Upgrade to Pro — share decks privately, control downloads, hide ads and more …

What's Next in OpenShift (Q2CY2022)

What's Next in OpenShift (Q2CY2022)

This presentation provides the roadmap for Red Hat OpenShift version 4 as of April, 2022.

View the presentation of these slides directly from the OpenShift Product Management team at https://www.youtube.com/watch?v=YktCmnYhJZw.

View the current roadmap and other presentations from OpenShift Product Management at https://cloud.redhat.com/learn/whats-new.

Red Hat Livestreaming

April 14, 2022
Tweet

More Decks by Red Hat Livestreaming

Other Decks in Technology

Transcript

  1. What’s Next in OpenShift
    Q2CY2022
    OpenShift Product Management
    1

    View Slide

  2. What's Next in OpenShift Q2CY2022
    2
    Speakers
    Scott Berens Mark Russell Boaz Michaely Brian Cook
    Jeff Brent
    Michal Zasepa

    View Slide

  3. What's Next in OpenShift Q2CY2022
    Open Hybrid Cloud
    3
    Traditional
    N-Tier Apps
    Cloud Native
    Microservices
    ISV Packaged
    Apps
    Physical Virtual Private cloud Public cloud
    Red Hat Enterprise Linux
    Edge cloud
    Red Hat OpenShift
    Red Hat Open Hybrid Cloud
    Data, Analytics
    & AI/ML
    Enabling any application, on any infrastructure, in any location

    View Slide

  4. What's Next in OpenShift Q2CY2022
    IDC Survey of 200 US-based $1B companies actively using two
    or more “infrastructure clouds” for production applications
    81%
    Challenges with Hybrid Cloud Management
    4
    Source:
    IDC Multicloud Management Survey, 2019: Special Study, Doc # US45020919, April 2019
    *IDC Survey of 200 US-based $1B companies actively using two or more “infrastructure clouds” for production applications
    As organizations deploy more clusters
    across multiple clouds, new challenges
    arise.
    ▸ Difficult and error prone
    to manage at scale
    ▸ Inconsistent security controls
    across environments
    ▸ Overwhelming to verify
    components, configurations,
    policies, and compliance
    Using multiple infrastructure clouds*
    93%
    Using multiple public clouds and
    one or more private/dedicated
    clouds*

    View Slide

  5. What's Next in OpenShift Q2CY2022
    5
    Reasons for deploying clusters
    Application
    availability
    Reduced
    latency
    Address industry
    standards
    Geopolitical data
    residency guidelines
    Disaster
    recovery
    Edge
    deployments
    CapEx
    cost reduction
    Avoid vendor
    lock-in
    Hybrid Cloud and OpenShift Platform Plus

    View Slide

  6. CONFIDENTIAL designator
    What's Next in OpenShift Q2CY2022
    • Service mesh | Serverless
    • Builds | CI/CD pipelines
    • GitOps | Distributed Tracing
    • Log management
    • Cost management
    • Languages and runtimes
    • API management
    • Integration
    • Messaging
    • Process automation
    • Databases | Cache
    • Data ingest and preparation
    • Data analytics
    • AI/ML
    • Developer CLI
    • Kubernetes-native IDE
    • Kubernetes on laptop
    • Plugins and extensions
    Developer services
    Developer productivity
    Kubernetes cluster services
    Install | Over-the-air updates | Networking | Ingress | Storage | Monitoring | Log forwarding | Registry | Authorization | Containers | VMs | Operators | Helm
    Linux (container host operating system)
    Kubernetes (orchestration)
    Physical Virtual Private cloud Public cloud Edge
    Cluster security Global registry
    Multicluster management
    Data services*
    Data-driven insights
    Application services*
    Build cloud-native apps
    Platform services
    Manage workloads
    * Red Hat OpenShift® includes supported runtimes for popular languages/frameworks/databases. Additional capabilities listed are from the Red Hat Application Services and Red Hat Data Services portfolios.
    ** Disaster recovery, volume and multicloud encryption, key management service, and support for multiple clusters and off-cluster workloads requires OpenShift Data Foundation Advanced
    Observability | Discovery | Policy | Compliance |
    Configuration | Workloads
    Image management | Security scanning |
    Geo-replication Mirroring | Image builds
    Declarative security | Container vulnerability
    management | Network segmentation |
    Threat detection and response
    RWO, RWX, Object | Efficiency |
    Performance | Security | Backup |
    DR Multicloud gateway
    Cluster data management
    6
    Red Hat Hybrid Cloud Platform

    View Slide

  7. What's Next in OpenShift Q2CY2022
    7
    Red Hat OpenShift
    Available as self-managed platform or fully managed cloud service
    Red Hat OpenShift Dedicated2
    Red Hat OpenShift
    service on
    Amazon Web Services1
    Microsoft Azure
    Red Hat OpenShift
    Red Hat OpenShift on
    IBM Cloud1
    Managed Red Hat OpenShift services
    Self-managed Red Hat OpenShift
    On public cloud, or on-premises on
    physical or virtual infrastructure3
    Source:
    1 In preview as of 1/1/2021. Also available as Red Hat OpenShift Dedicated managed service running on user-supplied AWS infrastructure.
    2 Red Hat managed service running on user-supplied GCP infrastructure
    3 See docs.openshift.com for supported infrastructure options and configurations
    Start quickly, we manage it for
    you
    Cloud managed
    You manage it, for control and
    flexibility
    Customer managed

    View Slide

  8. Hybrid Cloud
    and
    Openshift Platform Plus
    8
    Edge computing with Red Hat OpenShift
    What’s Next in OpenShift Q2CY2022

    View Slide

  9. What's Next in OpenShift Q2CY2022
    9
    Red Hat Advanced Cluster Management for Kubernetes
    Improvements in secrets
    management and manifest
    signing within software
    supply chain.
    Cluster deployments using
    cloud keys and tokens.
    Security Everywhere
    Deploy OCP across any cloud
    and on-premise infrastructure
    using Hosted Control Planes.
    Leverage Configuration
    Management cloud service
    across your fleet.
    Platform Consistency
    Reduced Security Risk Reduced Complexity
    Industry best tooling across
    workload delivery, cluster
    networking, governance,
    compliance, and business
    continuity all driven by desired
    state management.
    Unified Experience
    Reduced Total Cost of
    Ownership
    Hybrid Cloud and OpenShift Platform Plus

    View Slide

  10. What's Next in OpenShift Q2CY2022
    Hybrid Cloud Console
    10
    Managed Cluster Managed Cluster
    Managed Cluster
    ● Extend the fleet level views with new
    layered experiences
    ● Dynamic plugins enable partners &
    customers to create native integrations at
    the fleet or cluster level
    Hub Cluster
    ● Activate the fleetwide experience and
    enable cluster lifecycle from the OCP
    Console with the new multicluster
    engine operator (MCE)
    ● Fleet-wide auth for managed clusters
    Security
    Everywhere
    Platform
    Consistency
    Unified
    Experience
    New Hub⇆Managed Cluster Intelligence
    Unified OpenShift Platform Plus UX
    Hybrid Cloud and OpenShift Platform Plus

    View Slide

  11. What's Next in OpenShift Q2CY2022
    11
    Hybrid Cloud
    Governance &
    Compliance
    OpenShift
    GitOps
    Advanced
    Cluster
    Management
    Ansible
    Application
    Delivery
    MLOps
    Supply Chain
    Security
    Edge
    Advanced
    Cluster
    Security
    Cluster Lifecycle
    Management
    Hybrid Cloud and OpenShift Platform Plus
    Culture of Consistency through Automation

    View Slide

  12. What's Next in OpenShift Q2CY2022
    storage
    infrastructure
    OpenShift
    storage
    services
    OpenShift
    Data Foundation
    Essentials
    OpenShift
    Data Foundation
    Advanced
    Hybrid Cloud and OpenShift Platform Plus
    12
    Container Storage Interface
    Cloud volumes, SAN, NAS,
    disk drives, flash arrays, etc)
    K8s workload+data protection
    (backup/recovery)
    K8s-native Disaster Recovery
    (orchestrated site fail-over)
    Availability tolerant of cloud
    zone, node, drive, net failures
    Multi-cluster
    Orchestration
    All-in-one data access methods
    (RWO, RWX, S3-compat object)
    OCP Console plug-in for monitoring, alerting
    ● Azure File CSI
    ● Cloud provider’s CSI migration
    ● CSI in-line & ephemeral volumes
    ● CSI resize
    ● Secrets Store CSI
    ● Selinux context mount
    PV-level encryption with KMS
    Cluster-wide encryption
    ● Multi
    `cloud Object Gateway file system
    namespace
    ● ODF LVMO for Single Node OpenShift (TP)
    ● Richer IOPS, throughput, latency stats in
    OCP Console plug-in
    ● Regional DR: ACM orchestrated failover of
    stateful workloads across regional sites
    ● OpenShift APIs for Data Protection (v1.0),
    designed for backup/recovery partners
    OpenShift Multi-Cluster Storage

    View Slide

  13. What's Next in OpenShift Q2CY2022
    13
    Red Hat Quay
    Scanning coverage beyond
    container base images (Java /
    Go packages)
    Trust & verify with signatures
    Security Everywhere
    New RBAC model for
    unprivileged tenants
    Granular control over content
    creation and growth
    Platform Consistency
    Remediate security risk
    before production
    Consistent permission
    model
    Visual consistency with a
    completely new UI
    Integration of quay.io into
    console.redhat.com
    Unified Experience
    Consistent UX from
    self-managed to hosted
    Hybrid Cloud and OpenShift Platform Plus

    View Slide

  14. What's Next in OpenShift Q2CY2022
    Red Hat Advanced Cluster Security
    Hybrid Cloud and OpenShift Platform Plus
    14
    ● Workload Vulnerabilities
    ○ Admission controller to validate images signed
    with cosign
    ○ Identify inactive software components for faster
    remediation
    ○ Full host level vulnerability scanning starting with Red
    Hat CoreOS
    ● Network Policy
    ○ Identify missing network policies
    ○ Intelligent recommendation for network policy
    creation
    ○ Visual network policy editor
    Security Innovation
    ● Policy Management
    ○ Bulk operations with resource sets and policy
    sets
    ○ RH ACS / OPA Gatekeeper integration
    ● New KPI Dashboard
    ● New Compliance GUI

    View Slide

  15. What's Next in OpenShift Q2CY2022
    Red Hat Advanced Cluster Security
    Hybrid Cloud and OpenShift Platform Plus
    15
    ● Common compliance experience across RHACM
    and RH ACS
    ● Common scanner experience across RH ACS and
    Quay
    ● Service Mesh
    Portfolio Integration Open Source
    ● Stackrox.io is the upstream project for RH ACS
    ● Contribute StackRox scanning code to Clair
    ● Contribute StackRox code to Falco collector
    libraries
    ● Extend KubeLinter to cover Kubernetes
    operators
    ACS as a Cloud Service

    View Slide

  16. Telco and Edge
    16
    What’s Next in OpenShift Q2CY2022

    View Slide

  17. What's Next in OpenShift Q2CY2022
    17
    Hardware and Accelerators
    Infrastructure services including
    Networking, Storage, AI/ML in a
    separate cluster on ARM cores in
    the NIC. Tenant workloads in x86
    cluster
    SmartNICs
    Programmable FPGA support for
    resources offload (e.g. firewall, load
    balancer, QoS…) and GPUs with 5G
    Core and RAN acceleration (GTP, FEC)
    Operators to manage Accelerators
    Accelerators
    Isolation of Tenant and
    Infrastructure cluster
    High Performance
    Network/Services and
    resource optimization
    Address Telco use cases
    with Optimal Platform Tuning and
    leverage Specialized Hardware
    NextGen Hardware
    Agile Infrastructure with the
    latest Hardware [Efficient,
    Scale, TCO]
    Telco 5G Core and Edge

    View Slide

  18. What's Next in OpenShift Q2CY2022
    Telco 5G Core and Edge
    Future install workflow
    1. Install OpenShift
    2. Apply the PerformanceProfile
    PAO becomes part OpenShift core components
    PAO is becoming a sub-controller of the Node Tuning Operator (NTO)
    Today’s install workflow
    1. Install OpenShift
    2. Install PAO Operator
    3. Apply the PerformanceProfile
    Upgrade workflow: almost transparent
    1. PerformanceProfile API is unchanged
    2. PAO Operator is automatically uninstalled
    a. PerformanceProfile is now implemented by NTO!
    apiVersion: performance.openshift.io/v2
    kind: PerformanceProfile
    metadata:
    name: myprofile
    spec:
    cpu:
    isolated: "2-21,26-37"
    reserved: "0-1,24-25"
    …/…
    18

    View Slide

  19. What's Next in OpenShift Q2CY2022
    19
    The complexities of edge computing/5G RAN
    Different edge sites can vary in
    network connectivity, space, and
    power/cooling/performance
    Variability
    Need to deploy and
    manage
    hundreds to thousands
    sites and nodes
    Scale
    Nodes are tuned so that RAN
    realtime workloads can leverage
    advanced timing/synchronization
    and hardware accelerations.
    Advanced Timing and
    Synchronization
    Versatile footprints and
    infrastructure cost
    saving
    Ease of Management
    through RHACM and ZTP
    (RAN) Technology Evolution
    Telco 5G Core and Edge

    View Slide

  20. What's Next in OpenShift Q2CY2022
    20
    Telco 5G Core and Edge
    C W
    Single Node OpenShift
    ➤ Originally introduced in OpenShift 4.9 (Q4 2021) as
    bare-metal only:
    ○ Introducing additional footprints through 2022, starting
    with Red Hat OpenStack Platform, Red Hat
    Virtualization, and vSphere (all with platform: none)
    to support more scenarios
    ➤ Minimum memory requirement in the process of being
    retroactively reduced to 16 GB RAM across all deployment
    paths based on further successful testing since GA in 4.9
    Combined control plane and worker on a single server for edge use cases that require
    resilient in case of no or intermittent connectivity to a central site
    ➤ Worker node based capacity expansion for edge
    scenarios that require more per-site capacity, but not HA
    within a site (failover to another site is the HA model
    instead)
    ➤ Default networking for new single node deployments
    specifically will switch to OVN-Kubernetes in a future
    release to better align with edge networking requirements

    View Slide

  21. What's Next in OpenShift Q2CY2022
    Telco 5G Core and Edge
    21
    Power Optimizations for Telco
    BIOS
    Hardware
    Red Hat CoreOS
    Red Hat OpenShift
    Telco Workload
    Enable application pods to set a
    required power performance profile
    ● Extend PAO/NTO to allow the
    user to define a set of CPUs to
    offline if not needed
    ● Tiered performance pools
    Develop automation to tune nodes
    for power savings prior to Zero
    Touch Provisioning
    Default all cores to lower power
    state at start-up

    View Slide

  22. OpenShift Cloud Services
    22
    What’s Next in OpenShift Q2CY2022

    View Slide

  23. What's Next in OpenShift Q2CY2022
    23
    New Cloud Service areas
    Cloud services
    Advanced Cluster
    Security
    Cloud Service
    Storage
    Cloud Service
    Software Supply Chain
    Cloud Service
    Developer Studio
    Cloud Service
    GitOps & Pipelines
    Cloud Service
    Complement our “cluster” Cloud
    Services with new “app” services.
    Cloud services that share the
    same technology investments in
    use within OpenShift for
    seamless integration
    Platform Consistency
    Developer access to
    multi-cluster aware tools
    without toil
    Multi-cluster Workload
    Cloud Service
    kcp

    View Slide

  24. What's Next in OpenShift Q2CY2022
    24
    Management @ console.redhat.com is getting better!
    Fleet Admin Workload Explorer Application Service Integrations
    Cloud services
    Shift past read-only to
    active management console.redhat.com
    Dive deeper into your clusters
    than was possible before
    Cluster Create
    Wizard
    Augment clusters with cloud
    application service capabilities
    Central and consistent
    management tools
    xKS
    Support
    Capacity
    Planning
    API
    Explorer
    Team
    Workspaces
    Your Apps APIs
    Fully managed Kube tools

    View Slide

  25. What's Next in OpenShift Q2CY2022
    Cloud services
    25
    Managed OpenShift Value
    Achieve compliance with
    more industry certifications
    and governmental
    compliances
    Security Everywhere
    If it runs on OpenShift it will
    run on managed OpenShift
    Platform Consistency
    Offer more flexibility in
    the kinds of workloads
    that can be run
    Reducing the barriers to
    adopting managed
    OpenShift
    Allow users to create all
    managed OpenShift clusters
    from one single location
    Unified Experience
    Simplicity of operations

    View Slide

  26. What's Next in OpenShift Q2CY2022
    Cloud services
    26
    Red Hat OpenShift cloud services
    BYO Key for KMS, enabling EBS
    encryption as well as
    multi-region keys.
    Short term token based
    credentials across supported
    clouds.
    Security Everywhere
    Only run the platform when
    you need it: Pause your
    environment (and payments)
    when not in use.
    Platform Efficiency
    Enable additional security
    options for our sensitive
    customers
    Enables most efficient use
    of resources
    Allow customers more options
    when choosing worker nodes
    to address many different
    workloads or budgets.
    Expanded choice
    Meet customer where they
    are

    View Slide

  27. What's Next in OpenShift Q2CY2022
    27
    kcp: transparent multi-cluster for your fleet
    Cloud services
    Smart Control Plane (kcp)
    Cluster 1 Cluster 3
    Cluster 2
    kubectl create -f app.yaml
    ↳Namespace
    ↳Deployment (replicas=5)
    ↳Service
    P P P P P
    Namespace
    My App Workspace
    ● Works with any Kube YAML
    ● Spread workload across clusters
    ● Don’t worry about clusters
    ● Solve scale issues by breaking down into smaller clusters
    ● Apps can be assigned to groups of clusters
    ● Cordon off a cluster for upgrade, removal, debugging
    Transparent multi-cluster for developers
    Easier management for infrastructure admins
    Open source project: https://github.com/kcp-dev/kcp/
    Service launch will be later this year

    View Slide

  28. What's Next in OpenShift Q2CY2022
    Node Node
    Pod Pod
    ● Start securing Kubernetes deployments in minutes
    ● Secure any supported Kubernetes cluster across your hybrid cloud
    ● Managed by Red Hat
    ○ Red Hat SLA
    ○ 24 x 7 support
    ● Flexible consumption models
    Hybrid Cloud and OpenShift Platform Plus
    Introducing Advanced Cluster Security as a Service
    28
    ACS
    Node Node
    Pod Pod
    Node Node
    Pod Pod
    Node Node
    Pod Pod
    Private cloud
    Node Node
    Pod Pod
    EKS / ROSA AKS / ARO GKE / OSD
    RHOIC OCP

    View Slide

  29. Core, Platform and
    Developer Tools
    29
    What’s Next in OpenShift Q2CY2022

    View Slide

  30. What's Next in OpenShift Q2CY2022
    Installation, Updates, and Provider Integration
    30
    ● Add new platforms
    ● Add new regions to existing platforms
    ● Add more instances types and
    capabilities
    ● Agent-based installer
    ● Hosted Control Planes (HyperShift)
    ● Composable installation
    Installation
    Upgrades
    Platforms
    Enable Hybrid
    Cloud
    Simplify
    onboarding
    Mitigate risk
    ● Improve update behavior and
    conditional updates
    ● Enhance update documentation
    Core, Platform and Developer Tools

    View Slide

  31. What's Next in OpenShift Q2CY2022
    31
    Compute
    ● Enable pluggability with
    cloud native solutions:
    KMS, DNS, LB
    ● GA Cert-manager
    ● Enable Pod Security
    Admission by default
    ● Alert when the etcd
    container memory
    consumption exceeds
    threshold
    Consistency
    ● Self-driven control plane with
    automated scaling, backups and
    DR of the control plane
    ● Introducing OpenShift CoreOS
    Layering
    ● Improved Audit Logging
    ● Improved API Server Alerting
    Experience
    Enables Hybrid Cloud and
    accelerates projects
    More choice and flexibility
    to meet standards and
    compliance
    ● Enable Arm on more cloud
    providers
    ● More IBM P/Z innovations
    ● Mixed CPU chip
    architecture
    ● DPU/IPU integration with
    unique architectural
    approach
    Platform
    Enable new workloads and
    reduce TCO
    Core, Platform and Developer Tools

    View Slide

  32. What's Next in OpenShift Q2CY2022
    OpenShift CoreOS Layering
    32
    ● Derive and configure customized RHEL CoreOS
    images through a container build pipeline
    ● The output is a standard OCI container
    ● Validate the build
    ● Push to node: rpm-ostree applies the changed
    layers to disk (normal block device)
    ● Maintain a redeployable process
    ● 3rd party RPMs
    ● RHEL packages not shipped in RHCOS
    ● RHEL hotfix packages
    Custom
    Packages
    Build Process
    Create a golden
    build process
    Meet the needs of
    your environment
    & reduce issue
    resolution times
    Core, Platform and Developer Tools

    View Slide

  33. What's Next in OpenShift Q2CY2022
    Multi-cluster End-to-End Networking
    33
    Gateway API
    Platform-Native Load Balancing
    Ingress Controller
    Physical Virtual
    Private cloud Public cloud Managed cloud Edge
    Node Node Node
    Pod Pod Pod
    OVN
    OVS
    ▸ Unified traffic handling so you configure all
    your traffic the same way
    ▸ OVN for advanced traffic workloads
    ▸ IPv6 single/dual stack across all platforms that support it
    ▸ eBPF for policy, traffic control, tooling, debugging, observability
    ▸ Advanced host-level firewall functionality
    ▸ Observability enhancements across all networking (e.g. SR-IOV)
    ▸ Multi-NIC support to align host networking
    ▸ HW Offload (OVS, IPsec, ...) for performance

    ▸ Any supported platform – add or swap easily,
    hybrid scenarios
    ▸ Flexibility to use native traffic distribution and
    filtering (e.g. WAF) for optimal performance
    ▸ Your traffic, your way: L3-L7, Envoy, by-pass,
    custom HTTP header support
    Hybrid Cloud and OpenShift Platform Plus
    Istio Ingress
    Internet
    Submariner

    View Slide

  34. What's Next in OpenShift Q2CY2022
    Observability
    Networking
    34
    Security
    Everywhere
    Platform
    Consistency
    Unified
    Experience
    Core, Platform and Developer Tools
    Network Traffic Metrics and Tracing
    Network Policy and Governance
    Network Traffic Flow and Topology
    Whether one cluster or one
    hundred, developers and cluster
    administrators require seamless
    connectivity across applications.
    Security and regulatory compliance
    requires governance of traffic in,
    around, and out of networks.
    Developers and administrators
    require a common understanding of
    their traffic within and across cluster
    boundaries.
    Network Flow Data – New Insight & Presentation
    Tabular Netflow data, NOC Dashboard, Pod/Service/Node-specific
    Topology, New Metrics, Export options

    View Slide

  35. What's Next in OpenShift Q2CY2022
    Observability
    Monitoring, Logging and Distributed Tracing
    35
    Core, Platform and Developer Tools
    Enhancements to distinguish
    between Workload Monitoring &
    User Defined Projects to
    monitor flexible Hybrid
    Workloads and Applications
    Observability
    "The capacity for human
    to ask and answer
    questions"
    Easy handle on
    Distributed
    Visualization
    Flexibility
    Correlation
    Consistency
    Simplified
    Observability
    Improved Thanos and
    Prometheus Support to extend
    using remote write for storage
    and platform monitoring for
    OpenShift Workloads
    Extensible visualization flexibility
    enabling Dashboards or OpenShift
    Console Visualization Across
    Cluster Workloads.
    Log Exploration Tools
    OpenTelemetry Collector to help
    you decide how to best handle
    your Telemetry data and bring the
    legacy workloads into your
    observable focus.
    Either for one or many workloads,
    Distributed Tracing allows you to
    deal with the complexity of
    Distributed Workload scenarios
    easily.
    Data Collection
    Integrated

    View Slide

  36. What's Next in OpenShift Q2CY2022
    36
    Custom Metric Autoscaler (KEDA)
    Core, Platform and Developer Tools
    ● KEDA is built on top of Kubernetes
    ● Use ScaledObject/ScaledJob to define
    scaling metadata
    ● Manages workloads to scale to 0
    ● Registers itself as k8s Metric Adapter
    ● Provides metrics for Horizontal Pod
    Autoscaler (HPA) to scale on

    View Slide

  37. What's Next in OpenShift Q2CY2022
    OpenShift on Bare Metal
    37
    More hardware supported through
    Redfish improvements.
    Hosted Assisted Installer will be
    promoted to GA from Tech Preview.
    SaaS Installer
    Agent-based
    Installer
    Hardware support
    for nodes
    Hardware
    integration
    Improvements
    Assisted
    Installer GA
    Faster, easier
    on-premises
    installations
    Agent-based installer to easily create
    initial cluster. Automate on-premises
    clusters installations. Install via UI.
    Metal3
    Core, Platform and Developer Tools

    View Slide

  38. What's Next in OpenShift Q2CY2022
    OpenShift sandboxed containers
    38
    Core, Platform and Developer Tools
    Isolation using native Kube
    runtime (runtimeClass)
    Node Selection and pre-install
    Feature Discovery
    Monitoring/Metrics from
    OpenShift console
    Same Experience,
    Additional Isolation
    Unified Experience
    More deployment options for Bare
    Metal providers On-Premises and
    on Cloud (e.g., AWS)
    Reuse existing cloud stacks to
    achieve isolation, remove
    deployment restrictions
    Platform Consistency
    Optionality to lower
    barriers of entry
    Sandboxed containers policy with
    RHACM brings additional isolation
    at the fleet level.
    Qualifying to run on the various
    OpenShift form factors.
    Security Everywhere
    Secure by Default

    View Slide

  39. What's Next in OpenShift Q2CY2022
    OpenShift Support for Windows Containers
    39
    Core, Platform and Developer Tools
    Windows nodes will move to
    Containerd as the runtime, and
    CSI for storage, thus future
    proofing consistency and
    application portability for Windows
    Consistent experience with
    upstream
    Platform Consistency
    Support for Windows Server 2022,
    more networking plugins (Calico
    etc) to provide additional
    platform choices for Windows
    applications running on
    OpenShift
    Expanding Ecosystem
    Broader compatibility
    Health Management of Windows
    Nodes with self healing will allow for
    better resiliency of the Windows
    nodes (e.g. recovering from a
    Kubelet crash). Horizontal Pod
    Autoscaling of Windows pods to
    will enable workloads to be scaled
    to match demand
    Unified Experience
    Easy Management of
    Windows apps

    View Slide

  40. What's Next in OpenShift Q2CY2022
    40
    OpenShift Virtualization
    RBAC for VM templates
    Isolate Live Migration with
    dedicated network
    Multi-tenant virtual OpenShift
    clusters with Hosted Control
    Planes (HyperShift)
    Enhanced secondary network
    using micro-segmentation on OVN
    Security Everywhere
    More depl choices with Public
    Cloud & Bare Metal providers
    RHEL 9 & Windows 11 guests
    Network latency checks for telco
    and high performance workloads
    Enhanced Ecosystem of Data
    Protection partners
    Platform Consistency
    Enhanced security and
    controls for VMs
    Broader Compatibility
    Core, Platform and Developer Tools
    New VM creation Wizard flow
    VM centric overview page
    Performance tuned VM templates
    Improved flexibility with live
    migration policies
    Support RHEL High Availability
    Unified Experience
    Manage VMs at Scale

    View Slide

  41. What's Next in OpenShift Q2CY2022
    ● Enable new generic bundle API so OLM supports other package formats (e.g.
    Helm charts or raw k8s manifests.)
    ● Expand bundle packaging to other Java/Quarkus SDK plugin.
    ● Simplified procedure to create and update disconnected operator catalogs.
    ● Granular content selection & automated pruning.
    ● At day0 OLM-managed operator can be included in the cluster lifecycle.
    ● Operators can define support constraints for cluster configurations.
    ● Enable Operators to optimize memory usage and network performance.
    ● Clusters get multi-tenancy with global operators using granular permission
    and visibility management.
    ● Operator developers can introduce additional update graphs without a new
    release and promote versions between channels.
    ● Improved testings around deprecated APIs and promote best practices across
    in the SDK and build pipeline.
    Enabling Workloads on OpenShift
    41
    Updates
    Core, Platform and Developer Tools
    Composable
    clusters + better
    scaling and
    tenancy.
    Disconnected
    Disconnected
    customers have a
    connected UX.
    Quality releases
    and publish in
    channels at ease.
    Operators
    Ecosystem
    Expanding Red Hat
    and partner
    ecosystem.

    View Slide

  42. What's Next in OpenShift Q2CY2022
    Kubernetes-style multi-tenancy,
    GitOps self-service, expand
    support on cloud services,
    Power/Z/Arm archs
    GitOps workflows for CI,
    Extended pipeline history
    retention, expand support
    on cloud services, Arm arch
    Pipeline and Task
    governance, Curated
    Tekton Hub
    Secret management guidance,
    Secret manager integrations
    Helm workflow enhancements,
    application and cluster
    configurations bootstrapping
    Concurrency control,
    mono-repo support
    CI/CD & GitOps
    42
    OpenShift GitOps
    Security
    Everywhere
    Platform
    Consistency
    User Experience
    OpenShift Pipelines
    Software supply
    chain security
    Improve User
    Experience
    Improved
    operational
    experience
    Core, Platform and Developer Tools

    View Slide

  43. What's Next in OpenShift Q2CY2022
    43
    OpenShift Serverless
    End to End encryption for
    internal and external
    services
    Broker and Channel
    authentication and
    authorization
    Multi-Tenancy
    Security Everywhere
    OpenShift Serverless on every flavor of
    OpenShift on all managed flavors
    OSD/ROSA/ARO, disconnected clusters,
    and Single Node OpenShift
    Creation of apps in “cluster agnostic”
    environment
    Default deployment for stateless workload
    Platform Consistency
    Reduced exposure and
    risk
    Increased productivity
    Integration for platform
    services, Elevated Serverless
    Function experience. Event
    sources to cover the breadth
    of applicability
    Unified Experience
    Enhance developer
    experience for Event
    Driven solutions
    Core, Platform and Developer Tools

    View Slide

  44. What's Next in OpenShift Q2CY2022
    44
    OpenShift Service Mesh
    Secure traffic and manage
    application based policies
    consistently across a
    zero-trust multi-tenant,
    environment.
    Security Everywhere
    A consistent platform with Istio
    service mesh across clusters,
    cloud providers, regions, and
    infrastructure types.
    Platform Consistency
    Reduced exposure and
    risk across your network
    Reduce complexity with a
    consistent platform
    experience
    Improved integrations with
    OpenShift Console, cluster
    monitoring, API management,
    Ingress and more.
    Unified Experience
    Save time - solving
    integrations for you!
    Core, Platform and Developer Tools

    View Slide

  45. What's Next in OpenShift Q2CY2022
    45
    Migration Toolkit for Applications
    Enable adoption leads to
    take informed decisions and
    make the migration and
    modernization process
    measurable and predictable
    Gather Insight
    Fully integrated toolkit
    leveraging multiple Open
    Source tools with a seamless
    user experience
    Extended Scope
    Reduce risks Provide value on each
    stage of adoption
    Help organizations safely
    migrate and modernize their
    application portfolio to
    leverage OpenShift
    Migration Guidance
    Ease OpenShift adoption
    Core, Platform and Developer Tools

    View Slide

  46. What's Next in OpenShift Q2CY2022
    46
    Migration Toolkit for Red Hat OpenShift
    MTRHO
    migration by developers
    directly from OpenShift UI
    MTC
    mass migration by cluster
    admins in dedicated UI
    2 migration tools
    2 use-cases
    Always getting better at supporting
    3=>4 migrations and in-place
    storage conversions
    Migration Toolkit for Containers
    MTC
    Core, Platform and Developer Tools
    Brand new operator to provide
    migration capabilities for
    developers directly from the
    OpenShift console
    Migration Toolkit for OpenShift
    MTRHO
    Tech preview expected mid-2022 MTC 1.8 expected
    later this year

    View Slide

  47. linkedin.com/company/red-hat
    youtube.com/user/RedHatVideos
    facebook.com/redhatinc
    twitter.com/RedHat
    Thank you
    Red Hat is the world’s leading provider of enterprise
    open source software solutions. Award-winning
    support, training, and consulting services make Red Hat
    a trusted adviser to the Fortune 500.

    View Slide