We are bringing the best of Tectonic to Red Hat OpenShift to build the most secure, hybrid Kubernetes application platform.
The Tectonic multi-cluster registry provides a standard way to:
Together these features allow you to configure base security policies, such as restricting node administration only to cluster admins, on all of your clusters.
Syncing team specific policies, such as creating a namespace for an API deployment in every production region, provides an easy means to enforce standardization.
Tectonic's multi-cluster registry enables overlapping policies, and considers the entire set of objects in the cluster before creating, updating, or deleting any policies. The software will not delete any objects it did not create; only objects created by a Cluster Policy will be deleted.
Note: Workload resources like Deployments, ConfigMaps and Secrets are out of scope for this feature.
Terminology:
Follow the install guide to configure your clusters.