Skip to main content

KubeOps PLATFORM

Optimum security and flexibility for the modern management of your Kubernetes clusters.

Request a demo

Maximum security and compliance for KRITIS applications

KubeOps PLATFORM is the solution for demanding applications in critical infrastructure areas (KRITIS) and places the highest value on security and data protection standards. Specially designed for the efficient provision, management and scaling of Kubernetes clusters, it strictly complies with GDPR regulations as well as ISO 27001 and ITIL requirements. With this strong focus on security and compliance, KubeOps positions itself as the preferred choice for use in sensitive and critical environments.

KubeOps PLATFORM is committed to providing the best Kubernetes solution on the market with continuous updates, improvements and support. 

Documentation for PLATFORM

Please allow the connection to YouTube to watch the video.

Allow connection

Digital sovereignty redefined -
The KubeOps PLATFORM

Stay confident and flexible with the KubeOps PLATFORM. Maximum control over your IT infrastructure without compromise

Secure and legally compliant

The KubeOps PLATFORM ensures that applications are operated unchanged. The PLATFORM is highly available and scalable. Regardless of whether you operate your infrastructure on-premises, in the cloud or in hybrid scenarios - your applications are operated securely and in compliance with the law.

Independent and secure standards

Our sovereign solution avoids dependencies on proprietary technologies and providers. PLATFORM is based on open standards and offers you the flexibility to relocate workloads as required.

Flexible and efficient

Workloads can be moved seamlessly between different environments to dynamically adapt to business requirements. This not only increases efficiency, but also reduces potential risks.

data protection compliant

By complying with standards such as GDPR (DSGVO), ISO 27001 and NIS2, you remain legally protected. PLATFORM ensures that your IT infrastructure meets the highest data protection and security requirements.

Robust security architecture

Benefit from a robust security architecture that actively detects and fends off threats and makes your IT infrastructure future-proof.

European flags waving in front of a modern building, alongside a cloud security icon with a lock.

Simplifying Secure K8s Clusters

deployment, management and scaling

KubeOps Platform involves all the activities required to run, manage and maintain Kubernetes clusters in production environments, including our best practices, self-deployed tools and strategies. 

high level security

KubeOps Platform sets up your clusters with a strong focus on security. These clusters can be audited by the German Federal Office for Information Security (BSI).

Our managed service solutions

We also take care of the operational aspects of your cluster and offer managed service solutions if required.

The image shows the user interface of the KubeOps dashboard, which displays the details of the namespaces of a Kubernetes cluster. On the left-hand side, there is a navigation bar with various menu items such as “Cluster”, “Workloads”, “Storage”, “Network”, “Security” and “Configuration”. In the main area, the namespaces are listed with their names, the status “Active” and their age, which is given in months. All namespaces shown, including “sina”, “web”, “docker”, “hugo”, “harbor”, “gatekeeper-system”, “kubeops” and “logging” are active. The age ranges from one to two months. The layout is clean and clear with a light blue background. Translated with DeepL.com (free version)



















User können im KubeOps Dashboard Namespaces überblicken und verwalten.

The image shows a screenshot of the KubeOps dashboard, in which the “Nodes” section of a Kubernetes cluster is displayed. The left sidebar highlights the “Nodes” menu item, above and below which other items such as “Namespaces”, “CRDs”, “Workloads”, “Storage”, “Network”, “Security” and “Configuration” are listed. The Kubernetes nodes are listed in the main window, with columns for “Name”, “Ready” status, “CPU” resources, “Memory” usage and “Age” of the node. Each node is marked “Yes” in the “Ready” column, indicating that they are operational, with a CPU resource usage of 8000m and a memory of 15.4Gi. The age of all nodes listed is 2 months. The user interface has a clean, modern design with a blue and white color scheme. Translated with DeepL.com (free version)



















User können den Zustand und die Leistung der Cluster-Knoten überwachen und verwalten.

The image shows a user interface of the KubeOps dashboard displaying details of a deployment called “prometheus-grafana”. On the left-hand side is a navigation bar with various menu items such as “Cluster”, “Workloads”, “Storage”, “Network”, “Security” and “Configuration”. The main window shows the name of the deployment, the namespace 'kubeops', the creation timestamp, labels, annotations, the strategy type 'RollingUpdate', the selector and details about the replicas showing a desired, ready, current, available and the total number of replicas. The interface has a dark theme with text and icons in light colors for contrast. Translated with DeepL.com (free version)



















Detailansicht eines Prometheus-Grafana Deployments im KubeOps Dashboard.

Dashboard of the KubeOps platform with cluster overview, CPU and memory consumption display and a pod utilization of 100%. Navigation on the left-hand side with categories such as workloads, storage, network and security.



















Bearbeitung der Deployment-Konfiguration im KubeOps Dashboard.

Illustration of the KubeOps Platform with categorized Kubernetes tools and services, including networking, containerization and supporting technologies such as Open Policy Agent, Helm, Kubernetes and NGINX Ingress, supported by technologies such as Red Hat and FirewallD.
The image is a screenshot of a text editor displaying a YAML configuration file for KubeOps. It includes settings for the API version, image download policy, local registry, cluster name, users, Kubernetes version, master IP, paths for Lima and KubeOps roots, and a temporary directory. In addition, two zones with node configurations for master and worker are described in detail, including names, IP addresses, user names, system CPU and memory resources, Kubernetes version and status. The text is presented in a classic programming environment with line numbers, and the configuration data is clearly laid out for easy reading and editing.



















Kubeopsctl ermöglicht die effiziente Verwaltung und Automatisierung von Clustern.

The image is a screenshot of the Ceph storage management dashboard. The dashboard shows various metrics and status information related to the storage cluster. The “Status” section includes a “Cluster Status” showing a health warning, “Managers” with one active and one in standby, “Hosts” with a total of three, “Monitors” with three in quorum, “OSDs” showing three as active and mounted, and “Object Gateways” and “iSCSI Gateways” each showing zero total. Under “Capacity” there is a display that shows the “Raw Capacity” with 4.34% utilization of 300 GiB. “Objects” and ‘PG Status’ are represented by circular progress bars and show 5.1 thousand objects and 81 placement groups. The “Performance” section shows “Client Read/Write” and “Client Throughput” with activity graphs, while “Recovery Throughput” is zero and “Scrubbing” is inactive. The user interface is clean with a bright background, and data visualizations provide a quick overview of the health and performance of the system.



















Durch das ceph Dashboard können die Vorgänge und die Auslastung beobachtet werden.

The image is a screenshot of the Ceph dashboard with a focus on the “Monitors” section. The left sidebar shows navigation options including 'Dashboard', 'Clusters' and other management categories such as 'Hosts', 'Physical Drives' and 'Monitors'. The main content is divided into two sections: “Status” on the left, where 'Cluster ID', 'monmap modified', 'monmap epoch', 'quorum con', 'quorum mon', 'required con' and 'required mon' are listed with their respective values and status details. On the right are two tables: 'In Quorum', which lists the monitors named 'a', 'b' and 'c' along with their ranks, public addresses and open sessions, and 'Not In Quorum', which is empty. The user interface is clean with a bright background, and the information is presented in a well-organized, tabular format.



















Ceph Monitors ermöglicht die Überwachung der Verfügbarkeit und Gesundheit der Cluster.

Harbor dashboard with the 'kubeops' project and an overview of container image repositories. Display of memory consumption with 19.43 GiB of 100 GiB. Left-side navigation with categories such as projects, logs and administration



















Harbor Logs zum Debuggen, Überwachen und Sicherstellen der Compliance.

Keycloak user management with a list of test user accounts. The users have e-mail addresses under the domain kubeops.net. Left-sided navigation with categories such as clients, realm roles, users and authentication.



















Keycloak als Identity-Management-System und zentraler Zugriff auf Dashboards.

The image shows a screenshot of the start page of OpenSearch Dashboards. The user interface includes a navigation menu on the left-hand side with sections for “Recently viewed”, “OpenSearch Dashboards” and “Observability”. Below this is a section for “OpenSearch Plugins” with various options such as “Query Workbench”, “Reporting”, “Alerting” and more. The main content shows three boxes: one for “OpenSearch Dashboards” with a subtext about data analysis, a second box to add sample data to get started with data, visualizations and dashboards, and a third box that provides an option to interact with the OpenSearch API. The design is clean with a white and light blue color scheme, and at the top of the page is a search bar, home button, and access to the user account.



















Das OpenSearch Dashboard ermöglicht es Usern, Daten zu visualisieren und zu analysieren.

Grafana dashboard for monitoring a Kubernetes cluster with metrics for CPU and memory usage. Shows CPU utilization, memory usage and limits for different namespaces. Left-side navigation with areas such as dashboards, administration and plugins.



















Anzeigen von Downtimes und Einrichtung von Alarmings mit Grafana.

The image is a screenshot of the Prometheus web interface. It shows a query bar with options such as “Use local time”, “Enable query history”, “Enable autocomplete”, “Enable highlighting” and “Enable linter”. The interface is predominantly dark with an input field for queries labeled “Expression (press Shift+Enter for newlines)” and buttons for “Table” and “Graph” views. There is a “No data queried yet” message and an “Add Panel” button. The top navigation bar contains tabs for “Alerts”, “Graph”, “Status” and “Help”. The overall layout is clean and functional, designed for entering and analyzing data queries in Prometheus.



















Monitoring und Alarmierung von Kubernetes-Clustern durch Prometheus.

Graphic of the KubeOps Platform with the message 'Runs Everywhere!' showcasing deployment possibilities across various providers including Azure, Google, Any Provider, Hosted VM, and On-Premises.

KubeOps PLATFORM runs everywhere

KubeOps PLATFORM only requires a clean OS installation for its nodes to create and operate clusters through there complete life-cycle. KubeOps PLATFORM brings production ready K8s to all hypervisors and bare metal!

public cloud

IT infrastructure and services are accessible via internet.

private cloud

An exclusive cloud infrastructure available only to one organization, featuring enhanced security and control over data.

on-premise

Kubernetes clusters are deployed on company-owned servers, e.g. in their own data centers.

Features and tools of the PLATFORM

The included features and tools are designed to simplify the deployment, management and scaling of Kubernetes clusters with a focus on high level security.

automatic setup

Repeatable and easy setup allows you to manage your clusters with infrastructure as code. Build your KubeOps PLATFORM cluster from the OS layer with everything you need and configured however you like.

backup and restore

A complete backup solution is a must have for operating a stateful infrastructure. Enables all the Kubernetes objects you rely on to be securely stored in an object store of your choice.

Calico

cert manager

containerd

fileBeat

Firewall

Grafana

Harbor

Helm

high availability

Ensuring continuous operations is one of our highest goals. Kubernetes is an amazing starting point for high availability, but still leaves some single points of failure. We address these issues, like remote image registries and standalone load balancers, with custom peer-to-peer systems, and integrated failure zones, to enable zero downtime maintenance. This allows for all your infrastructure to be as reliable as possible.

integrated storage

Most real-world applications require persistent storage that is fast and reliable. Integrated storage allows us to provide a fantastic cloud native storage solution out of the box. Production ready management for file, block and object storage with the flick of a switch.

K8s

Kubeadm

KubeOps KOSI

logging and monitoring

KubeOps PLATFORM gives you the capability to centralize all relevant information about your infrastructure and application. Monitoring them continuously and alerting you, however you choose.

Logstash

multi networking

The capability to deploy multiple networks side by side in the same cluster allows for increased security measures and simple zero downtime migration to other network plugins.

Multus

NFTables

nginx

Open Policy Agent

OpenSearch

Podman

policy enforcement

Your infrastructure, your rules. Limit, modify and enhance all changes to your cloud with state-of-the-art policy enforcement. 

Prometheus

Red hat

Rook

secured supply chain

Sourcing Software for your infrastructure is a critical attack surface. KubeOps PLATFORM binds your application into repeatable transferable artefacts. Stage from your laptop till production without worrying about the images you need to power your applications. Wherever you move they follow.

security

All products we provide undergo a multistage security examination. And are continuously monitored for the latest vulnerabilities. Most publicly available packages contain critical vulnerabilities that endanger your systems of not removed before integrating them. The platform has the capability to be installed in a highly secured isolated environment (Air Gap).

Trivy

Velero