DevSecOps with disconnected Red Hat OpenShift

MITRE and Red Hat Consulting worked together with the U.S. Air Force Program Management Office to develop a system that fulfills the mission requirements of a containerized DevSecOps platform. Using an Infrastructure-as-Code model, the team was able to produce a self-contained, bootable DVD that automates the installation of Red Hat OpenShift Container Platform and related components, with the following characteristics:

-Dev—Replicable, consistent runtime environment across multiple sites. Extends native deployment pipeline functionality to support development through production via air-gapped, secure environments.

-Sec—Secured out of the box via automation and hardening tools to comply with U.S. Government security baselines, STIG, and FIPS requirements via OpenSCAP and Red Hat Ansible Automation. STIG-compliant reference configurations for Red Hat JBoss EAP, Red Hat JBoss AMQ, and PostgreSQL.

-Ops—Fully autonomous installation of Red Hat OpenShift, Red Hat CloudForms, container-native storage with Red Hat Gluster Storage, and Red Hat Enterprise Linux into a bare metal or virtual environment.

  • Date:Wednesday, May 9
  • Time:4:30 PM - 5:15 PM
  • Room:207
  • Location:Moscone South - 207
  • Session Type:Panel
  • Session Code:P1757
  • Technical difficulty:Working knowledge required
  • Best for people who:Manage infrastructure, Design application/system architectures
  • Topic(s):Containers, Infrastructure modernization and optimization, Security
  • Primary solution:Cloud computing
  • Industry:Public Sector or Government
  • Session Includes:Demo, Red Hat customer implementation, Red Hat Services (consulting‚ training‚ certifications)
  • Products and Services:Red Hat OpenShift Container Platform, Red Hat Ansible Automation, Red Hat Consulting
  • Time slot:Afternoon
  • Trail maps:Security
Mike Battles
Red Hat
Stuart Bain
Red Hat
Jeremy Sontag
Red Hat
Christopher Grimm
Red Hat
Cameron Wyatt
Red Hat