Updating a Kubernetes Cluster

Updated

When you update a Kubernetes cluster, you can update many settings, including etcd backups, roles and permissions, and access nodes.

After you add a cluster to Commvault, you cannot modify the Kubernetes API server URL. To modify the URL, delete the cluster from Commvault, and then add it again.

Go to the Cluster

  1. From the navigation pane, go to Protect > Kubernetes.

    The Applications page appears.

  2. On the Clusters tab, click the cluster.

    The cluster page appears.

Modify the Service Account or Service Account Token

  1. On the Overview tab, in the upper-right area of the General section, click Edit.

    The Edit cluster details dialog box appears.

  2. Modify the service account or service account token.

  3. Click Save.

Commvault validates the service account and service account token with one of the access nodes that is configured for the cluster. If the access node cannot authenticate with the provided credentials, an error occurs and the changes are not saved.

Modify the Workload Region

The workload region determines where the backups are stored and replicated, based on the location of the Kubernetes cluster and applications.

  • In the lower-right area of the General section, click Edit, and then select the region where the cluster is physically located.

Disable Backups, Temporarily or Indefinitely

When backups are disabled, the cluster is not included in SLA calculations.

You can also disable backups for individual application groups and applications.

  1. On the Configuration tab, in the Activity control section, move the Data backup toggle key to the left.

    An Enable after a delay link appears.

  2. To enable backups again after a delay, click the Enable after a delay link, and then enter the amount of time to delay.

Disable Restores, Temporarily or Indefinitely

If you disable restores, applications and other data cannot be restored.

You can also disable restores for individual applications (but not for application groups).

Note: Disabling restores does not prevent the administrator from attempting a restore, but the restore fails with a "Data activity disabled for client" message.

  1. On the Configuration tab, in the Activity control section, move the Data restores toggle key to the left.

    An Enable after a delay link appears.

  2. To enable restores again after a delay, click the Enable after a delay link, and then enter the amount of time to delay.

Enable etcd Backups

For detailed information about etcd backups, see Enabling Kubernetes etcd Key Value Store Backups.

  1. On the Configuration tab, in the etcd protection section, move the etcd protection toggle key to the right.

    The etcd protection backup plan dialog box appears.

  2. From the Plan list, select the server plan to use for the etcd (system generated) application group that the Commvault software will create to protect etcd.

  3. Click Save.

Modify the Access Nodes

  • On the Configuration tab, in the Access node section, click Edit, and then select the access nodes or access node groups to use for the cluster.

Assign Roles to Users or User Groups

To allow a user or user group to perform data management operations on a cluster, create a security association between the user or user group and one of the following pre-defined roles:

  • View: Provide read-only access to application group configuration, job history, and reporting data

  • VM End User: Provide self-service backup, recover both in-place and out-of-place

Procedure

  1. On the Configuration tab, in the Security section, click Edit.

    The Security dialog box appears.

  2. On the Associations tab, enter the name of the user or user group, select the role to assign, and then click Add.

  3. Click Save.

Assign Owners and Permissions

In multi-tenanted environments, you can assign an end user to be an owner for individual containerized applications, and then the owner can log on to their applications to perform backup, recovery, and reporting.

Procedure

  1. On the Configuration tab, in the Security section, click Edit.

    The Security dialog box appears.

  2. On the Owners tab, enter the name of the user or user group to assign as an owner.

  3. Under Permissions, select the permissions to give to the owner.

  4. Click Save.

For more information about permissions, see User Permissions for Kubernetes Operations.

Modify the Tags

You can create and apply tags to cluster. A tag is a key and an optional value that you can use to categorize clusters. Tags are useful for managing and reporting in large environments.

Note: On the Clusters page, the Tags column shows "No tags", even for clusters that have tags. To view the tags for a cluster, go to the cluster properties page. This is a known issue.

Before You Begin

You must have the Tag Management permission.

Procedure

  1. On Configuration tab, in the Tags section, click Edit.

    The Manage tags dialog box appears.

  2. In Tag name, enter a name for the tag.

  3. To assign a value, in Tag value, enter the value.

  4. Click Save.