Deckhouse Kubernetes Platform in Yandex Cloud
Before starting the installation, ensure you have the cloud provider quotas required to deploy your cluster.
To use ContainerdV2 as the container runtime on cluster nodes, the operating systems on virtual machines must meet the following requirements:
- Linux kernel version 5.8 or newer.
CgroupsV2support.- Systemd version
244or newer. erofskernel module support.
For more information, see the documentation.
The cloud-init package must be installed on the VMs.
After the virtual machine is started, the following services associated with this package must be started:
cloud-config.service;cloud-final.service;cloud-init.service.
The provider supports working with only one disk in the virtual machine template. Make sure the template contains only one disk.
You need to create a Yandex Cloud service account with the editor role to manage cloud resources. The detailed instructions for creating a service account with Yandex Cloud are available in the documentation. Below, we will provide a brief overview of the necessary actions:
Create a user named deckhouse. The command response will contain its parameters:
yc iam service-account create --name deckhouse
id: <userID>
folder_id: <folderID>
created_at: "YYYY-MM-DDTHH:MM:SSZ"
name: deckhouse
Assign the required roles to the newly created user for your cloud:
yc resource-manager folder add-access-binding --id <folderID> --role compute.editor --subject serviceAccount:<userID>
yc resource-manager folder add-access-binding --id <folderID> --role vpc.admin --subject serviceAccount:<userID>
yc resource-manager folder add-access-binding --id <folderID> --role load-balancer.editor --subject serviceAccount:<userID>
Create a JSON file containing the parameters for user authorization in the cloud. These parameters will be used to log in to the cloud:
yc iam key create --service-account-name deckhouse --output deckhouse-sa-key.json