This is the multi-page printable view of this section. Click here to print.

Return to the regular view of this page.

How-to guides

1: Node Management
2: Manage Namespaces
3: Manage Workload
4: Service and Ingress Management
5: Storage Management
6: Configuration(Configuration) Management
7: Manage Permissions

Users can enter the required information for the Kubernetes Engine and select detailed options to create a service through the Samsung Cloud Platform Console.

Create Kubernetes Engine

You can create and use the Kubernetes Engine service from the Samsung Cloud Platform Console.

You can create and manage clusters to use the Kubernetes Engine service. After creating a cluster, you can add services needed for operation such as nodes, namespaces, and workloads.

Caution

You can select up to 4 Security Groups in the network settings of Kubernetes Engine.
- If you directly add a Security Group to nodes created by Kubernetes Engine on the Virtual Server service page, they may be automatically detached because they are not managed by Kubernetes Engine.
- For nodes, the Security Group must be added/managed in the network settings of the Kubernetes Engine service.
Managed Security Group is automatically managed in Kubernetes Engine.
- Do not use Managed Security Group for arbitrary user purposes because if you delete it or add/delete rules, it will automatically be restored.

Creating a cluster

You can create and use a Kubernetes Engine cluster service from the Samsung Cloud Platform Console.

To create a Kubernetes Engine cluster, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click the Create Cluster button on the Service Home page. You will be taken to the Create Cluster page.

Cluster Creation page, enter the information required for service creation, and select detailed options.

Service Information Input area, please enter or select the required information.

Category	Required	Detailed description
Cluster Name	Required	Cluster Name Start with an English letter and use English letters, numbers, and the special character (`-`) within 3-30 characters
Control Plane Settings > Kubernetes Version	Required	Select Kubernetes Version
Control Area Settings > Private Endpoint Access Control	Select	Select whether to use Private Endpoint Access Control After selecting Use, click Add to select resources that are allowed to access the private endpoint Only resources in the same Account and same region can be registered Regardless of the Use setting, the nodes of the cluster can access the private endpoint
Control Area Settings > Public Endpoint Access/Access Control	Select	Select whether to use Public Endpoint Access/Access Control After selecting Use, enter the Allowed Access IP Range as 192.168.99.0/24 Set the access control IP range so that external users can access the Kubernetes API server endpoint If external access is not needed, you can disable it to reduce security threats
ServiceWatch log collection	Select	Set whether to enable log collection so that logs for the cluster can be viewed in ServiceWatch Use to select provides 5 GB of log storage for free for all services within the Account, and if it exceeds 5 GB, charges are applied based on storage amount If you need to check cluster logs, it is recommended to enable the ServiceWatch log collection feature
Cloud Monitoring log collection	Select	Set whether to enable log collection so that logs for the cluster can be viewed in Cloud Monitoring Enable: If selected, 1 GB of log storage is provided for free for all services within the Account, and any amount exceeding 1 GB will be deleted sequentially
Network Settings	Required	Network connection settings for node pool VPC Name: Select a pre-created VPC Subnet Name: Choose a standard Subnet to use among the subnets of the selected VPC Security Group: Select button after clicking then Select Security Group popup window select Security Group Up to 4 Security Group can be selected
File Storage Settings	Required	Select the file storage volume to be used in the cluster Default Volume (NFS): Click the Search button and then select the file storage in the File Storage Selection popup. The default Volume file storage can only use the NFS format

Table. Kubernetes Engine service information input items

Enter additional information area, input or select the required information.
Category
Required or not
Detailed description
Tag Select Add Tag
Up to 50 can be added per resource
After clicking the Add Tag button, enter or select Key, Value values
Table. Kubernetes Engine Additional Information Input Items

Summary Check the detailed information and estimated billing amount generated in the panel, and click the Create button.
- When creation is complete, check the created resources on the Cluster List page.

Category	Required or not	Detailed description
Tag	Select	Add Tag Up to 50 can be added per resource After clicking the Add Tag button, enter or select Key, Value values

Check cluster details

Kubernetes Engine service allows you to view and edit the full resource list and detailed information. Cluster Details page consists of Details, Node Pools, Tags, Activity History tabs.

To view detailed cluster information, follow the steps below.

All Services > Container > Kubernetes Engine 메뉴를 클릭하세요. Kubernetes Engine의 Service Home 페이지로 이동합니다.
Click the Cluster menu on the Service Home page. You will be taken to the Cluster List page.

Click the resource (cluster) you want to view detailed information for on the Cluster List page. You will be taken to the Cluster Details page.

Cluster Details page displays the cluster’s status information and detailed information, and consists of Details, Node Pool, Tags, Job History tabs.

Category	Detailed description
Cluster Status	Kubernetes Engine cluster status Creating: Creating Running: Created / Running Updating: Version upgrade in progress Deleting: Deleting Error: Error occurred
Service Termination	Button to terminate a Kubernetes Engine cluster To terminate the Kubernetes Engine service, you must delete all node pools added to the cluster If the service is terminated, the running service may be stopped immediately, so termination is necessary considering the impact of service interruption

Detailed Information

You can view detailed information of the selected resource on the Cluster List page, and modify the information if necessary.

Category	Detailed description
service	service name
Resource Type	Resource Type
SRN	Unique resource ID in Samsung Cloud Platform
Resource Name	Resource Name In the Kubernetes Engine service, it refers to the cluster name
Resource ID	Unique resource ID in the service
Creator	User who created the service
Creation DateTime	DateTime when the service was created
Modifier	User who modified the service information
Modification DateTime	DateTime when service information was modified
Cluster Name	Cluster Name
LLM Endpoint	LLM Endpoint information
Control Plane Settings	Check assigned Kubernetes control plane (Control Plane) version and access permission scope If there is a Kubernetes version of the control plane that can be upgraded, click the Edit icon to perform a Cluster Version Upgrade. See Cluster Version Upgrade for details. Click the Admin Kubeconfig Download/User Kubeconfig Download button for the private endpoint address to download the kubeconfig settings for each role as a yaml document. Click the Edit icon of the private endpoint access control to modify usage and allowed resources. Click the Admin Kubeconfig Download/User Kubeconfig Download button for the public endpoint address to download the kubeconfig settings for each role as a yaml document. Click the Edit icon of the public endpoint access/control to modify usage and allowed IP range. Click the Edit icon of ServiceWatch log collection to change usage. When log collection is enabled, view the cluster control plane’s Audit/Event logs in ServiceWatch > Log Group. Click the Edit icon of Cloud Monitoring log collection to change usage. When log collection is enabled, view the cluster control plane’s Audit/Event logs in Cloud Monitoring > Log Analysis.
Network Settings	View VPC, Subnet, and Security Group information set when creating a Kubernetes Engine cluster Click each setting to view detailed information on the detail page If a Security Group change is needed, click the Edit icon to configure Managed Security Group is an item provided by the system and is generated automatically
File Storage Settings	If you click the volume name, you can view detailed information on the storage detail page

Table. Cluster detailed information tab items

Reference

The version of Kubernetes Engine is denoted in the order [major].[minor].[patch], and you can upgrade only one minor version at a time.
- Example: Version 1.11.x > 1.13.x (Not allowed) / Version 1.11.x > 1.12.x (Allowed)
If you are using a Kubernetes version that has reached end of support or a version that is scheduled to reach end of support, a red exclamation mark will appear to the right of the version. If this icon is displayed, we recommend upgrading the Kubernetes version.

Node Pool

You can view cluster node pool information and add, modify, or delete. For detailed information on using node pools, refer to Managing Nodes.

Category	Detailed description
Add Node Pool	Add node pool to current cluster For more details, refer to Add Node Pool
Node Pool List	Check the list of node pools created in the current cluster Click the node pool name to go to the detail page and view detailed information
More menu	Provides node pool management features Node information: Displays node name, version, and status information Node pool upgrade: Node pool version upgrade Node pool deletion: Delete node pool

Category	Detailed description
Tag List	Tag List You can check the Key and Value information of tags Up to 50 tags can be added per resource When entering tags, search and select from the previously created Key and Value list

Work History

You can view the operation history of the selected resource on the Cluster List page.

Category	Detailed description
Work History List	Resource Change History Work details, work date and time, resource type, resource name, work result, worker information can be checked When you click the corresponding resource in the Work History List list, the Work History Details popup opens

Managing Cluster Resources

We provide cluster version upgrade, kubeconfig download, and control plane logging modification features for cluster resource management.

Caution

To use Kubernetes Engine, you need at least read permissions for VPC, VPC Subnet, Security Group, FileStorage, and Virtual Server.
Even without create/delete permissions, Security Group and Virtual Server are created/deleted by Kubernetes Engine for lifecycle management purposes, and the creator/modifier is indicated as System.

Cluster Version Upgrade

If there is a version that can be upgraded from the cluster’s Kubernetes version, you can perform the upgrade on the Cluster Details page.

Reference

Before the cluster upgrade, check the following items.
- Check if the cluster status is Running
- Check that the status of all node pools in the cluster is Running or Deleting
- Check that all node pool versions in the cluster are the same version as the cluster
- Check if automatic scaling/downsizing of all node pools in the cluster and node auto-recovery feature are disabled
After upgrading the cluster, proceed with the node pool upgrade. The control plane and node pool upgrades of the Kubernetes cluster are performed separately.
You can upgrade only one minor version at a time.
- Example: version 1.12.x > 1.13.x (possible) / version 1.11.x > 1.13.x (not possible)
After an upgrade, you cannot perform a downgrade or rollback, so to use the previous version again you must create a new cluster.

Caution

Since user systems using an end-of-support Kubernetes version may become vulnerable, upgrade the control plane and node pool versions directly in the Samsung Cloud Platform Console.
- No separate cost will be incurred due to the upgrade.
Please perform compatibility testing for the upgrade version in advance to ensure stable system operation for users.

Cluster version upgrade preparation

There is no need to delete and recreate API objects when upgrading the cluster version. For the transitioned API, all existing API objects can be read and updated using the new API version. However, due to deprecated APIs in older Kubernetes versions, you may be unable to read or modify existing objects or create new ones. Therefore, to ensure system stability, it is recommended to migrate clients and manifests before the upgrade.

Migrate the client and manifest using the following method.

Download the new version of the client (e.g., kubectl), install it on the cluster, and modify the YAML to refer to the new API.
Or use a separate plugin (kubectl convert) to automatically convert it. For detailed explanation, refer to Kubernetes official documentation > Install and configure kubectl on Linux.

Reference

Since the deprecated API differs for each cluster version, the scope of application and system impact may also differ. For detailed explanation, refer to the Kubernetes official documentation > Deprecation Guide.

Upgrade cluster and node pool version

To update the cluster and node pool, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engines.
Service Home page, click the Cluster menu. Go to the Cluster List page.
Click the resource (cluster) to upgrade the version on the Cluster List page. You will be taken to the Cluster Details page.
Click the edit icon of Kubernetes version on the Cluster Details page. The Cluster version upgrade popup opens.
Select the Kubernetes version to upgrade, and click the Confirm button.
- It may take a few minutes until the cluster upgrade is complete
- During the upgrade, the cluster status is shown as Updating, and when the upgrade is complete, it is shown as Running.
When the upgrade is complete, select the Node Pool tab. Go to the Node Pool page.
Click the More button of the node pool item and click Node Pool Upgrade. The Node Pool Version Upgrade popup window opens.
Node Pool Version Upgrade After checking the message in the popup window, click the Confirm button.
- It may take a few minutes until the node pool upgrade is completed.
- During the upgrade, the node pool status is shown as Updating, and when the upgrade is complete, it is shown as Running.

kubeconfig download

You can download the admin/user kubeconfig settings of the cluster’s public and private endpoints as a yaml document.

To download the kubeconfig settings of the cluster, follow the steps below.

Click the All Services > Container > Kubernetes Engine menu. Navigate to the Service Home page of Kubernetes Engines.
Click the Cluster menu on the Service Home page. You will be taken to the Cluster List page.
Click the resource (cluster) to download the kubeconfig on the Cluster List page. You will be taken to the Cluster Details page.
Cluster Details on the page, select the desired endpoint’s Admin kubeconfig download/User kubeconfig download button and click it.
- You can download the kubeconfig file in yaml format for each permission.

Modify private endpoint access control

You can change the private endpoint access control settings of the cluster.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engines.
Click the Cluster menu on the Service Home page. Navigate to the Cluster List page.
Cluster List page, click the resource (cluster) for which you want to modify the private endpoint access control. You will be taken to the Cluster Details page.
Click the Edit icon of Private Endpoint Access Control on the Cluster Details page. The Edit Private Endpoint Access Control popup opens.
In the Private Endpoint Access Control Edit popup, set the Use status of Private Endpoint Access Control, add the allowed access resources, and then click the Confirm button.

Modify public endpoint access/access control

You can change the public endpoint access control settings of the cluster.

All Services > Container > Kubernetes Engine menu. Navigate to the Service Home page of Kubernetes Engines.
Click the Cluster menu on the Service Home page. You will be taken to the Cluster List page.
Cluster List page, click the resource (cluster) you want to modify public endpoint access control. Navigate to the Cluster Details page.
Click the Edit icon of Public Endpoint Access/Access Control on the Cluster Details page. The Public Endpoint Access/Access Control Edit popup opens.
Public endpoint access/access control modification In the popup, set the use of Public endpoint access control, add the allowed IP range, and then click the Confirm button.

Modify control area log collection settings

You can change the log collection settings of the cluster’s control plane. Detailed logs of the cluster can be viewed in the ServiceWatch service or the Cloud Monitoring service.

Reference

Even if you set up Cloud Monitoring log collection, you can check the cluster logs.

However, the Cloud Moniotring log collection feature is scheduled for termination, so we recommend using ServiceWatch log collection.

To change the control plane log collection settings of the cluster, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engines.
Click the Cluster menu on the Service Home page. Go to the Cluster List page.
Click the resource (cluster) to modify control plane logging on the Cluster List page. You will be taken to the Cluster Details page.
On the Cluster Details page, click the Edit icon of ServiceWatch Log Collection. The ServiceWatch Log Collection popup opens.
- Cloud Monitoring log collection feature can also be set the same way.
ServiceWatch log collection in the popup window, after setting the use of ServiceWatch log modification, click the Confirm button.

Reference

When log collection is used, you can view the Audit/Event logs of the cluster control plane in each service. Detailed logs can be viewed on the next page.

Security Group Edit

You can modify the cluster’s Security Group.

Caution

You can select up to 4 Security Groups in the network settings of Kubernetes Engine.
- If you directly add a Security Group on the Virtual Server service page for nodes created by Kubernetes Engine, it may be automatically released because it is not managed by Kubernetes Engine.
- For nodes, the Security Group must be added/managed in the network settings of the Kubernetes Engine service.
Managed Security Group is automatically managed in Kubernetes Engine.
- Do not use Managed Security Group for arbitrary user purposes because if you delete it or add/delete rules, it will automatically be restored.

Follow the steps below to modify the cluster’s Security Group.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engines.
Click the Cluster menu on the Service Home page. You will be taken to the Cluster List page.
Click the resource (cluster) to modify the Security Group on the Cluster List page. You will be taken to the Cluster Details page.
Click the Edit icon of Security Group on the Cluster Details page. The Edit Security Group popup window opens.
After selecting or deselecting the Security Group to modify, click the Confirm button.

Cancel Cluster

Caution

If you terminate the cluster, all connected node pools will be deleted, and all data in all pods within the cluster will be permanently deleted.

To cancel the cluster, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engines.
Click the Cluster menu on the Service Home page. Move to the Cluster List page.
Cluster List page, click the resource (cluster) for which you want to view detailed information. You will be taken to the Cluster Detail page.
Click Cancel Service on the Cluster Details page.
Service termination After reviewing the content in the popup window, click the Confirm button.

1 - Node Management

A node is a collection of machines that run containerized applications. Every cluster must have at least one worker node to be able to deploy applications. Nodes can be used by defining node pools. Nodes belonging to a node pool must have the same server type, size, and OS image, and by creating multiple node pools, a flexible deployment strategy can be established.

After creating a Kubernetes Engine cluster, add a node pool and modify or delete it as needed.

Caution

It is recommended not to use the OS firewall on Kubernetes Engine nodes that use Calico.
- The firewall settings of Samsung Cloud Platform are set to Inactive by default.
As recommended in the reference link below, in environments using Calico, it is recommended to set the firewall to an unused state.
- (reference) https://docs.tigera.io/calico/3.28/getting-started/kubernetes/requirements
If the node is designated as a Backup service target, node deletion is not possible, so the function below cannot be used.
- Node pool reduction (including auto-scaling)
- Node Pool Upgrade
- Node pool auto recovery
- Delete node pool

Add node pool

A node refers to a machine that runs containerized applications, and at least one node is required to deploy applications in a Kubernetes cluster. After the creation of a Kubernetes Engine cluster is complete, add a node pool on the details page.

You can define and use node pools, which are sets of nodes, in Kubernetes Engine. Nodes belonging to a node pool use the same server type, size, and OS image, so users can establish flexible deployment strategies by using multiple node pools.

Reference

In the Virtual Server menu, you can create a node pool using the user’s Custom Image. To create a node pool using a Custom Image, follow these steps.

Create a Virtual Server that includes the Kubernetes Engine image of Samsung Cloud Platform.
Use the Image creation of the corresponding Virtual Server to proceed with image creation.
Select the registered Custom Image to create a node pool.
- For more details, please refer to Virtual Server > Image Creation.

To add a node pool, follow the steps below.

Click the All Services > Container > Kubernetes Engine menu. Go to the Service Home page of Kubernetes Engine.
Click the Cluster menu on the Service Home page. You will be taken to the Cluster List page.
Cluster List page, select the cluster you want to add a node pool to. Navigate to the Cluster Details page.
Cluster Details page, after selecting the Node Pool tab, click the Add Node Pool button. Add Cluster Node Pool page will be displayed.

On the Add Cluster Node Pool page, enter the information required to create a node pool and select detailed options.

Service Information Input area, enter or select the required information.

Category	Required or not	Detailed description
Node Pool Name	Required	Node Pool Name Start with a lowercase English letter and use lowercase English letters, numbers, and the special character (`-`) within 3 - 20 characters The special character (`-`) cannot be used at the end of the name
Node Pool > Server Type	Required	Virtual Server server type of worker node Standard: Standard specifications commonly used High Capacity: Large-capacity server specifications above Standard GPU: GPU specifications available when securing resources for special requirements such as AI/ML For detailed information on server types provided by Virtual Server, refer to Virtual Server Server Type
Node Pool > Server OS	Required	Worker node’s Virtual Server OS image Standard: RHEL 8.10, Ubuntu 22.04 Custom: Custom image for Kubernetes created from Virtual Server product (RHEL, Ubuntu)
Node Pool > Block Storage	Required	Block Storage settings used by the worker node’s Virtual Server SSD: High-performance general volume HDD: General volume SSD/HDD_KMS: Additional encrypted volume using Samsung Cloud Platform KMS (Key Management System) encryption key Encryption can only be applied at initial creation and cannot be changed after service creation Performance degradation occurs when using the SSD_KMS disk type Enter capacity in Units, with a value between 13 and 125 Since 1 Unit is 8 GB, 104 ~ 1,000 GB will be created
Node Pool > Server Group	Select	Apply the pre-created Server Group in Virtual Server service to worker nodes Click Use to set Server Group usage When usage is set, select Server Group Supports Affinity or Anti-Affinity policies Partition policy not supported Cannot modify after node pool creation GPU server type cannot be selected
Node Pool Auto Scaling	Required	Automatically adjust the number of nodes in the node pool Refer to the configuration method Node Pool Auto Scaling
Number of Nodes	Required	Number of worker nodes to create within a single node pool Enter a value within the range 1 - 100
Node Auto Recovery	Required	When an abnormal node is found in the node pool, automatically delete and create a new one Refer to Node Pool Auto Recovery for configuration method
Keypair	Required	User authentication method used to connect to the worker node’s Virtual Server Create new: Create new if a new Keypair is needed Refer to Create Keypair List of default login accounts by OS Alma Linux: almalinux RHEL: cloud-user Rocky Linux: rocky Ubuntu: ubuntu Windows: sysadmin
Label	Select	Optionally schedule workloads to nodes Click the Add button to enter label key and value Refer to Setting Node Pool Labels
Taint	Select	Prevent workloads from being scheduled onto nodes

Click the **Add** button to input taint effect, key, and value

For configuration method, see [Node Pool Taint Settings](#노드-풀-테인트-설정하기)

| | Advanced Settings | Select | Settings for detailed areas such as pods, logs, etc. for worker nodes

Click **Use** to select whether to apply advanced settings items for the node pool to be created

Refer to [Configure Node Pool Advanced Settings](#노드-풀-고급-설정하기) for the configuration method

Table. Kubernetes Engine node pool service information input items

Summary Check the detailed information and estimated billing amount generated in the panel, and click the Create button.
- When creation is complete, check the created resources on the Cluster Details > Node Pool tab > Node Pool List page.
If the notification popup opens, click the Confirm button.

Edit Node Pool

If needed, modify the number of nodes in the node pool on the Kubernetes Engine details page.

Reference

If you modify the number of nodes, nodes will be automatically added or removed, causing the container operation to terminate. At this time, because the container moves to another node, the running service may be interrupted.

To modify the number of nodes, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Service Home page, click the Cluster menu. Navigate to the Cluster List page.
Cluster List page, select the cluster you want to modify the node count for. Navigate to the Cluster Details page.
Cluster Details page, select the Node Pool tab, then click the Node Pool Name you want to edit. You will be taken to the Node Pool Details page.
On the Node Pool Details page, click the Edit icon on the right of Node Pool Information. The Node Pool Edit popup window will open.
Node Pool Edit In the popup window, after modifying the node pool information, click the Confirm button.

Upgrade Node Pool

If the Kubernetes version of the control plane and the version of the node pool are different, you can upgrade the node pool to synchronize the versions.

Caution

After upgrading the cluster, proceed with the node pool upgrade. The control plane and node pool upgrades of the Kubernetes cluster are performed separately.
When performing a node pool upgrade, a rolling update is carried out on the nodes belonging to the node pool. At this time, a momentary service interruption may occur, but this is a normal phenomenon due to the rolling update and will automatically normalize after a certain period.
The server OS version may differ depending on the Kubernetes version of the node pool.

To upgrade the node pool, follow the steps below.

All Services > Container > Kubernetes Engine menu, click. Go to the Service Home page of Kubernetes Engine.
On the Service Home page, click the Cluster menu. You will be taken to the Cluster List page.
Cluster List page, select the cluster you want to perform a node pool version upgrade on. Navigate to the Cluster Details page.
On the Cluster Details page, select the Node Pool tab, then click More > Node Pool Upgrade at the far right of the Node Pool row. The Node Pool Version Upgrade popup will open.
- You can only upgrade the node pool when the node’s status is Running.
Node Pool Version Upgrade After checking the information in the popup window, click the Confirm button.

Node pool auto scaling/downsizing

Node pool auto scaling is a feature that automatically adjusts the number of node pools by adding new nodes to a specified node pool or removing existing nodes according to workload demands. This feature operates based on the node pool.

When node pool auto scaling/downsizing, it is adjusted based on the resource requests of pods running on the node pool’s nodes rather than actual resource usage, and it periodically checks the status of pods and nodes and executes auto scaling/downsizing tasks.

To set up the auto-scaling/auto-shrinking feature of the node pool, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Go to the Service Home page of Kubernetes Engine.
Click the Cluster menu on the Service Home page. Go to the Cluster List page.
Cluster List page, select the cluster you want to use the node auto‑scaling/scale‑down feature. Then go to the Cluster Details page.
On the Cluster Details page, select the Node Pool tab, then click the Node Pool Name you want to edit. You will be taken to the Node Pool Details page.
Click the Edit icon on the right of Node Pool Information on the Node Pool Details page. The Edit Node Pool popup window opens.
Node Pool Edit in the popup window, select Node Pool Auto Scaling to Enable.
After entering the minimum and maximum number of nodes, click the Confirm button.
Reference
Node pool auto-scaling settings can also be configured on the cluster node pool creation page.
- Node pool expansion conditions
  - When pod fails to run on the cluster due to insufficient resources (Pending pod occurs)
- Node pool reduction condition (when all satisfied)
  - If the sum of resource requests (CPU/Memory) of all pods running on a node is less than 50% of the node’s allocatable resources
  - If all pods running on the node can be run on another node (there must be no pods with PDB restrictions, etc.)
- While using node pool auto scaling, to prevent deletion due to node reduction, please add the following annotation to the node.
  - cluster-autoscaler.kubernetes.io/scale-down-disabled: “true”

Caution

Node pool auto-scaling works only when the NotReady nodes among all nodes in the cluster are 45% or less of the total and no more than 3.
If there are directly connected nodes that are not node pools created by the Kubernete Engine service, using the feature may cause malfunction.

Auto-recover node pool

Node auto-recovery is a feature that, when an abnormal node is detected in the cluster, automatically deletes it and creates a new node to restore all node counts in the node pool to a normal state. This feature operates based on the node pool.

Caution

Node auto-recovery deletes the existing node and creates a new node when communication between K8S Control Planes fails due to node (Virtual Server) issues, stopped state, network issues, etc., according to the node auto-recovery conditions, so caution is required when using it.

When creating a node pool, it is restored according to the initially set conditions, and custom settings made after node creation are not restored.

If there are directly connected nodes that are not part of the node pool created by the Kubernete Engine service, the feature may malfunction when used.

To set up the node auto-recovery feature, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click the Cluster menu on the Service Home page. You will be taken to the Cluster List page.
Cluster List page, select the cluster you want to use the node auto-recovery feature. Move to the Cluster Details page.
On the Cluster Details page, select the Node Pool tab, then click the Node Pool Name you want to edit. You will be taken to the Node Pool Details page.
Click the Edit icon on the right of Node Pool Information on the Node Pool Details page. The Edit Node Pool popup window opens.
Node Pool Edit In the popup, select Node Auto Recovery as Enable, then click the Confirm button.

Reference

Node auto-recovery settings can also be configured on the cluster node pool creation page.

When it is a node auto-recovery target
- If a node reports NotReady status in consecutive checks for a certain time threshold (about 10 minutes)
- If the node does not report any status for a certain time threshold (about 10 minutes)
If not a node automatic recovery target
- Node that remains in Creating state and does not become Running when initially created
- When five or more abnormal nodes occur simultaneously in the same node pool

Setting Node Pool Labels

Node pool labels are a feature for selectively scheduling workloads onto nodes.

Caution

When applying node pool label, it is not applied to existing nodes, and the label is applied only to newly created nodes.
- If you need to apply a label to an existing node, the user must set it directly with kubectl.

To set the node pool label, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click the Cluster menu on the Service Home page. You will be taken to the Cluster List page.
On the Cluster List page, select the cluster for which you want to set the node pool label. It navigates to the Cluster Details page.
Cluster Details page, select the Node Pool tab, then click the Node Pool Name you want to edit. You will be taken to the Node Pool Details page.
Node Pool Details page, when you click the Edit icon of the label, the Edit Label popup window opens.
Label Edit In the popup window, click the Add button to add the required number of labels.
Enter the label information and click the Confirm button.

Setting Node Pool Taint

Node pool taint is a feature to prevent workloads from being scheduled onto nodes.

Caution

If you set a taint on all node pools, pods required for normal cluster operation may not run.
When applying node pool taint, it is not applied to existing nodes, and the taint is applied only to newly created nodes.
- If you need to apply a taint to an existing node, the user must set it directly with kubectl.

To set the node pool taint, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click the Cluster menu on the Service Home page. Go to the Cluster List page.
Cluster List page, select the cluster you want to set the node pool label for. Move to the Cluster Details page.
Cluster Details page, select the Node Pool tab, then click the Node Pool Name you want to edit. You will be taken to the Node Pool Details page.
On the Node Pool Details page, clicking the Edit icon of a taint opens the Edit Taint popup.
Tint Edit In the popup window, click the Add button to add tints as many as needed.
Enter the tint information and click the Confirm button.

Advanced Node Pool Settings

Node pool advanced settings is a feature to apply detailed settings such as the number of pods, PID, logs, image GC, etc. within a worker node.

Caution

After creating a node pool, it cannot be modified. If an incorrect value is entered, the node may not operate normally.

Reference

Each setting corresponds to the kubelet configuration as follows.

Maximum pods per node: maxPods
Image GC upper limit percent: imageGCHighThresholdPercent
Image GC low threshold percent: imageGCLowThresholdPercent
Container log maximum size MB: containerLogMaxSize
Container log maximum file count: containerLogMaxFiles
Pod PID limit: podPidsLimit
Unsafe Sysctl allowed: allowedUnsafeSysctls

To perform advanced settings for the node pool, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click the Cluster menu on the Service Home page. You will be taken to the Cluster List page.
Cluster List page, select the cluster you want to configure node pool advanced settings. Navigate to the Cluster Details page.
On the Cluster Details page, select the Node Pool tab, then click Create Node Pool. You will be taken to the Create Node Pool page.
On the Node Pool Creation page, select Advanced Settings to Enable.
After selecting Use, enter the required information for the items that appear.
Summary tab, after confirming that the required information has been entered correctly, click the Create button.

Delete node pool

If necessary, delete the node pool from the Kubernetes Engine details page.

To delete the node pool, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click the Cluster menu on the Service Home page. You will be taken to the Cluster List page.
On the Cluster List page, select the cluster whose node count you want to modify. You will be taken to the Cluster Details page.
On the Cluster Details page, select the Node Pool tab, then click the More button at the far right of the node pool row. In the More menu, click Delete Node Pool.
Delete Node Pool In the popup window, select the checkbox and enter the name of the node pool to delete, then click the Confirm button.

You must select the checkbox of the node deletion confirmation message for the confirm button to be enabled.

Check node details

A node is a working machine used in a Kubernetes cluster, containing essential services required to run Pods. Each node is managed by the master components, and depending on the cluster configuration, virtual machines or physical machines can be used as nodes.

After creating the cluster, you can view information such as metadata and object information of the added nodes, and edit the resource file with a YAML editor.

To view detailed information of the node pool, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click the Node menu on the Service Home page. Navigate to the Node List page.
Node List page, after selecting the cluster you want to view detailed information for from the gear button at the top left, click the Confirm button.

Select the node you want to view detailed information for and click. You will be taken to the Node Details page.

Category	Detailed description
Status Display	Displays the current status of the node
Detailed Information	Check the node’s Account information, metadata, and object information
YAML	Node resources can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply changes When editing content, click the Diff button to view the changes
Event	Check events that occurred on the node
Pod	Check node’s pod information Pod (Pod) is the smallest compute unit that can be created, managed, and deployed in Kubernetes Engine
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check metadata information such as node labels, annotations, taints
Object Information	Displays the object information of the created node, such as internal IP, machine ID, capacity, resources, etc. If GPU resources are present, check the number of GPUs in the Capacity > Nvidia.com/GPU column

Table. Node Detailed Information Items

2 - Manage Namespaces

A namespace is a logical separation unit within a Kubernetes cluster, and it is used to specify access permissions or resource usage limits per namespace.

Create Namespace

To create a namespace, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click the Namespace menu on the Service Home page. Navigate to the Namespace List page.
On the Namespace List page, select the cluster where you want to create a namespace from the gear button at the top left, then click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

For detailed information on object creation, refer to the Kubernetes official documentation > Kubernetes Objects.

Check namespace detailed information

You can check the namespace status and detailed information on the namespace detail page.

To view detailed namespace information, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Go to the Service Home page of Kubernetes Engine.
Click the Namespace menu on the Service Home page. Navigate to the Namespace List page.
On the Namespace List page, select the cluster that the namespace requiring detailed information belongs to from the gear button at the top left, then click Confirm.

Click on the item you want to view detailed information for on the Namespace List page. You will be taken to the Namespace Details page.

Category	Detailed description
Status Display	Displays the current status of the namespace
Namespace Deletion	Delete namespace A namespace containing workloads cannot be deleted. To delete a namespace, all associated workloads must be deleted.
Detailed Information	Check the Account information and metadata information of the namespace
YAML	Namespaces can be edited in the YAML editor Click the Edit button, modify the namespace, then click the Save button to apply changes When editing content, click the Diff button to view the changes
Event	Check events that occurred within the namespace
Pod	Check pod information of the namespace
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the metadata information of the namespace

Table. Namespace detailed information items

Delete namespace

To delete a namespace, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click the Namespace menu on the Service Home page. You will be taken to the Namespace List page.
Namespace List page, after selecting the cluster that the namespace you want to delete belongs to from the gear button at the top left, click the Confirm button.
Namespace List page, select the item you want to view detailed information and click. You will be taken to the Namespace Details page.
Click Delete Namespace on the Namespace Details page.
When the alert confirmation window appears, click the Confirm button.

Warning

After selecting the item you want to delete on the namespace list page, click Delete to delete the selected namespace.
A namespace that contains workloads cannot be deleted. To delete the namespace, delete all associated workloads.

3 - Manage Workload

A workload is an application that runs on Kubernetes Engine. You can create a namespace and then add or delete workloads. Workloads are created and managed per deployment, pod, stateful set, daemon set, job, and cron job.

Reference

Deployments, Pods, StatefulSets, DaemonSets, Jobs, and CronJobs services are set by default to the cluster (namespace) selected when creating the service. Even if you select other items in the list, the default cluster (namespace) setting is retained.

To select a different cluster (namespace), click the gear button on the right side of the list. Cluster/Namespace Settings popup, select the cluster and namespace to change and click the Confirm button. You can view the services created in the selected cluster/namespace.

Managing Deployments

A Deployment refers to a resource that provides updates for Pods and ReplicaSets. In workloads, you can create a Deployment and view detailed information or delete it.

Create Deployment

To create a deployment, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click Deployment under the Workload menu on the Service Home page. You will be taken to the Deployment List page.
On the Deployment List page, select the cluster and namespace from the top-left gear button, then click Create Object.

In the Object Creation Popup, enter the object information and click the Confirm button.

The following is an example .yaml file showing the required fields and object Spec for creating a deployment. (application/deployment.yaml)

Color mode

 apiVersion: apps/v1
 kind: Deployment
metadata:
   name: nginx-deployment
 spec:
   selector:
      matchLabels:
         app: nginx
   replicas: 2 # tells deployment to run 2 pods matching the template
   template:
     metadata:
        labels:
           app: nginx
     spec:
        containers:
        - name: nginx
          image: nginx:1.14.2
          ports:
          - containerPort: 80

 apiVersion: apps/v1
 kind: Deployment
metadata:
   name: nginx-deployment
 spec:
   selector:
      matchLabels:
         app: nginx
   replicas: 2 # tells deployment to run 2 pods matching the template
   template:
     metadata:
        labels:
           app: nginx
     spec:
        containers:
        - name: nginx
          image: nginx:1.14.2
          ports:
          - containerPort: 80

Code block. Required fields and object Spec for deployment creation

Reference

For detailed information on the concept of deployments and object creation, refer to the Kubernetes official documentation > Deployment.

Check deployment detailed information

To view the deployment details, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
From the Service Home page, click Deployment under the Workloads menu. Navigate to the Deployment List page.
Deployment List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Select the item you want to view detailed information for on the Deployment List page. You will be taken to the Deployment Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Delete Deployment	Delete deployment
Detailed Information	Can check detailed information of deployment
YAML	Deployment resource files can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply the changes When editing content, click the Diff button to view the changed content
Event	Check events that occurred within the deployment
Pod	Check the pod information of the deployment Pod (pod) is the smallest computing unit that can be created, managed, and deployed in Kubernetes Engine
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the metadata information of the deployment
Object Information	Check the object information of the deployment

Table. Deployment detailed information items

Delete Deployment

To delete the deployment, follow these steps.

All Services > Container > Kubernetes Engine menu. Go to the Service Home page of Kubernetes Engine.
On the Service Home page, click Deployment under the Workload menu. Navigate to the Deployment List page.
Deployment List page, select the cluster and namespace from the top left gear button, then click Confirm.
Select the item you want to delete on the Deployment List page. Go to the Deployment Details page.
Click Delete Deployment on the Deployment Details page.
Alert confirmation window appears, click the Confirm button.

Caution

On the deployment list page, after selecting the item you want to delete, you can delete the selected deployment by clicking Delete.

Managing Pods

A pod (Pod) is the smallest computing unit that can be created, managed, and deployed in Kubernetes, referring to a group of one or more containers. In a workload, you can create a pod and view detailed information or delete it.

Create a pod

To create a pod, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Service Home page, click Pod under the Workload menu. Navigate to the Pod List page.
Pod List page, select the cluster and namespace from the Gear button at the top left, then click Create Object.
In the Object Creation Popup from, enter the object information and click the Confirm button.

Reference

For detailed information on the concept of pods and object creation, refer to the Kubernetes official documentation > Pods.

Check pod detailed information

To check the detailed pod information, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click Pod under the Workload menu on the Service Home page. You will be taken to the Pod List page.
On the Pod List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Select the item you want to view detailed information for on the Pod List page. You will be taken to the Pod Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Status Display	Displays the current status of the pod
Delete Pod	Delete pod
Detailed Information	Can view detailed information of the pod
YAML	Pod resource files can be edited in the YAML editor Edit button click and modify the resource, then click the Save button to apply changes When editing content, click the Diff button to view the changed content
Event	Check events that occurred within the pod
Log	When you select a container, you can view the container information that the pod has
Account information	Check basic information about the Account such as Account name, location, creation date and time
Metadata Information	Check the pod’s metadata information
Object Information	Check the pod’s object information
Init Container Information	Check the init container information of the pod
Container Information	Check the pod’s container information

Table. Pod detailed information items

Delete Pod

To delete a pod, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Go to the Service Home page of Kubernetes Engine.
Click Pod under the Workload menu on the Service Home page. Navigate to the Pod List page.
On the Pod List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Pod List page, select the item you want to delete. Pod Detail page, navigate.
Click Delete Pod on the Pod Details page.
Notification Confirmation Window appears, click the Confirm button.

Caution

After selecting the item you want to delete on the pod list page, you can delete the selected pod by clicking Delete.

Managing StatefulSet

StatefulSet refers to a workload API object used to manage the stateful aspects of an application. In a workload, you can create a StatefulSet and view detailed information or delete it.

Creating a StatefulSet

To create a StatefulSet, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click StatefulSet under the Workload menu on the Service Home page. You will be taken to the StatefulSet List page.
On the StatefulSet List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
Object Creation Popup에서 enter the object information and click the Confirm button.

Reference

For detailed information on the StatefulSet concept and object creation, refer to Kubernetes official documentation > StatefulSet.

Check detailed information of StatefulSet

To view the detailed information of the StatefulSet, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Service Home on the page, click StatefulSet under the Workload menu. Navigate to the StatefulSet List page.
On the StatefulSet List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Select the item you want to view detailed information for on the StatefulSet List page. You will be taken to the StatefulSet Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view the service information.

Category	Detailed description
Delete StatefulSet	Delete the StatefulSet
Detailed Information	Can check detailed information of StatefulSet
YAML	StatefulSet resource files can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply the changes When editing content, click the Diff button to view the changed content
Event	Check events that occurred within the StatefulSet
Pod	Check the pod information of the StatefulSet
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the metadata information of the StatefulSet
Object Information	Check the object information of the StatefulSet

Table. StatefulSet detailed information items

Delete StatefulSet

To delete a StatefulSet, follow the steps below.

Click the All Services > Container > Kubernetes Engine menu. Navigate to the Service Home page of Kubernetes Engine.
Service Home page, click StatefulSet under the Workload menu. Navigate to the StatefulSet List page.
On the StatefulSet List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Select the item you want to delete on the StatefulSet List page. Go to the StatefulSet Details page.
Click Delete StatefulSet on the StatefulSet Details page.
If the notification confirmation window appears, click the Confirm button.

Caution

On the StatefulSet list page, after selecting the item you want to delete, you can delete the selected StatefulSet by clicking Delete.

Managing DaemonSets

DaemonSet refers to a resource that ensures that a copy of a pod runs on all nodes or some nodes. In workloads, you can create a DaemonSet and view detailed information or delete it.

Creating a DaemonSet

To create a DaemonSet, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click DaemonSet under the Workload menu. You will be taken to the DaemonSet List page.
On the DaemonSet List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

The concept of DaemonSet and detailed information about object creation can be found in the Kubernetes official documentation > DaemonSet.

Check DaemonSet detailed information

To view the detailed information of the DaemonSet, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click DaemonSet under the Workload menu on the Service Home page. You will be taken to the DaemonSet List page.
DaemonSet List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
DaemonSet List page, select the item you want to view detailed information for. It navigates to the DaemonSet Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view the service information.

Category	Detailed description
DaemonSet Delete	Delete DaemonSet
Detailed Information	Can view detailed information of DaemonSet
YAML	DaemonSet resource files can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply changes When editing content, click the Diff button to view the changed content
Event	Check events that occurred within the DaemonSet
Pod	Check the pod information of the DaemonSet
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the metadata information of the DaemonSet
Object Information	Check the object information of the DaemonSet

Table. DaemonSet detailed information items

Delete DaemonSet

To delete a DaemonSet, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click DaemonSet under the Workload menu on the Service Home page. Navigate to the DaemonSet List page.
DaemonSet List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
DaemonSet List page, select the item you want to delete. Move to the DaemonSet Details page.
Click Delete DaemonSet on the DaemonSet Details page.
If the Alert confirmation window appears, click the Confirm button.

Warning

On the DaemonSet list page, after selecting the item you want to delete, click Delete to delete the selected DaemonSet.

Job Management

A job refers to a resource that creates one or more pods and continues to run pods until the specified number of pods have successfully terminated. In a workload, you can create a job and view detailed information or delete it.

Create Job

To create a job, follow the steps below.

All Services > Container > Kubernetes Engine menu. Go to the Service Home page of Kubernetes Engine.
Click Job under the Workload menu on the Service Home page. You will be taken to the Job List page.
On the Job List page, select the cluster and namespace from the top left gear button, then click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

For detailed information on the concept of jobs and object creation, refer to the Kubernetes official documentation > Job.

Check job details

To view detailed job information, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click Job under the Workload menu on the Service Home page. Navigate to the Job List page.
On the Job List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
On the Job List page, select the item for which you want to view detailed information. You will be taken to the Job Details page.
- Selecting Show system objects at the top of the list will display all items except the Kubernetes object entries.

Click each tab to view service information.

Category	Detailed description
Job Delete	Delete Job
Detailed Information	Can view detailed information of the job
YAML	Job resource file can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply changes When editing content, click the Diff button to view the changes
Event	Check events that occurred within the job
Pod	Check the pod information of the job
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the job’s metadata information
Object Information	Check the job’s object information

Table. Job Detailed Information Items

Delete Job

To delete a job, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Go to the Service Home page of Kubernetes Engine.
Click Job under the Workload menu on the Service Home page. You will be taken to the Job List page.
Job List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Job List page, select the item you want to delete. Go to the Job Details page.
Click Delete Job on the Job Details page.
Alert confirmation window appears, click the Confirm button.

Caution

On the job list page, after selecting the item you want to delete, you can delete the selected job by clicking Delete.

Managing Cron Jobs

Cron jobs refer to resources that periodically execute a job according to a schedule written in cron format. They can be used to run repetitive tasks at regular intervals such as backups, report generation, etc. In the workload, you can create a cron job and view or delete its detailed information.

Create Cron Job

To create a cron job, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click CronJob under the Workload menu on the Service Home page. You will be taken to the CronJob List page.
CronJob List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

For detailed information on the concept of CronJobs and object creation, refer to the Kubernetes official documentation > CronJob.

Check Cron Job Detailed Information

To check the detailed information of the cron job, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click Cron Job under the Workload menu on the Service Home page. You will be taken to the Cron Job List page.
On the CronJob List page, select the cluster and namespace from the top left gear button, then click Confirm.
Cron Job List page: select the item you want to view detailed information for. You will be taken to the Cron Job Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Cron job delete	Delete cron job
Detailed Information	Can view detailed information of cron job
YAML	Cron job resource files can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply changes When editing content, you can click the Diff button to view the changed content
Event	Check events that occurred within the cron job
Job	Check the job information of the Cron job. Selecting a job item moves to the job detail page
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the metadata information of the cron job
Object Information	Check the object information of the cron job

Table. Cronjob detailed information items

Delete Cron Job

To delete a cron job, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click Cron Job under the Workload menu on the Service Home page. You will be taken to the Cron Job List page.
CronJob List page에서 클러스터와 네임스페이스를 왼쪽 상단의 gear 버튼에서 선택 후, Confirm을 클릭하세요.
Cron Job List page, select the item you want to delete. Navigate to the Cron Job Details page.
Click Delete Cron Job on the Cron Job Details page.
If the Notification Confirmation Window appears, click the Confirm button.

Warning

On the cron job list page, after selecting the item you want to delete, clicking Delete will delete the selected cron job.

4 - Service and Ingress Management

A service is an abstraction method that exposes applications running in a set of pods as a network service, and an ingress is used to expose HTTP and HTTPS paths from outside the cluster to inside the cluster. After creating a namespace, you can create or delete services, endpoints, ingresses, and ingress classes.

Reference

Service, endpoint, ingress, ingress class services are set by default to the cluster (namespace) selected when creating the service. Even if you select other items in the list, the default cluster (namespace) setting is retained.

To select a different cluster (namespace), click the gear button on the right side of the list. In the Cluster/Namespace Settings popup, select the cluster and namespace you want to change and click the Confirm button. You can view the services created in the selected cluster/namespace.

Service Management

You can create a service and view or delete its detailed information.

Create Service

To create a service, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click Service under the Service and Ingress menu on the Service Home page. You will be taken to the Service List page.
Service List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

For detailed information on the concept of services and object creation, refer to the Kubernetes official documentation > Service.

Check service detailed information

To view detailed service information, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click Service under the Service and Ingress menu. You will be taken to the Service List page.
On the Service List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
On the Service List page, select the item for which you want to view detailed information. You will be taken to the Service Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Delete Service	Delete the service
Detailed Information	Can check detailed service information
YAML	Service resource files can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply the changes When editing content, click the Diff button to view the changes
Event	Check events that occurred within the service
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the service’s metadata information
Object Information	Check the service’s object information

Table. Service Detailed Information Items

Delete Service

To delete the service, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click Service under the Service and Ingress menu. You will be taken to the Service List page.
Service List page, select the cluster and namespace from the top left gear button, then click Confirm.
Service List page, select the item you want to delete. Service Details page will be opened.
Click Delete Service on the Service Details page.
If the Notification Confirmation Window appears, click the Confirm button.

Caution

After selecting the item you want to delete on the service list page, click Delete to delete the selected service.

Manage Endpoints

You can create an endpoint and view or delete its detailed information.

Create Endpoint

To create an endpoint, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click Endpoint under the Service and Ingress menu on the Service Home page. Navigate to the Endpoint List page.
Endpoint List page, select the cluster and namespace from the Gear button at the top left, then click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.

Check endpoint detailed information

To view detailed endpoint information, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Service Home page, click Endpoint under the Service and Ingress menu. Navigate to the Endpoint List page.
On the Endpoint List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Endpoint List page, select the item you want to view detailed information for. Endpoint Details page will be opened.
- If you select Show System Objects at the top of the list, all items except the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Endpoint Deletion	Delete endpoint
Detailed Information	Can check detailed information of the endpoint
YAML	Endpoint resource files can be edited in the YAML editor click the Edit button and modify the resource, then click the Save button to apply the changes When editing content, click the Diff button to view the changes
Event	Check events that occurred within the endpoint
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the metadata information of the endpoint
Object Information	Check the endpoint’s object information

Table. Endpoint Detailed Information Items

Delete Endpoint

To delete the endpoint, follow the steps below.

Click the All Services > Container > Kubernetes Engine menu. Go to the Service Home page of Kubernetes Engine.
On the Service Home page, click Endpoint under the Service and Ingress menu. You will be taken to the Endpoint List page.
Endpoint List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Endpoint List page, select the item you want to delete. Navigate to the Endpoint Detail page.
Click Delete Endpoint on the Endpoint Details page.
Notification Confirmation Window appears, click the Confirm button.

Reference

On the endpoint list page, after selecting the item you want to delete, click Delete to delete the selected endpoint.

Manage Ingress

Ingress is an API object that manages external access (HTTP, HTTPS) to services within the Kubernetes Engine, used to expose workloads externally, and provides L7 load balancing functionality.

Create Ingress

To create an ingress, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Service Home page, click Ingress under the Service and Ingress menu. Go to the Ingress List page.
Ingress List page에서 클러스터와 네임스페이스를 왼쪽 상단의 gear 버튼에서 선택 후, Create Object을 클릭하세요.
In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

For detailed information on the concept of Ingress and object creation, refer to the Kubernetes official documentation > Ingress.

Check Ingress Detailed Information

To view the ingress detailed information, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click Ingress under the Service and Ingress menu on the Service Home page. Navigate to the Ingress List page.
On the Ingress List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Select the item you want to view detailed information for on the Ingress List page. You will be taken to the Ingress Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Delete Ingress	Delete Ingress
Detailed Information	Can view detailed information of Ingress
YAML	Ingress resource files can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply changes When editing content, click the Diff button to view the changed content
Event	Check events that occurred within the ingress
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the metadata information of the ingress
Object Information	Check the object information of Ingress

Table. Ingress detailed information items

Delete Ingress

To delete Ingress, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Service Home page, click Ingress under the Service and Ingress menu. Navigate to the Ingress List page.
On the Ingress List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Ingress List page, select the item you want to delete. Go to the Ingress Details page.
Click Delete Ingress on the Ingress Detail page.
Alert confirmation window appears, click the Confirm button.

Caution

On the Ingress list page, after selecting the item you want to delete, you can delete the selected Ingress by clicking Delete.

Manage Ingress Class

IngressClass refers to an API resource that allows multiple ingress controllers to be used in a single cluster. In each ingress, you must specify a reference class to the IngressClass resource that includes the configuration, including the controller that must implement the class.

Create Ingress Class

To create an Ingress class, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Go to the Service Home page of Kubernetes Engine.
Click IngressClass under the Service and Ingress menu on the Service Home page. Go to the IngressClass List page.
On the IngressClass List page, select the cluster and namespace from the top-left gear button, then click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

The concept of IngressClass and detailed information about object creation, see the Kubernetes official documentation > Ingress.

Check Ingress Class Detailed Information

To view detailed information of the Ingress class, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click IngressClass under the Service and Ingress menu. Navigate to the IngressClass List page.
IngressClass List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
On the IngressClass List page, select the item for which you want to view detailed information. You will be taken to the IngressClass Detail page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Delete Ingress Class	Delete the ingress class
Detailed Information	Can check detailed information of IngressClass
YAML	Ingress class resource file can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply the changes When editing content, click the Diff button to view the changes
Event	Check events that occurred within the Ingress class
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the metadata information of the Ingress class
Object Information	Check the object information of the Ingress class

Table. Ingress Class Detailed Information Items

Delete Ingress Class

To delete the Ingress class, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click IngressClass under the Service and Ingress menu. Navigate to the IngressClass List page.
IngressClass List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Select the item you want to delete on the IngressClass List page. Move to the IngressClass Details page.
Click Delete Ingress Class on the Ingress Class Details page.
Notification confirmation window appears, click the Confirm button.

Warning

On the Ingress Class list page, after selecting the item you want to delete, clicking Delete will delete the selected Ingress Class.

5 - Storage Management

You can create and manage storage to use when using Kubernetes Engine. Storage is created and then managed for each of PVC, PV, and StorageClass items.

Reference

PVC, PV, storage class service is set by default to the cluster (namespace) selected when creating the service. Even if you select other items in the list, the default cluster (namespace) setting is retained.

To select a different cluster (namespace), click the gear button on the right side of the list. Cluster/Namespace Settings popup, select the cluster and namespace to change and click the Confirm button. You can view the services created in the selected cluster/namespace.

Notice

The items linked by storage type are as follows.

Type	Detailed Description
Block Storage	Supports a storage class that uses the product’s volume in conjunction with the Block storage product within Virtual Server
Object Storage	Can be linked with Samsung Cloud Platform products or external Object Storage No separate configuration is required for the Kubernetes Engine, and it can be linked by directly configuring the workload (application) according to the Object Storage guide
File Storage	Supports storage classes of NFS and CIFS protocol volumes in conjunction with the File Storage product For NFS protocol volumes, selection is required when creating a Kubernetes Engine (supports HDD, SSD disk types) For CIFS protocol volumes, selection can be made when creating a Kubernetes Engine or after creation

Type

Detailed Description

Block Storage

Supports a storage class that uses the product’s volume in conjunction with the Block storage product within Virtual Server

Object Storage

Can be linked with Samsung Cloud Platform products or external Object Storage

No separate configuration is required for the Kubernetes Engine, and it can be linked by directly configuring the workload (application) according to the Object Storage guide

File Storage

Supports storage classes of NFS and CIFS protocol volumes in conjunction with the File Storage product

For NFS protocol volumes, selection is required when creating a Kubernetes Engine (supports HDD, SSD disk types)

For CIFS protocol volumes, selection can be made when creating a Kubernetes Engine or after creation

Table. Storage linkage items by type

PVC manage

Persistent Volume Claim(PVC) is an object defined to allocate the required storage capacity. PVC provides high usability through abstraction, and can prevent the problem where data disappears together when the container lifecycle expires (maintaining Data Persistence).

Create PVC

To create a PVC, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Service Home page, click Storage under the PVC menu. Navigate to the PVC List page.
On the PVC List page, after selecting the cluster and namespace from the top left gear button, click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

For detailed information on the concept of PVCs and object creation, refer to Kubernetes official documentation > Persistent Volumes.

Check PVC detailed information

To check the detailed PVC information, follow the steps below.

All Services > Container > Kubernetes Engine menu. Go to the Service Home page of Kubernetes Engine.
Click PVC under the Storage menu on the Service Home page. You will be taken to the PVC List page.
On the PVC List page, select the cluster and namespace from the top left gear button, then click Confirm.
Select the item you want to view detailed information for on the PVC List page. You will be taken to the PVC Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Status Display	Displays the current status of the PVC. Bound: Normal connection
Delete PVC	Delete PVC
Detailed Information	PVC detailed information can be viewed
YAML	PVC resource file can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply changes When editing content, click the Diff button to view the changed content
Event	Check events that occurred within PVC
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check PVC metadata information
Object Information	Check PVC object information

Table. PVC detailed information items

Delete PVC

To delete PVC, follow the steps below.

All Services > Container > Kubernetes Engine menu를 클릭하세요. Kubernetes Engine의 Service Home 페이지로 이동합니다.
Click PVC under the Storage menu on the Service Home page. Navigate to the PVC List page.
PVC list page, select the cluster and namespace from the top left gear button, then click Confirm.
PVC List Select the item you want to delete on the page. PVC Details Navigate to the page.
Click Delete PVC on the PVC Details page.
Notification confirmation window appears, click the Confirm button.

Caution

After selecting the item you want to delete on the PVC list page, you can delete the selected PVC by clicking Delete.

Check the backup status of the PV and volume to be deleted before deleting the PVC.

PV Management

Persistent Volume (PV) refers to the physical disk created by the system administrator in Kubernetes Engine.

Create PV

To create a PV, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click PV under the Storage menu on the Service Home page. It navigates to the PV List page.
PV list page, select the cluster and namespace from the top left gear button, then click Create Object.
In the Object Creation Popup에서 오브젝트 정보를 입력하고 Confirm 버튼을 클릭하세요.

Reference

For detailed information on the concept of PV and object creation, refer to the Kubernetes official documentation > Persistent Volumes.

Check PV detailed information

To view the detailed PV information, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Service Home page, click Storage under the PV menu. Navigate to the PV List page.
PV List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Select the item you want to view detailed information for on the PV List page. You will be taken to the PV Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Status Display	Displays the current status of the PV. Bound: Normal connection
PV Delete	Delete PV
Detailed Information	PV detailed information can be viewed
YAML	PV’s resource file can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply changes When editing content, click the Diff button to view the changed content
Event	Check events that occurred within PV
Account Information	Check basic information about the Account such as Account name, location, creation date and time
Metadata Information	Check PV’s metadata information
Object Information	Check PV’s object information

Table. PV detailed information items

PV Delete

To delete PV, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click PV under the Storage menu on the Service Home page. You will be taken to the PV List page.
On the PV List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
PV List page, select the item you want to delete. Go to the PV Details page.
Click Delete PV on the PV Details page.
Notification confirmation window appears, click the Confirm button.

Caution

On the PV list page, after selecting the item you want to delete, you can delete the selected PV by clicking Delete.

Managing StorageClass

Storage Class is a Kubernetes resource that defines the level of storage type, performance, etc.

Reference

Kubernetes Engine provides the nfs-subdir-external-sc and bs-sc storage classes by default, and has the following features.

nfs-subdir-external-sc storage class shares and uses file storage connected to the cluster.
- Access mode: RWX - ReadWriteMany
- Reclaim policy: Delete (when PVC is deleted, delete PV and stored data together), Retain (when PVC is deleted, keep PV and stored data)
- Capacity expansion: individual PVC expansion not allowed/entire file storage expansion allowed
The bs-sc storage class supports using SSD-type volumes in conjunction with block storage products.
- Access mode: RWO - ReadWriteOnce
- Reclaim policy: Delete(when PVC is deleted, delete PV and stored data together), Retain(when PVC is deleted, retain PV and stored data)
- Capacity expansion support: individual PVC expansion support (automatic volume expansion in 8 Gi increments)

Predefined Storage Class

Storage Class	Reclaim Policy*	Volume Expansion Allowed**	Mount Options	Remarks
nfs-subdir-external-sc (default)	Delete	Not supported	nfsvers=3, noresvport	Linked with default Volume (NFS) settings
nfs-subdir-external-sc-retain	Retain	Not supported	nfsvers=3, noresvport	Linked with default Volume (NFS) settings
bs-sc	Delete	Support	-	VirtualServer > BlockStorage product integration
bs-sc-retain	Retain	Support	-	VirtualServer > BlockStorage product integration

(*) To use a storage class other than the default, you need to specify the storage class name in PVC’s spec.storageClassName
(**) User can directly change the default storage class (storageclass.kubernetes.io/is-default-class: “true” annotation adjustment)

Table. Predefined Storage Class List

Caution

The features of the reclaim policy are as follows.

Delete: If you delete the PVC, the associated PV and physical data will also be deleted.
Retain: Even if the PVC is deleted, the corresponding PV and physical data are not deleted and are retained. Since physical data not used by the workload may remain in storage, careful capacity management is required.

Caution

Consider the following when using volume expansion.

nfs-subdir-external-sc storage class
- Cannot adjust the capacity of PVC. (Volume expansion not supported)
- All PVs share the total capacity of the File Storage volume, so volume expansion for each PVC is not required.
bs-sc storage class
- You can expand the PVC capacity. (Shrink function not supported)
- The capacity of the PV is not guaranteed to be as much as requested by the PVC. (Supports expansion in 8 Gi units)

Create StorageClass

To create a storage class, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click StorageClass under the Storage menu. Navigate to the StorageClass list page.
StorageClass List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.
Reference
For detailed information on the concept of storage classes and object creation, refer to the Kubernetes official documentation > Storage Class.

Check storage class detailed information

To view detailed storage class information, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click Storage under the StorageClass menu. You will be taken to the StorageClass List page.
On the StorageClass List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
StorageClass List page, select the item you want to view detailed information for. Navigate to the StorageClass Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Delete StorageClass	Delete the StorageClass
Detailed Information	Can view detailed information of storage class
YAML	Resource files of the storage class can be edited in the YAML editor Click the Edit button and modify the resource, then click the Save button to apply the changes When editing content, click the Diff button to view the changed content
Event	Check events that occurred within the storage class
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the metadata information of the storage class
Object Information	Check the object information of the storage class

Table. StorageClass detailed information items

Delete StorageClass

To delete the storage class, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
From the Service Home page, click Storage Class under the Storage menu. You will be taken to the Storage Class List page.
On the StorageClass List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
StorageClass List page, select the item you want to delete. Navigate to the StorageClass Details page.
Click Delete StorageClass on the StorageClass Details page.
When the notification confirmation window appears, click the Confirm button.
Caution
On the storage class list page, after selecting the item you want to delete, click Delete to delete the selected storage class.

6 - Configuration(Configuration) Management

When there is a need to manage values that change inside a container depending on various environments such as development and operation, creating and managing a separate image due to environment variables is inconvenient and incurs significant cost waste. In Kubernetes, you can manage environment variables or configuration values as variables so that they can be changed from outside and injected when a Pod is created, and you can use ConfigMap and Secret for this.

Reference

ConfigMaps and secret services are set by default to the cluster (namespace) selected when creating the service. Even if you select other items in the list, the default cluster (namespace) setting is retained.

To select a different cluster (namespace), click the gear button on the right side of the list. In the Cluster/Namespace Settings popup, select the cluster and namespace you want to change and click the Confirm button. You can view the ConfigMap and Secret services created in the selected cluster/namespace.

Manage ConfigMap

You can write and manage the Config information used in the namespace as a ConfigMap.

Create ConfigMap

To create a ConfigMap, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Go to the Service Home page of Kubernetes Engine.
Service Home on the page, click Configuration menu below ConfigMap. Go to the ConfigMap List page.
ConfigMap List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

For detailed information on the concept of ConfigMaps and object creation, refer to the Kubernetes official documentation > ConfigMap.

Check ConfigMap detailed information

To view detailed ConfigMap information, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click ConfigMap under the Configuration menu. Navigate to the ConfigMap List page.
ConfigMap List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
ConfigMap List page, select the item you want to view detailed information for. You will be taken to the ConfigMap Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view the service information.

Category	Detailed description
Config Map Delete	Delete Config Map
Detailed Information	Can check detailed information of config map
YAML	ConfigMap’s resource file can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply changes When editing content, click the Diff button to view the changed content
Event	Check the events that occurred within the config map
Account information	Check basic information about the Account such as Account name, location, creation date and time
Metadata Information	Check the metadata information of the ConfigMap
Object Information	Check the object information of the config map In Data, rows are separated by `- - -`, and value is displayed in textarea format Binary Data’s value outputs the length value

Table. ConfigMap detailed information items

Delete ConfigMap

To delete a config map, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click ConfigMap under the Configuration menu. You will be taken to the ConfigMap List page.
On the ConfigMap List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
ConfigMap List page, select the item you want to delete. Go to the ConfigMap Details page.
On the ConfigMap Details page, click Delete ConfigMap.
Alert confirmation window appears, click the Confirm button.

Caution

On the ConfigMap list page, after selecting the item you want to delete, you can delete the selected ConfigMap by clicking Delete.

Manage Secrets

By using secrets, you can securely store and manage sensitive information such as passwords, OAuth tokens, and SSH keys.

Create Secret

To create a secret, follow the steps below.

All Services > Container > Kubernetes Engine menu, click. Go to the Service Home page of Kubernetes Engine.
On the Service Home page, click Secret under the Configuration menu. You will be taken to the Secret List page.
Secret List page, select the cluster and namespace from the top left gear button, then click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

For detailed information about the concept of secrets and object creation, please refer to Kubernetes official documentation > Secret.

Check Secret Detailed Information

To view the secret detailed information, follow the steps below.

All Services > Container > Kubernetes Engine menu, click it. Go to the Service Home page of Kubernetes Engine.
Click Secret under the Configuration menu on the Service Home page. You will be taken to the Secret List page.
Secret List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Secret List page, select the item you want to view detailed information for. Secret Details page will be navigated.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Delete Secret	Delete the secret
Detailed Information	Can check secret’s detailed information
YAML	Secret’s resource file can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply changes When editing content, click the Diff button to view the changed content
Event	Check events that occurred within Secret
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the secret’s metadata information
Object Information	Check the secret’s object information

Table. Secret Detailed Information Items

Delete Secret

To delete the secret, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Go to the Service Home page of Kubernetes Engine.
Click Secret under the Configuration menu on the Service Home page. You will be taken to the Secret List page.
Secret List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Secret List page, select the item you want to delete. Secret Detail page, navigate.
Click Delete Secret on the Secret Details page.
If the notification confirmation window appears, click the Confirm button.

Caution

Select the item you want to delete on the secret list page, then click Delete to delete the selected secret.

7 - Manage Permissions

Kubernetes clusters can be accessed by multiple users, and you can assign permissions per specific API or namespace to define access scope. By applying Kubernetes’ role-based access control (RBAC, Role-based access control) feature, you can set permissions per cluster or namespace. You can create and manage cluster roles, cluster role bindings, roles, and role bindings.

Reference

ClusterRole, ClusterRoleBinding, Role, and RoleBinding services are set by default to the cluster (namespace) selected when creating the service. Even if you select other items in the list, the default cluster (namespace) setting is retained.

To select a different cluster (namespace), click the gear button on the right side of the list. In the Cluster/Namespace Settings popup, select the cluster and namespace to change and click the Confirm button. You can view the services created in the selected cluster/namespace.

Reference

RBAC API declares the following four types of Kubernetes objects.
- Role
- ClusterRole
- RoleBinding
- ClusterRoleBinding
For detailed explanation of RBAC description and modification, refer to the Kubernetes authentication and authorization documentation. (https://kubernetes.io/docs/reference/access-authn-authz/authentication/)

Managing Cluster Role

You can set and manage access permissions on a per-cluster basis. You can also set permissions for APIs or resources that are not limited to a namespace.

Create Cluster Role

To create a cluster role, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click Cluster Role under the Permissions menu on the Service Home page. Go to the Cluster Role List page.
Cluster Role List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
Object Creation Popup In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

For detailed information about ClusterRole, refer to the Kubernetes official documentation > Using RBAC Authorization.

Check detailed information of cluster role

To view detailed information about the cluster role, follow these steps.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click Cluster Role under the Permissions menu on the Service Home page. Go to the Cluster Role List page.
On the Cluster Role List page, select the cluster and namespace from the top left gear button, then click Confirm.
Cluster Role List page: select the item you want to view detailed information for. You will be taken to the Cluster Role Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Delete Cluster Role	Delete the cluster role
Detailed Information	Can check detailed information of ClusterRole
YAML	Cluster role’s resource files can be edited in the YAML editor Click the Edit button, modify the resource, then click the Save button to apply changes When editing content, click the Diff button to view the changes
Event	Check events that occurred within the cluster role
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the metadata information of the cluster role
Policy Rule Information	View the policy rule information of the ClusterRole Resources: List of resources to which the rule applies Non-Resource URLs: Non-Resource URLs are the set of partial URLs that the user needs to access `` is allowed but only as the final segment of the path Since non-resource URLs are not namespaced, this field only applies to ClusterRoles referenced by a ClusterRoleBinding A rule can apply to API resources (e.g., “pods” or “secrets”) or non-resource URL paths (e.g., “/api”), but not both Resource Names: Resource names are an optional whitelist of names the rule applies to. An empty set means everything is allowed Verbs*: Verb refers to the API verbs used in resource requests such as get, list, create, update, path, watch, delete, deletecollection For more details, refer to the Kubernetes official documentation > API Verbs

Table. Cluster role detailed information items

Delete ClusterRole

To delete the cluster role, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click Cluster Role under the Permissions menu. You will be taken to the Cluster Role List page.
On the Cluster Role List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Cluster Role List page, select the item you want to delete. Move to the Cluster Role Details page.
Click Delete Cluster Role on the Cluster Role Details page.
Alert confirmation window appears, click the Confirm button.

Caution

On the cluster role list page, after selecting the item you want to delete, click Delete to delete the selected cluster role.

Managing ClusterRoleBinding

You can create and manage a cluster role binding by connecting a cluster role with a specific target.

Create Cluster Role Binding

To create a cluster role binding, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click ClusterRoleBinding under the Permissions menu. You will be taken to the ClusterRoleBinding list page.
Cluster Role Binding List page, select the cluster and namespace from the Gear button at the top left, then click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

For detailed information about ClusterRoleBinding, refer to the Kubernetes official documentation > Using RBAC Authorization.

Check detailed information of ClusterRoleBinding

To check the detailed information of cluster role binding, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click ClusterRoleBinding under the Permissions menu. You will be taken to the ClusterRoleBinding List page.
Cluster Role Binding List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Cluster Role Binding List page, select the item you want to view detailed information. Navigate to the Cluster Role Binding Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Delete Cluster Role Binding	Delete cluster role binding
Detailed Information	Check the detailed information of the cluster role binding
YAML	The resource file of ClusterRoleBinding can be edited in the YAML editor Edit button click and modify the resource, then click the Save button to apply changes When editing content, click the Diff button to view the changed content
Event	Check events that occurred within the ClusterRoleBinding
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the metadata information of the cluster role binding
Roll/Target Info	Check the role and target information of the cluster roll

Table. Cluster Role Binding Detailed Information Items

Delete Cluster Role Binding

To delete the cluster role binding, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click ClusterRoleBinding under the Permissions menu on the Service Home page. It will navigate to the ClusterRoleBinding List page.
Cluster Role Binding List 페이지에서 클러스터와 네임스페이스를 왼쪽 상단의 gear 버튼에서 선택 후, Confirm을 클릭하세요.
Cluster Role Binding List Select the item you want to delete on the page. Cluster Role Binding Details Navigate to the page.
Click Delete Cluster Role Binding on the Cluster Role Binding Details page.
Notification Confirmation Window appears, click the Confirm button.

Caution

On the ClusterRoleBinding list page, after selecting the item you want to delete, click Delete to delete the selected ClusterRoleBinding.

Manage Roll

A role refers to a rule that specifies permissions for a specific API or resource. You can create and manage permissions that can only access the namespace to which the role belongs.

Create Roll

To create a roll, follow the steps below.

All Services > Container > Kubernetes Engine menu, click. Navigate to the Service Home page of Kubernetes Engine.
Click Role under the Permission menu on the Service Home page. It moves to the Role List page.
On the Roll List page, select the cluster and namespace from the Gear button at the top left, then click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

For detailed information about roles, refer to the Kubernetes official documentation > Using RBAC Authorization.

Check roll detailed information

To check detailed roll information, follow the steps below.

Click the All Services > Container > Kubernetes Engine menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click Role under the Permissions menu. You will be taken to the Role List page.
On the Role List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Select the item you want to view detailed information for on the Roll List page. You will be taken to the Roll Details page.
- If you select Show System Objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Delete role	Delete role
Detailed Information	Check detailed information of the roll
YAML	Roll’s resource file can be edited in a YAML editor Click the Edit button, modify the resource, then click the Save button to apply changes When editing content, click the Diff button to view the changed content
Event	Check events that occurred within the roll
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the metadata information of the roll
Policy Rule Information	View the policy rule information of the role Resources: List of resources to which the rule applies Non-Resource URLs: Non-Resource (NonResource) URLs are the set of partial URLs the user must access `` is allowed but only as the final segment of the path Non-resource URLs are not namespaced, so this field only applies to ClusterRoles referenced by a ClusterRoleBinding Rules can apply to API resources (e.g., “pods” or “secrets”) or non-resource URL paths (e.g., “/api”), but not both Resource Names: Resource names are an optional whitelist of names the rule applies to, an empty set means everything is allowed Verbs*: Verb refers to the API verbs used in resource requests such as get, list, create, update, path, watch, delete, deletecollection For more details, refer to the Kubernetes official documentation > API Verbs

Table. Roll detailed information items

Delete roll

To delete the roll, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click Role under the Permissions menu on the Service Home page. You will be taken to the Role List page.
On the Roll List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Select the item you want to delete on the Role List page. Navigate to the Role Details page.
Click Delete Roll on the Roll Details page.
When the alert confirmation window appears, click the Confirm button.

Caution

After selecting the item you want to delete on the roll list page, you can delete the selected roll by clicking Delete.

Manage Roll Binding

You can connect a role with a specific target to create and manage role bindings.

Create Roll Binding

To create a role binding, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
On the Service Home page, click Roll Binding under the Permission menu. It will navigate to the Roll Binding List page.
Roll Binding List page, select the cluster and namespace from the gear button at the top left, then click Create Object.
In the Object Creation Popup, enter the object information and click the Confirm button.

Reference

For detailed information about role binding, refer to the Kubernetes official documentation > Using RBAC Authorization.

Check Roll Binding Detailed Information

To check the detailed roll binding information, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click Roll Binding under the Permission menu on the Service Home page. Navigate to the Roll Binding List page.
Roll Binding List 페이지에서 클러스터와 네임스페이스를 왼쪽 상단의 gear 버튼에서 선택 후, Confirm을 클릭하세요.
On the Roll Binding List page, select the item you want to view detailed information for. You will be taken to the Roll Binding Details page.
- If you select Show system objects at the top of the list, items other than the Kubernetes object entries will be displayed.

Click each tab to view service information.

Category	Detailed description
Delete Roll Binding	Delete roll binding
Detailed Information	Check detailed information of roll binding
YAML	Roll binding’s resource files can be edited in a YAML editor Edit button click and modify the resource, then click the Save button to apply changes When editing content, click the Diff button to view the changed content
Event	Check events that occurred within roll binding
Account Information	Check basic information about the Account such as Account name, location, creation date, etc.
Metadata Information	Check the metadata information of Roll Binding
Role/Target Information	Check the role’s function and target information

Table. Roll Binding Detailed Information Items

Delete Roll Binding

To delete the roll binding, follow the steps below.

All Services > Container > Kubernetes Engine Click the menu. Navigate to the Service Home page of Kubernetes Engine.
Click Roll Binding under the Permissions menu on the Service Home page. Navigate to the Roll Binding List page.
On the Role Binding List page, select the cluster and namespace from the gear button at the top left, then click Confirm.
Roll Binding List page, select the item you want to delete. Roll Binding Details page, navigate.
Click Delete Roll Binding on the Roll Binding Details page.
Alert confirmation window appears, click the Confirm button.

Caution

On the role binding list page, after selecting the item you want to delete, you can delete the selected role binding by clicking Delete.