The page has been translated by Gen AI.
How-to guides
Users can create a service by entering the required information for the Kubernetes Engine and selecting detailed options through the Samsung Cloud Platform Console.
Create Kubernetes Engine
You can create and use the Kubernetes Engine service in the Samsung Cloud Platform Console.
You can create and manage clusters to use the Kubernetes Engine service. After creating the cluster, you can add services needed for operation such as nodes, namespaces, and workloads.
Caution
In the network settings of Kubernetes Engine, you can select up to 4 Security Groups.
- If you manually add a Security Group to a node created by Kubernetes Engine on the Virtual Server service page, it may be automatically removed because it is not managed by Kubernetes Engine.
- For nodes, be sure to add and manage the Security Group in the network settings of the Kubernetes Engine service.
Managed Security Group is automatically managed in Kubernetes Engine.
- Do not use it for any user-defined purpose because if you delete a Managed Security Group or add/delete rules, it will automatically be restored.
Create a cluster
You can create and use a Kubernetes Engine cluster service in the Samsung Cloud Platform Console.
To create a Kubernetes Engine cluster, follow these steps.
- Click the All Services > Container > Kubernetes Engine menu. 1. Go to the Service Home page of Kubernetes Engine.
- On the Service Home page, click the Create Cluster button. 2. Navigate to the Create Cluster page.
- Create Cluster page, enter the information needed to create the service, and select detailed options.
- In the Service Information Input area, enter or select the required information.
Category RequiredDetailed description Cluster name Required Cluster name - must start with an English letter and be entered using English letters, numbers, and special characters (
-) within 3 - 30 characters
Control plane settings > Kubernetes version Required Select Kubernetes version Control plane settings > Private endpoint allowed resources Select After selecting Enable, click Add to select the resource to allow access to the private endpoint - Only resources in the same account and the same region can be registered
- Regardless of whether Enable is enabled, the nodes of the cluster can access the private endpoint
Control Plane Settings > Public Endpoint Select After selecting Use, enter the public endpoint Allowed IP range for access as 192.168.99.0/24 - Set the access control IP range to allow external access to the Kubernetes API server endpoint
- If external access is not required, you can disable it to reduce security threats
ServiceWatch log collection Select Set whether to enable log collection so that cluster logs can be viewed in ServiceWatch - Enable selection provides 5 GB of log storage free for all services within the Account, and charges apply based on storage volume when exceeding 5 GB
- If you need to view cluster logs, it is recommended to enable the ServiceWatch log collection feature
Cloud Monitoring log collection Select Set whether to enable log collection so that logs for the cluster can be viewed in Cloud Monitoring - If you select Use, 1 GB of log storage is provided for free across all services in the Account, and any data exceeding 1 GB will be deleted sequentially
Network Settings Essential Network connection settings for the node pool - VPC name: Select a pre‑created VPC
- Subnet name: Select a standard Subnet to use from the subnets of the selected VPC
- Security Group: Click the Select button and then choose a Security Group in the Select Security Group popup
- Up to 4 Security Group can be selected
StorageClass setting Required Select the storage volume to use in the cluster - NFS Volume: After clicking the Search button, select the file storage in the File Storage Selection popup. The default file storage supports only the NFS format
Table. Kubernetes Engine service information input items - must start with an English letter and be entered using English letters, numbers, and special characters (
- Additional Information Input area, please enter or select the required information.
Category required statusDetailed description tag Select Add Tag - Up to 50 per resource can be added
- After clicking the Add Tag button, input or select Key, Value values
Table. Kubernetes Engine additional information input fields
- In the Service Information Input area, enter or select the required information.
- Summary Check the detailed information and estimated charges generated in the panel, and click the Create button.
- Once creation is complete, verify the created resources on the Cluster List page.
View cluster details
The Kubernetes Engine service allows you to view and edit the full list of resources and detailed information. Cluster Details page consists of Details, Node Pools, Tags, Job History tabs.
To view detailed cluster information, follow these steps.
- All Services > Container > Kubernetes Engine Click the menu. 1. Navigate to the Service Home page of Kubernetes Engine.
- Click the Cluster menu on the Service Home page. 2. Navigate to the Cluster List page.
- Cluster List page, click the resource (cluster) whose detailed information you want to view. 3. Navigate to the Cluster Details page.
- Cluster Details page displays the cluster’s status information and detailed information, and it consists of Details, Node Pools, Tags, Job History tabs.
Category Detailed description Cluster status Kubernetes Engine cluster status - Creating: in progress
- Running: creation complete / operational
- Updating: version upgrade in progress
- Deleting: in progress
- Error: error occurred
Service cancellation Button to delete a Kubernetes Engine cluster - To delete a Kubernetes Engine service, you must delete all node pools added to the cluster
- If the service is deleted, the running service may be terminated immediately, so deletion is required after considering the impact of service interruption
Table. Cluster status information and additional features
- Cluster Details page displays the cluster’s status information and detailed information, and it consists of Details, Node Pools, Tags, Job History tabs.
Detailed Information
On the Cluster List page, you can view detailed information of the selected resource and edit the information if needed.
| Category | Detailed description |
|---|---|
| service | Service name |
| Resource type | Resource Type |
| SRN | Unique resource ID in Samsung Cloud Platform |
| Resource Name | Resource name
|
| Resource ID | Unique resource ID in the service |
| Constructor | User who created the service |
| Creation date and time | Service creation date and time |
| Modifier | User who edited the service information |
| Modification timestamp | Date and time the service information was modified |
| Cluster name | Cluster name |
| LLM Endpoint | LLM Endpoint information |
| Control area configuration | Check the assigned Kubernetes control plane (Control Plane) version and allowed access scope
|
| Network Settings | View the VPC, Subnet, and Security Group information configured when creating a Kubernetes Engine cluster
|
| StorageClass configuration | If you click the NFS volume name, you can view detailed information on the storage details page |
Table. Cluster detail information tab items
Reference
- The version of Kubernetes Engine is expressed as
[major].[minor].[patch], and you can upgrade only one minor version at a time.- Example: version
1.11.x > 1.13.x(Not allowed) / version1.11.x > 1.12.x(Allowed)
- Example: version
- If you are using a Kubernetes version that has reached end of support or a version that is scheduled to reach end of support, a red exclamation mark will appear to the right of the version. * If this icon is displayed, we recommend upgrading the Kubernetes version.
Node Pool
You can view, add, modify, or delete cluster node pool information. For detailed information on using node pools, refer to 노드 관리하기.
| Category | Detailed description |
|---|---|
| Add node pool | Add a node pool to the current cluster
|
| Node pool list | Check the list of node pools created in the current cluster
|
| More menu | Provides node pool management functionality
|
Table. Node pool tab items
Reference
If a red exclamation‑mark icon appears on the node pool version, the node pool’s server OS is not supported in newer Kubernetes versions. The node pool server OS must be upgraded to ensure stable service.
- To upgrade the node pool version, delete the existing node pool and then create a new node pool with a higher server OS version.
Tag
On the Cluster List page, you can view the tag information of the selected resource, and you can add, modify, or delete it.
| Category | Detailed description |
|---|---|
| Tag list | Tag list
|
Table. Cluster Tag Tab Items
Job History
You can view the operation history of the selected resource on the Cluster List page.
| Category | Detailed description |
|---|---|
| Task History List | Resource Change History
|
Table. Cluster Job History Tab Items
Managing Cluster Resources
To manage cluster resources, we provide cluster version upgrades, kubeconfig downloads, and control‑plane logging modification features.
Caution
To use Kubernetes Engine, you need at least read permissions for VPC, VPC Subnet, Security Group, FileStorage, and Virtual Server.
Even without create/delete permissions, Security Group and Virtual Server are created/deleted by Kubernetes Engine for lifecycle management purposes, and the creator/modifier is recorded as System.
Even without create/delete permissions, Security Group and Virtual Server are created/deleted by Kubernetes Engine for lifecycle management purposes, and the creator/modifier is recorded as System.
Cluster version upgrade
If there is a version available for upgrade from the cluster’s Kubernetes version, you can perform the upgrade on the Cluster Details page.
Reference
- Check the following items before upgrading the cluster.
- Check if the cluster’s status is Running
- Check that the status of all node pools in the cluster is Running or Deleting.
- Verify that all node pool versions in the cluster match the cluster version.
- Check whether automatic scaling (up/down) of all node pools in the cluster and the node auto-recovery feature are disabled.
- After upgrading the cluster, proceed with the node pool upgrade. * The control plane and node pool upgrades of a Kubernetes cluster are performed separately.
- You can upgrade only one minor version at a time.
- Example: version 1.12.x > 1.13.x (possible) / version 1.11.x > 1.13.x (not possible)
- After an upgrade, you cannot perform a downgrade or rollback, so to use a previous version again you must create a new cluster.
Caution
- User systems that are using an end‑of‑life Kubernetes version may become vulnerable, so upgrade the control plane and node pool versions directly from the Samsung Cloud Platform Console.
- There are no additional costs associated with the upgrade.
- Please conduct compatibility testing of the upgrade version in advance to ensure stable system operation for users.
Pre-upgrade preparation for cluster version
When upgrading the cluster version, there is no need to delete and recreate API objects. For the migrated API, all existing API objects can be read and updated using the new API version. However, due to the deprecated API in older versions of Kubernetes, you may be unable to read or modify existing objects, or create new objects. Therefore, for system stability, we recommend migrating the client and manifest before upgrading.
Migrate the client and manifest using the following method.
- Download the latest version of the client (e.g., kubectl) and install it on the cluster, then modify the YAML to reference the new API.
- Or use a separate plugin (kubectl convert) to convert automatically. For detailed instructions, refer to the Kubernetes official documentation > Install and configure kubectl on Linux.
Reference
Since the deprecated APIs differ for each cluster version, the scope of application and system impact may also vary. For detailed information, refer to the Kubernetes Official Documentation > Deprecation Guide.
Upgrading Cluster and Node Pool Versions
To update the cluster and node pool, follow these steps.
- All Services > Container > Kubernetes Engine Click the menu. 1. Go to the Service Home page of Kubernetes Engines.
- On the Service Home page, click the Cluster menu. 2. Navigate to the Cluster List page.
- On the Cluster List page, click the resource (cluster) to upgrade the version. 3. Navigate to the Cluster Details page.
- On the Cluster Details page, click the Edit icon of the Kubernetes version. 4. Cluster version upgrade A popup window opens.
- Select the Kubernetes version to upgrade, and click the Confirm button.
- It may take a few minutes for the cluster upgrade to complete.
- During the upgrade, the cluster status is shown as Updating, and when the upgrade is complete, it is shown as Running.
- When the upgrade is complete, select the Node Pool tab. 6. Navigate to the Node Pool page.
- Click the More button of the node pool item, then click Node Pool Upgrade. 7. Node Pool Version Upgrade A popup window opens.
- Node Pool Version Upgrade After reviewing the message in the popup window, click the Confirm button.
- It may take a few minutes for the node pool upgrade to complete.
- While the upgrade is in progress, the node pool status is shown as Updating, and when the upgrade is complete, it is shown as Running.
Download kubeconfig
You can download the administrator/user kubeconfig settings for the cluster’s public and private endpoints as a yaml document.
To download the cluster’s kubeconfig configuration, follow these steps.
- Click the All Services > Container > Kubernetes Engine menu. 1. Go to the Service Home page of Kubernetes Engines.
- On the Service Home page, click the Cluster menu. 2. Navigate to the Cluster List page.
- On the Cluster List page, click the resource (cluster) to download the kubeconfig. 3. Navigate to the Cluster Details page.
- On the Cluster Details page, click the Download admin kubeconfig/Download user kubeconfig button of the desired endpoint.
- You can download the kubeconfig file in YAML format for each permission.
Modify resources that allow private endpoint access
You can modify the resource settings that allow private endpoint access to the cluster.
- All Services > Container > Kubernetes Engine Click the menu. 1. Go to the Service Home page of Kubernetes Engines.
- On the Service Home page, click the Cluster menu. 2. Navigate to the Cluster List page.
- Cluster List page, click the resource (cluster) whose private endpoint access control you want to modify. 3. Navigate to the Cluster Details page.
- On the Cluster Details page, click the Edit icon for Private Endpoint Access Allowed Resources. 4. Private endpoint access allowed resource edit The popup window opens.
- Private Endpoint Access Allowed Resource Modification In the popup, set the Private Endpoint Access Allowed Resource’s Usage and add the allowed access resource, then click the Confirm button.
Modify public endpoint
You can change the public endpoint settings of the cluster.
- Click the All Services > Container > Kubernetes Engine menu. 1. Go to the Service Home page of Kubernetes Engines.
- On the Service Home page, click the Cluster menu. 2. Navigate to the Cluster List page.
- On the Cluster List page, click the resource (cluster) whose public endpoint access control you want to modify. 3. Navigate to the Cluster Details page.
- On the Cluster Details page, click the Edit icon of the Public Endpoint. 4. Public Endpoint Edit The popup window opens.
- Public Endpoint Edit In the Public Endpoint popup, configure the usage setting and add the allowed IP address range, then click the Confirm button.
Modify control plane log collection settings
You can change the log collection settings of the cluster’s control plane. Detailed logs of the cluster can be viewed in the ServiceWatch service or the Cloud Monitoring service.
Reference
Even if you configure log collection in Cloud Monitoring, you can view the cluster logs.
- However, since the Cloud Moniotring log collection feature is scheduled for discontinuation, we recommend using ServiceWatch log collection.
To change the cluster’s control plane log collection settings, follow the steps below.
- All Services > Container > Kubernetes Engine Click the menu. 1. Go to the Service Home page of Kubernetes Engines.
- On the Service Home page, click the Cluster menu. 2. Navigate to the Cluster List page.
- Cluster List page, click the resource (cluster) whose control plane logging you want to modify. 3. Go to the Cluster Details page.
- On the Cluster Details page, click the Edit icon of ServiceWatch log collection. 4. ServiceWatch log collection The popup window opens.
- The Cloud Monitoring log collection feature can also be configured in the same way.
- In the ServiceWatch Log Collection popup, after setting the Use option for ServiceWatch Log Modification, click the Confirm button.
Reference
When log collection is enabled, you can view the cluster control plane’s Audit/Event logs in each service. Detailed logs can be viewed on the next page.
Modify Security Group
You can modify the cluster’s Security Group.
Caution
In the network settings of Kubernetes Engine, you can select up to 4 Security Groups.
- If you manually add a Security Group to a node created by Kubernetes Engine on the Virtual Server service page, it may be automatically removed because it is not managed by Kubernetes Engine.
- For nodes, be sure to add and manage the Security Group in the network settings of the Kubernetes Engine service.
Managed Security Group is automatically managed in Kubernetes Engine.
- Do not use it for any user-defined purpose because deleting a Managed Security Group or adding/deleting rules will automatically be restored.
To modify the cluster’s Security Group, follow these steps.
- Click the All Services > Container > Kubernetes Engine menu. 1. Go to the Service Home page of Kubernetes Engines.
- On the Service Home page, click the Cluster menu. 2. Navigate to the Cluster List page.
- On the Cluster List page, click the resource (cluster) whose Security Group you want to modify. 3. Navigate to the Cluster Details page.
- On the Cluster Details page, click the Edit icon of the Security Group. 4. Security Group Edit The popup window opens.
- After selecting or deselecting the Security Group to modify, click the Confirm button.
Terminate Cluster
Caution
If you terminate the cluster, all associated node pools are deleted, and all data in every pod within the cluster is permanently deleted.
To terminate the cluster, follow the steps below.
- Click the All Services > Container > Kubernetes Engine menu. 1. Go to the Service Home page of Kubernetes Engines.
- On the Service Home page, click the Cluster menu. 2. Navigate to the Cluster List page.
- Cluster List page, click the resource (cluster) whose detailed information you want to view. 3. Navigate to the Cluster Details page.
- On the Cluster Details page, click Cancel Service.
- Service Termination After reviewing the content in the popup window, click the Confirm button.