This is the multi-page printable view of this section. Click here to print.

Return to the regular view of this page.

How-to guides

1: Managing Namespaces
2: Managing Workloads
3: Managing Services and Ingress
4: Managing Storage
5: Configuration Management
6: Managing Permissions
7:

The user can enter required information for the Kubernetes Engine through the Samsung Cloud Platform Console, select detailed options, and create a service.

Create Kubernetes Engine

You can create and use the Kubernetes Engine service from the Samsung Cloud Platform Console.

You can create and manage clusters to use the Kubernetes Engine service. After creating a cluster, you can add services needed for operation such as nodes, namespaces, and workloads.

Caution

You can select up to 4 Security Groups in the network settings of Kubernetes Engine.
- If you directly add a Security Group to nodes created by Kubernetes Engine on the Virtual Server service page, it may be automatically released because it is not managed by Kubernetes Engine.
- For nodes, the Security Group must be added/managed in the network settings of the Kubernetes Engine service.
Managed Security Group is automatically managed in Kubernetes Engine.

Do not use it for user arbitrary purposes because deleting the Managed Security Group or adding/deleting rules will automatically be reverted.

Creating a Cluster

You can create and use a Kubernetes Engine cluster service from the Samsung Cloud Platform Console.

To create a Kubernetes Engine cluster, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click the Create Cluster button on the Service Home page. You will be taken to the Create Cluster page.
Cluster Creation page, enter the information required to create the service, and select detailed options.

Enter service information area, input or select the required information.

Category	Required or not	Detailed description
Cluster Name	Required	Cluster Name Start with an English letter and use English letters, numbers, special character (`-`) within 3-30 characters
Control Plane Settings > Kubernetes Version	Required	Select Kubernetes Version
Control Area Settings > Private Endpoint Access Control	Select	Select whether to use Private Endpoint Access Control After selecting Use, click Add to select resources that are allowed to access the private endpoint Only resources in the same Account and same region can be registered Regardless of the Use setting, the nodes of the cluster can access the private endpoint
Control Area Settings > Public Endpoint Access/Access Control	Select	Select whether to use Public Endpoint Access/Access Control After selecting Use, enter the Allowed Access IP Range as 192.168.99.0/24 Set the access control IP range so that external users can access the Kubernetes API server endpoint If external access is not needed, you can disable it to reduce security threats
ServiceWatch log collection	Optional	Set whether to enable log collection so that logs for the cluster can be viewed in ServiceWatch. Log storage up to 5 GB for all services within the account is provided for free, and fees are charged based on storage volume if it exceeds 5 GB. If you need to check cluster logs, it is recommended to enable the ServiceWatch log collection feature
Cloud Monitoring log collection	Optional	Set whether to enable log collection so that logs for the cluster can be viewed in Cloud Monitoring. Up to 1 GB of log storage for all services within the account is provided for free, and any amount exceeding 1 GB is deleted sequentially.
Network Settings	Required	Network connection settings for node pool VPC: Select a pre-created VPC Subnet: Choose a standard Subnet to use from the subnets of the selected VPC Security Group: after clicking the Select button, select a Security Group in the Security Group Selection popup Up to 4 Security Group can be selected
File Storage Settings	Required	Select the file storage volume to be used in the cluster Default Volume (NFS): Click the Search button and then select the file storage in the File Storage Selection popup. The default Volume file storage can only use the NFS format.

Table. Kubernetes Engine Service Information Input Items

Additional Information Input Enter or select the required information in the area.
Category
Required
Detailed description
Tag Select Add Tag
Up to 50 can be added per resource
After clicking the Add Tag button, enter or select Key, Value values
Table. Kubernetes Engine Additional Information Input Items

Category	Required	Detailed description
Tag	Select	Add Tag Up to 50 can be added per resource After clicking the Add Tag button, enter or select Key, Value values

Summary Check the detailed information and estimated billing amount generated in the panel, and click the Complete button.
- When creation is complete, check the created resources on the Cluster List page.

Check cluster detailed information

Kubernetes Engine service can view and edit the full resource list and detailed information. Cluster Details page consists of Details, Node Pools, Tags, Activity History tabs.

To view detailed cluster information, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click the Cluster menu on the Service Home page. Navigate to the Cluster List page.

Click the resource (cluster) you want to view detailed information for on the Cluster List page. You will be taken to the Cluster Details page.

Cluster Details page displays the cluster’s status information and detailed information, and consists of Details, Node Pool, Tags, Job History tabs.

Category	Detailed description
Cluster Status	Kubernetes Engine cluster status Creating: Creating Running: Created / Running Error: Error occurred
Service Termination	Button to terminate a Kubernetes Engine cluster To terminate the Kubernetes Engine service, you must delete all node pools added to the cluster If the service is terminated, the running service may be stopped immediately, so termination is necessary after considering the impact of service interruption

Detailed Information

Cluster List page allows you to view detailed information of the selected resource and, if necessary, edit the information.

Category	Detailed description
service	service name
Resource Type	Resource Type
SRN	Unique resource ID in Samsung Cloud Platform
Resource Name	Resource Name In the Kubernetes Engine service, it refers to the cluster name
Resource ID	Unique resource ID in the service
Creator	User who created the service
Creation Time	Time the service was created
Editor	User who modified the service information
Modification DateTime	Date and time when service information was modified
Cluster name	Cluster name
LLM Endpoint	LLM Endpoint information
Control Plane Settings	Check assigned Kubernetes control plane (Control Plane) version and access permission range If there is a Kubernetes version of the control plane that can be upgraded, click the Edit icon to perform Cluster Version Upgrade. See Cluster Version Upgrade for details Click the Admin Kubeconfig Download/User Kubeconfig Download button of the private endpoint address to download the kubeconfig settings for each role as a yaml document Click the Edit icon of private endpoint access control to modify usage and allowed resources Click the Admin Kubeconfig Download/User Kubeconfig Download button of the public endpoint address to download the kubeconfig settings for each role as a yaml document Click the Edit icon of public endpoint access/control to modify usage and allowed IP range Click the Edit icon of ServiceWatch log collection to change usage. When log collection is enabled, view the cluster control plane’s Audit/Event logs in ServiceWatch > Log Group Click the Edit icon of Cloud Monitoring log collection to change usage. When log collection is enabled, view the cluster control plane’s Audit/Event logs in Cloud Monitoring > Log Analysis
Network Settings	Check VPC, Subnet, and Security Group information set when creating a Kubernetes Engine cluster Click each setting to view detailed information on the detail page If a Security Group change is needed, click the Edit icon to configure
File Storage Settings	If you click the volume name, you can view detailed information on the storage detail page

Table. Cluster detailed information items

Reference

The version of Kubernetes Engine is denoted in order [major].[minor].[patch], and you can upgrade only one minor version at a time.
- Example: version 1.11.x > 1.13.x (Not possible) / version 1.11.x > 1.12.x (Possible)
If you are using a Kubernetes version that has reached end of support or a version that is scheduled to reach end of support, a red exclamation mark will appear to the right of the version. If this icon appears, we recommend upgrading the Kubernetes version.

Node Pool

You can view, add, modify, or delete cluster node pool information. For detailed information on using node pools, refer to Managing Nodes.

Category	Detailed description
Add node pool	Add node pool to the current cluster For more details see Add node pool
Node Pool Information	Provides node pool list view and management functions Node Information: Displays node name, version, and status information Node Pool Upgrade: Node pool version upgrade Node Pool Deletion: Delete node

Category	Detailed description
Tag List	Tag List Key and Value information of tags can be checked Up to 50 tags can be added per resource When entering tags, search and select from the list of previously created Keys and Values

Work History

You can view the operation history of the selected resource on the Cluster List page.

Category	Detailed description
Work History List	Resource Change History Work details, work date and time, resource type, resource name, work result, can check operator information Work History List list, when you click the corresponding resource, the Work History Details popup opens

Managing Cluster Resources

To manage cluster resources, we provide cluster version upgrade, kubeconfig download, and control plane logging modification features.

Caution

To use Kubernetes Engine, you need at least read permissions for VPC, VPC Subnet, Security Group, FileStorage, and Virtual Server.
Security Group and Virtual Server are created/deleted by Kubernetes Engine for lifecycle management purposes even without create/delete permissions, and the creator/modifier is indicated as System.

Cluster Version Upgrade

If there is a version that can be upgraded from the cluster’s Kubernetes version, you can perform the upgrade on the Cluster Details page.

Reference

Before the cluster upgrade, check the following items.
- Check if the cluster’s status is Running
- Check that all node pool statuses of the cluster are Running or Deleting
- Check that all node pool versions in the cluster are the same version as the cluster
- Check whether automatic scaling/downsizing of all node pools in the cluster and node auto-recovery feature are unused
After upgrading the cluster, proceed with node pool upgrade. The control plane and node pool upgrades of the Kubernetes cluster are performed separately.
You can only upgrade one minor version at a time.
- Example: version 1.12.x > 1.13.x (possible) / version 1.11.x > 1.13.x (not possible)
After an upgrade, you cannot perform a downgrade or rollback, so to use the previous version again you must create a new cluster.

Caution

Since user systems using end-of-support Kubernetes versions may have security vulnerabilities, upgrade the control plane and node pool versions directly in the Samsung Cloud Platform Console.
- No additional cost will be incurred due to the upgrade.
Please perform compatibility testing for the upgrade version in advance to ensure stable system operation for users.

Cluster version upgrade preparation

There is no need to delete and recreate API objects when upgrading the cluster version. For the transitioned API, all existing API objects can be read and updated using the new API version. However, due to deprecated APIs in older Kubernetes versions, you may be unable to read or modify existing objects or create new ones. Therefore, to ensure system stability, it is recommended to migrate clients and manifests before the upgrade.

Migrate the client and manifest using the following method.

Download the new version of the client (e.g., kubectl), install it on the cluster, and modify the Yaml to refer to the new API.
or use a separate plugin (kubectl convert) to automatically convert. For detailed instructions, refer to the Kubernetes official documentation > Install and set up kubectl on Linux.

Reference

Since the deprecated API differs for each cluster version, the scope of application and system impact may also vary. For detailed explanation, refer to the Kubernetes official documentation > Deprecation Guide.

Upgrade Cluster and Node Pool Versions

To update the cluster and node pool, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engines.
Click the Cluster menu on the Service Home page. It navigates to the Cluster List page.
Cluster List page, click the resource (cluster) to upgrade the version. It navigates to the Cluster Details page.
Click the Edit icon of Kubernetes version on the Cluster Details page. Navigate to the Cluster Version Upgrade popup.
Select the Kubernetes version to upgrade, and click the Confirm button.
- It may take a few minutes for the cluster upgrade to complete.
- During the upgrade, the cluster status is shown as Updating, and when the upgrade is complete, it is shown as Running.
When the upgrade is complete, select the Node Pool tab. Go to the Node Pool page.
Click the More button of the node pool item and click Node Pool Upgrade. It will move to the Node Pool Version Upgrade popup window.
Node Pool Version Upgrade After checking the message in the popup window, click the Confirm button.
- It may take a few minutes until the node pool upgrade is completed.
- During the upgrade, the node pool status is shown as Updating, and when the upgrade is complete, it is shown as Running.

kubeconfig download

You can download the admin/user kubeconfig settings of the cluster’s public and private endpoints as a yaml document.

To download the cluster’s kubeconfig settings, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engines.
Click the Cluster menu on the Service Home page. You will be taken to the Cluster List page.
On the Cluster List page, click the resource (cluster) to download the kubeconfig. You will be taken to the Cluster Details page.
On the Cluster Details page, click the Admin kubeconfig download/User kubeconfig download button for the desired endpoint.
- You can download the kubeconfig file in yaml format for each permission.

Edit Private Endpoint Access Control

You can change the private endpoint access control settings of the cluster.

Click the All Services > Container > Kubernetes Engine menu. Navigate to the Service Home page of Kubernetes Engines.
Click the Cluster menu on the Service Home page. Navigate to the Cluster List page.
On the Cluster List page, click the resource (cluster) to modify private endpoint access control. You will be taken to the Cluster Details page.
Cluster Details page, click the Edit icon of Private Endpoint Access Control. Navigate to the Private Endpoint Access Control Edit popup.
Private Endpoint Access Control Modification in the popup window, check the Private Endpoint Access Control Usage, add the allowed access resources, and click the Confirm button.

Modify public endpoint access/access control

You can change the public endpoint access control settings of the cluster.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engines.
Click the Cluster menu on the Service Home page. Navigate to the Cluster List page.
Click the resource (cluster) to modify public endpoint access control on the Cluster List page. You will be taken to the Cluster Details page.
Click the Edit icon of Public Endpoint Access/Access Control on the Cluster Details page. It moves to the Public Endpoint Access/Access Control Edit popup.
Public Endpoint Access/Access Control Modification In the popup window, check the Public Endpoint Access Control Use status and add the allowed IP range, then click the Confirm button.

Modify control area log collection settings

You can change the log collection settings of the cluster’s control plane. Detailed logs of the cluster can be viewed in the ServiceWatch service or the Cloud Monitoring service.

Reference

Even if you set up Cloud Monitoring log collection, you can still view the cluster logs.

However, since the Cloud Moniotring log collection feature is scheduled for termination, we recommend using ServiceWatch log collection.

Follow the steps below to change the control plane log collection settings of the cluster.

Click the All Services > Container > Kubernetes Engine menu. Navigate to the Service Home page of Kubernetes Engines.
Click the Cluster menu on the Service Home page. Navigate to the Cluster List page.
Cluster List page, click the resource (cluster) to modify control plane logging. Cluster Details page will be opened.
Cluster Details page, click the Edit icon of ServiceWatch Log Collection. It will navigate to the ServiceWatch Log Collection popup.
- Cloud Monitoring log collection feature can also be set the same way.
In the ServiceWatch log collection popup, after checking the use of ServiceWatch log modification, click the Confirm button.

Reference

When using log collection, you can view the Audit/Event logs of the cluster control area in each service. Detailed logs can be viewed on the next page.

Security Group Edit

You can modify the cluster’s Security Group.

Caution

In the network settings of Kubernetes Engine, you can select multiple Security Groups. (up to 4)
- If you directly add a Security Group on the Virtual Server service page to nodes created by Kubernetes Engine, they may be automatically released because they are not managed by Kubernetes Engine.
- For nodes, the Security Group must be added/managed in the network settings of the Kubernetes Engine service.
Managed Security Group is automatically managed in Kubernetes Engine.

Do not use it for any user-defined purpose because if you delete a Managed Security Group or add/delete rules, it will automatically be restored.

To modify the cluster’s Security Group, follow the steps below.

All Services > Container > Kubernetes Engine menu를 클릭하세요. Kubernetes Engines의 Service Home 페이지로 이동합니다.
Click the Cluster menu on the Service Home page. You will be taken to the Cluster List page.
Cluster List page, click the resource (cluster) whose Security Group you want to modify. You will be taken to the Cluster Details page.
Click the Edit icon of Security Group on the Cluster Details page. It will navigate to the Security Group Edit popup.
After selecting or deselecting the Security Group to modify, click the Confirm button.

Cancel Cluster

Caution

If you terminate the cluster, all node pools will be deleted, and all data in all pods within the cluster will be permanently deleted.

To cancel the cluster, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engines.
Click the Cluster menu on the Service Home page. You will be taken to the Cluster List page.
Click the resource (cluster) on the Cluster List page to view detailed information. You will be taken to the Cluster Detail page.
On the Cluster Details page, click Service Termination.
Service termination After checking the contents in the popup window, click the Confirm button.

1 - Managing Namespaces

A namespace is a logical separation unit within a Kubernetes cluster, and is used to specify access permissions or resource usage limits by namespace.

Create namespace

To create a namespace, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click the Namespace menu. It moves to the Namespace List page.
On the Namespace List page, select the cluster where you want to create a namespace from the gear button at the top left, then click Create Object.
Object creation popup where you enter object information and click the Confirm button.

Reference

For more information about creating objects, see the Kubernetes official documentation > Kubernetes objects.

Check namespace details

You can check the namespace status and detailed information on the namespace detail page.

To check namespace details, follow the next procedure.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click the Namespace menu. It moves to the Namespace List page.
On the Namespace List page, select the cluster where the namespace that requires detailed information is located from the gear button in the top left, and then click OK.
On the Namespace List page, select and click the item you want to check the details for. It moves to the Namespace Details page.

Classification	Detailed Description
Status Indicator	Displays the current status of the namespace
Namespace Deletion	You can delete a namespace A namespace that contains workloads cannot be deleted. To delete a namespace, you must delete all connected workloads
Detailed Information	Check the namespace’s Account information and metadata information
YAML	You can modify the namespace in the YAML editor Click the Edit button, modify the namespace, and then click the Save button to apply the changes
Event	Check events that occurred within the namespace
Pod	Check pod information in the namespace
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the metadata information of the namespace

Table. Namespace details items

Deleting a namespace

To delete a namespace, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click the Namespace menu. It moves to the Namespace List page.
On the Namespace List page, select the cluster where the namespace you want to delete is located from the gear button at the top left, then click the OK button.
On the Namespace List page, select and click the item you want to check the details for. It moves to the Namespace Details page.
Click Namespace Delete on the Namespace Details page.
When the Notification Confirmation Window appears, click the OK button.

Caution

Select the item to be deleted from the namespace list page, then click Delete to delete the selected namespace. A namespace that contains a workload cannot be deleted. To delete a namespace, delete all associated workloads.

2 - Managing Workloads

The workload is an application running on Kubernetes Engine. You can create a namespace and then add or remove workloads. Workloads are created and managed item by item, such as deployments, pods, stateful sets, daemon sets, jobs, and cron jobs.

Managing Deployment

Deployment is a resource that provides updates for pods and replica sets. You can create a deployment in a workload, check its details, or delete it.

Creating Deployment

To create a deployment, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Deployment under the Workload menu. It moves to the List Deployment page.
Deployment list page, select the cluster and namespace from the gear button at the top left, then click Create object.

Object Creation Popup where you enter object information and click the Confirm button.

The following is an example of a .yaml file showing the required fields and object Spec for deployment creation. (application/deployment.yaml)

Color mode

 apiVersion: apps/v1
 kind: Deployment
 metadata:
   name: nginx-deployment
 spec:
   selector:
      matchLabels:
         app: nginx
   replicas: 2 # tells deployment to run 2 pods matching the template
   template:
     metadata:
        labels:
           app: nginx
     spec:
        containers:
        - name: nginx
          image: nginx:1.14.2
          ports:
          - containerPort: 80

 apiVersion: apps/v1
 kind: Deployment
 metadata:
   name: nginx-deployment
 spec:
   selector:
      matchLabels:
         app: nginx
   replicas: 2 # tells deployment to run 2 pods matching the template
   template:
     metadata:
        labels:
           app: nginx
     spec:
        containers:
        - name: nginx
          image: nginx:1.14.2
          ports:
          - containerPort: 80

Code block. Essential fields and object Spec for deployment creation

Reference

For more information about the concept of deployment and object creation, please refer to the Kubernetes official documentation > Deployment.

Check Deployment Details

To check the deployment details, follow the next procedure.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Deployment under the Workload menu. It moves to the Deployment List page.
Deployment list page, select the cluster and namespace from the gear button at the top left, then click OK.
Deployment List page, select the item you want to check the detailed information. It moves to the Deployment Details page.
- Selecting Show System Objects at the top of the list displays all items except Kubernetes object entries.
Click each tab to check service information.

Classification	Detailed Description
Deployment Deletion	Delete the deployment
Detailed Information	Check detailed information of deployment
YAML	You can modify the resource file of the deployment in the YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred within the deployment
Pod	Check pod information of deployment Pod is the smallest computing unit that can be created, managed, and deployed in Kubernetes Engine
Account Information	Account name, location, creation time, etc. Basic information about the Account can be checked
Metadata Information	Check the metadata information of the deployment
Object Information	Check object information of deployment

Table. Deployment details items

Deleting Deployment

To delete a deployment, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Deployment under the Workload menu. It moves to the Deployment List page.
Deployment list page, select the cluster and namespace from the gear button at the top left, then click OK.
Deployment List page, select the item you want to delete. It moves to the Deployment Details page.
Deployment Details page, click Delete Deployment.
When the Notification Confirmation Window appears, click the Confirm button.

Caution

In the deployment list page, you can delete the selected deployment by selecting the item you want to delete and then clicking Delete.

Managing Pods

A Pod is the smallest computing unit that can be created, managed, and deployed in Kubernetes, referring to a group of one or more containers. You can create pods in workloads and view or delete their details.

Creating a Pod

To create a pod, follow the next procedure.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Pods under the Workload menu. It moves to the Pod List page.
Pod list page, select the cluster and namespace from the gear button at the top left, then click Create object.
Object Creation Popup where you enter object information and click the Confirm button.

Reference

For more information about the concept of pods and object creation, please refer to the Kubernetes official documentation > Pods.

Check Pod Details

To check the pod details, follow the next procedure.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Pods under the Workload menu. It moves to the Pod List page.
Pod list page, select the cluster and namespace from the gear button at the top left, then click OK.
Pod List page, select the item you want to check the detailed information. It moves to the Pod Detail page.
- Selecting Show System Objects at the top of the list displays all items except Kubernetes object entries.
Click each tab to check the service information.

Classification	Detailed Description
Status Indicator	Indicates the current status of the pod
Delete Pod	Delete the pod
Detailed Information	You can check the detailed information of the pod
YAML	You can modify the pod’s resource file in the YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred within the pod
Log	If you select a container, you can check the container information that the pod has
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the pod’s metadata information
Object Information	Check the object information of the pod
Initialization Container Information	Check the initialization container information of the pod
Container Information	Check container information of the pod

Table. Pod detailed information items

Deleting Pods

To delete a pod, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Pods under the Workload menu. It moves to the Pod List page.
Pod List page, select the cluster and namespace from the gear button at the top left, then click OK.
Select the item to delete on the Pod List page. It moves to the Pod Detail page.
Pod Details page, click Delete Pod.
When the Notification Confirmation Window appears, click the OK button.

Caution

In the pod list page, you can delete the selected pod by clicking Delete after selecting the item you want to delete.

Managing StatefulSets

A StatefulSet is a workload API object used to manage stateful applications, you can create, describe, or delete StatefulSet in the workload.

Creating a StatefulSet

To create a stateful set, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click StatefulSet under the Workload menu. It moves to the Statefulset List page.
StatefulSet list page, select the cluster and namespace from the gear button at the top left, then click Create object.
Object creation popup where you enter object information and click the OK button.

Reference

For more information about the StatefulSet concept and object creation, see Kubernetes official documentation > StatefulSet.

Checking Detailed Information of StatefulSet

To view detailed information about a StatefulSet, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click StatefulSet under the Workload menu. It moves to the StatefulSet List page.
StatefulSet list page, select the cluster and namespace from the gear button at the top left, then click OK.
StatefulSet list page, select the item you want to check the detailed information. It moves to the StatefulSet detail page.
- Selecting Show System Objects at the top of the list displays all items except Kubernetes object entries.
Click each tab to check service information.

Classification	Detailed Description
StatefulSet deletion	Delete the StatefulSet
Detailed Information	Check detailed information of StatefulSet
YAML	You can modify the resource file of the StatefulSet in the YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred within the stateful set
Pod	Check pod information of StatefulSet
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the metadata information of the StatefulSet
Object Information	Check object information of the StatefulSet

Table. Detailed information items of StatefulSet

Deleting a StatefulSet

To delete a stateful set, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click StatefulSet under the Workload menu. It moves to the StatefulSet List page.
StatefulSet list page, select the cluster and namespace from the gear button at the top left, then click OK.
StatefulSet list page, select the item you want to delete. It moves to the StatefulSet details page.
StatefulSet details page, click Delete StatefulSet.
When the Notification Confirmation Window appears, click the Confirm button.

Caution

In the stateful set list page, you can delete the selected stateful set by selecting the item you want to delete and then clicking Delete.

Managing DaemonSets

A daemon set is a resource that allows all nodes or some nodes to run a copy of a pod. You can create a daemon set in a workload, check its details, or delete it.

Creating a DaemonSet

To create a daemon set, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click DaemonSet under the Workload menu. It moves to the DaemonSet list page.
On the DaemonSet list page, select the cluster and namespace from the gear button in the top left, then click Create object.
Object creation popup where you enter object information and click the OK button.

Reference

For more information about the concept of daemon sets and object creation, please refer to the Kubernetes official documentation > DaemonSet.

Checking DaemonSet Details

To check the details of the daemon set, follow the next procedure.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click DaemonSet under the Workload menu. It moves to the DaemonSet list page.
On the DaemonSet list page, select the cluster and namespace from the gear button at the top left, then click OK.
Select an item to check the detailed information on the DaemonSet list page. It moves to the DaemonSet details page.
- Selecting Show System Objects at the top of the list displays all items except Kubernetes object entries.
Click each tab to check service information.

Classification	Detailed Description
Delete DaemonSet	Delete DaemonSet
Detailed Information	Check detailed information of daemon set
YAML	You can modify the daemon set’s resource file in a YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred within the daemon set
Pod	Check pod information of daemon set
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the metadata information of the daemon set
Object Information	Check the object information of the daemon set

Table. Detailed information items of daemon set

Deleting DaemonSets

To delete a daemon set, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click DaemonSet under the Workload menu. It moves to the DaemonSet list page.
On the DaemonSet list page, select the cluster and namespace from the gear button at the top left, then click OK.
Select the item to delete from the DaemonSet list page. It will move to the DaemonSet details page.
DaemonSet details page, click Delete DaemonSet.
When the Notification Confirmation Window appears, click the Confirm button.

Caution

In the daemon set list page, you can delete the selected daemon set by selecting the item you want to delete and then clicking Delete.

Job Management

A job is a resource that creates one or more pods and continues to run them until a specified number of pods complete successfully. You can create a job in a workload and view or delete its details.

Creating a Job

To create a job, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Job under the Workload menu. It moves to the Job List page.
Job list page, select the cluster and namespace from the gear button at the top left, then click Create object.
Object Creation Popup where you enter object information and click the Confirm button.

Reference

For more information on the concept of a job and object creation, see Kubernetes official documentation > Job.

Check Job Details

To check the job details, follow the next procedure.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Job under the Workload menu. It moves to the Job List page.
Job List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Job list page, select the item you want to check the details. It moves to the Job details page.
- Selecting Show System Objects at the top of the list displays all items except Kubernetes object entries.
Click each tab to check service information.

Classification	Detailed Description
Job Delete	Delete Job
Detailed Information	Check detailed information of the book
YAML	You can modify the job’s resource file in the YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred in the job
Pod	Check the pod information of the job
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the metadata information of the book
Object Information	Check the object information of the book

Table. Job detailed information items

Delete Job

To delete a job, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Job under the Workload menu. It moves to the Job List page.
Job list page, select the cluster and namespace from the gear button at the top left, then click OK.
Job List page, select the item you want to delete. It moves to the Job Detail page.
Click Job Delete on the Job Details page.
When the Notification Confirmation Window appears, click the Confirm button.

Caution

On the job list page, you can delete the selected job by selecting the item you want to delete and then clicking Delete.

Managing Cron Jobs

A cron job is a resource that runs a job periodically according to a schedule written in cron format. It can be used to execute repetitive tasks at a fixed interval, such as backup and report creation. You can create a cron job in the workload and check or delete detailed information.

Creating a Cron Job

To create a cron job, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click CronJob under the Workload menu. It moves to the CronJob List page.
CronJob list page, select the cluster and namespace from the gear button at the top left, then click Create Object.
Object Creation Popup where you enter object information and click the Confirm button.

Reference

For more information on the concept of CronJob and object creation, please refer to the Kubernetes official documentation > CronJob.

Check Cron Job Details

To check the detailed information of the cron job, follow the next procedure.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click CronJob under the Workload menu. It moves to the CronJob List page.
CronJob list page, select the cluster and namespace from the gear button at the top left, then click OK.
Cron Job List page, select the item you want to check the detailed information. It moves to the Cron Job Detail page.
- Selecting Show System Objects at the top of the list displays all items except Kubernetes object entries.
Click each tab to check the service information.

Classification	Detailed Description
Delete Cron Job	Delete a cron job
Detailed Information	Possible to check detailed information of cron job
YAML	You can modify the resource file of CronJob in YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred within the cron job
Job	Check the job information of Cron Job. If you select a job item, it moves to the job detail page
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the metadata information of the cron job
Object Information	Check the object information of the cron job

Table. Cron job detail items

Deleting a Cron Job

To delete a cron job, follow these steps.

Click on the menu for all services > Container > Kubernetes Engine. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click CronJob under the Workload menu. It moves to the CronJob List page.
CronJob list page, select the cluster and namespace from the gear button at the top left, then click OK.
Select the item to be deleted from the Cron Job List page. It will move to the Cron Job Details page.
Cron Job Details page, click Delete Cron Job.
When the Notification Confirmation Window appears, click the Confirm button.

Caution

In the cron job list page, you can delete the selected cron job by selecting the item you want to delete and then clicking Delete.

3 - Managing Services and Ingress

The service is an abstraction method that exposes applications running in a set of pods as a network service, and ingress is used to expose HTTP and HTTPS paths from outside the cluster to inside the cluster. After creating a namespace, you can create or delete services, endpoints, ingresses, and ingress classes.

Reference

Service, Endpoint, Ingress, IngressClass The service is set to the default cluster (namespace) selected when the service is created. Even if you select other items in the list, the default cluster (namespace) setting is maintained.

To select a different cluster (namespace), click the gear button on the right side of the list. In the Cluster/Namespace Settings popup window, select the cluster and namespace you want to change and click the OK button. You can see the services created in the selected cluster/namespace.

Managing Services

You can create a service, check detailed information, or delete it.

Creating a Service

To create a service, follow these steps.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Service under the Service and Ingress menu. It moves to the Service List page.
On the Service List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
Object Creation Popup에서 오브젝트 정보를 입력하고 Confirm 버튼을 클릭하세요.

Reference

For more information on the concept of a service and how to create an object, see the Kubernetes official documentation > Service.

Check Service Details

To check the service details, follow the next procedure.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
Service Home page, click Service under the Service and Ingress menu. It moves to the Service List page.
On the Service List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
On the Service List page, select the item you want to check the detailed information. It moves to the Service Detail page.
- Selecting System Object View at the top of the list displays all items except Kubernetes object entries.
Click each tab to check the service information.

Classification	Detailed Description
Service Deletion	Delete the service
Detailed Information	Possible to check detailed information of the service
YAML	The service’s resource file can be modified in the YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the events that occurred within the service
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the metadata information of the service
Object Information	Check the object information of the service

Table. Service Detail Information Items

Delete Service

To delete a service, follow these steps.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Services under the Services and Ingress menu. It moves to the Service List page.
On the Service List page, select the cluster and namespace from the gear button at the top left, then click OK.
Select the item to be deleted on the Service List page. It moves to the Service Detail page.
Click Service Delete on the Service Details page.
When the Notification Confirmation Window appears, click the Confirm button.

Caution

On the service list page, after selecting the item you want to delete, clicking Delete allows you to delete the selected service.

Services connected to the ingress cannot be deleted. To delete a service, delete all connected ingresses.

Managing Endpoints

You can create an endpoint and check or delete detailed information.

Creating Endpoints

To create an endpoint, follow these steps.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
Service Home page, click Endpoints under the Services and Ingress menu. It moves to the Endpoint List page.
On the Endpoint List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
Object Creation Popup에서 오브젝트 정보를 입력하고 확인 버튼을 클릭하세요.

Check Endpoint Details

To check the endpoint details, follow the next procedure.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
Service Home page, click Endpoints under the Services and Ingress menu. It moves to the Endpoint List page.
Endpoint list page, select the cluster and namespace from the gear button at the top left, then click OK.
On the Endpoint List page, select the item you want to check the detailed information. It moves to the Endpoint Detail page.
- Selecting System Object View at the top of the list displays all items except Kubernetes object entries.
Click each tab to check the service information.

Classification	Detailed Description
Endpoint Deletion	Delete endpoint
Detailed Information	Possible to check detailed information of the endpoint
YAML	The resource file of the endpoint can be modified in the YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred within the endpoint
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the metadata information of the endpoint
Object Information	Check the object information of the endpoint

Table. Endpoint details items

Deleting Endpoints

To delete an endpoint, follow these steps.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Endpoints under the Services and Ingress menu. It moves to the Endpoint List page.
Endpoint list page, select cluster and namespace from the gear button at the top left, then click OK.
Select the item to delete on the Endpoint List page. It moves to the Endpoint Detail page.
Endpoint Details page, click Delete Endpoint.
When the Notification Confirmation Window appears, click the Confirm button.

Reference

On the endpoint list page, you can delete the selected endpoint by selecting the item you want to delete and clicking Delete.

Managing Ingress

Ingress is an API object that manages external access (HTTP, HTTPS) to services within Kubernetes Engine, used to expose workloads to the outside, and provides L7 load balancing functionality.

Creating an Ingress

To create an ingress, follow these steps.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Ingress under the Services and Ingress menu. It moves to the Ingress List page.
Ingress List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
Object Creation Popup에서 오브젝트 정보를 입력하고 Confirm 버튼을 클릭하세요.

Reference

For more information on the concept of Ingress and creating Ingress objects, see Kubernetes official documentation > Ingress.

Check Ingress Details

To check the details of the ingress, follow the next procedure.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
Service Home page, click Ingress under the Service and Ingress menu. It moves to the Ingress List page.
Ingress list page, select the cluster and namespace from the gear button at the top left, then click OK.
Ingress List page, select the item you want to check the detailed information. It moves to the Ingress Detail page.
- Selecting System Object View at the top of the list displays all items except Kubernetes object entries.
Click each tab to check service information.

Classification	Detailed Description
Ingress Deletion	Delete Ingress
Detailed Information	Possible to check detailed information of Ingress
YAML	You can modify the ingress resource file in the YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred within the ingress
Account Information	Account name, location, creation time, etc., Check the basic information about the Account
Metadata Information	Check the metadata information of the ingress
Object Information	Check the object information of the ingress

Table. Ingress detailed information items

Deleting Ingress

To delete an Ingress, follow these steps.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Ingress under the Services and Ingress menu. It moves to the Ingress List page.
Ingress list page, select the cluster and namespace from the gear button at the top left, then click OK.
Ingress List page, select the item you want to delete. It moves to the Ingress Detail page.
Ingress Details page, click Delete Ingress.
When the Notification Confirmation Window appears, click the Confirm button.

Caution

On the Ingress list page, after selecting the item you want to delete, clicking Delete allows you to delete the selected Ingress.

Managing Ingress Classes

An IngressClass is an API resource that allows you to use multiple Ingress controllers in a single cluster. Each Ingress must specify a class that includes the configuration for the IngressClass resource that it refers to, including the controller it should be implemented by.

Creating an Ingress Class

To create an IngressClass, follow these steps.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Ingress Class under the Services and Ingress menu. It moves to the Ingress Class List page.
IngressClass list page, select the cluster and namespace from the gear button in the top left, then click Create object.
Object Creation Popup에서 오브젝트 정보를 입력하고 Confirm 버튼을 클릭하세요.

Reference

For more information on the concept of IngressClass and creating objects, see the Kubernetes official documentation > Ingress.

Checking Ingress Class Details

To check the details of the IngressClass, follow the next procedure.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Ingress Class under the Services and Ingress menu. It moves to the Ingress Class List page.
IngressClass list page, select the cluster and namespace from the gear button at the top left, then click OK.
IngressClass list page, select the item you want to check the detailed information. It moves to the IngressClass details page.
- Selecting System Object View at the top of the list displays all items except Kubernetes object entries.
Click each tab to check the service information.

Classification	Detailed Description
Ingress Class Deletion	Delete an Ingress Class
Detailed Information	Possible to check detailed information of Ingress class
YAML	The resource file of the Ingress class can be modified in the YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred within the Ingress class
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the metadata information of the Ingress class
Object Information	Check the object information of the Ingress class

Table. IngressClass detailed information items

Deleting IngressClass

To delete an IngressClass, follow these steps.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click Ingress Class under the Services and Ingress menu. It moves to the Ingress Class List page.
IngressClass list page, select the cluster and namespace from the gear button at the top left, then click OK.
Select the item to delete on the IngressClass list page. It moves to the IngressClass detail page.
Ingress Class Details page, click Delete Ingress Class.
When the Notification Confirmation Window appears, click the Confirm button.

Caution

In the IngressClass list page, you can delete the selected IngressClass by selecting the item you want to delete and clicking Delete.

4 - Managing Storage

When using the Kubernetes Engine, you can create and manage storage. Storage is created and managed by item, including PVC, PV, and storage classes.

Note

The PVC, PV, and storage class services are set to the default cluster (namespace) selected when the service was created. Even if you select a different item from the list, the default cluster (namespace) setting is maintained.

To select a different cluster (namespace), click the gear button on the right side of the list. In the Cluster/Namespace Settings popup window, select the cluster and namespace you want to change to, and click the OK button. You can then view the services created in the selected cluster/namespace.

Guide

The items associated with each storage type are as follows:

Type	Detailed Description
Block Storage	Supports storage classes that use the volume of the Block storage product in Virtual Server
Object Storage	Can be linked with Samsung Cloud Platform products or external Object Storage No separate settings are required in Kubernetes Engine, and you can set it up directly in your workload (application) according to the Object Storage guide
File Storage	Supports storage classes that use NFS and CIFS protocol volumes with the File Storage product For NFS protocol volumes, it is mandatory to select during Kubernetes Engine creation (supports HDD and SSD disk types) For CIFS protocol volumes, it can be selected during or after Kubernetes Engine creation

Type

Detailed Description

Block Storage

Supports storage classes that use the volume of the Block storage product in Virtual Server

Object Storage

Can be linked with Samsung Cloud Platform products or external Object Storage

No separate settings are required in Kubernetes Engine, and you can set it up directly in your workload (application) according to the Object Storage guide

File Storage

Supports storage classes that use NFS and CIFS protocol volumes with the File Storage product

For NFS protocol volumes, it is mandatory to select during Kubernetes Engine creation (supports HDD and SSD disk types)

For CIFS protocol volumes, it can be selected during or after Kubernetes Engine creation

Table. Storage association items by type

Managing PVC

A Persistent Volume Claim (PVC) is an object that defines the storage capacity to be allocated. PVC provides high usability through abstraction and can prevent data from being deleted together with the container lifecycle (maintaining Data Persistence).

Creating a PVC

To create a PVC, follow these steps:

Click All Services > Container > Kubernetes Engine. You will be taken to the Kubernetes Engine Service Home page.
On the Service Home page, click Storage under the menu, then click PVC. You will be taken to the PVC List page.
On the PVC List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
In the Create Object popup window, enter the object information and click the OK button.

Note

For more information on the concept of PVC and creating objects, refer to the Kubernetes official documentation > Persistent Volumes.

Viewing PVC Details

To view PVC details, follow these steps:

Click All Services > Container > Kubernetes Engine. You will be taken to the Kubernetes Engine Service Home page.
On the Service Home page, click Storage under the menu, then click PVC. You will be taken to the PVC List page.
On the PVC List page, select the cluster and namespace from the gear button at the top left, then click OK.
On the PVC List page, select the item you want to view details for. You will be taken to the PVC Details page.
- Select Show System Objects at the top of the list to display Kubernetes objects.

Click each tab to view the service information.

Category	Detailed Description
Status	Displays the current status of the PVC. Bound: Normal connection
Delete PVC	Deletes the PVC
Details	Displays detailed information about the PVC
YAML	Allows you to modify the PVC resource file in the YAML editor Click the Edit button, modify the resource, and click the Save button to apply the changes
Events	Displays events that occurred within the PVC
Account Information	Displays basic information about the account, such as the account name, location, and creation time
Metadata Information	Displays metadata information about the PVC
Object Information	Displays object information about the PVC

Table. PVC detail items

Delete PVC

To delete a PVC, follow these steps:

Click All Services > Container > Kubernetes Engine menu. Move to the Service Home page of Kubernetes Engine.
On the Service Home page, click PVC under the Storage menu. Move to the PVC List page.
On the PVC List page, select a cluster and namespace from the gear button at the top left, and click Confirm.
On the PVC List page, select the item you want to delete. Move to the PVC Details page.
On the PVC Details page, click Delete PVC.
When the Notification Confirmation window appears, click the Confirm button.

Caution

You can delete the selected PVC by selecting the item you want to delete on the PVC List page and clicking Delete.

Before deleting a PVC, check if the PV and volume to be deleted are backed up.

Manage PV

Persistent Volume (PV) refers to a physical disk created by the system administrator in Kubernetes Engine.

Create PV

To create a PV, follow these steps:

Click All Services > Container > Kubernetes Engine menu. Move to the Service Home page of Kubernetes Engine.
On the Service Home page, click PV under the Storage menu. Move to the PV List page.
On the PV List page, select a cluster and namespace from the gear button at the top left, and click Create Object.
In the Create Object popup window, enter object information and click the Confirm button.

Reference

For more information on the concept of PV and object creation, see Kubernetes Official Documentation > Persistent Volumes.

Check PV Details

To check the PV details, follow these steps:

Click All Services > Container > Kubernetes Engine menu. Move to the Service Home page of Kubernetes Engine.
On the Service Home page, click PV under the Storage menu. Move to the PV List page.
On the PV List page, select a cluster and namespace from the gear button at the top left, and click Confirm.
On the PV List page, select the item you want to check the details of. Move to the PV Details page.
- Select Show System Objects at the top of the list to display items other than Kubernetes objects.

Click each tab to check the service information.

Category	Description
Status	Displays the current status of the PV. Bound: Normal connection
Delete PV	Delete PV
Details	Check the detailed information of the PV
YAML	Modify the PV resource file in the YAML editor Click the Edit button, modify the resource, and click the Save button to apply the changes
Events	Check the events that occurred within the PV
Account Information	Check the basic information of the account, such as account name, location, and creation time
Metadata Information	Check the metadata information of the PV
Object Information	Check the object information of the PV

Table. PV Details Items

Delete PV

To delete a PV, follow these steps:

Click All Services > Container > Kubernetes Engine menu. Move to the Service Home page of Kubernetes Engine.
On the Service Home page, click PV under the Storage menu. Move to the PV List page.
On the PV List page, select a cluster and namespace from the gear button at the top left, and click Confirm.
On the PV List page, select the item you want to delete. Move to the PV Details page.
On the PV Details page, click Delete PV.
When the Notification Confirmation window appears, click the Confirm button.

Caution

You can delete the selected PV by selecting the item you want to delete on the PV List page and clicking Delete.

Managing Storage Classes

A Storage Class (Storage Class) is a Kubernetes resource that defines the type or performance level of storage.

Note

Kubernetes Engine provides nfs-subdir-external-sc and bs-sc storage classes by default, with the following characteristics:

The nfs-subdir-external-sc storage class shares file storage connected to the cluster.
- Access mode: RWX - ReadWriteMany
- Reclaim policy: Delete (deletes PV and stored data when PVC is deleted), Retain (keeps PV and stored data when PVC is deleted)
- Capacity expansion: Individual PVC expansion not supported / File storage expansion allowed
The bs-sc storage class supports SSD-type volumes in conjunction with block storage products.
- Access mode: RWO - ReadWriteOnce
- Reclaim policy: Delete (deletes PV and stored data when PVC is deleted), Retain (keeps PV and stored data when PVC is deleted)
- Capacity expansion supported: Individual PVC expansion supported (8 Gi unit volume automatic expansion)

Predefined Storage Classes

Storage Class	Reclaim Policy*	Volume Expansion Supported**	Mount Options	Note
nfs-subdir-external-sc (default)	Delete	Not supported	nfsvers=3, noresvport	Linked to default volume (NFS) settings
nfs-subdir-external-sc-retain	Retain	Not supported	nfsvers=3, noresvport	Linked to default volume (NFS) settings
bs-sc	Delete	Supported	-	Linked to VirtualServer > BlockStorage products
bs-sc-retain	Retain	Supported	-	Linked to VirtualServer > BlockStorage products

(*) To use a non-default storage class, specify the storage class name in the spec.storageClassName of the PVC.
(**) Users can change the default storage class (storageclass.kubernetes.io/is-default-class: “true” annotation adjustment)
Table. List of predefined storage classes

Caution

The characteristics of the reclaim policy are as follows:

Delete: When a PVC is deleted, the corresponding PV and physical data are also deleted.
Retain: When a PVC is deleted, the corresponding PV and physical data are not deleted and are retained. Since physical data not used by the workload can remain in storage, careful capacity management is required.

Caution

When using volume expansion, consider the following:

nfs-subdir-external-sc storage class
- The capacity of the PVC cannot be adjusted. (Volume expansion not supported)
- All PVs share the total capacity of the file storage, so individual PVC volume expansion is not necessary.
bs-sc storage class
- The capacity of the PVC can be expanded. (No reduction function supported)
- The capacity of the PV is not guaranteed to be the same as the capacity requested by the PVC. (8 Gi unit expansion supported)

Creating a Storage Class

To create a storage class, follow these steps:

Click All Services > Container > Kubernetes Engine. The Kubernetes Engine Service Home page appears.
On the Service Home page, click Storage under the Storage menu. The Storage Class List page appears.
On the Storage Class List page, select the cluster and namespace from the gear button at the top left, and then click Create Object.
In the Create Object popup, enter the object information and click OK.
Note
For more information on the concept of storage classes and object creation, see the Kubernetes official documentation > Storage Classes.

Checking Storage Class Details

To check the details of a storage class, follow these steps:

Click All Services > Container > Kubernetes Engine. The Kubernetes Engine Service Home page appears.
On the Service Home page, click Storage under the Storage menu. The Storage Class List page appears.
On the Storage Class List page, select the cluster and namespace from the gear button at the top left, and then click OK.
On the Storage Class List page, select the item for which you want to check the details. The Storage Class Details page appears.
- Select Show System Objects at the top of the list to display items other than Kubernetes objects.

Click each tab to check the service information.

Category	Description
Delete Storage Class	Delete the storage class
Details	Check the detailed information of the storage class
YAML	Modify the storage class resource file in the YAML editor Click the Edit button, modify the resource, and click the Save button to apply the changes
Events	Check the events that occurred within the storage class
Account Information	Check the basic information of the account, such as the account name, location, and creation time
Metadata Information	Check the metadata information of the storage class
Object Information	Check the object information of the storage class

Table. Storage class details items

Deleting a Storage Class

To delete a storage class, follow these steps:

Click All Services > Container > Kubernetes Engine. The Kubernetes Engine Service Home page appears.
On the Service Home page, click Storage under the Storage menu. The Storage Class List page appears.
On the Storage Class List page, select the cluster and namespace from the gear button at the top left, and then click OK.
On the Storage Class List page, select the item you want to delete. The Storage Class Details page appears.
On the Storage Class Details page, click Delete Storage Class.
In the Confirmation window, click OK.
Caution
On the storage class list page, you can delete the selected storage class by clicking Delete after selecting the item you want to delete.

5 - Configuration Management

When there is a need to manage changing values inside the container according to various environments such as development and operation, managing separate images due to environment variables is inconvenient and costly. In Kubernetes, you can manage environment variables or configuration values as variables so that they can be changed from outside, and at this time, ConfigMap and Secret can be used to insert them when a Pod is created.

Reference

ConfigMap and Secret services are set to the cluster (namespace) selected when the service is created by default. Even if you select other items in the list, the default cluster (namespace) setting is maintained.

To select a different cluster (namespace), click the gear button to the right of the list. In the Cluster/Namespace Settings popup window, select the cluster and namespace you want to change and click the OK button. You can see the config map and secret service created in the selected cluster/namespace.

Managing Config Maps

You can write and manage Config information used in the namespace as a config map.

Creating a Config Map

To create a configmap, follow these steps.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click ConfigMap under the Configuration menu. It moves to the ConfigMap list page.
ConfigMap List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
Object Creation Popup에서 오브젝트 정보를 입력하고 Confirm 버튼을 클릭하세요.

Reference

For more information about the concept of ConfigMap and object creation, see Kubernetes official documentation > ConfigMap.

Checking ConfigMap Details

To check the config map details, follow the next procedure.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click ConfigMap under the Configuration menu. It moves to the ConfigMap list page.
ConfigMap List page, select the cluster and namespace from the gear button at the top left, then click OK.
On the Config Map List page, select the item you want to check the detailed information. It moves to the Config Map Detail page.
- Selecting System Object View at the top of the list displays all items except for Kubernetes object entries.
Click each tab to check the service information.

Classification	Detailed Description
Config Map Deletion	Delete Config Map
Detailed Information	Check detailed information of Config Map
YAML	The resource file of ConfigMap can be modified in the YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred within the config map
Account Information	Account name, location, creation time, etc., check the basic information about the Account
Metadata Information	Check the metadata information of the config map
Object Information	Check the object information of the config map Data separates lines with `- - -` and displays value in textarea format Binary Data value outputs the length value

Table. Configmap detail information items

Deleting ConfigMap

To delete a configmap, follow this procedure.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click ConfigMap under the Configuration menu. It moves to the ConfigMap list page.
ConfigMap list page, select the cluster and namespace from the gear button at the top left, then click OK.
Configmap List page, select the item you want to delete. It moves to the Configmap Detail page.
Configmap Details page, click Delete Configmap.
When the Notification Confirmation Window appears, click the Confirm button.

Caution

In the ConfigMap list page, you can delete the selected ConfigMap by selecting the item you want to delete and then clicking Delete.

Managing Secrets

Using secrets, you can safely store and manage sensitive information such as passwords, OAuth tokens, and SSH keys.

Creating a Secret

To create a secret, follow these steps.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click 시크릿 under the 구성 menu. It moves to the 시크릿 목록 page.
Secret List page, select cluster and namespace from the gear button at the top left, then click Create Object.
Object Creation Popup에서 오브젝트 정보를 입력하고 Confirm 버튼을 클릭하세요.

Reference

For more information on the concept of Secrets and creating Secret objects, see Kubernetes official documentation > Secret.

Check Secret Details

To check the secret details, follow the following procedure.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click 시크릿 under the 구성 menu. It moves to the 시크릿 목록 page.
Secret List page, select cluster and namespace from the gear button at the top left, then click Confirm.
Secret List page, select the item you want to check the detailed information. It moves to the Secret Detail page.
- Selecting Show System Objects at the top of the list displays all items except Kubernetes object entries.
Click each tab to check the service information.

Classification	Detailed Description
Secret Deletion	Delete secret
Detailed Information	Check the detailed information of Secret
YAML	The resource file of the secret can be modified in the YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred within Secret
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the metadata information of the secret
Object Information	Check the object information of the secret

Table. Secret detailed information items

Deleting Secrets

To delete a secret, follow these steps.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click 시크릿 under the 구성 menu. It moves to the 시크릿 목록 page.
Secret List page, select the cluster and namespace from the gear button at the top left, then click OK.
Secret List page, select the item you want to delete. It moves to the Secret Detail page.
Secret Detail page, click Delete Secret.
When the Notification Confirmation Window appears, click the Confirm button.

Caution

In the Secret list page, you can delete the selected secret by selecting the item you want to delete and clicking Delete.

6 - Managing Permissions

When multiple users access the Kubernetes cluster, you can grant permissions by specific API or namespace and specify the access range. You can apply the Role-Based Access Control (RBAC) feature of Kubernetes to set permissions by cluster or namespace. You can create and manage ClusterRole, ClusterRoleBinding, Role, and RoleBinding.

Reference

ClusterRole, ClusterRoleBinding, Role, RoleBinding services are set to the cluster (namespace) selected when the service is created by default. Even if you select other items in the list, the default cluster (namespace) setting is maintained.

To select a different cluster (namespace), click the gear button on the right side of the list. In the Cluster/Namespace Settings popup window, select the cluster and namespace you want to change and click the OK button. You can view the services created in the selected cluster/namespace.

Reference

RBAC API declares four kinds of Kubernetes objects.
- Role
- ClusterRole
- RoleBinding
- ClusterRoleBinding
For detailed explanation and modification of RBAC, please refer to the Kubernetes authentication and authorization item (https://kubernetes.io/docs/reference/access-authn-authz/authentication/)

Managing Cluster Roles

You can set and manage access permissions on a cluster unit basis. You can also set permissions for APIs or resources that are not limited to a namespace.

Creating a Cluster Role

To create a cluster role, follow these steps.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click ClusterRole under the Authorities menu. It moves to the ClusterRole list page.
Cluster Role List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
Enter object information in the object creation popup window and click the OK button.

Reference

For more information on ClusterRole, see Kubernetes official documentation > Using RBAC Authorization.

Check Cluster Role Details

To view detailed information about the cluster role, follow these steps.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click 클러스터롤 under the 권한 menu. It moves to the 클러스터롤 목록 page.
Cluster Role List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Cluster Roll List page, select the item you want to check the detailed information. Move to the Cluster Roll Detail page.
- Selecting System Object View at the top of the list displays all items except Kubernetes object entries.
Click each tab to check the service information.

Classification	Detailed Description
Cluster Role Deletion	Delete cluster role
Detailed Information	Possible to check detailed information of cluster role
YAML	The resource file of the cluster role can be modified in the YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred within the cluster role
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the metadata information of the cluster role
Policy Rule Information	Check policy rule information for ClusterRole Resources: List of resources to which the rule is applied Non-Resource URLs: Set of non-resource URLs that users must access `` is allowed, but only as the final part of the path Non-resource URLs are not namespaced, so this field is only applicable to ClusterRoles referenced by ClusterRoleBindings Rules can be applied to either API resources (e.g. “pods” or “secrets”) or non-resource URL paths (e.g. “/api”), but not both Resource Names: Resource names are an optional whitelist of names that the rule applies to. An empty set means everything is allowed Verbs*: Verbs (verb) refer to API verbs used for resource requests, such as get, list, create, update, patch, watch, delete, deletecollection For more information, see Kubernetes Official Documentation > API Verbs

Table. Cluster Role Detailed Information Items

Deleting a Cluster Role

To delete a cluster role, follow this procedure.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click ClusterRole under the Authority menu. It moves to the ClusterRole list page.
Cluster Role List page, select the cluster and namespace from the gear button at the top left, then click OK.
Select the item to delete on the Cluster Role List page. It moves to the Cluster Role Detail page.
Cluster Role Detail page, click Delete Cluster Role.
When the Notification Confirmation Window appears, click the Confirm button.

Caution

On the cluster role list page, you can delete the selected cluster role by selecting the item you want to delete and clicking Delete.

Managing Cluster Role Bindings

You can create and manage cluster role bindings by connecting cluster roles and specific targets.

Creating Cluster Role Binding

To create a cluster role binding, follow these steps.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click ClusterRoleBinding under the Authority menu. It moves to the ClusterRoleBinding list page.
Cluster Role Binding List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
Object Creation Popup에서 오브젝트 정보를 입력하고 Confirm 버튼을 클릭하세요.

Reference

For more information on cluster role binding, see Kubernetes official documentation > Using RBAC Authorization.

Check Cluster Role Binding Details

To check the cluster role binding details, follow the next procedure.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click ClusterRoleBinding under the Authority menu. It moves to the ClusterRoleBinding list page.
Cluster Role Binding List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
On the Cluster Role Binding List page, select the item you want to check the detailed information. It moves to the Cluster Role Binding Detail page.
- Selecting Show System Objects at the top of the list displays all items except Kubernetes object entries.
Click each tab to check the service information.

Classification	Detailed Description
Cluster Role Binding Deletion	Delete cluster role binding
Detailed Information	Check the detailed information of the cluster role binding
YAML	The resource file of ClusterRoleBinding can be modified in the YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred within the cluster role binding
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the metadata information of the cluster role binding
Role/Target Information	Check the role and target information of the cluster role

Table. Cluster Role Binding Details Items

Deleting Cluster Role Binding

To delete a cluster role binding, follow these steps.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click ClusterRoleBinding under the Authority menu. It moves to the ClusterRoleBinding list page.
Cluster Role Binding List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Cluster Role Binding List page, select the item you want to delete. It moves to the Cluster Role Binding Details page.
Cluster Role Binding Detail page, click Delete Cluster Role Binding.
When the Notification Confirmation Window appears, click the Confirm button.

Caution

On the Cluster Role Binding list page, you can delete the selected Cluster Role Binding by selecting the item you want to delete and clicking Delete.

Managing Roles

A role is a set of rules that explicitly define permissions for a specific API or resource, and it can create and manage permissions that can only be accessed within the namespace to which the role belongs.

Create Role

To create a role, follow these steps.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click 롤 under the 권한 menu. It moves to the 롤 목록 page.
Roll list page, select cluster and namespace from the gear button at the top left, then click Create Object.
Object Creation Popup에서 오브젝트 정보를 입력하고 Confirm 버튼을 클릭하세요.

Reference

For more information on roles, see Kubernetes official documentation > Using RBAC Authorization.

Check Roll Details

To check the roll details, follow the next procedure.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click 롤 under the 권한 menu. It moves to the 롤 목록 page.
On the Roll List page, select the cluster and namespace from the Gear button at the top left, then click OK.
Role List page, select the item you want to check the detailed information. Move to the Role Detail page.
- Selecting System Object View at the top of the list displays all items except Kubernetes object entries.
Click each tab to check the service information.

Classification	Detailed Description
Role Delete	to delete a role
Detailed Information	Check the detailed information of the roll
YAML	You can modify the role’s resource file in the YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred in the roll
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the metadata information of the roll
Policy Rule Information	Check the policy rule information of the role Resources: List of resources to which the rule is applied Non-Resource URLs: Non-resource URLs are a set of partial URLs that the user must access `` is allowed, but only as the final step in the path Non-resource URLs are not namespaced, so this field is only applicable to ClusterRoles referenced by ClusterRoleBindings Rules can be applied to either API resources (e.g. “pods” or “secrets”) or non-resource URL paths (e.g. “/api”), but not both Resource Names: Resource names are an optional whitelist of names that the rule applies to, an empty set means everything is allowed Verbs*: Verbs (verb) refer to API verbs used for resource requests, such as get, list, create, update, patch, watch, delete, deletecollection For more information, refer to Kubernetes Official Documentation > API Verbs

Table. Detailed information items of roles

Delete Role

To delete a role, follow these steps.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click 롤 under the 권한 menu. It moves to the 롤 목록 page.
On the Roll List page, select the cluster and namespace from the gear button at the top left, then click OK.
Select the item you want to delete from the Role List page. It moves to the Role Detail page.
Role Details page, click Delete Role.
When the Notification Confirmation Window appears, click the Confirm button.

Caution

On the roll list page, after selecting the item you want to delete, clicking Delete allows you to delete the selected roll.

Managing Roll Binding

You can create and manage role bindings by linking roles to specific targets.

Creating Roll Binding

To create a role binding, follow these steps.

Click All services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click 롤바인딩 under the 권한 menu. It moves to the 롤바인딩 목록 page.
Role Binding List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
Object Creation Popup에서 오브젝트 정보를 입력하고 확인 버튼을 클릭하세요.

Reference

For more information on RoleBinding, please refer to Kubernetes official documentation > Using RBAC Authorization.

Check Roll Binding Details

To check the details of the roll binding, follow the next procedure.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click 롤바인딩 under the 권한 menu. It moves to the 롤바인딩 목록 page.
On the 롤바인딩 목록 page, select the cluster and namespace from the 톱니바퀴 button at the top left, then click 확인.
On the Roll Binding List page, select the item you want to check the detailed information. It moves to the Roll Binding Details page.
- Selecting Show System Objects at the top of the list displays all items except Kubernetes object entries.
Click each tab to check the service information.

Classification	Detailed Description
Roll Binding Delete	Delete roll binding
Detailed Information	Check the detailed information of roll binding
YAML	Rollbinding’s resource file can be modified in YAML editor Click the Edit button, modify the resource, and then click the Save button to apply the changes
Event	Check the event that occurred within the roll binding
Account Information	Account name, location, creation time, etc., basic information about the Account can be checked
Metadata Information	Check the metadata information of Roll Binding
Roll/Target Information	Check the roll’s role and target information

Table. Rollbinding detailed information items

Deleting Roll Binding

To delete a role binding, follow these steps.

Click all services > Container > Kubernetes Engine menu. It moves to the Service Home page of Kubernetes Engine.
On the Service Home page, click 롤바인딩 under the 권한 menu. It moves to the 롤바인딩 목록 page.
Rollbinding List page, select the cluster and namespace from the gear button at the top left, then click OK.
Select the item to delete from the Roll Binding List page. It moves to the Roll Binding Details page.
On the Roll Binding Details page, click Delete Roll Binding.
When the Notification Confirmation Window appears, click the OK button.

Caution

On the Role Binding list page, after selecting the item you want to delete, clicking Delete allows you to delete the selected role binding.