing a cluster with z/VM on IBM zSystems and IBM(R) LinuxONE in a restricted network" 18.3.1. Prerequisites 18.3.2. About installations in restricted networks Expand section "18.3.2. About installations in restricted networks" Collapse section "18.3.2. About installations in restricted networks" 18.3.2.1. Additional limits 18.3.3. Internet access for OpenShift Container Platform 18.3.4. Requirements for a cluster with user-provisioned infrastructure Expand section "18.3.4. Requirements for a cluster with user-provisioned infrastructure" Collapse section "18.3.4. Requirements for a cluster with user-provisioned infrastructure" 18.3.4.1. Required machines for cluster installation 18.3.4.2. Minimum resource requirements for cluster installation 18.3.4.3. Minimum IBM zSystems system environment 18.3.4.4. Preferred IBM zSystems system environment 18.3.4.5. Certificate signing requests management 18.3.4.6. Networking requirements for user-provisioned infrastructure Expand section "18.3.4.6. Networking requirements for user-provisioned infrastructure" Collapse section "18.3.4.6. Networking requirements for user-provisioned infrastructure" 18.3.4.6.1. Setting the cluster node hostnames through DHCP 18.3.4.6.2. Network connectivity requirements 18.3.4.7. User-provisioned DNS requirements Expand section "18.3.4.7. User-provisioned DNS requirements" Collapse section "18.3.4.7. User-provisioned DNS requirements" 18.3.4.7.1. Example DNS configuration for user-provisioned clusters 18.3.4.8. Load balancing requirements for user-provisioned infrastructure Expand section "18.3.4.8. Load balancing requirements for user-provisioned infrastructure" Collapse section "18.3.4.8. Load balancing requirements for user-provisioned infrastructure" 18.3.4.8.1. Example load balancer configuration for user-provisioned clusters 18.3.5. Preparing the user-provisioned infrastructure 18.3.6. Validating DNS resolution for user-provisioned infrastructure 18.3.7. Generating a key pair for cluster node SSH access 18.3.8. Manually creating the installation configuration file Expand section "18.3.8. Manually creating the installation configuration file" Collapse section "18.3.8. Manually creating the installation configuration file" 18.3.8.1. Installation configuration parameters Expand section "18.3.8.1. Installation configuration parameters" Collapse section "18.3.8.1. Installation configuration parameters" 18.3.8.1.1. Required configuration parameters 18.3.8.1.2. Network configuration parameters 18.3.8.1.3. Optional configuration parameters 18.3.8.2. Sample install-config.yaml file for IBM zSystems 18.3.8.3. Configuring the cluster-wide proxy during installation 18.3.8.4. Configuring a three-node cluster 18.3.9. Cluster Network Operator configuration Expand section "18.3.9. Cluster Network Operator configuration" Collapse section "18.3.9. Cluster Network Operator configuration" 18.3.9.1. Cluster Network Operator configuration object 18.3.10. Creating the Kubernetes manifest and Ignition config files 18.3.11. Configuring NBDE with static IP in an IBM zSystems or IBM(R) LinuxONE environment 18.3.12. Installing RHCOS and starting the OpenShift Container Platform bootstrap process Expand section "18.3.12. Installing RHCOS and starting the OpenShift Container Platform bootstrap process" Collapse section "18.3.12. Installing RHCOS and starting the OpenShift Container Platform bootstrap process" 18.3.12.1. Advanced RHCOS installation reference Expand section "18.3.12.1. Advanced RHCOS installation reference" Collapse section "18.3.12.1. Advanced RHCOS installation reference" 18.3.12.1.1. Networking and bonding options for ISO installations 18.3.13. Waiting for the bootstrap process to complete 18.3.14. Logging in to the cluster by using the CLI 18.3.15. Approving the certificate signing requests for your machines 18.3.16. Initial Operator configuration Expand section "18.3.16. Initial Operator configuration" Collapse section "18.3.16. Initial Operator configuration" 18.3.16.1. Disabling the default OperatorHub catalog sources 18.3.16.2. Image registry storage configuration Expand section "18.3.16.2. Image registry storage configuration" Collapse section "18.3.16.2. Image registry storage configuration" 18.3.16.2.1. Configuring registry storage for IBM zSystems 18.3.16.2.2. Configuring storage for the image registry in non-production clusters 18.3.17. Completing installation on user-provisioned infrastructure 18.3.18. Next steps 19. Installing with RHEL KVM on IBM zSystems and IBM LinuxONE Expand section "19. Installing with RHEL KVM on IBM zSystems and IBM LinuxONE" Collapse section "19. Installing with RHEL KVM on IBM zSystems and IBM LinuxONE" 19.1. Preparing to install with RHEL KVM on IBM zSystems and IBM(R) LinuxONE Expand section "19.1. Preparing to install with RHEL KVM on IBM zSystems and IBM(R) LinuxONE" Collapse section "19.1. Preparing to install with RHEL KVM on IBM zSystems and IBM(R) LinuxONE" 19.1.1. Prerequisites 19.1.2. Choosing a method to install OpenShift Container Platform with RHEL KVM on IBM zSystems or IBM(R) LinuxONE 19.2. Installing a cluster with RHEL KVM on IBM zSystems and IBM(R) LinuxONE Expand section "19.2. Installing a cluster with RHEL KVM on IBM zSystems and IBM(R) LinuxONE" Collapse section "19.2. Installing a cluster with RHEL KVM on IBM zSystems and IBM(R) LinuxONE" 19.2.1. Prerequisites 19.2.2. Internet access for OpenShift Container Platform 19.2.3. Machine requirements for a cluster with user-provisioned infrastructure Expand section "19.2.3. Machine requirements for a cluster with user-provisioned infrastructure" Collapse section "19.2.3. Machine requirements for a cluster with user-provisioned infrastructure" 19.2.3.1. Required machines 19.2.3.2. Network connectivity requirements 19.2.3.3. IBM zSystems network connectivity requirements 19.2.3.4. Host machine resource requirements 19.2.3.5. Minimum IBM zSystems system environment 19.2.3.6. Minimum resource requirements 19.2.3.7. Preferred IBM zSystems system environment 19.2.3.8. Preferred resource requirements 19.2.3.9. Certificate signing requests management 19.2.3.10. Networking requirements for user-provisioned infrastructure Expand section "19.2.3.10. Networking requirements for user-provisioned infrastructure" Collapse section "19.2.3.10. Networking requirements for user-provisioned infrastructure" 19.2.3.10.1. Setting the cluster node hostnames through DHCP 19.2.3.10.2. Network connectivity requirements 19.2.3.11. User-provisioned DNS requirements Expand section "19.2.3.11. User-provisioned DNS requirements" Collapse section "19.2.3.11. User-provisioned DNS requirements" 19.2.3.11.1. Example DNS configuration for user-provisioned clusters 19.2.3.12. Load balancing requirements for user-provisioned infrastructure Expand section "19.2.3.12. Load balancing requirements for user-provisioned infrastructure" Collapse section "19.2.3.12. Load balancing requirements for user-provisioned infrastructure" 19.2.3.12.1. Example load balancer configuration for user-provisioned clusters 19.2.4. Preparing the user-provisioned infrastructure 19.2.5. Validating DNS resolution for user-provisioned infrastructure 19.2.6. Generating a key pair for cluster node SSH access 19.2.7. Obtaining the installation program 19.2.8. Installing the OpenShift CLI by downloading the binary 19.2.9. Manually creating the installation configuration file Expand section "19.2.9. Manually creating the installation configuration file" Collapse section "19.2.9. Manually creating the installation configuration file" 19.2.9.1. Installation configuration parameters Expand section "19.2.9.1. Installation configuration parameters" Collapse section "19.2.9.1. Installation configuration parameters"