In this document you'll find a list of the most frequently asked questions concerning the playbooks in this repository as well as more generic Red Hat OpenShift Container Platform topics.
Q: I have an air-gapped target LPAR / KVM host - can I do an offline RHOCP installation with these playbooks?
A: No, the playbooks in this repository do rely on the target LPAR / KVM host to be connected to the network with unrestricted access to the internet. This is needed in order to pull the RHOCP installation artifacts from the official Red Hat servers.
Q: Can I install / run multiple RHOCP clusters on the same target LPAR / KVM host with these playbooks?
A: No, multiple RHOCP clusters on the same host are not supported by these playbooks. Please see also the included documentation for details.
A: No, this kind of RHOCP cluster topology is not supported by the Red Hat Openshift installer when using libvirt and IPI. So by extension these playbooks do not support it either.
Q: I understand that the RHOCP cluster will be using a virtual bridge and NAT to connect to the network and gain access to the internet. Can I change this and use a different type of networking setup, e.g. macvtap or openvswitch?
A: No, using a virtual bridge and NAT is the only networking option provided by the Red Hat Openshift installer when using libvirt and IPI. If you have the need for a different type of network setup for your prospective RHOCP cluster you have to use UPI instead. Please refer to https://github.com/IBM/Ansible-OpenShift-Provisioning for an alternative solution to install RHOCP on your KVM host using UPI.
A: RHOCP can be installed on a variety of platforms and server architectures. In order to support these, the OpenShift installer implements two different strategies for installing RHOCP: either via 'user-provisioned infrastructure' (UPI) or 'installer-provisioned infrastructure' (IPI). With UPI, the user who wants to install RHOCP must make sure that all the required hardware and software resources (e.g. bare metal servers / virtual machines, static network addresses) that make up the individual parts of the RHOCP cluster are present and accounted for before the actual RHOCP installation takes place. Hence, this strategy requires a substantial amount of advance planning as well as a fairly good knowledge of the underlying platform / server architecture and the topology of the prospective RHOCP cluster that is to be installed on top of it. With IPI, however, the OpenShift installer itself creates the required cluster resources to be able to establish the final RHOCP cluster, thus relieving the user from having to gather all the resources and information beforehand and making the RHOCP installation a less involved process. The playbooks in this repository are implemented aroung the 'IPI' RHOCP installation strategy.
Q: My target LPAR / KVM host that's running my RHOCP cluster needs to be rebooted. Does the RHOCP cluster survive this / still work after the reboot is done?
A: Yes, the RHOCP cluster will survive the host reboot. You just have to make sure that the cluster gets started by starting the virtual machines (libvirt domains) that make up the individual cluster nodes on the host. It is recommended to use the playbook 'start_ocp_cluster_nodes.yml' included in this repository for this purpose:
cd ansible
# start the cluster nodes and wait for the RHOCP cluster to come online
ansible-playbook -i inventory start_ocp_cluster_nodes.yml
# check the RHOCP cluster for health issues (e.g. alerts)
ansible-playbook -i inventory check_ocp_cluster_state.yml
Q: I am frequently setting up / tearing down RHOCP clusters. My OpenShift Cluster Manager (OCM) instance is littered with references to stale clusters that no longer exist. How do I get rid of these?
A: Deleting clusters in state 'stale' in OCM is not possible at the moment. That said, there is a way to archive stale clusters meaning moving them out of OCM's main view into a separate view called 'cluster archives'. Follow these steps to do that for your OCM instance:
-
download the latest
ocm
CLI binary to your Ansible workstation (see: https://github.com/openshift-online/ocm-cli/releases) -
fetch your personal OCM API token from https://console.redhat.com/openshift/token
-
login to OCM via
ocm login --token=<your_api_token>
-
run this shell script to archive all existing stale RHOCP clusters:
#/usr/bin/env bash # create temporary OCM request payload file cat <<EOF > sub.json { "status": "Archived" } EOF # get all stale clusters from OCM and patch them with status 'Archived' for i in $(ocm get /api/accounts_mgmt/v1/subscriptions --parameter size=1000 --parameter search="status in ('Stale')" | jq -r ".items[].id"); do ocm patch "/api/accounts_mgmt/v1/subscriptions/$i" --body 'sub.json' done
You can also enable OCM integration with the playbooks in this repository so that whenever you delete an existing cluster via the cleanup_ocp_install.yml
playbook it will be acrhived in OCM automatically. For details on how to enable this integration please see here.
Q: Whenever I do manual RHOCP installations on KVM hosts I am using a single virtual Linux instance (aka a KVM guest) on the same host where I am installing RHOCP to. Can I use the same setup with these playbooks?
A: No, this kind of setup does not work with the Ansible playbooks. Make sure to run a dedicated standalone Ansible-compatible workstation (e.g. MacOSX, Linux) that is physically separate from the target host that you want to install RHOCP on. The Ansible playbooks need full control over the target host, including installing / configuring and stopping / restarting KVM. This is impossible with the Ansible controller being hosted by KVM on the target host itself.
Q: Unfortunately I don't have direct root access to my target LPAR / KVM host but I was given sudo access for my user ID. Can I still make use of these playbooks?
A: Yes, using sudo instead of direct root access to the target LPAR / KVM host should work, too. Just make sure that the administrator of your target LPAR / KVM host has configured password-less sudo access for your user account for all commands / actions and that you have configured password-less SSH access to your user account on that host. Once that is done make sure to modify your Ansible 'inventory' file so that it looks like in this example:
all:
children:
s390x_kvm_host:
hosts:
myhost-no-root:
ansible_user: myuserid
ansible_become: true
...
Q: Which cluster topologies / layouts are supported by these playbooks? Can I install a single-node OpenShift (SNO) cluster as well?
A: While the playbooks have been created with the standard multi-node cluster layout in mind you do have the option to install clusters with different layouts and sizes:
master nodes | worker nodes | cluster layout |
---|---|---|
3 | 1 to n | multi-node cluster |
1 | 0 | single-node cluster |
The following parameters in the ansible/host_vars/host.yml.template
file are used to configure the topology of the OpenShift cluster and the sizes of the different cluster nodes:
- openshift_master_root_volume_size
- openshift_master_number_of_cpus
- openshift_master_memory_size
- cluster_number_of_workers
- openshift_worker_root_volume_size
- openshift_worker_number_of_cpus
- openshift_worker_memory_size
Please note that there is a special configuration parameter cluster_number_of_masters
not present in the host.yml.template
which determines how many cluster master nodes are to be installed. It is not listed along with the other aforementioned parameters as it basically determines the general cluster installation topology - single-node vs. multi-node. Setting this parameter to anything else than '1' is not supported at the moment - if this parameter is not defined at all then the number of master nodes to be installed defaults to '3'. Also make sure that whenever you do set the cluster_number_of_masters
on purpose in your host-specific configuration YAML file that you set the corresponding parameter cluster_number_of_workers
to '0'.