Use registered clusters to centrally manage external Kubernetes clusters - Container Service for Kubernetes

You can register clusters that are deployed in data centers or on a third-party cloud to Distributed Cloud Container Platform for Kubernetes (ACK One). This way, you can build hybrid cloud clusters and centrally manage the external Kubernetes clusters. This topic describes how to use registered clusters to centrally manage external Kubernetes clusters.

Scenarios

You can use registered clusters to centrally manage external Kubernetes clusters in the following scenarios:

You want to centrally manage Container Service for Kubernetes (ACK) clusters and external Kubernetes clusters that are deployed in data centers.
You want to centrally manage ACK clusters and external Kubernetes clusters that are deployed on third-party clouds.
You want to centrally manage ACK clusters that belong to different Alibaba Cloud accounts.

Benefits

Provides centralized cluster management.
Provides a consistent security governance system.
Provides a consistent logging, monitoring, and alerting system.

Fixed issues

You can centrally manage clusters and applications in the ACK console. This saves the need to switch between multiple cloud platforms when you want to manage different clusters and applications.
You can use Alibaba Cloud accounts and Resource Access Management (RAM) users to manage the role-based access control (RBAC) permissions of the following types of clusters in a centralized manner: ACK clusters, external Kubernetes clusters deployed in data centers, and external Kubernetes clusters deployed on third-party clouds. In addition, ACK One provides the following capabilities: auditing, security inspection, and node risk detection.
You can use the logging, monitoring, and alerting systems provided by ACK One to centrally manage clusters.

Architecture

Procedure

Create a cluster registration proxy and use the proxy to register an external Kubernetes cluster to ACK One. For more information, see Create a cluster registration proxy and register a Kubernetes cluster that is deployed in a data center.
Install components based on your business requirements.
- For more information about how to create a hybrid cluster and add Elastic Compute Service (ECS) or elastic container instances to the cluster, see Build a hybrid cloud cluster and add ECS instances to the cluster or Create a hybrid cluster and add elastic container instances to the cluster.
- For more information about security governance, see Security governance.
- For more information about observability services, see Observability services