Deploying SecurityServer/CP5 with NGINX Container Image into OpenShift Container Platform For Utimaco CP5

›_ Console
`# oc login -u <username> -p <password> https:// <server_ip>:6443`

Create the replicaset YAML file, which will pull the CP5 container image from Docker Hub registry using pull secret.

›_ Console
`apiVersion: apps/v1 kind: ReplicaSet metadata:` `name: cp5pod spec:` `replicas: 2 selector:` `matchLabels: app: my-app` `template: metadata:` `labels:` `app: my-app spec:` `containers:` `- name: cryptopod` `image: <Docker_Repository>/cp5image:1 imagePullPolicy: IfNotPresent command: ["/bin/bash","-c"]` `args: ["/opt/utimaco/bin/csadm Dev=<port>@<ip_address> GetHSMAuthKey >` `/tmp/HSMauth.key;export CS_AUTH_KEYS=/tmp/HSMauth.key; /usr/sbin/nginx;while true; do sleep 30; done;"]` `imagePullSecrets:` `- name: <pull_secret_name>`

›_ Console

apiVersion: apps/v1 kind: ReplicaSet metadata:

name: cp5pod spec:

replicas: 2 selector:

matchLabels: app: my-app

template: metadata:

labels:

app: my-app spec:

containers:

- name: cryptopod

image: <Docker_Repository>/cp5image:1 imagePullPolicy: IfNotPresent command: ["/bin/bash","-c"]

args: ["/opt/utimaco/bin/csadm Dev=<port>@<ip_address> GetHSMAuthKey >

/tmp/HSMauth.key;export CS_AUTH_KEYS=/tmp/HSMauth.key; /usr/sbin/nginx;while true; do sleep 30; done;"]

imagePullSecrets:

- name: <pull_secret_name>

Update the Repository, Image, Port, IP Address of HSM, and Pull Secret Name accordingly.

Deploy the replicaset yaml file. This will create the no of specified replicas of pods with NGINX running over HTTPS.

›_ Console
`# oc apply-f deploy.yaml`

›_ Console
`# oc get pods -o wide`

Pods running status