Skip to content

Home

What is Red Hat OpenShift Service on AWS (ROSA)?#

Red Hat OpenShift Service on AWS (ROSA) is a fully-managed turnkey application platform that allows you to focus on what matters most, delivering value to your customers by building and deploying applications. Red Hat and AWS SRE experts manage the underlying platform so you don’t have to worry about the complexity of infrastructure management. ROSA provides seamless integration with a wide range of AWS compute, database, analytics, machine learning, networking, mobile, and other services to further accelerate the building and delivering of differentiating experiences to your customers.

The latest version of ROSA makes use of AWS Security Token Service (STS) to obtain credentials to manage infrastructure in your AWS account. AWS STS is a global web service that allows the creation of temporary credentials for IAM users or federated users. ROSA uses this to assign IAM roles short-term, limited-privilege, security credentials. These credentials are associated with IAM roles that are specific to each component that makes AWS API calls. This better aligns with principals of least privilege and is much better aligned to secure practices in cloud service resource management. The ROSA CLI tool manages the STS credentials that are assigned for unique tasks and takes action upon AWS resources as part of OpenShift functionality. Please see the section "ROSA with STS Explained" for a detailed explanation.

A listing of the account-wide and per-cluster roles is provided in the documentation.

What information is on this site?#

These pages are split into three sections.

  1. One contains the steps to getting started on ROSA ("Getting started with ROSA").
  2. Another is about deploying an application to ROSA to get better familiar with the internals of OpenShift ("Deploy the application").
  3. Lastly, some reference pages with a summary of a few key OpenShift concepts that will be used in the workshop, an FAQ, and an explanation of ROSA with STS.

What will we do in this workshop?#

In this workshop, you’ll go through a set of tasks that will help you understand the concepts of deploying and using container based applications.

Some of the things you’ll be going through:

  • Deploy a ROSA cluster using STS
  • Perform common tasks like:
    • User access and elevated permissions
    • Managing worker nodes
    • Scaling and autoscaling
    • Upgrading
    • Delete the cluster
  • Deploy a node.js based app via S2I and Kubernetes Deployment objects
  • Set up a continuous delivery pipeline to automatically push changes to the source code
  • Explore logging
  • Experience self healing of applications
  • Explore configuration management through configmaps, secrets and environment variables
  • Use persistent storage to share data across pod restarts
  • Explore networking within Kubernetes and applications
  • Familiarization with OpenShift and Kubernetes functionality
  • Automatically scale pods based on load via the Horizontal Pod Autoscaler
  • Automatically scale the cluster based on load
  • Integrate with an AWS S3 bucket to read or write objects

If you'd like a preview of the cluster deployment process, you can watch a short demo:

Creating your first ROSA Cluster#

If you'd like an easy to follow guide for creating your first ROSA cluster:

  1. Please review the prerequisites which contains important information about the AWS account requirements.
  2. Visit the "Getting Started with ROSA" tutorial starting with Setting up your account.

Resources#

Note

Anytime "ROSA" is used in this lab it stands for Red Hat OpenShift Service on AWS. The ROSA acronym will be mostly used.