Red Hat OpenShift Administration II: Operating a Production Kubernetes Cluster (OCP v4.14)

Inquire now

Duration 5 days – 35 hrs

 

Overview

 

This 5-day, hands-on course focuses on operating and securing a production-grade Red Hat OpenShift (OCP v4.14) cluster. Participants learn to manage Kubernetes resources declaratively, deploy packaged applications (Templates/Helm), implement authentication and RBAC, secure cluster networking with TLS and Network Policies, expose non-HTTP workloads, enable developer self-service through quotas and templates, manage Operators with OLM, harden workloads with SCCs and API access controls, and perform cluster updates while detecting deprecated Kubernetes APIs.

 

Objectives 

  • Manage Kubernetes/OpenShift resources using declarative manifests and Kustomize overlays
  • Deploy packaged workloads using OpenShift Templates and Helm charts
  • Configure identity providers (IdP) and enforce access control using RBAC
  • Secure ingress/egress and service-to-service traffic using TLS and NetworkPolicies
  • Expose non-HTTP / non-SNI applications using LoadBalancer Services and Multus secondary networks
  • Enable developer self-service with quotas, limit ranges, project templates, and self-provisioning controls
  • Install and manage cluster add-ons using Operators and the Operator Lifecycle Manager (OLM) via console and CLI
  • Strengthen workload security using Security Context Constraints (SCCs) and controlled access to Kubernetes APIs
  • Perform cluster and operator updates safely; identify and remediate deprecated API usage
  • Apply best practices through scenario-based labs (self-service setup, secure apps, packaged app deployments)

Audience

 

  • OpenShift/Kubernetes administrators and platform operations teams
  • DevOps / SRE / Platform engineering teams managing production clusters
  • Infrastructure and cloud engineers responsible for container platforms
  • Security engineers supporting cluster hardening and policy enforcement
  • Technical leads responsible for operating OpenShift at scale

 

Pre-requisites

  • Basic Kubernetes/OpenShift familiarity (pods, services, deployments, namespaces/projects)
  • Command-line proficiency (Linux shell) and comfort using YAML
  • Basic networking fundamentals (DNS, ports, TLS concepts)
  • Recommended: completion of OpenShift Administration I (or equivalent experience)

Course Content

 

Day 1 — Declarative Operations + Kustomize

 

Chapter 1: Declarative Resource Management

  • Resource manifests (YAML) and declarative workflows
  • Kustomize overlays for environment-specific configurations
  • Lab: Declarative Resource Management

 

Day 2 — Deploy Packaged Applications (Templates + Helm)

 

Chapter 2: Deploy Packaged Applications

  • OpenShift Templates: parameters and reuse patterns
  • Helm charts: install/upgrade basics and release management concepts
  • Lab: Deploy Packaged Applications

 

Day 3 — Identity, RBAC, and Network Security

 

Chapter 3: Authentication and Authorization

  • Configure identity providers (IdP)
  • Define/apply permissions with RBAC (roles, rolebindings, clusterroles)
  • Lab: Authentication and Authorization

 

Chapter 4 (Part 1): Network Security

 

  • Protect external traffic with TLS
  • Configure NetworkPolicies
  • Guided exercises

 

Day 4 — Advanced Networking + Developer Self-Service

 

Chapter 4 (Part 2): Network Security

 

  • Protect internal traffic with TLS (service-to-service)
  • Lab: Network Security

 

Chapter 5: Expose non-HTTP/SNI Applications

 

  • LoadBalancer services for L4 workloads
  • Multus secondary networks (multi-homed pods use cases)
  • Lab: Expose non-HTTP/SNI Applications

 

Chapter 6 (Part 1): Enable Developer Self-Service

 

  • Project and cluster quotas
  • Limit ranges
  • Guided exercises

 

Day 5 — Operators, App Security, and Production Updates + Capstone

 

Chapter 6 (Part 2): Enable Developer Self-Service

 

  • Project templates and self-provisioner role
  • Lab: Enable Developer Self-Service

 

Chapter 7: Manage Kubernetes Operators

 

  • Operators + OLM overview
  • Install Operators via Web Console and CLI
  • Lab: Manage Kubernetes Operators

 

Chapter 8: Application Security

 

  • SCCs to control app permissions
  • Allow application access to Kubernetes APIs
  • Cluster/node maintenance with Kubernetes CronJobs
  • Lab: Application Security

 

Chapter 9: OpenShift Updates

 

  • Cluster update process
  • Detect deprecated Kubernetes API usage
  • Update Operators with OLM
  • Quizzes + summary

 

Chapter 10: Comprehensive Review

 

  • Lab: Cluster Self-service Setup
  • Lab: Secure Applications
  • Lab: Deploy Packaged Applications

 

Inquire now

Best selling courses

Duration 3 days – 21 hrs   Overview    This Portfolio Management Training Course is designed to provide banking professionals with a comprehensive understanding of how to effectively manage investment and credit portfolios. Participants will gain insights into strategic allocation, performance measurement, risk management, and optimization of banking portfolios to align with regulatory requirements and...

Duration 2 days – 14 hrs   Overview   This comprehensive Planning and Forecasting Training Course is designed to empower professionals with the tools and techniques necessary to accurately predict future outcomes and develop strategic, operational, and financial plans. The course provides a structured approach to planning and forecasting, integrating both qualitative and quantitative methods....

Duration 3 days – 21 hours   Overview   This Beginner-to-Intermediate PostgreSQL Training Course is designed to build strong foundational skills in PostgreSQL while preparing participants to confidently work with real-world database tasks in modern environments.   Participants will learn how PostgreSQL works, how to write efficient SQL queries, how to design and manage database...

RISK MANAGEMENT

Liquidity Risk Management

Duration 5 days – 35 hrs   Overview.   This Liquidity Risk Management Training Course is tailored for banking professionals in the Philippines, focusing on the skills and knowledge necessary to manage liquidity risk effectively. Participants will learn how to assess liquidity risk, apply regulatory standards, and develop strategies to maintain adequate cash flow and...

Duration 5 days – 35 hrs   Overview    This 5-day advanced training course is designed for senior PMO leaders, program managers, PMO directors, and executives aiming to enhance their leadership capabilities and transform their PMOs into strategic business drivers. The course will explore advanced concepts in PMO strategy, digital transformation, innovation, business case development,...

TRAINOSYS CUSTOMIZED COURSE

Data Analytics from SQL to Power BI

The “Data Analytics from SQL to Power BI” training course is a comprehensive program designed to equip participants with the knowledge and skills necessary to analyze and visualize data using SQL and Power BI. Over the course of five days, participants will learn essential data analytics concepts, master SQL querying techniques for data retrieval and...

Duration 2 days – 14 hrs   Overview   This course provides a comprehensive understanding of the Anti-Money Laundering Act (AMLA) of the Philippines and techniques for identifying and handling counterfeit money. It equips participants with the knowledge to detect suspicious transactions, fulfill AML compliance obligations, and mitigate financial crime risks. Real-world case studies, regulatory...

Duration 2 days – 14 hrs   Overview   This course introduces participants to the principles and tools of data visualization and dashboard design. It focuses on transforming raw data into compelling, clear, and actionable visuals that support decision-making. Participants will explore visualization best practices, storytelling techniques, and hands-on tools (such as Excel, Power BI,...

We use cookies on our website to personalize your experience by storing your preferences and recognizing repeat visits. By clicking “Accept”, you agree to the use of all cookies. You can also select “Cookie Settings” to adjust your preferences and provide more specific consent. Cookie Policy