About
This site contains documentation for HPE Ezmeral Runtime Enterprise, including installation, configuration, administration, and reference content, and information about related solutions. Examples of related solutions include HPE Ezmeral ML Ops and HPE Ezmeral Runtime Analytics for Apache Spark.
5.6 Reference
- HPE Ezmeral Runtime Enterprise 5.6
- Software Versions
- Kubernetes Bundles
  Kubernetes Bundles are software packages that can contain software to support newer Kubernetes versions, updated add-ons, and software fixes. Kubernetes Bundles enable you to update your deployment without requiring you to upgrade to a newer version of HPE Ezmeral Runtime Enterprise.
- Quick Links
- What's New in Version 5.6.x
  This topic summarizes the new features and important changes in HPE Ezmeral Runtime Enterprise 5.6.x compared to HPE Ezmeral Runtime Enterprise 5.5.x.
- Prepackaged Applications
- On-Premises, Hybrid, and Multi-Cloud Deployments
- Third-Party Licenses
- Universal Concepts
- Accessing HPE Ezmeral Runtime Enterprise Applications and Services
- Navigating the GUI
  Describes the screen layout of the HPE Ezmeral Runtime Enterprise graphical user interface (GUI).
- HPE Ezmeral ML Ops
  The topics in this section provide information about machine learning operations (ML Ops/MLOps) using HPE Ezmeral ML Ops in HPE Ezmeral Runtime Enterprise. (Not available with HPE Ezmeral Runtime Enterprise Essentials.)
- Spark on Kubernetes
  The topics in this section provide information about Apache Spark on Kubernetes in HPE Ezmeral Runtime Enterprise. (Not available with HPE Ezmeral Runtime Enterprise Essentials.)
- Kubernetes
  - Kubernetes Physical Architecture
  - Hewlett Packard Enterprise Distributions of Kubernetes
    The Hewlett Packard Enterprise distribution of Kubernetes, identified by the -hpe<number> suffix, incorporates the containerd runtime, which is required for all Kubernetes clusters created with HPE Ezmeral Runtime Enterprise version 5.5.0 and later.
  - Kubernetes Cluster Types and Compatibility
    An existing HPE Ezmeral Runtime Enterprise deployment that is upgraded from a previous release might contain Kubernetes clusters that use the containerd runtime and Kubernetes clusters that use the Docker runtime. All nodes in a Kubernetes cluster must use the same type of runtime.
  - Migrating Kubernetes Clusters from Docker to containerd
    This topic describes migrating legacy Kubernetes clusters from Docker container runtime to the the new Hewlett Packard Enterprise distribution of Kubernetes, which implements containerd runtime.
  - About HPE Ezmeral Data Fabric on Kubernetes
  - Kubernetes Tenant RBAC
  - Disabling or Enabling the Kubernetes Web Terminal
    As a Platform Administrator, you can enable or disable user access to the Kubernetes Web terminal. The Kubernetes Web Terminal is not available in HPE Ezmeral Runtime Enterprise Essentials.
  - Kubernetes Metadata
  - Centralized Policy Management
    Defines centralized policy management and describes the features and benefits of applying policies to Kubernetes clusters managed by HPE Ezmeral Runtime Enterprise. Not available in HPE Ezmeral Runtime Enterprise Essentials.
    - Viewing Policy Management Information
      Describes how to view information about the Git repositories and policies currently being used by HPE Ezmeral Runtime Enterprise.
    - Viewing Policy Violations
      Describes how to view a detailed log of policy violations and denials triggered on a Kubernetes cluster managed by HPE Ezmeral Runtime Enterprise.
    - Configuring Centralized Policy Management
      List of the major tasks for configuring centralized policy management.
    - Creating Policies for Centralized Policy Management
    - Creating the Git Repository for Centralized Policy Management
    - Adding a Git Repository for Centralized Policy Management
      Describes how to add a Git repository for centralized policy management.
    - Adding a Policy for Centralized Policy Management
      Describes how to add a policy for use with policy management.
    - Editing a Policy for Centralized Policy Management
    - Deleting a Repository or Policy for Centralized Policy Management
    - Registering Policies with Your Kubernetes Cluster
      Describes how to register policies with a Kubernetes cluster.
    - Logging in to the Argo CD Server
    - Deregistering a Policy for Centralized Policy Management
      Describes how to remove a policy that has already been registered with the cluster.
    - Limitations of Centralized Policy Management
  - Kubernetes Troubleshooting Overview
  - Using Kubernetes
    The topics in this section describe information and tasks for non-administrator users of Kubernetes in HPE Ezmeral Runtime Enterprise.
  - Tenant/Project Administration
    The topics in this section describe information and tasks that Kubernetes Tenant/Project Administrators can perform in HPE Ezmeral Runtime Enterprise. .
  - Kubernetes Cluster Administrator Tasks
    The topics in this section describe information and tasks that Kubernetes Cluster Administrators can perform in HPE Ezmeral Runtime Enterprise.
  - Kubernetes Administrator Tasks
    The topics in this section describe information and tasks that Kubernetes Administrators can perform in HPE Ezmeral Runtime Enterprise.
  - Kubernetes Application Administration
    The topics in this section describe information and tasks related to Kubernetes application administration on HPE Ezmeral Runtime Enterprise.
- Platform Administration
  Tasks and reference information for Platform Adminstrators (Site Administrators) managing the HPE Ezmeral Runtime Enterprise deployment.
- HPE Ezmeral Data Fabric Introduction
  HPE Ezmeral Data Fabric is a platform for data-driven analytics, ML, and AI workloads. The patented file-system architecture was designed and built for performance, reliability, and scalability. HPE Ezmeral Runtime Enterprise supports multiple implementations of HPE Ezmeral Data Fabric.
- HPE Ezmeral Data Fabric on Kubernetes Administration
  You administer HPE Ezmeral Data Fabric on Kubernetes and Embedded Data Fabric as part of your HPE Ezmeral Runtime Enterprise environment. The external "bare metal" implementation of HPE Ezmeral Data Fabric is administered through its own tools and has its own documentation. (Not available in HPE Ezmeral Runtime Enterprise Essentials.)
- GPU and MIG Support
  This topic provides information about support for NVIDIA GPU and MIG devices on HPE Ezmeral Runtime Enterprise.
- Licensing
- Global Settings
- Planning the Deployment
  A high-level overview of the items to consider when planning an HPE Ezmeral Runtime Enterprise deployment.
- System Requirements
- Deploying the Platform
  The topics in this section describe deploying HPE Ezmeral Runtime Enterprise. Deployment is divided into phases.
- Upgrading to HPE Ezmeral Runtime Enterprise 5.6.x
  This article describes the process to upgrade to the latest 5.6.x version of HPE Ezmeral Runtime Enterprise.
- Upgrading from HPE Ezmeral Runtime Enterprise Essentials
  Upgrade from HPE Ezmeral Runtime Enterprise Essentials to the full-featured HPE Ezmeral Runtime Enterprise or to HPE Ezmeral ML Ops by uploading a license. No additional steps are required.
- Manually Restarting HPE Ezmeral Runtime Enterprise Services
  This topic describes restarting HPE Ezmeral Runtime Enterprise services in non-Kubernetes hosts.
- Uninstalling and Reinstalling HPE Ezmeral Runtime Enterprise
- Support and Troubleshooting
App Workbench 5.1

Limitations of Centralized Policy Management

This page describes some limitations that apply to the current release of centralized policy management.

Limitation for Imported Clusters

The policy-management framework included in HPE Ezmeral Runtime Enterprise has not been tested for use in imported clusters.

Limitation for hpecp-bootstrap-argocd Deployment Object

If you register or deregister a policy after the cluster is created, you must make sure that none of the policies that you are registering or deregistering blocks the hpecp-bootstrap-argocd deployment object from scaling up. The container platform uses the hpecp-bootstrap-argocd deployment object to register and deregister policies.

This limitation applies only if you register or deregister a policy after the cluster is created. A workaround for this limitation is to log on to the Argo CD Server as described in Logging in to the Argo CD Server and add the policy directly to Argo CD. For instructions, see Creating Apps Via UI.

To make sure that none of the policies that you are registering or deregistering blocks the hpecp-bootstrap-argocd deployment object:

Compare your policy definition (template and constraint objects) against the definition of the hpecp-bootstrap-argocd deployment to make sure the policy does not block deployment. To display the definition of the hpecp-bootstrap-argocd deployment, use one of these commands:
```
kubectl get deployment hpecp-bootstrap-argocd -n hpecp-bootstrap -o json
```
or
```
kubectl describe deployment hpecp-bootstrap-argocd -n hpecp-bootstrap
```
After comparing, modify or create your policy to allow the hpecp-bootstrap-argocd deployment to scale up. Or modify the hpecp-bootstrap-argocd deployment to conform to the policy you are creating.
If necessary, edit the hpecp-bootstrap-argocd deployment using the following command:
```
kubectl edit deployment hpecp-bootstrap-argocd -n hpecp-bootstrap
```