New functionality and enhancements from the v1.29 release is now available in the Preview Orgs. Read the release notes for details
logo
Rafay Product Documentation
Get Started with Upstream Kubernetes for Bare Metal and VM Environments
Initializing search
    • Home
    • Get Started
    • Recipes
    • Releases
    • Blog
    • Contact

    For Upstream Kubernetes on Bare Metal and VM Environments

    Cluster Lifecycle Management

    Provision and manage the lifecycle of Upstream Kubernetes clusters on bare metal and VMs.

    Windows

    Provision and manage Windows worker nodes. Deploy and operate Windows containers.

    Backup & Restore

    Securely backup your Upstream Kubernetes cluster resources and volumes to protect against infrastructure loss, data corruption, and/or service outages.

    Managed Storage

    Deploy and operate Rook/Ceph based managed storage for Block, File and Object based storage for your stateful applications.

    Nvidia GPUs

    Operate AI/ML applications on Upstream Kubernetes clusters with Nvidia GPU enabled nodes

    Virtual Machines on Kubernetes

    Deploy and Operate Virtual Machines on Upstream Kubernetes alongside containers using KubeVirt

        • Architecture
        • Organizations
        • Icons
        • Overview
          • Overview
          • Setup
            • AddOns
            • Agents
            • Backup
            • Blueprints
            • Blueprint Schema
            • Catalog
            • Clusters
            • Cloud Credentials
            • IdP/SSO
            • Namespaces
            • Namespace Schema
            • Network Policy
            • Overrides
            • Pipelines
            • Policy
            • Projects
            • Repository
            • RBAC
            • Secret Groups
            • Secret Stores
            • Templating
            • Trigger
            • Workloads
            • Overview
            • Blueprints
            • Addons
            • Agents
            • Clusters
            • Credentials
            • Namespaces
            • Pipeline
            • Projects
            • Repository
            • Trigger
            • Workloads
        • Terraform Provider
        • APIs
        • Home
        • Overview
          • Location
          • Cluster Labels
          • Node Labels
          • Node Taints
          • Health
            • Overview
            • Supported Environments
            • Gateway
            • Provisioning
            • Debug
            • Day-2 Operations
            • CLI
            • Deprovision
            • Config Schema
          • Overview
          • Supported Environments
              • Cloud Credentials
              • IAM Policy & Role Creation in AWS
            • CNI Providers
              • Overview
              • Secondary CIDR with VPC
              • Custom AWS CNI
              • Overview
              • Full
              • Customer-Managed VPC
              • Customer-Managed VPC & IAM
              • Customer-Managed VPC & IAM with Restrictions
              • Restricted IAM Policy on Resource ARN & Tags
              • Service Linked IAM Role
            • Managed Add-Ons
            • V1 Config Schema
            • V3 Config Schema
            • Cluster Config
            • AWS Tags
              • Overview
              • CLI for IRSA
            • Identity Mapping
            • Cross Account ARN
            • Control Plane
            • Provision
            • Convert to Managed
            • Day-2 Operations
            • Overview
            • Custom AMI
            • Wavelength Zone
            • Spot Instances
            • Node Labels
            • AWS Tags
            • CLI
            • API
              • Overview
              • Examples
            • Terraform
          • RBAC based KubeCTL
          • API
            • Upgrade Strategies
            • k8s Upgrades
            • AMI Upgrades
            • Visibility and Monitoring
            • Audit
          • Deprovision
          • Fleet Operations
            • Create Cluster Template
            • Create Cluster from Template
            • CLI for Cluster Template
            • Best Practices
            • FAQ
            • Troubleshooting
          • Overview
          • Supported Environments
            • Create Cluster Template
            • Create Cluster from Template
            • CLI for Cluster Template
          • Azure Setup
          • Credentials
          • Provision
          • Convert to Managed
          • Day-2 Operations
          • Node Labels
          • Spot Price
          • Visibility and Monitoring
          • Deprovision
          • Fleet Operations
          • K8s Upgrades
          • Audit
            • Overview
              • Overview
              • Examples
          • Config Schema
          • Troubleshooting
          • Approaches
          • Overview
          • Supported Environments
          • Configuration
          • Preflight Checks
          • Provisioning
          • Config Schema
          • Master Nodes
          • Worker Nodes
          • CLI
          • Day-2 Operations
          • Kubernetes Access
          • Kubernetes Upgrades
          • Node OS Upgrades
          • Deprovision
          • Troubleshooting
          • Retry and Backoff
          • Reset Node
            • Add Storage
            • Overview
              • Single Command-Node
              • Multiple Command-Node
              • Command-Cluster
              • Command History
          • Overview
          • Simulator
          • Overview
          • Provision Servers
          • Provision Kubernetes
          • Overview
          • Supported Environments
            • Create Cluster Template
            • Create Cluster from Template
            • CLI
          • GCP IAM
          • Credentials
          • Provisioning
          • Provisioning Explained
          • Day-2 Operations
          • preBootstrapCommands
          • CLI
          • Config Schema
          • Scale Nodes
          • Upgrade K8s
          • Deprovision
          • Troubleshooting
          • Overview
          • Imperative
          • Declarative
          • Import Failures
          • Remove Operator
          • Analysis
          • Overview
          • Provision
          • Deprovision
          • Lifecycle
          • FAQ
          • Overview
          • Provision
          • Import
          • Blueprints
          • Dashboards
          • Overview
          • Provision
          • Deprovision
          • Lifecycle
          • vSphere Example
          • SSH Example
          • Overview
          • Supported Environments
          • Network Segment
          • Gateway
          • Credentials
          • vSphere Account permissions
          • Provisioning
          • Custom OS Image
          • CLI
          • Config Schema
          • Scale Nodes
            • Overview
            • Add Health Check
            • CLI
          • Troubleshooting
          • Troubleshooting
        • Overview
        • Overview
        • Create Plan
        • Automation
        • Config Samples
            • EKS-1.23
            • EKS-1.24
        • Troubleshooting
        • Overview
        • Hard Tenancy
          • Overview
          • Description
          • Project Tags
          • Resource Quotas
          • Cluster Sharing
          • CLI
          • Workspace Role
            • Overview
            • Management
            • Reconciliation
            • CLI
        • Overview
          • Overview
          • API
          • CLI
            • Overview
            • AWS S3 Bucket
            • Azure Blob Storage
            • S3 Compatible Storage
            • Overview
              • Credentials
              • Backup & Restore using IRSA
            • Azure
            • S3 Compatible
          • Data Agent
          • Backup Policy
          • Backup Job
          • Restore Policy
          • Restore Job
          • Considerations
          • Overview
          • Custom Add-Ons
            • Overview
              • Background
              • Managed Ingress
              • Overview
              • Minimal Blueprint
              • Standard Default Blueprint
              • Default AKS
              • Default GKE
              • Default Openshift
              • Default Upstream
              • Custom Blueprint
              • Golden Blueprint
          • Cluster Fleet Management
          • Sharing
            • Overview
            • Workflow
            • Managed Components
            • Built-in variables
          • Update Blueprint
          • Pod Security Policy (EOL)
          • Troubleshooting
            • Blueprint CLI
            • Add-Ons CLI
          • API
          • Overview
          • Manage Catalogs
          • CLI
          • Overview
          • Cost Profiles
          • Cloud Credentials
          • AWS Integration
          • Azure Integration
          • Visibility
          • Chargeback/Showback
          • Explorer
            • Profiles
            • Chargeback Groups
          • Overview
          • Benefits
          • Pipelines
            • Overview
            • Approval
            • Deploy Workload
              • Overview
              • CLI
            • System Sync
            • Workload Template
            • Overview
            • Troubleshooting
            • Pipeline Secret Groups
            • CLI
          • Agents
          • Background
          • Overview
          • Installation Profiles
            • Overview
            • Cluster-Wide Network Policy Rules
            • Namespace Network Policy Rules
          • Cluster-Wide Network Policies
          • Namespace Network Policies
          • Network Visibility
          • CLI
          • Overview
          • Installation Profiles
          • Constraint Templates
          • Constraints
          • Policies
          • Policy Violations
          • Visibility
          • CLI
            • Secrets Store Add-on
            • Secret Provider Classes
            • Configure IRSA
            • Annotations
            • CLI
            • Overview
            • Configure Vault
              • ENV Variables
              • Files
              • Use Vault-Wizard
            • Secret Sealer
            • Use Secret Sealer
            • Overview
            • Organization
            • Projects
            • Cluster
            • My Clusters
            • Nodes
              • View/Edit/Delete
              • Create
            • Kubernetes Events
            • Pod Dashboard
            • Container Dashboard
            • Configuration
            • GPU Dashboard
            • Overview
            • Alerts
            • Notifications
            • Custom Metrics HPA
          • Background
          • Overview
            • Browser
            • KubeCTL CLI
          • Configuration
          • RBAC
          • Audit Trail
          • Private Kube API Proxy
          • FAQ
        • Overview
        • Kubectl
        • Helm
          • Overview
          • Helm Charts
          • k8s YAML
            • Overview
            • System Registry
            • Overview
            • Public Repos
            • Private Repos
            • Lifecycle
            • Agents
            • Overview
            • Ingress
            • DNS based GSLB
            • Containers
            • Container Registry
            • Upgrade Strategy
            • Storage
            • Policy
            • Publish
            • Overview
            • New Certificate
          • Cluster Overrides
          • CLI
            • Overview
            • Developer Tools
            • Overview
            • Common Patterns
              • Overview
              • Workload Basics
              • Workload Wizard
              • Helm Workloads
              • YAML Workloads
              • Provision Upstream k8s
              • Provision Amazon EKS
            • CircleCI
            • GitLab
            • Azure DevOps
        • Integrated GitOps
          • ArgoCD
        • Overview
        • Requirements
        • Setup
            • Create
            • Create
            • Register Existing
            • Edit Template
            • Create
            • Register Existing
            • Edit Template
            • Create
        • User Management
        • Entity Cards
        • Delete Plugins
        • Overview
        • Workflow
          • Terraform Integration
          • Contexts
          • Static Resource
          • Resource Template
          • Environment Template
          • Example Templates
        • Create Environment
        • RBAC
        • Overview
        • Users
        • MFA
        • Groups
        • CLI
          • Base Roles
            • Overview
            • Rules
            • Policies
            • Custom Roles
            • Examples
            • Common Scenarios
          • Overview
          • ADFS
          • AWS SSO
          • Azure AD
          • Duo SSO
          • Google Workspace
          • KeyCloak
          • Okta
          • Ping One
          • CLI
          • Webhooks
        • Multiple Orgs
        • Overview
        • White Listing
        • Audit Logging
          • Overview
          • CloudWatch
          • DataDog
          • Splunk
          • SumoLogic
        • Compliance
        • Vulnerabilities
        • CIS Benchmark
        • Contact
        • Overview
        • Environments
        • General
        • Self-hosted Controller
        • Overview
        • Operations
        • Cluster Health State
        • Whitelabeling
      • Home
      • Overview
          • Overview
          • Alerts
          • Notifications
        • Alerts
        • Notifications
        • Home
          • Overview
          • Part 1: Setup Environment
          • Part 2: Create Resources
          • Part 3: Backup/Restore
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Workload
          • Part 4: Deprovision
          • Overview
          • Prerequisites
          • Part 1: Provision
          • Part 2: Scale
          • Part 3: Node Group
          • Part 4: Upgrade
          • Part 5: Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Utilize
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Blueprint
          • Part 4: Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Blueprint
          • Part 3: Provision
          • Part 4: Workload
          • Part 5: Deprovision
          • Overview
          • Provision
          • Deploy Workload
          • Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Blueprint
          • Part 4: Workload
          • Part 5: Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Sync from Git
          • Part 3: Sync from System
          • Overview
          • Part 1: Create & Execute
          • Part 2: Stop & Delete
          • Overview
          • Part 1: Provision
          • Part 2: Blueprint
          • Part 3: Workload
          • Part 4: Deprovision
          • Overview
          • Provision
          • Deploy Workload
          • Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Pipeline
          • Part 4: Utilize
          • Part 5: Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Blueprint
          • Part 4: Workload
          • Part 5: Deprovision
          • Overview
          • Provision
          • Deploy Workload
          • Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Blueprint
          • Part 4: Workload
          • Part 5: Deprovision
          • Overview
          • Part 1: Provision
          • Part 2: Blueprint
          • Part 3: Workload
          • Part 4: Deprovision
          • Overview
          • Part 1: Provision
          • Part 2: Deprovision
          • Overview
          • Import & Takeover
          • Lifecycle Operations
          • Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Blueprint
          • Part 4: Workload
          • Part 5: Deprovision
          • Overview
          • Part 1: Provision
          • Part 2: Workload
          • Part 3: Deprovision
          • Overview
          • Part 1: Provision
          • Part 2: Deprovision
          • Overview
          • Part 1: YAML
          • Part 2: Helm
          • Part 3: Update
          • Overview
          • Part 1: Setup
          • Part 2: Deploy
          • Part 3: Pipeline
          • Part 4: Update
          • Overview
          • Scenario 1: Misconfigured Requests
          • Scenario 2: Incorrect Container Image
          • Overview
            • Overview
            • Blue/Green
            • Overview
            • Canary
        • Home
          • Overview
          • Part 1: Setup Environment
          • Part 2: Create Resources
          • Part 3: Backup/Restore
          • Overview
          • Prerequisites
          • Part 1: Provision
          • Part 2: Scale
          • Part 3: Node Pool
          • Part 4: Upgrade
          • Part 5: Deprovision
          • Overview
          • Part 1: Provision
          • Part 2: Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Utilize
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Blueprint
          • Part 4: Workload
          • Part 5: Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Deprovision
        • Overview
        • Prerequisites
        • Part 1: Create Project
        • Part 2: User Management
        • Part 3: Zero Trust Kubectl
        • Part 4: Namespaces
        • Part 5: Cluster Blueprints
        • Part 6: Visibility & Monitoring
        • Part 7: GitOps Pipelines
        • Part 8: Policy Management
        • Part 9: Backup/Restore
        • Clean Up
          • Overview
          • Part 1: Create
          • Part 2: Update
          • Part 3: Monitor
          • Overview
          • Part 1: Create
          • Part 2: Utilize
          • Overview
          • Part 1: Detect
          • Part 2: Block
          • Overview
          • Part 1: Create
          • Part 2: Manage
        • Overview
        • Part 1: Setup
        • Part 2: Visualization
        • Part 3: Chargeback/Showback
            • Overview
            • Setup
            • Provision
            • Overview
            • Setup
            • Provision
            • Overview
            • Setup
            • Provision
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Deprovision
          • Overview
          • Setup
          • Recreate
          • Rolling Update
          • Blue-Green
          • Canary
          • Overview
          • Part 1: Setup
          • Part 2: Sync Blueprint
          • Part 3: Sync Workload
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Deprovision
        • Home
          • Overview
          • Part 1: Provision
          • Part 2: Scale
          • Part 3: Upgrade
          • Part 4: Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Utilize
          • Overview
          • Part 1: Setup
          • Part 2: Sync from Git
          • Part 3: Sync from System
        • Overview
        • Install MicroK8s
          • Part 1: Using Namespaces
          • Part 2: Using Pods
          • Part 3: Using Deployments
          • Part 4: Using Services
          • Part 5: Using Ingress
          • Part 1: Using ConfigMaps
          • Part 2: Using Secrets
          • Part 3: Using PV
          • Part 4: Using PVC
          • Deployments, StatefulSets, DaemonSets
          • Part 1: Using StatefulSets
          • Part 2: Using DaemonSets
          • Part 1: Using Port-Forward
        • Overview
        • Project based isolation
        • Shared clusters
        • Overview
        • Part 1: Setup
        • Part 2: Network Visibility
        • Part 3: Namespace Isolation
        • Part 4: Self-Service via RBAC
        • Overview
        • Part 1: Import Cluster
        • Part 2: Zero Trust Kubectl
        • Part 3: Namespaces
        • Part 4: Cluster Blueprints
        • Part 5: Visibility & Monitoring
        • Clean Up
          • Overview
          • Part 1: Setup
          • Part 2: Policy
          • Part 3: Blueprint
          • Part 4: Workload
          • Overview
          • Part 1: Setup
          • Part 2: Apply
          • Part 3: Test
          • Overview
          • Prerequisites
          • Provision
          • Day 2 Operations
          • Deprovision
          • Overview
          • Prerequisites
          • Provision
          • Day 2 Operations
          • Deprovision
          • Overview
          • Scenario 1: Misconfigured Requests
          • Scenario 2: Incorrect Container Image
        • Home
          • Overview
          • Part 1: Setup Environment
          • Part 2: Create Resources
          • Part 3: Backup/Restore
          • Overview
          • Part 1: Provision
          • Part 2: Scale
          • Part 3: Upgrade
          • Part 4: Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Blueprint
          • Part 3: Workload
          • Overview
          • Part 1: Setup
          • Part 2: Blueprint
          • Part 3: Utilize
          • Part 4: Expand
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Deprovision
          • Overview
          • Part 1: Provision
          • Part 2: Workload
          • Part 3: Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Provision
          • Part 3: Scale
          • Part 4: Upgrade
          • Part 5: Deprovision
          • Overview
          • Part 1: Setup
          • Part 2: Blueprint
          • Part 3: Deploy VM
        • Overview
        • Controlled Access
        • Break Glass
        • Audit Logs
      • Overview
      • Contributors
        • Overview
          • Overview
          • Configure
          • Test
        • Slack
        • PagerDuty
        • Opsgenie
        • Microsoft Teams
        • ServiceNow
        • CloudCasa
          • Overview
          • Credentials - IAM Role
          • Credentials - IAM User
          • Credentials - MinIO
          • Use Velero
        • Overview
        • Kubecost
        • Overview
        • Create Addon
        • Use Cert-Manager
        • Redis
        • InfluxDB
        • Backstage
        • Vclusters
          • Overview
          • Import Cluster
          • Provision Cluster
        • Kubeless
          • Overview
          • Policies
            • Container without limits configured
            • Container without probes configured
            • Pull container images from only ECR registry
            • Unique Service Selector
            • Unique Ingress Host
            • Run Containers only with selective users
          • Overview
          • Policies
        • Overview
        • Nvidia GPU Operator
        • Test GPU
          • Overview
          • Create
          • Configure
          • Access
        • Ambassador
        • Citrix
          • Install Kong
          • Enable Monitoring
          • Enable Logging
          • Sample Application
          • Overview
          • Create Blueprint
          • Test Workload
        • ngrok
        • Traefik
          • Overview
          • Create
          • Configure
          • Access
        • CloudWatch
          • Overview
          • Create
          • Configure
          • Access
        • Splunk
        • Sumologic
        • New Relic
          • Overview
          • Create
          • Configure
          • Access
        • CloudWatch
        • Datadog Agent
        • Dynatrace
        • Grafana
        • New Relic
        • OpsVerse Agent
        • Prometheus Operator
        • Splunk Connect
        • Overview
          • Install
          • Test
          • Install
          • Overview
          • Create
          • Configure
          • Access
          • Overview
          • Create
          • Configure
          • Access
          • Overview
          • Create
          • Configure
          • Access
        • Sealed Secrets
        • Araali
        • Kube-bench
        • Trivy
          • Overview
          • Use Istio
          • Overview
          • Use Linkerd
        • MinIO
        • Ondat
        • Portworx
          • Overview
          • Configure
          • Test
        • Sosivio
      • Overview
      • Release Info
          • Sept
          • Aug
          • July
          • June
          • May
          • Apr
          • Mar
          • Feb
          • Jan
        • 2022
        • 2021
        • 2020
        • 2019
        • Overview
        • Features
      • Index
        • 2023
        • 2022
        • Product Blog
        • Alerts & Notifications for Kubernetes Clusters
        • AKS v1.27
        • Azure
        • Amazon VPC CNI
        • Challenges
        • Kubernetes Upgrades
        • Bare Metal and VM based Environments
        • Aug 2023 Release
        • Amazon EKS
        • Upgrade Plan
        • Kubernetes v1.23
        • CIS Compliance
        • Kubernetes
        • HashiCorp License Change
        • kubectl
        • plugins
        • grep
        • Amazon EKS v1.27
        • AWS
        • Vector Database
        • Generative AI
        • Zero Trust Kubectl
        • Developer Access
        • Read Only Roles
        • July 2023 Release
        • Amazon EKS v1.26
        • In-Place Upgrade
        • Declarative Cluster Lifecycle Management
        • RCTL CLI
        • Auto Inject Project Name in Cluster Labels
        • Multi-tenancy
        • Developer Experience
        • AWS Cross Account
        • FinOps Role
        • Cost Management
        • June 2023 Release
        • Kubernetes v1.27
        • Upstream Kubernetes
        • Rocky Linux 9
        • AI and Generative AI
        • AI Hackathon 2023
        • OPA Gatekeeper
        • Org Dashboards for OPA Gatekeeper
        • May 2023 Release
        • Per project settings for notifications
        • Imported Clusters
        • AKS
        • Azure Linux Container Host
        • Kubernetes Components
        • Cluster Upgrades
        • Infrastructure
        • Cluster Templates
        • Developer Self Service
        • GKE
        • Amazon EKS v1.25
        • Kubernetes v1.26
        • AI/ML for Kubernetes
        • Kubernetes for AI/ML
        • Solutions for Challenges
        • Amazon EKS Anywhere on Bare Metal
        • Terraform
        • New Releases
        • Preview Environment
        • Best Practices
        • Azure AKS
        • Windows Containers on Kubernetes
        • Discovery
        • Platform Teams
        • Product Documentation
        • Backstage
        • Training
        • Hands-on Learning
        • Drift Detection
        • Compliance
        • Security
        • Upgrade to EKS v1.23
        • EBS Volumes
        • Basics of Kubernetes
        • Amazon EKS Lifecycle Management
      • Email
      • Slack
    Previous
    Scenario 2: Incorrect Container Image
    Next
    Overview
    Copyright © 2017-2023 Rafay Systems