Existing openshift software hub keycloak
---
apiVersion: v1
kind: ConfigMap
metadata:
name: cloud-pak-deployer-config
namespace: cloud-pak-deployer
data:
cpd-config.yaml: |
global_config:
environment_name: sample
cloud_platform: existing-ocp
env_id: pluto-01
confirm_destroy: False
optimize_deploy: True
openshift:
- name: "{{ env_id }}"
ocp_version: detect
cluster_name: "{{ env_id }}"
domain_name: example.com
mcg:
install: True
storage_type: storage-class
storage_class: managed-nfs-storage
gpu:
install: auto
openshift_ai:
install: auto
channel: auto
openshift_storage:
- storage_name: auto-storage
storage_type: auto
openshift_redhat_sso:
- openshift_cluster_name: "{{ env_id }}"
keycloak_name: ibm-keycloak
groups:
- name: kc-cp4d-admins
state: present
- name: kc-cp4d-data-engineers
state: present
- name: kc-cp4d-data-scientists
state: present
- name: kc-cp4d-monitors
state: present
users:
- username: ttoussaint
firstName: Tara
lastName: Toussaint
email: ttoussaint@cp.internal
state: present
groups:
- name: kc-cp4d-admins
- username: rramones
firstName: Rosa
lastName: Ramones
email: rramones@cp.internal
state: present
groups:
- name: kc-cp4d-data-engineers
- username: ssharpe
firstName: Shelly
lastName: Sharpe
email: ssharpe@cp.internal
state: present
groups:
- name: kc-cp4d-data-engineers
- name: kc-cp4d-data-scientists
- username: pprimo
firstName: Paco
lastName: Primo
email: pprimo@cp.internal
state: present
groups:
- name: kc-cp4d-data-scientists
- name: kc-cp4d-monitors
- username: rroller
firstName: Rico
lastName: Roller
email: rroller@cp.internal
# password: specific_password_for_the_user
state: present
groups:
- name: kc-cp4d-data-scientists
zen_role:
- name: cp4d-monitoring-role
description: Cloud Pak for Data monitoring role
state: installed
permissions:
- monitor_platform
zen_access_control:
- project: cpd
openshift_cluster_name: "{{ env_id }}"
keycloak_name: ibm-keycloak
user_groups:
- name: cp4d-admins
description: Cloud Pak for Data Administrators
roles:
- Administrator
keycloak_groups:
- kc-cp4d-admins
- name: cp4d-data-engineers
description: Cloud Pak for Data Data Engineers
roles:
- User
keycloak_groups:
- kc-cp4d-data-engineers
- name: cp4d-data-scientists
description: Cloud Pak for Data Data Scientists
roles:
- User
keycloak_groups:
- kc-cp4d-data-scientists
- name: cp4d-monitors
description: Cloud Pak for Data Monitoring
roles:
- cp4d-monitoring-role
keycloak_groups:
- kc-cp4d-monitors
cp4d:
- project: cpd
openshift_cluster_name: "{{ env_id }}"
cp4d_version: latest
cp4d_entitlement:
- cpd-enterprise
# - cpd-standard
# - cognos-analytics
# - data-product-hub
# - datastage
# - data-integration-unstructured-data
# - data-lineage
# - ikc-premium
# - ikc-standard
# - openpages
# - planning-analytics
# - product-master
# - speech-to-text
# - text-to-speech
# - watson-assistant
# - watson-discovery
# - watsonx-ai
# - watsonx-code-assistant-ansible
# - watsonx-code-assistant-z
# - watsonx-data
# - watsonx-gov-mm
# - watsonx-gov-rc
# - watsonx-orchestrate
cp4d_production_license: True
accept_licenses: True
db2u_limited_privileges: False
use_fs_iam: True
operators_project: cpd-operators
ibm_cert_manager: False
state: installed
cartridges:
- name: cp-foundation
scale: level_1
license_service:
threads_per_core: 2
- name: lite
- name: scheduler
state: removed
#
# All tested cartridges. To install, change the "state" property to "installed". To uninstall, change the state
# to "removed" or comment out the entire cartridge. Make sure that the "-" and properties are aligned with the lite
# cartridge; the "-" is at position 3 and the property starts at position 5.
#
# If a cartridge has dependencies and you want to install it, you must ensure that the dependent cartridge is also
# installed.
#
- name: analyticsengine
description: Analytics Engine Powered by Apache Spark
size: small
state: removed
installation_options:
sparkAdvEnabled: true
jobAutoDeleteEnabled: true
kernelCullTime: 30
imagePullParallelism: "40"
imagePullCompletions: "20"
kernelCleanupSchedule: "*/30 * * * *"
jobCleanupSchedule: "*/30 * * * *"
skipSelinuxRelabeling: false
mountCustomizationsFromCchome: false
maxDriverCpuCores: 5
maxExecutorCpuCores: 5
maxDriveMemory: "50g"
maxExecutorMemory: "50g"
maxNumWorkers: 50
localDirScaleFactor: 10
- name: bigsql
description: Db2 Big SQL
state: removed
- name: ca
description: Cognos Analytics
size: small
instances:
- name: ca-instance
metastore_ref: ca-metastore
state: removed
- name: dashboard
description: Cognos Dashboards
state: removed
- name: datagate
description: Db2 Data Gate
state: removed
- name: datalineage
description: IBM MANTA Data Lineage
size: small
state: removed
- name: dataproduct
description: Data Product Hub
state: removed
- name: datastage-ent
description: DataStage Enterprise
state: removed
- name: datastage-ent-plus
description: DataStage Enterprise Plus
state: removed
# instances:
# - name: ds-instance
# # Optional settings
# description: "datastage ds-instance"
# size: medium
# storage_class: efs-nfs-client
# storage_size_gb: 60
# # Custom Scale options
# scale_px_runtime:
# replicas: 2
# cpu_request: 500m
# cpu_limit: 2
# memory_request: 2Gi
# memory_limit: 4Gi
# scale_px_compute:
# replicas: 2
# cpu_request: 1
# cpu_limit: 3
# memory_request: 4Gi
# memory_limit: 12Gi
- name: db2
description: Db2 OLTP
size: small
instances:
- name: ca-metastore
metadata_size_gb: 20
data_size_gb: 20
backup_size_gb: 20
transactionlog_size_gb: 20
state: removed
- name: db2wh
description: Db2 Warehouse
state: removed
- name: dmc
description: Db2 Data Management Console
state: removed
instances:
- name: data-management-console
description: Data Management Console
size: medium
storage_size_gb: 50
- name: dods
description: Decision Optimization
size: small
state: removed
- name: dp
description: Data Privacy
size: small
state: removed
- name: dpra
description: Data Privacy Risk Assessment
state: removed
- name: dv
description: Data Virtualization
size: small
instances:
- name: data-virtualization
state: removed
# Please note that for EDB Postgress, a secret edb-postgres-license-key must be created in the vault
# before deploying
- name: edb_cp4d
description: EDB Postgres
state: removed
instances:
- name: instance1
version: "15.4"
#type: Standard
#members: 1
#size_gb: 50
#resource_request_cpu: 1
#resource_request_memory: 4Gi
#resource_limit_cpu: 1
#resource_limit_memory: 4Gi
- name: factsheet
description: AI Factsheets
size: small
state: removed
- name: hee
description: Execution Engine for Apache Hadoop
size: small
state: removed
- name: mantaflow
description: MANTA Automated Lineage
size: small
state: removed
- name: match360
description: IBM Match 360
size: small
wkc_enabled: true
state: removed
- name: mongodb
description: MongoDB for Cloud Pak for Data
state: removed
- name: openpages
description: OpenPages
state: removed
- name: planning-analytics
description: Planning Analytics
state: removed
instances:
- name: pa-instance
size: small
mysql_size_gb: 20
couchdb_size_gb: 20
mongo_size_gb: 20
redis_size_gb: 20
- name: replication
description: Data Replication
size: small
state: removed
installation_options:
replication_license_type: IDRC
- name: rstudio
description: RStudio Server with R 3.6
size: small
state: removed
- name: spss
description: SPSS Modeler
state: removed
- name: streamsets
description: IBM StreamSets
state: removed
- name: syntheticdata
description: Synthetic Data Generator
state: removed
- name: voice-gateway
description: Voice Gateway
replicas: 1
state: removed
# In case watsonx Orchestrate is installed, Watson Assistant should not be explicitly set to installed
- name: watson-assistant
description: Watson Assistant
size: small
# noobaa_account_secret: noobaa-admin
# noobaa_cert_secret: noobaa-s3-serving-cert
state: removed
# instances:
# - name: wa-instance
# description: "Watson Assistant instance"
installation_options:
size: Production
bigpv: false
analytics: true
watsonxAiType: embedded
syomModels: []
ootbModels: []
- name: watson-discovery
description: Watson Discovery
# noobaa_account_secret: noobaa-admin
# noobaa_cert_secret: noobaa-s3-serving-cert
state: removed
instances:
- name: wd-instance
description: "Watson Discovery instance"
installation_options:
discovery_deployment_type: Production
- name: watson-openscale
description: Watson OpenScale
size: small
state: removed
- name: watson-speech
description: Watson Speech (STT and TTS)
stt_size: xsmall
tts_size: xsmall
# noobaa_account_secret: noobaa-admin
# noobaa_cert_secret: noobaa-s3-serving-cert
state: removed
installation_options:
tags:
sttRuntime: true
sttAsync: false
sttCustomization: false
ttsRuntime: true
ttsCustomization: false
scaleConfig:
stt:
size: xsmall
tts:
size: xsmall
sttModels:
- enUsBroadbandModel
- enUsNarrowbandModel
- enUsShortFormNarrowbandModel
- enUsTelephony
- enUsMultimedia
ttsVoices:
- enUSAllisonV3Voice
- enUSLisaV3Voice
- enUSMichaelV3Voice
- name: watsonx_ai
description: watsonx.ai
state: removed
installation_options:
tuning_disabled: true
liteInstall: false
models:
- model_id: allam-1-13b-instruct
state: removed
# model_install_parameters can be used for sharding and node pinning according to
# instructions at https://www.ibm.com/docs/en/software-hub/5.3.x?topic=setup-adding-foundation-models
#model_install_parameters:
# shards: 2
# nodeSelector:
# kubernetes.io/hostname: hostname
- model_id: codellama-codellama-34b-instruct-hf
state: removed
- model_id: codestral-2501
state: removed
- model_id: codestral-2508
state: removed
- model_id: codestral-22b
state: removed
- model_id: devstral-medium-2507
state: removed
- model_id: google-flan-t5-xl
state: removed
- model_id: gpt-oss-20b
state: removed
- model_id: gpt-oss-120b
state: removed
- model_id: granite-4-h-micro
state: removed
- model_id: granite-4-h-tiny
state: removed
- model_id: granite-4-h-small
state: removed
- model_id: ibm-granite-13b-instruct-v2
state: removed
- model_id: granite-3-2-8b-instruct
state: removed
- model_id: granite-3-3-8b-instruct
state: removed
- model_id: granite-3-2b-instruct
state: removed
- model_id: granite-3-8b-instruct
state: removed
- model_id: granite-guardian-3-2b
state: removed
- model_id: granite-guardian-3-8b
state: removed
- model_id: granite-guardian-3-2-5b
state: removed
- model_id: granite-3b-code-instruct
state: removed
- model_id: granite-8b-code-instruct
state: removed
- model_id: granite-20b-code-instruct
state: removed
- model_id: granite-20b-code-base-schema-linking
state: removed
- model_id: granite-20b-code-base-sql-gen
state: removed
- model_id: granite-34b-code-instruct
state: removed
- model_id: granite-docling-258M
state: removed
- model_id: granite-vision-3-2-2b
state: removed
- model_id: granite-vision-3-3-2b
state: removed
- model_id: ibm-defense-3-3-8b-instruct
state: removed
- model_id: ibm-defense-4-0-micro
state: removed
- model_id: core42-jais-13b-chat
state: removed
- model_id: llama-3-2-1b-instruct
state: removed
- model_id: llama-4-maverick-17b-128e-instruct-fp8
state: removed
- model_id: llama-4-maverick-17b-128e-instruct-int4
state: removed
- model_id: llama-4-scout-17b-16e-instruct
state: removed
- model_id: llama-4-scout-17b-16e-instruct-int4
state: removed
- model_id: llama-3-3-70b-instruct
state: removed
- model_id: llama-3-2-1b-instruct
state: removed
- model_id: llama-3-2-3b-instruct
state: removed
- model_id: llama-3-2-11b-vision-instruct
state: removed
- model_id: llama-3-2-90b-vision-instruct
state: removed
- model_id: llama-guard-3-11b-vision
state: removed
- model_id: llama-3-1-8b-instruct
state: removed
- model_id: llama-3-1-70b-instruct
state: removed
- model_id: ministral-8b-instruct
state: removed
- model_id: mistral-small-3-2-24b-instruct-2506
state: removed
- model_id: mistral-small-3-1-24b-instruct-2503
state: removed
- model_id: mistral-medium-2505
state: removed
- model_id: mistral-medium-2508
state: removed
- model_id: mistral-large-instruct-2411
state: removed
- model_id: pixtral-large-instruct
state: removed
- model_id: voxtral-small-2507
state: removed
# Embedding models
- model_id: all-minilm-l6-v2
state: removed
- model_id: all-minilm-l12-v2
state: removed
- model_id: granite-embedding-107m-multilingual
state: removed
- model_id: granite-embedding-278m-multilingual
state: removed
- model_id: granite-embedding-english-reranker-r2
state: removed
- model_id: multilingual-e5-large
state: removed
- model_id: ibm-slate-30m-english-rtrvr
state: removed
- model_id: ibm-slate-125m-english-rtrvr
state: removed
- model_id: ms-marco-minilm-l-12-v2
state: removed
- name: watsonx_data
description: watsonx.data
state: removed
- name: watsonx_dataintegration
description: watsonx.data integration
state: removed
installation_options:
enableBatchBulkETL: true
enableRealtimeStreaming: true
enableDataObservability: true
enableUnstructuredDataIntegration: true
enableReplication: true
- name: watsonx_dataintelligence
description: watsonx.data intelligence
state: removed
installation_options:
enableAISearch: false
enableContentLinkingForTextToSql: false
enableDataGovernanceCatalog: true
enableDataLineage: true
enableDataProduct: true
enableDataQuality: false
enableGenerativeAICapabilities: true
enableKnowledgeGraph: true
enableModelsOn: cpu
enableSemanticEmbedding: false
enableSemanticEnrichment: true
enableTextToSql: false
- name: watsonx_data_premium
description: watsonx.data Premium
state: removed
- name: watsonx_governance
description: watsonx.governance
state: removed
installation_options:
installType: all
enableFactsheet: true
enableOpenpages: true
enableOpenscale: true
- name: watsonx_orchestrate
description: watsonx.orchestrate
state: removed
instances:
- name: wxo-instance
description: "watsonx Orchestrate instance"
installation_options:
installMode: "agentic"
watsonxAI:
watsonxaiifm: true
syomModels: []
ootbModels: []
- name: wca
description: watsonx Code Assistant
installation_options:
similarity_feature:
enabled: false
rag_enabled: true
state: removed
- name: wca-ansible
description: watsonx Code Assistant for Red Hat Ansible Lightspeed
state: removed
- name: wca-z
description: watsonx Code Assistant for Z
state: removed
- name: wca-z-ce
description: watsonx Code Assistant for Z Code Explanation
state: removed
# For the IBM Knowledge Catalog, you can specify 3 editions: wkx, ikc_premium, or ikc_standard
# Choose the correct IBM Knowledge Catalog edition below
- name: wkc
description: IBM Knowledge Catalog
size: small
state: removed
installation_options:
enableKnowledgeGraph: True
enableDataQuality: True
- name: ikc_premium
description: IBM Knowledge Catalog - Premium edition
size: small
state: removed
installation_options:
enableDataQuality: False
enableKnowledgeGraph: False
useFDB: False
enableAISearch: False
enableSemanticAutomation: False
enableSemanticEnrichment: True
enableSemanticEmbedding: False
enableTextToSql: False
enableModelsOn: 'cpu'
customModelTextToSQL: granite-3-3-8b-instruct
- name: ikc_standard
description: IBM Knowledge Catalog - Standard edition
size: small
state: removed
installation_options:
enableKnowledgeGraph: False
useFDB: False
enableAISearch: False
enableSemanticAutomation: False
enableSemanticEnrichment: True
enableSemanticEmbedding: False
enableTextToSql: False
enableModelsOn: 'cpu'
customModelTextToSQL: granite-3-3-8b-instruct
- name: wml
description: Watson Machine Learning
size: small
state: removed
- name: wml-accelerator
description: Watson Machine Learning Accelerator
replicas: 1
size: small
state: removed
- name: ws
description: Watson Studio
state: removed
- name: ws-pipelines
description: Watson Studio Pipelines
state: removed
- name: ws-runtimes
description: Watson Studio Runtimes
state: removed
installation_options:
kinds:
- ibm-cpd-ws-runtime-241-pygpu
- ibm-cpd-ws-runtime-251-pygpu
- ibm-cpd-ws-runtime-241-r
- ibm-cpd-ws-runtime-251-r
#
# Cartridges where extra work is needed (will not install automatically)
#
# Product Master requires set up of the Db2 instance secret before install
- name: productmaster
description: Product Master
size: small
state: removed