Red Hat OpenShift

Red Hat OpenShift Installation Guide

Production-grade installation guide for Red Hat OpenShift 4.18 & newer. All snippets are idempotent and tested on OCP 4.18 (Kubernetes 1.31).

Table of Contents

  1. Overview

  2. Prerequisites

  3. Quick-Start Variables

  4. Install Local Tooling

  5. OpenShift Cluster Preparation

  6. Install Cluster Add-ons

  7. Provision PostgreSQL (CloudNativePG)

  8. Provision Object Storage

  9. Create Dynamiq Secrets

  10. Prepare Helm Values

  11. Deploy Dynamiq

  12. Validate & Smoke-Test

  13. Upgrade Workflow

  14. Cleanup

  15. Appendix A – values-ocp.yaml Reference

1 – Overview

Dynamiq is a low-code GenAI operating platform. This guide deploys it as fully private, TLS-only, auto-upgradeable workloads on an OpenShift 4.18+ cluster.

Key building blocks:

  • CloudNativePG (Crunchy Data) for HA PostgreSQL

  • Object storage – AWS S3, MinIO, or OpenShift Data Foundation

  • External Secrets Operator for secret sync

  • Fission for serverless logic

  • Helm for application lifecycle

2 – Prerequisites

Requirement
Details

OpenShift 4.18+

Kubernetes 1.31, cluster-admin rights

CPU workers

≥ 2 × vCPU / 8 GiB (m5.large-class)

GPU workers

Optional – G5/A10G for model inference

CLI tools

oc 4.18+, helm 3.14+, jq, openssl, envsubst

Domain

Root/sub-domain delegated in DNS

Outbound 443

Pull container images & reach S3/MinIO

3 – Quick-Start Variables

Edit the first block only, then paste the rest as one.

4 – Install Local Tooling

5 – OpenShift Cluster Preparation

  1. Log in

  2. Create / select project

  3. (Optional) Create a fresh IPI cluster

6 – Install Cluster Add-ons

6.1 External Secrets Operator

Create a ClusterSecretStore pointing at AWS Secrets Manager (swap provider if required):

6.2 Fission Serverless Engine

6.3 GPU MachineSets (optional)

7 – Provision PostgreSQL (CloudNativePG)

Extract connection details:

8 – Provision Object Storage

Option A – AWS S3

Option B – Internal MinIO

9 – Create Dynamiq Secrets

10 – Prepare Helm Values

11 – Deploy Dynamiq

12 – Validate & Smoke-Test

Create CNAME records (app, api, etc.) pointing to the OpenShift router host.

  • https://app.${BASE_DOMAIN} → Dynamiq UI

  • https://api.${BASE_DOMAIN} → Dynamiq API

First registered user gains Admin rights.

13 – Upgrade Workflow

Provided each component runs ≥ 2 replicas, OpenShift performs zero-downtime rolling updates.

14 – Cleanup

15 – Appendix A – values-ocp.yaml Reference

Key
Description
Required

dynamiq.domain

Base public domain

nexus.appSecret

Secret created in §9

*_image.repository

ECR path

STORAGE_SERVICE

s3, minio, or odf

Need help? Reach out to us - [email protected]

Happy shipping Dynamiq on OpenShift! 🚀

PreviousIBMNextSupport Center

Last updated