红帽全球峰会此内容没有您所选择的语言版本。
Chapter 2. Deploy the Red Hat Offline Knowledge Portal on your network
Deploy the Red Hat Offline Knowledge Portal on your on-premise private network or offline network so that you can share the Red Hat information library with multiple users.
You must connect to the internet to download the Red Hat Offline Knowledge Portal container image and obtain your access key. Then, if you are deploying the Red Hat Offline Knowledge Portal on an offline network, you can transfer the image to your disconnected environment by using the secure methods specified by your organization.
Prerequisites
-
An
x86_64oraarch64hardware platform. - Your Customer Portal, Red Hat Developer, or registry service account credentials. To create a registry service account, go to the Registry Service Account page.
- An active Red Hat Satellite subscription. A Red Hat Satellite subscription is required to access the Red Hat Offline Knowledge Portal. The Red Hat Offline Knowledge Portal is included as part of a Red Hat Satellite subscription at no additional cost. However, you do not need to deploy the Red Hat Offline Knowledge Portal on the Red Hat Satellite server and you do not need to deploy Red Hat Satellite to use the Red Hat Offline Knowledge Portal. For information, see the Red Hat Satellite product page.
- Internet access to download the Red Hat Offline Knowledge Portal image. Internet access is not needed to access the Red Hat Offline Knowledge Portal after it is deployed.
- An open container initiative (OCI) runtime tool to deploy the Red Hat Offline Knowledge Portal. Podman is the OCI tool developed by Red Hat engineers and used in this procedure. For information about installing podman, see the Podman website.
One or more pods that meet the minimum requirements:
Expand Resources per pod CPU Memory Disk Minimum
1 core
1 GB
50 GB
Recommended
2 core
2 GB
75 GB
Procedure
Use Podman to download the Red Hat Offline Knowledge Portal:
Enter the following command in a terminal and use your Customer Portal, Red Hat Developer, or registry service account credentials to log in to
registry.redhat.io:podman login registry.redhat.io username: <username> Password: <password>
$ podman login registry.redhat.io username: <username> Password: <password>Copy to Clipboard Copied! Toggle word wrap Toggle overflow where:
- <username>
- Specifies your Customer Portal, Red Hat Developer, or registry service account user name.
- <password>
- Specifies your Customer Portal, Red Hat Developer, or registry service account password.
Download the Red Hat Offline Knowledge Portal image:
podman pull registry.redhat.io/offline-knowledge-portal/rhokp-rhel9:latest
$ podman pull registry.redhat.io/offline-knowledge-portal/rhokp-rhel9:latestCopy to Clipboard Copied! Toggle word wrap Toggle overflow
If you are deploying the Red Hat Offline Knowledge Portal on an offline network, complete the following steps:
To convert the image to a file that you can transfer to your offline environment, save the image to a TAR file:
podman save --format oci-archive -o rhokp.tar rhokp-rhel9:latest
podman save --format oci-archive -o rhokp.tar rhokp-rhel9:latestCopy to Clipboard Copied! Toggle word wrap Toggle overflow -
Use a method approved by your organization to transfer the
rhokp.tarfile to your offline environment. To load the image in your offline environment, enter the following command:
podman load -i rhokp.tar
podman load -i rhokp.tarCopy to Clipboard Copied! Toggle word wrap Toggle overflow
Optional: To use your own SSL/TLS certificates, you must create a local
httpd-ssl/directory to store your certificates:ImportantThe Red Hat Offline Knowledge Portal reverts to the default SSL/TLS key pair if it cannot detect the certificate files.
httpd-ssl/ ├── certs │ └── <cert_filename>.pem └── private └── <key_filename>.pem
httpd-ssl/ ├── certs │ └── <cert_filename>.pem └── private └── <key_filename>.pemCopy to Clipboard Copied! Toggle word wrap Toggle overflow where:
<cert_filename>- Specifies the name of your SSL/TLS certificate.
<key_filename>Specifies the SSL/TLS key.
The
httpd-ssldirectory name must be exact. Your cert and key filenames must have a.pemextension.For more information about using SSL certificates, see the Appache httpd 2.4 page in the RedHat catalog.
Get your Red Hat Offline Knowledge Portal access key:
- Navigate to the Red Hat Offline Knowledge Portal Access Key Generator page, click Generate key, and then copy the key to your clipboard. After you generate your access key, the key is stored in your Red Hat account.
- Optional: If you need the key again, click Generate Key to display the previously generated key.
- Optional: If your access key is compromised, report a bug to unbind your access key so you can generate a new one.
To launch the Red Hat Offline Knowledge Portal with Podman, enter the following command:
podman run --rm -p 8080:8080 -p 8443:8443 \ -v ./httpd-ssl:/opt/app-root/httpd-ssl:Z \ --env "ACCESS_KEY=<your_personal_access_key>" \ -d registry.redhat.io/offline-knowledge-portal/rhokp-rhel9:latest
$ podman run --rm -p 8080:8080 -p 8443:8443 \ -v ./httpd-ssl:/opt/app-root/httpd-ssl:Z \ --env "ACCESS_KEY=<your_personal_access_key>" \ -d registry.redhat.io/offline-knowledge-portal/rhokp-rhel9:latestCopy to Clipboard Copied! Toggle word wrap Toggle overflow where:
<your_personal_access_key>Specifies the access key that you generated in the previous step. The
podman runcommand includes your access key. Without the correct access key, you cannot view encrypted content or use certain features, such as search.If you are using your own SSL/TLS certificates instead of the default,
-v ./httpd-ssl:/opt/app-root/httpd-ssl:Z \mounts a volume for the SSL/TLS certificates in your localhttpd-ssl/directory.The container should start after 30 seconds.
Verification
On a remote system with a web browser, enter
http://<server-ip-address>:8080orhttps://<server-ip-address>:8443.where:
<server-ip-address>- Specifies the IP address of your server.
To review the Podman container log, enter the following command:
podman logs <container>
$ podman logs <container>Copy to Clipboard Copied! Toggle word wrap Toggle overflow where:
- <container>
- Specifies the name of your Red Hat Offline Knowledge Portal container image.
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}