DC/OS 1.11: Kubernetes support is now generally available
© Shutterstock /Marta Design
It’s been five months since Mesosphere added Kubernetes support on its DC/OS platform — the latest DC/OS release [1.11] makes it generally available. DC/OS 1.11 also includes a unified control plane for multi/edge cloud operations, as well as multi-layer security.
Kubernetes on DC/OS: Generally available ✓
In September 2017, Mesosphere announced the beta availability of Kubernetes on DC/OS. Tobi Knaup, co-founder and CTO at Mesosphere, revealed in the blog post announcing the news that ‘this initial beta release is the first step towards making DC/OS the best place to run Kubernetes.”
Five months later, Kubernetes support is as real as it gets. “Following a successful beta release of Kubernetes on DC/OS 1.10, during which the technology was tested by many users and customers, DC/OS 1.11 makes Kubernetes on DC/OS generally available,” Mesosphere’s Edward Hsu wrote in the blog post announcing the latest release.
- It’s easy to set up highly available Kubernetes for production — it automates 20+ steps and many hours (or days) of work into a single click, resulting in a fully functional deployment in minutes.
- Scale Kubernetes up or down for a seamless cloud-like experience
- DC/OS automates Kubernetes installation on any infrastructure
- Count on the latest version of Kubernetes as soon as you’re ready for it
- Teams typically run Kubernetes with other tools to facilitate operations and support a delivery pipeline (such as Prometheus, Jenkins, Elastic, Logstash, & Kibana — they run elastically together on a shared DC/OS cluster)
- The same DC/OS Kubernetes cluster also runs backing data services and machine learning tools such as Apache Spark, Apache Kafka, Apache Cassandra, & TensorFlow.
You can read more about how DC/OS delivers Kubernetes-as-a-Service on any infrastructure here.
DC/OS 1.11 highlights: Multi-layer security & unified control plane for multi/edge cloud operations
More security is always a good idea — even though DC/OS is already secured with an encrypted control plane and role-based access controls (RBAC) with integration with authentication providers, the latest release brings “additional layers of security for data services, which simplifies regulatory compliance by enabling transport level encryption for sensitive information in transit.”
Also, by enabling client authentication for connections to application or data services, users can control which applications can read or write to those data services. Authentication mechanisms can include Kerberos, LDAP, or Active Directory protocols.
Furthermore, secrets management has been enhanced — DC/OS 1.11 adds a hierarchy, and multi-team isolation to the DC/OS secrets store, which means that it’s easier to manage which secrets can be accessed by various applications or teams.
Starting with DC/OS 1.11, “a single DC/OS cluster can pool resources from multiple public or private clouds at once, and operators can distribute workloads across multiple fault domains.”
SEE ALSO: DC/OS 1.10 is here
- An operator using his or her DC/OS credentials can manage multiple clusters on different clouds from a single DC/OS interface by linking these clusters. All you need to do is use the drop-down menu to switch to the cluster you want to manage.
- DC/OS operators can also run clusters that are stretched, where the agent nodes (the servers that do the work) can be in a remote location away from the master nodes (the brains of DC/OS).
- Operators can intelligently define fault domains and recover against this hierarchy to maximize service survivability.
- DC/OS allows operators to easily deploy workloads to multiple regions to enable multi-cloud high availability.
By creating a DC/OS cluster composed of agents from multiple clouds, operators can elastically scale by adding and removing nodes as needed (using Terraform or other basic scripts). DC/OS’s cloud-aware scheduling capabilities can then schedule workloads to take advantage of the burst capacity.
Read more about DC/OS’s Hybrid Cloud capabilities here.
Download the latest DC/OS release here.