Azure Red Hat OpenShift

Azure Red Hat OpenShift provides a fully managed Red Hat OpenShift’s security hardened Kubernetes platform built on world-class Azure infrastructure that is jointly operated and supported by Microsoft and Red Hat. More details about the services are available in the Azure Red Hat OpenShift documentation.

  1. Enable auto-scaling on the ss-compute scaleset

    Give us an ability to enable auto-scaling on the ss-compute-[number] scaleset and manage the rules for scaling.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  2. Provide a way to remove project creation privs based on AD groups

    Not all users should have the ability to create new projects just because they have the ability to log on to OpenShift.
    The current way basically means that we will never let any developers have logon rights so a lot of the devops potential is out the window.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. Map OpenShift role bindings to AD groups

    Currently, there appears to be no way to use AD groups inside OpenShift.

    Need something similar to what is available for AKS where you can assign AD group IDs to OpenShift Role Bindings:
    https://docs.microsoft.com/en-us/azure/aks/azure-ad-integration#create-an-rbac-binding

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  4. Disable the exposure of the Openshift API as public IP address

    We'd like to restrict access to the console and API to private IPs within our organisation, as well as enable Gateway Transit back into our organisation.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  5. Custom DNS on VNET

    Be able to add custom DNS setting on the cluster VNET and use this in the internal cluster network to resolve internal services by name that are available in peered VNETS or On-Premises.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  CLI  ·  Flag idea as inappropriate…  ·  Admin →
  6. Labeling of Nodes

    Grant permissions to the customer-admin group to label nodes, so we can deploy certain pods to certain nodes (e.g. DTAP on a single cluster)

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

  7. Provide a pricing option for Development and POCs

    As an Architect I want to be able to spin up a OpenShift Cluster in Azure from my VS Enterprise Azure subscription kick the tires and then spin it down in a day or so. With the requirement to purchase 4 reserved instances for a year at a cost of $3600 I significant blocker is created in adoption as it is often hard to get the enterprise to commit $3600 for a years worth of reserved instances to support a two week POC. POCs are an early step in evaluating a platform for a solution or department to use. Please…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Support for Red Hat OpenShift features  ·  Flag idea as inappropriate…  ·  Admin →
  8. Access to metrics / Autoscaling

    Horizontal scaling of Pods is standard OpenShift functionality. Unfortunately access to metrics in ARO is unavailable. We need to be able to autoscale deployments based on CPU of Memory.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Support for Red Hat OpenShift features  ·  Flag idea as inappropriate…  ·  Admin →
  9. Support deploying across multiple Azure Availability Zones

    Provide an option to deploy across multiple Azure Availability Zones to improve cluster availability.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  10. Provide a way to set quotas at the cluster level

    Having to manage our default quotas in each project is not very scalable. It would be helpful to be able to set default quotas at the cluster level.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  11. Access to prometheus+grafana

    It's rumored that the Azure Red Hat OpenShift deployment includes prometheus+grafana already. Customers should be allowed at least read access to those resources.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  12. Stream all cluster events to central log repo

    As the deployment appears to have no shared components (lives entirely inside our Azure Subscription) then we should be allowed to get all cluster events streamed to a central log repo (Splunk HEC, Azure Monitor, ...)
    It would really help with event correlation and troubleshooting to have this done centrally. Having all events (including cluster events) centrally would also help satisfy audit and security requirements.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  13. Provide a way to remove/limit the built-in service catalog

    The built-in service catalog is an invitation for people to just go crazy. We need to either need to be able to able to limit it to only "approved images" (approved by our organization) or to remove it completely based on RBAC.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Azure Red Hat OpenShift

Categories

Feedback and Knowledge Base