About
This site contains documentation for HPE Ezmeral Runtime Enterprise, including installation, configuration, administration, and reference content, and information about related solutions. Examples of related solutions include HPE Ezmeral ML Ops and HPE Ezmeral Runtime Analytics for Apache Spark.
5.6 Reference
- HPE Ezmeral Runtime Enterprise 5.6
- Software Versions
- Kubernetes Bundles
  Kubernetes Bundles are software packages that can contain software to support newer Kubernetes versions, updated add-ons, and software fixes. Kubernetes Bundles enable you to update your deployment without requiring you to upgrade to a newer version of HPE Ezmeral Runtime Enterprise.
- Quick Links
- What's New in Version 5.6.x
  This topic summarizes the new features and important changes in HPE Ezmeral Runtime Enterprise 5.6.x compared to HPE Ezmeral Runtime Enterprise 5.5.x.
- Prepackaged Applications
- On-Premises, Hybrid, and Multi-Cloud Deployments
- Third-Party Licenses
- Universal Concepts
- Accessing HPE Ezmeral Runtime Enterprise Applications and Services
- Navigating the GUI
  Describes the screen layout of the HPE Ezmeral Runtime Enterprise graphical user interface (GUI).
- HPE Ezmeral ML Ops
  The topics in this section provide information about machine learning operations (ML Ops/MLOps) using HPE Ezmeral ML Ops in HPE Ezmeral Runtime Enterprise. (Not available with HPE Ezmeral Runtime Enterprise Essentials.)
- Spark on Kubernetes
  The topics in this section provide information about Apache Spark on Kubernetes in HPE Ezmeral Runtime Enterprise. (Not available with HPE Ezmeral Runtime Enterprise Essentials.)
- Kubernetes
  - Kubernetes Physical Architecture
  - Hewlett Packard Enterprise Distributions of Kubernetes
    The Hewlett Packard Enterprise distribution of Kubernetes, identified by the -hpe<number> suffix, incorporates the containerd runtime, which is required for all Kubernetes clusters created with HPE Ezmeral Runtime Enterprise version 5.5.0 and later.
  - Kubernetes Cluster Types and Compatibility
    An existing HPE Ezmeral Runtime Enterprise deployment that is upgraded from a previous release might contain Kubernetes clusters that use the containerd runtime and Kubernetes clusters that use the Docker runtime. All nodes in a Kubernetes cluster must use the same type of runtime.
  - Migrating Kubernetes Clusters from Docker to containerd
    This topic describes migrating legacy Kubernetes clusters from Docker container runtime to the the new Hewlett Packard Enterprise distribution of Kubernetes, which implements containerd runtime.
  - About HPE Ezmeral Data Fabric on Kubernetes
  - Kubernetes Tenant RBAC
  - Disabling or Enabling the Kubernetes Web Terminal
    As a Platform Administrator, you can enable or disable user access to the Kubernetes Web terminal. The Kubernetes Web Terminal is not available in HPE Ezmeral Runtime Enterprise Essentials.
  - Kubernetes Metadata
  - Centralized Policy Management
    Defines centralized policy management and describes the features and benefits of applying policies to Kubernetes clusters managed by HPE Ezmeral Runtime Enterprise. Not available in HPE Ezmeral Runtime Enterprise Essentials.
    - Viewing Policy Management Information
      Describes how to view information about the Git repositories and policies currently being used by HPE Ezmeral Runtime Enterprise.
    - Viewing Policy Violations
      Describes how to view a detailed log of policy violations and denials triggered on a Kubernetes cluster managed by HPE Ezmeral Runtime Enterprise.
    - Configuring Centralized Policy Management
      List of the major tasks for configuring centralized policy management.
    - Creating Policies for Centralized Policy Management
    - Creating the Git Repository for Centralized Policy Management
    - Adding a Git Repository for Centralized Policy Management
      Describes how to add a Git repository for centralized policy management.
    - Adding a Policy for Centralized Policy Management
      Describes how to add a policy for use with policy management.
    - Editing a Policy for Centralized Policy Management
    - Deleting a Repository or Policy for Centralized Policy Management
    - Registering Policies with Your Kubernetes Cluster
      Describes how to register policies with a Kubernetes cluster.
    - Logging in to the Argo CD Server
    - Deregistering a Policy for Centralized Policy Management
      Describes how to remove a policy that has already been registered with the cluster.
    - Limitations of Centralized Policy Management
  - Kubernetes Troubleshooting Overview
  - Using Kubernetes
    The topics in this section describe information and tasks for non-administrator users of Kubernetes in HPE Ezmeral Runtime Enterprise.
  - Tenant/Project Administration
    The topics in this section describe information and tasks that Kubernetes Tenant/Project Administrators can perform in HPE Ezmeral Runtime Enterprise. .
  - Kubernetes Cluster Administrator Tasks
    The topics in this section describe information and tasks that Kubernetes Cluster Administrators can perform in HPE Ezmeral Runtime Enterprise.
  - Kubernetes Administrator Tasks
    The topics in this section describe information and tasks that Kubernetes Administrators can perform in HPE Ezmeral Runtime Enterprise.
  - Kubernetes Application Administration
    The topics in this section describe information and tasks related to Kubernetes application administration on HPE Ezmeral Runtime Enterprise.
- Platform Administration
  Tasks and reference information for Platform Adminstrators (Site Administrators) managing the HPE Ezmeral Runtime Enterprise deployment.
- HPE Ezmeral Data Fabric Introduction
  HPE Ezmeral Data Fabric is a platform for data-driven analytics, ML, and AI workloads. The patented file-system architecture was designed and built for performance, reliability, and scalability. HPE Ezmeral Runtime Enterprise supports multiple implementations of HPE Ezmeral Data Fabric.
- HPE Ezmeral Data Fabric on Kubernetes Administration
  You administer HPE Ezmeral Data Fabric on Kubernetes and Embedded Data Fabric as part of your HPE Ezmeral Runtime Enterprise environment. The external "bare metal" implementation of HPE Ezmeral Data Fabric is administered through its own tools and has its own documentation. (Not available in HPE Ezmeral Runtime Enterprise Essentials.)
- GPU and MIG Support
  This topic provides information about support for NVIDIA GPU and MIG devices on HPE Ezmeral Runtime Enterprise.
- Licensing
- Global Settings
- Planning the Deployment
  A high-level overview of the items to consider when planning an HPE Ezmeral Runtime Enterprise deployment.
- System Requirements
- Deploying the Platform
  The topics in this section describe deploying HPE Ezmeral Runtime Enterprise. Deployment is divided into phases.
- Upgrading to HPE Ezmeral Runtime Enterprise 5.6.x
  This article describes the process to upgrade to the latest 5.6.x version of HPE Ezmeral Runtime Enterprise.
- Upgrading from HPE Ezmeral Runtime Enterprise Essentials
  Upgrade from HPE Ezmeral Runtime Enterprise Essentials to the full-featured HPE Ezmeral Runtime Enterprise or to HPE Ezmeral ML Ops by uploading a license. No additional steps are required.
- Manually Restarting HPE Ezmeral Runtime Enterprise Services
  This topic describes restarting HPE Ezmeral Runtime Enterprise services in non-Kubernetes hosts.
- Uninstalling and Reinstalling HPE Ezmeral Runtime Enterprise
- Support and Troubleshooting
App Workbench 5.1

Registering Policies with Your Kubernetes Cluster

Describes how to register policies with a Kubernetes cluster.

Prerequisites

Required access rights: Platform Administrator or Cluster Administrator

About this task

Before you can use a policy, you must register it with your cluster. You can register policies during cluster creation or after the cluster is created. Also, any policies that you want to register with a cluster must first be added to the policy list, as described in Adding a Policy for Centralized Policy Management.

The following procedure assumes that the cluster has already been created.

Procedure

Click the icon to edit the Kubernetes cluster, and navigate to the Application Configurations page.
In the Policy Settings box, click Add Policy or Add Another Policy. A new policy field appears.
For example:

Specify the desired values for the policy.

The following table describes each field:

Field	Description
Policy	Displays the policies that have been added to the policy list. Click the drop-down arrow to select the policy that you want to register with the cluster.
Synchronization	Controls the automatic synchronization of policies. Possible values are Auto and Manual. Select Auto to configure the auto-sync feature. If you select Auto, ArgoCD synchronizes the policy with the cluster as soon as the policy is registered with the cluster. If you select Manual, the policy is in ArgoCD, but it is not applied to the cluster.
Prune	Specifies if resources should be pruned during auto-syncing. With Prune specified, if the objects in a policy are deleted from the policy directory, the corresponding objects are deleted from the cluster.
Reconcile Drift	Activates drift detection. Specifies if partial app sync should be executed when resources are changed only in the target Kubernetes cluster and no git change is detected. When the feature is selected and ArgoCD detects a change in the policy, the policy is reverted back to the state before the change.
Auto Create Namespace	Controls the namespace in which the policy objects are created. The default namespace is `hpecp`. When this box is checked, if the namespace doesn't exist, it is created automatically.
Namespace	Specifies the namespace to be created by the Auto Create Namespace option.

After policies are registered with the cluster, you can use the Policy Viewer link, as described in Logging in to the Argo CD Server.