CS229: Deploying Production AWS ROSA Clusters: Creation, Configuration, and

Course Information

Course Name

CS229: Deploying Production AWS ROSA Clusters: Creation, Configuration, and Application Integration

Exam code

EX229

Duration

4 Days

Certification

Red Hat Certified Specialist in ROSAPrivate: Cloud & CEPH Track

Overview

Create and configure production-grade ROSA clusters as part of a larger AWS customer’s footprint and then integrate applications on ROSA with AWS services while keeping a good security posture.

Deploying Production AWS ROSA Clusters: Creation, Configuration, and Application Integration (CS229) teaches how to configure ROSA clusters as part of pre-existing AWS environments and how to integrate ROSA with AWS services commonly used by IT operations teams, such as Amazon CloudWatch. This course also teaches how to integrate applications deployed on ROSA with AWS services in a way that cluster administrators and platform engineers retain control of credentials and roles required by applications to access AWS services instead of exposing those credentials to application developers.

Audience Profile

• Primary: ROSA Administrators, Platform Engineers, Cloud Administrators, System Administrators and other infrastructure-related IT roles who are responsible for providing and supporting infrastructure for applications deployed on AWS

• Secondary: Enterprise Architects, Site Reliability Engineers, DevOps Engineers, and other application-related IT roles who are responsible for designing infrastructure for applications deployed on AWS

Prerequisites

DO120 – Introduction to Red Hat OpenShift on AWS (ROSA) or equivalent experience: “I know how to create and access a public ROSA cluster.”

AWS administration at the level of either AWS Certified SysOps Administrator – Associate or AWS Certified Solutions Architect – Associate, or equivalent experience: “I know how to manage AWS infrastructure services.”

Basic knowledge of OpenShift from DO080 Technical Overview: “I know basic concepts of OpenShift and containers.”

It is recommended that learners also enroll in the Red Hat Certified OpenShift Administration certification courses in addition to taking CS220 and CS221.

At Course Completion

• Create ROSA STS PrivateLink clusters

• Connect PrivateLink ROSA clusters to existing VPCs and enable administrators and developers to access those clusters

• Configure dedicated machine pools and node/pod autoscaling

• Configure node, cluster, and audit log forwarding to Amazon CloudWatch

• Configure authentication and group sync with Amazon Cognito

• Integrate with external container registries such as ECR and Quay.io to deploy applications from private image repositories

• Configure storage classes to enable application access to different EBS volume types

• Configure storage classes and security contexts to enable application access to shared EFS storage volumes

• Configure pod identity using STS/IRSA to enable application access to AWS services such as database [Aurora], integration (SQS), and object storage (S3)

• Provision AWS services for applications using the AWS Controllers for Kubernetes (ACK)

• Federate and query application metrics (application workload monitoring) with Amazon Managed Prometheus Service

• Aggregate and query structured application logs with Amazon CloudWatch

• Configure custom domains and TLS certificates for secure public access to applications

Course Outline

Module 1: PrivateLink Red Hat OpenShift on AWS (ROSA) Clusters

Create a PrivateLink ROSA cluster with STS and enable developers or administrators to access the API and router endpoints of the cluster.

Module 2: Node and Pod Autoscaling

Configure a ROSA cluster and a workload to dynamically scale the number of cluster nodes and application pods according to load.

Module 3: Integrate ROSA Clusters with Amazon Web Services

Configure ROSA clusters to forward logs to Amazon CloudWatch for long-term storage, aggregation, and analysis, and to authenticate OpenShift users by using Amazon Cognito.

Module 4: Deploy Applications From External Registries

Deploy applications on Red Hat OpenShift Service on AWS (ROSA) from private container image repositories in external centralized container image registries.

Module 5: Provide Amazon Storage Volumes for Applications

Configure Amazon Elastic Block Storage (EBS) or Amazon Elastic File System (EFS) volumes that meet the cost, performance, and sharing requirements of their applications.

Module 6: Configure Application Access to AWS Services

Configure applications for access to shared AWS services by using Kubernetes service accounts, and provision dedicated AWS services by using Kubernetes custom resources.

Module 7: OpenShift and AWS Application Observability

Configure ROSA clusters to forward application logs to Amazon CloudWatch and application metrics to Amazon Managed Service for Prometheus.
Module 8: Custom Domains for ROSA Applications

MODULE 8: CUSTOM DOMAINS FOR ROSA APPLICATIONS

Expose applications to internet users with secure URLs by using human-readable DNS domains.

All Red Hat certification courses are conducted by certified trainers from Iverson.

Digital Methods acts as the official training partner and assists with program consultation, registration, coordination, scheduling, and administrative arrangements to ensure a seamless and professionally managed training experience.