Skip to main content
Version: 3.13-dev

Add Cluster

This page provides comprehensive instructions on how to integrate an external cluster into the KubeRocketCI workloads. By doing so, it creates an opportunity for users to employ multi-cluster deployment, thereby facilitating the segregation of different environments across various clusters.

Prerequisites​

Before moving ahead, ensure you have already performed the guidelines outlined in the Argo CD Integration page. Besides, user needs to have a cluster admin role to add clusters.

Integrate External Cluster​

To deploy an application to a remote cluster, follow the steps below:

  1. Navigate to Configuration -> Deployment -> Clusters and click the + Add cluster button.

  2. In the Add cluster window, choose the credentials type and specify the required fields. Click the Save button to add the cluster:

    • Cluster Name: a unique and descriptive name for the external cluster;
    • Cluster Host: the cluster’s endpoint URL (e.g., example-cluster-domain.com);
    • Cluster Token: a Kubernetes token with permissions to access the cluster. This token is required for proper authorization;
    • Skip TLS verification: allows connect to cluster without cluster certificate verification;
    • Cluster Certificate: a Kubernetes certificate essential for authentication. Obtain this certificate from the configuration file of the user account you intend to use for accessing the cluster.
    note

    The Cluster Certificate field is hidden if the skip TLS verification option is enabled.

  3. As soon as the cluster is added, open the terminal which has access to the cluster that runs the KubeRocketCI deployment.

  4. Open the krci-config ConfigMap edit menu using the kubectl edit command:

kubectl edit ConfigMap krci-config -n krci

  1. In the YAML file, add the available_clusters parameter, insert the cluster name, and click Save & apply:

    edp-config.yaml
    data:
      available_clusters: <cluster-name>

  2. Ensure the available_clusters parameter is added into the config map:

kubectl get ConfigMap krci-config -n krci -o yaml

Integrate ArgoCD with External Cluster​

To integrate ArgoCD with an external cluster, you need to register the target cluster’s credentials with ArgoCD so that ArgoCD can securely connect to and manage resources in that cluster. This process typically involves creating a Kubernetes Secret in the ArgoCD namespace containing the cluster connection configuration. Depending on your platform and security requirements, authentication can be configured via a static token or by using an AWS IAM Role for Service Accounts (IRSA).

Choose the configuration method that matches your external cluster's authentication mechanism and follow the relevant steps below to prepare your cluster for use with ArgoCD.

apiVersion: v1
kind: Secret
metadata:
  name: <cluster-name>-cluster
  namespace: argocd
  labels:
    argocd.argoproj.io/secret-type: cluster
stringData:
  config: |
  {
    "tlsClientConfig": {
      "insecure": false,
      "caData": ""
    },
    "bearerToken": ""
  }
  name: "<cluster-name>"
  server: "https://EXAMPLED539D4633E53DE1B71EXAMPLE.gr7.<AWS_REGION>.eks.amazonaws.com"

After applying the configuration, you can verify the cluster connection ArgoCD -> Settings -> Clusters -> <cluster-name>.

Deploy application on new cluster​

To create a Deployment with an Environment, follow the instructions specified in the Add Deployment page.

When creating an Environment, specify your new cluster name in the Cluster field.

Edit this page
Last updated on by Oleksandr_Stepanov@epam.com
Visit Main Site