additionalTrustBundle
|
A PEM-encoded X.509 certificate bundle that is added to the nodes' trusted certificate store. This trust bundle may also be used when a proxy has been configured.
|
|
compute
|
The configuration for the machines that comprise the compute nodes.
|
Array of MachinePool objects. For details, see the following "Machine-pool" table.
|
compute.architecture
|
Determines the instruction set architecture of the machines in the pool. Currently, heteregeneous clusters are not supported, so all pools must specify the same architecture. Valid values are amd64 (the default).
|
|
compute.hyperthreading
|
Whether to enable or disable simultaneous multithreading, or hyperthreading , on compute machines. By default, simultaneous multithreading is enabled to increase the performance of your machines' cores.
|
If you disable simultaneous multithreading, ensure that your capacity planning
accounts for the dramatically decreased machine performance.
|
|
|
compute.name
|
Required if you use compute . The name of the machine pool.
|
|
compute.platform
|
Required if you use compute . Use this parameter to specify the cloud provider to host the worker machines. This parameter value must match the controlPlane.platform parameter value.
|
aws , azure , gcp , openstack , ovirt , vsphere , or {}
|
compute.replicas
|
The number of compute machines, which are also known as worker machines, to provision.
|
A positive integer greater than or equal to 2 . The default value is 3 .
|
controlPlane
|
The configuration for the machines that comprise the control plane.
|
Array of MachinePool objects. For details, see the following "Machine-pool" table.
|
controlPlane.architecture
|
Determines the instruction set architecture of the machines in the pool. Currently, heterogeneous clusters are not supported, so all pools must specify the same architecture. Valid values are amd64 (the default).
|
|
controlPlane.hyperthreading
|
Whether to enable or disable simultaneous multithreading, or hyperthreading , on control plane machines. By default, simultaneous multithreading is enabled to increase the performance of your machines' cores.
|
If you disable simultaneous multithreading, ensure that your capacity planning
accounts for the dramatically decreased machine performance.
|
|
|
controlPlane.name
|
Required if you use controlPlane . The name of the machine pool.
|
|
controlPlane.platform
|
Required if you use controlPlane . Use this parameter to specify the cloud provider that hosts the control plane machines. This parameter value must match the compute.platform parameter value.
|
aws , azure , gcp , openstack , ovirt , vsphere , or {}
|
controlPlane.replicas
|
The number of control plane machines to provision.
|
The only supported value is 3 , which is the default value.
|
credentialsMode
|
The Cloud Credential Operator (CCO) mode. If no mode is specified, the CCO dynamically tries to determine the capabilities of the provided credentials, with a preference for mint mode on the platforms where multiple modes are supported.
|
Not all CCO modes are supported for all cloud providers. For more information on CCO modes, see the Cloud Credential Operator entry in the Cluster Operators reference content.
|
|
Mint , Passthrough , Manual , or an empty string ("" ).
|
fips
|
Enable or disable FIPS mode. The default is false (disabled). If FIPS mode is enabled, the Red Hat Enterprise Linux CoreOS (RHCOS) machines that OpenShift Container Platform runs on bypass the default Kubernetes cryptography suite and use the cryptography modules that are provided with RHCOS instead.
|
The use of FIPS Validated / Modules in Process cryptographic libraries is only supported on OpenShift Container Platform deployments on the x86_64 architecture.
|
|
If you are using Azure File storage, you cannot enable FIPS mode.
|
|
|
imageContentSources
|
Sources and repositories for the release-image content.
|
Array of objects. Includes a source and, optionally, mirrors , as described in the following rows of this table.
|
imageContentSources.source
|
Required if you use imageContentSources . Specify the repository that users refer to, for example, in image pull specifications.
|
|
imageContentSources.mirrors
|
Specify one or more repositories that may also contain the same images.
|
|
publish
|
How to publish or expose the user-facing endpoints of your cluster, such as the Kubernetes API, OpenShift routes.
|
Internal or External . The default value is External .
Setting this field to Internal is not supported on non-cloud platforms.
|
If the value of the field is set to Internal , the cluster will become non-functional. For more information, refer to BZ#1953035.
|
|
sshKey
|
The SSH key or keys to authenticate access your cluster machines.
|
For production OpenShift Container Platform clusters on which you want to perform installation debugging or disaster recovery, specify an SSH key that your ssh-agent process uses.
|
|
One or more keys. For example:
sshKey:
<key1>
<key2>
<key3>
|