Powered by Algolia

    Deploying OpenIAM on Kubernetes using Helm

    This guide describes how to deploy OpenIAM to a private (not AWS, GKE) Kubernetes cluster via Helm, but without Terraform. This type of deployment is not recommended due to the number of Helm variables.

    If you are deploying to AWS or GKE, please use Terraform!

    Prerequisites

    First, run the following command to ensure that configmaps are created correctly. You only need to do this once, or when the underlying files change.

    mkdir -p openiam-configmap/.ssl && mkdir -p openiam-configmap/.apache && cp -r .ssl/* openiam-configmap/.ssl/ && cp -r .apache/* openiam-configmap/.apache/

    Deploying

    We provide a working example of how to deploy OpenIAM via Helm. Please see setup-no-tf.sh. This contains all the required values for each helm chart that we deploy.

    Migration guide

    Versions pre-4.2.1 to 4.2.1

    We've updated our vault datastore in 4.2.1. To migrate, please follow the steps below.

    1. Deploy with the openiam.vault.migrate terraform variable set to true, when deploying openiam-vault and openiam.
    2. Wait for all pods to come up.
    3. Redeploy with the vault.migrate terraform variable set to false, when deploying openiam-vault and openiam.
    4. Wait for all pods to come up.
    Previous
    Deploying OpenIAM with Terraform
    Next
    RabbitMQ TLS directory