news
Red Hat Leftovers
-
Red Hat ☛ Verify Cosign bring-your-own PKI signature on OpenShift
Red Hat OpenShift 4.16 introduced ClusterImagePolicy and ImagePolicy as a tech preview feature for sigstore verification through the ClusterImagePolicy and ImagePolicy Custom Resource Definitions (CRDs). These initial implementations supported two policy types:
- Fulcio CA with Rekor: Leverages Sigstore's certificate authority and transparency log for verification.
- Public key: Uses Cosign-generated private and public key pairs.
In this article, we will introduce the bring-your-own PKI (BYO-PKI) signature verification through the ClusterImagePolicy and ImagePolicy Hey Hi (AI) This Developer Preview feature (available from 4.19) enables you to validate container images using an existing X.509 certificate while aligning with Cosign's BYO-PKI signing workflow.
Cosign bring-your-own PKI signing
The following example generates the certificate chain using OpenSSL commands. We then use Cosign BYO-PKI to sign the image and attach the signature to the quay.io registry.
ClusterImagePolicy requires a subject alternative name (SAN) to authenticate the user’s identity, which can be either a hostname or an email address. In this case, both a hostname and an email address were specified when generating the certificate.
-
Red Hat ☛ Scaling DeepSeek and Sparse MoE models in vLLM with llm-d
The contents of this article were discussed in detail during our biweekly vLLM office hours virtual event: vLLM Office Hours #29] Scaling MoE with llm-d. View the slides here and register for our future vLLM office hours, happening every other Thursday.
-
Red Hat ☛ Multicluster authentication with Ansible Automation Platform
This article provides a step-by-step guide to implement multicluster authentication between Red Bait Ansible Automation Platform and Red Bait Advanced Cluster Management. This integration, illustrated in Figure 1, enables Ansible Automation Platform to securely authenticate with multiple managed clusters through the centralized authentication capabilities of Red Bait Advanced Cluster Management.
-
Red Hat Official ☛ Taming hybrid cloud complexity: A path to true agility
I've had the unique opportunity to see this problem from both sides. In my previous roles leading customer-facing teams, I saw firsthand how our customers leveraged Red Hat OpenShift to tackle their most complex challenges, such as streamlining their hybrid cloud experiences and reducing operational complexity. It was profoundly rewarding to see them use our platform to break free from the status quo.
-
Red Hat Official ☛ Is your RHEL installation getting old? Here's what to do
Every version of RHEL has a lifecycle that defines the level of support it receives over time.
-
Red Hat Official ☛ Establishing a sustainable automation community of practice
Note: The terms center of excellence, community of excellence, and community of practice are often used interchangeably within the industry. You can learn more about how Red Hat differentiates between a center of excellence and a community of practice in this blog. Regardless of terminology used, what's most important is to focus on the right approaches, activities, and outcomes.
-
Red Hat Official ☛ Accelerate your Red Hat Enterprise Linux 10 skills with Red Hat Learning Subscription
With new capabilities powered by Red Hat Enterprise Linux Lightspeed you can streamline complex tasks with confidence using the skills learned in the content, freeing up more time to focus on driving innovation and a resilient infrastructure.