As many of you are aware, Red Hat Virtualization (RHV) provides ways to access its functionality via REST APIs or SDKs (Python, Java, Ruby), and recently Ansible has also joined this growing list.
Red Hat Virtualization 4.1 and later now includes support for the Ansible automation tool. Ansible can be used to configure systems, deploy software, and perform rolling updates. Ansible provides modules that allow you to
Continue reading “Automate your RHV Configuration with Ansible”
Over the years, the SuperComputing conference has become a focal point for many global supercomputing sites to showcase their capabilities and compete for a placement on the coveted Top500 list. Many powerful supercomputers and new technological advances are showcased during the conference, making it perhaps no surprise that Red Hat is planning to be at SuperComputing17 next week to demonstrate our latest high-performance computing (HPC) solutions (booth #1763).
Red Hat has a packed agenda for the show – here’s more about what you can expect to see from us during SuperComputing17.
Continue reading “Expand your reality with Red Hat at SuperComputing17”
In our first post of discussing Red Hat’s multi-architecture strategy, we focused on the disruptive nature of enabling new and rapidly-evolving architectures and how this enablement necessitates a different set of product requirements to fulfill our vision of providing a consistent and familiar experience to our customers across multiple hardware architectures. While we have been working with many original equipment manufacturers (OEMs) on x86_64-based servers for years, we have seen interest from our customer base in delivering parity across multiple architectures, including IBM Power Little Endian (ppc64le) and ARMv8-A (aarch64).
So what exactly are we doing with our partners to make this
Continue reading “Keeping Pace with Multiple Architectures (Part 2)”
With the release of Red Hat Enterprise Linux Atomic Host 7.4, we are excited to jointly announce official support for VMware’s ESXi and vCenter. While it’s always been possible to run Atomic Host in a VMware environment, Red Hat Enterprise Linux Atomic Host now supports VMware’s guest agent and can be listed as a supported guest OS. The Red Hat Atomic Image for vSphere now embeds the guest agent to provide the out-of-the-box experience and integration that end users expect.
Continue reading “Announcing VMware Guest Support for Red Hat Enterprise Linux Atomic Host”
Enrolling a client system into Identity Management (IdM) can be done with a single command, namely: ipa-client-install. This command will configure SSSD, Kerberos, Certmonger and other elements of the system to work with IdM. The important result is that the system will get an identity and key so that it can securely connect to IdM and perform its operations. However, to get the identity and key, the system should
Continue reading “Understanding Identity Management Client Enrollment Workflows”
In this article I want to talk about a runC container which I want to migrate around the world while clients stay connected to the application.
In my previous Checkpoint/Restore In Userspace (CRIU) articles I introduced CRIU (From Checkpoint/Restore to Container Migration) and in the follow-up I gave an example how to use it in combination with containers (Container Live Migration Using runC and CRIU). Recently Christian Horn published an additional article about CRIU which is also a good starting point.
In my container I am running Xonotic. Xonotic calls itself ‘The Free and Fast Arena Shooter’. The part that is running in the container is the server part of the game to which multiple clients can connect to play together. In this article the client is running on my local system while the server and its container is live migrated around the world.
This article also gives detailed background information about
Continue reading “Container Migration Around The World”
I recently had the pleasure of linking up with one of my favorite Red Hat colleagues (David “Pinky” Pinkerton) from Australia while we were both in Southeast Asia for a Red Hat event. We both have a propensity for KVM and Red Hat Virtualization (RHV) in particular, and he brought up a fantastic topic – truly segregated networks to support other security requirements. The reason came up because he had a “high security” client that needed to keep different traffic types separated within RHV, as the VMs were used to scan live malware. And that is why I made the comment about the (justifiably) paranoid.
Let’s take a look. |
Continue reading “Segregating RHV Networks for the Slightly Paranoid”
In the previous post I talked about Smart Card Support in Red Hat Enterprise Linux. In this article I will drill down into how to select the right deployment architecture depending on your constraints, requirements and availability of the smart card related functionality in different versions of Red Hat Enterprise Linux.
To select the right architecture for a deployment where users would authenticate using smart cards when logging into Linux systems you need to
Continue reading “Picking your Deployment Architecture”
Red Hat Product Security was made aware of a vulnerability affecting the Linux kernel’s implementation of the Bluetooth L2CAP protocol. The vulnerability was named BlueBorne and was assigned an ID – CVE-2017-1000251.
A vulnerable system would need to have Bluetooth (hardware + service) enabled and an attacking device would need to be within
Continue reading “BlueBorne – An Analysis”
Recent Red Hat Enterprise Linux releases see an expansion in support of the smart card related use cases. However customers usually have a mixed environment and standardize on a specific version of Red Hat Enterprise Linux for period of time. It is important to understand the
Continue reading “Smart Card Support in Red Hat Enterprise Linux”