Log in / Register


Red Hat Advanced Cluster Management for Kubernetes

Last Updated:


Applications are moving from a monolithic to a cloud-native approach—built with multiple components spanning multiple clusters and cloud providers. As application workloads move from development to production, IT often requires multiple fit-for-purpose Kubernetes clusters to support continuous integration/continuous delivery (CI/CD) of DevOps pipelines. Cluster sprawl continues with the addition of new clusters configured for specific purposes, such as edge deployments, faster response time, reduced latency, reduced capital expenditures (CapEx), and compliance with data residency requirements. 

Whether your organization is just getting started with a single cluster or already operating in a multicluster environment, you likely face some difficult decisions: 

  • How can I manage the life cycle of multiple clusters regardless of where they reside (on-premise or across public clouds) using a single control plane?  
  • How do I get a simplified understanding of my cluster health and the effect it may have on my application availability?
  • How do I automate provisioning and deprovisioning of my clusters?
  • How do I ensure that all of my clusters are compliant with standard and custom policies?
  • How do I get alerted about configuration drift—and remediate it?
  • How can I automate the placement of workloads based on capacity and policy?

Red Hat Advanced Cluster Management for Kubernetes

Red Hat® Advanced Cluster Management for Kubernetes offers end-to-end management visibility and control to manage your cluster and application life cycle, along with security and compliance of your entire Kubernetes domain across multiple datacenters and public clouds.

Red Hat Advanced Cluster Management provides a single view to manage your Kubernetes clusters. Easily provision new Red Hat OpenShift® clusters across: Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), bare metal, Red Hat OpenStack® Platform and VMware vSphere. In addition, existing Red Hat OpenShift clusters can be imported and managed, such as Red Hat OpenShift on IBM Cloud , Microsoft Azure Red Hat OpenShift, Red Hat OpenShift Dedicated, OpenShift on Red Hat OpenStack, OpenShift on IBM Z, OpenShift on IBM Power, and Red Hat OpenShift on Amazon. Red Hat Advanced Cluster Management for Kubernetes can also import and manage your existing public cloud Kubernetes clusters such as Amazon Elastic Kubernetes Service (Amazon EKS), IBM Cloud Kubernetes Service (IKS), Azure Kubernetes Service (AKS), and Google Kubernetes Engine (GKE).

Red Hat OpenShift is the clear choice for container orchestration, offering a platform for deploying and managing containers in a standard, consistent control plane. Red Hat OpenShift and Red Hat Advanced Cluster Management provide the hybrid cloud management platform and capabilities that address common challenges faced by administrators and site reliability engineers (SREs) as they work across a range of environments, such as multiple datacenters, private clouds, and public clouds that run Kubernetes clusters, including your remote edge sites. 

Features and benefits

Multicluster observability for fleet health and optimization

Deliver an enhanced SRE experience with out-of-the box multicluster dashboards that have the ability to store long-term historical data and provide an overview of fleet health and optimization.

Table 1. Features and benefits of multicluster observability

Fleet health
Sort, filter, and scan individual clusters, as well as aggregated multiclusters with Grafana. Use the open source Thanos project for scalable metrics collection with long-term data retention.
Customized metrics and dashboardsCustomize Grafana dashboards based on metrics you define, along with the predefined metrics. View what is important to you.
Dynamic searchUse the graphical console to identify, isolate, and resolve issues affecting distributed workloads.
Visual web terminal
(Tech preview)
Run operations from dashboards with a single command line interface for multiclusters. This tool uses the open source project KUI and works with helm, kubectl, oc, and subctl, and allows the use of bash and grep commands.
Analytics through
Red Hat Insights for Red Hat OpenShift
Gain actionable intelligence on your cluster health for your Red Hat Advanced Cluster Management managed fleet and take proactive and remediation actions based on the analytics being provided from Red Hat OpenShift-based telemetry and Red Hat expertise.
Automatic alert forwarding from managed clusters to the Red Hat Advanced Cluster Management hubCentralized metrics and alerts allow operations to respond to third-party tools such as Slack and PagerDuty rather than having to watch dashboards.

Unified multicluster life-cycle management

Create, upgrade, and destroy Kubernetes clusters reliably, consistently, and at scale, using an open source programming model that supports and encourages infrastructure as code (IaC) best practices and design principles.

Table 2. Features and benefits of unified multicluster life-cycle management

Cluster life-cycle
Gain Day-1 experience with cluster life-cycle management using the open source Hive application programming interface (API). Create and upgrade new Red Hat OpenShift Container Platform clusters, or import existing OpenShift Container Platform and managed Kubernetes clusters using the Red Hat Advanced Cluster Management console.
Cloud providers
Red Hat Advanced Cluster Management supports the creation of OpenShift Container Platform clusters on AWS, GCP, Azure, bare metal, Red Hat OpenStack Platform, VMware, and vSphere.
Enhanced cluster life-cycle management
(Tech preview)
Take advantage of features such as worker pool scaling with autoscale configuration, cluster hibernate and resume via ClusterPools to help deploy clusters quickly, and clusterSets to easily define access controls to a group of clusters.
Red Hat Ansible®
Automation Platform
Automate your Day-0 operations such as configuring cloud defined storage, infrastructure prerequisites, e.g., static IP addresses. After cluster creation, Day-1 operations such as automatically updating network components like firewalls and load balancers to enable flexible configuration changes scaling etc., using the Ansible Automation Platform integration with Red Hat Advanced Cluster Management for Kubernetes.
Multicluster networking with Submariner (Tech
Get rich multicluster networking capabilities with Submariner for application components deployed across multiple clusters. This will reduce the complexity of deploying application components and networking requirements across clusters.

Policy-based governance, risk, and compliance

Apply a policy-based governance approach to automatically monitor and ensure desired best practices configuration state for controls related to security, resiliency, and software engineering so that these controls are operated to industry compliance standards or self-imposed corporate standards.

Table 3. Features and benefits of policy-based governance, risk, and compliance

Out-of-the-box policy templates for security, resiliency, and configuration
Use prebuilt policy templates to enforce policy on Kubernetes configuration (e.g., etcd encryption), identity and access management (IAM), certificate management, and deploy and configure operators such as Compliance Operator, Gatekeeper/Open Policy Agent (OPA), and Container Security Operator across your clusters. Implement policy-based governance via GitOps to meet internal and external standards using the open source policy collection repository.
Governance and risk
Use the governance and risk dashboard to view and manage security risks and policy violations in all of your clusters and applications. Get details on violation history. Drill down into violation details by centrally accessing details from managed clusters from the Red Hat Advanced Cluster Management hub.
Customized policy violation viewsCustomize policies for various compliance standards, governance dashboard views, and views for most impacted controls for specific standards. 
Open source extensible policy framework and policy collection  repositoryDevelop custom policy controllers and policies and seamlessly integrate them for centralized management into the governance and risk dashboard. Take advantage of the collaborative upstream policy contributions using the policy collection repository.
Integration with Gatekeeper/Open Policy Agent (OPA)Get a fully supported Gatekeeper/OPA operator that enables deployment of the Gatekeeper operator to your fleet using compliance policy. Then, initiate Gatekeeper controls across your fleet to enforce various OPA policies. Centrally view and drill down into violations for all your Gatekeeper/OPA policies.
Integration with Red Hat OpenShift Compliance OperatorDeploy the Red Hat OpenShift Compliance Operator at scale across your fleet using Red Hat Advanced Cluster Management to enforce various security profiles for compliance standards such as the E8 Essential scan. Centrally view and drill down into violations for all of these security profiles.
Ansible Automation
Platform integration
Using Ansible Automation Platform integration with Red Hat Advanced Cluster Management, automate remediation of noncompliant conditions and gather audit information about the clusters for analysis to promote proactive measures against policy violations detected by Red Hat Advanced Cluster Management.

Advanced application life-cycle management 

Use open standards and deploy applications using placement rules that are integrated into existing CI/CD pipelines and governance controls. 

Table 4. Features and benefits of advanced application life-cycle management

Application topology viewQuickly view the health of service endpoints and pods associated with your application topology—with all the connected dependencies like image versions, associated placement rules, Kubernetes resources, and ConfigMaps.
Channels and subscriptionsAutomatically deploy applications to specific clusters by subscribing to different workload (resource) channels such as GitHub, Helm repository, and ObjectStore types. 
Placement rulesRapidly deploy workloads across your fleet, or only to specific clusters, based on placement rule definitions and time windows to ensure control over when and where your applications are being deployed.
Ansible Automation Platform integrationAutomate everything outside of Kubernetes with your application deployments: for example, configure networking, databases, load balancers, and firewalls with Ansible Automation Platform integration.
Application builderIntuitive application creation experience using a form-based input with contextual help to guide you in defining your application components without dealing directly with YAML.
Argo CD integrationUse Red Hat Advanced Cluster Management to allow Argo CD to automatically deliver content as clusters come online or get imported. Red Hat Advanced Cluster Management policies work in tandem with Argo CD to make sure compliance and configuration are managed and maintained at scale for tighter CI/CD alignment. Easily view and troubleshoot applications deployed by Argo CD in the Advanced Cluster Management application topology view.  

Technical specifications

Hub cluster

  • Operator-based installation
  • Available on OperatorHub.io
  • Requires Red Hat OpenShift Container Platform 4.6.x and above

Managed clusters (Learn more: Support Matrix)

  • Full life-cycle management: Red Hat OpenShift Container Platform 4.6.x and above:
    • Red Hat OpenShift on Amazon AWS, Microsoft Azure, Google Cloud Platform, VMware vSphere, Red Hat OpenStack Platform and bare metal.
  • Import and manage: 
    • Red Hat OpenShift Container Platform 3.11
    • Red Hat OpenShift on IBM Power 
    • Red Hat OpenShift on IBM Z
  • Limited life-cycle support for managed Kubernetes clusters:
    • Red Hat OpenShift on IBM Cloud 
    • Red Hat OpenShift on Amazon 
    • Microsoft Azure Red Hat OpenShift
    • Red Hat OpenShift Dedicated 
    • Amazon Elastic Kubernetes Service (Amazon EKS)
    • Azure Kubernetes Service (AKS)
    • IBM Cloud Kubernetes Service (IKS)
    • Google Kubernetes Engine (GKE)
  • Red Hat Advanced Cluster Management provides observability, application life-cycle management, and policy-based management of imported clusters.
  • Red Hat Advanced Cluster Management provides full cluster life-cycle management (create, upgrade, destroy) with additional security compliance capability for Red Hat OpenShift Container Platform clusters.

High availability

  • Red Hat OpenShift Container Platform availability zone supported
  • Limitation for search component based on RedisGraph

Resource requirements

  • 3 masters, 3 infrastructure nodes, 6 vCPU and 16GB RAM