Red Hat OpenShift

A cloud-native application platform with everything you need to manage your development life cycle securely, including standardized workflows, support for multiple environments, continuous integration, and release management.

OpenShift logo

Platform overview

Developers and DevOps can quickly build, deploy, run, and manage applications anywhere, securely and at scale with the Red Hat OpenShift Container Platform. Built on Red Hat Enterprise Linux operating system and Kubernetes, Red Hat OpenShift is an enterprise-ready application platform with deployment and infrastructure options that support every application and environment.

OS product page overview platform review
Getting started

Powered by open source technologies

Kubernetes is an open-source container orchestration engine for automating the deployment, scaling, and management of containerized applications. Red Hat OpenShift provides enterprise-ready enhancements to Kubernetes, including integrated Red Hat technologies that have been tested and certified. It also promotes an open-source development model where open collaboration fosters innovation and rapid improvements.

Related resources:

Built for developer workflow

Red Hat OpenShift ships with everything you need to manage the development lifecycle, including standardized workflows, support for multiple environments, continuous integration, release management, and more. For continuous integration/continuous delivery (CI/CD), the platform needs to enable automated processes and drive software through a path of building, testing, and deploying. With options like OpenShift Pipelines, integration with your existing tools and workflows, or a combination of both, it's easy to achieve whatever level of automation desired. It’s also easy to deploy to multiple infrastructures.

Related resources:

Continuous security

Control, defend, and extend the security of Kubernetes clusters and applications running on them, with continuous checks throughout the application life cycle and automated updates at every level of the stack. Red Hat OpenShift monitors security throughout the software supply chain to make applications more stable without reducing developer productivity.

Related resources:

Red Hat OpenShift in the public cloud

Control, defend, and extend the security of Kubernetes clusters and applications running on them, with continuous checks throughout the application life cycle and automated updates at every level of the stack. Red Hat OpenShift monitors security throughout the software supply chain to make applications more stable without reducing developer productivity.

Related resource:

Red Hat OpenShift Container Platform capabilities

OpenShift Kubernetes engine

Red Hat OpenShift Kubernetes Engine delivers the foundational, security-focused capabilities of enterprise Kubernetes on Red Hat Enterprise Linux CoreOS to run containers in hybrid cloud environments. OpenShift Kubernetes Engine and OpenShift Container Platform are built on the same enterprise Kubernetes core platform and contain key Linux, container runtime, networking, management, and security capabilities. OpenShift Kubernetes Engine is ideal for those who prefer to use their existing infrastructure and developer tool investments.

Enterprise Kubernetes

Red Hat OpenShift delivers a modern, scalable approach to securing the entire application platform stack, from the operating system to containers to applications running in containers.

kubectl and OpenShift command-line interface (CLI)

Use kubectl, the native Kubernetes command-line interface (CLI) or the OpenShift CLI, to build, deploy, and manage applications–or even OpenShift Cluster itself.

Administrator web console

Use the browser-based web console to administer, visualize, browse, and manage OpenShift resources.

Red Hat OpenShift Virtualization

Red Hat OpenShift Virtualization lets you run and manage virtual machine workloads alongside container workloads. OpenShift Virtualization combines two technologies into a single management platform. This way, organizations can take advantage of the simplicity and speed of containers and Kubernetes, while still benefiting from the applications and services that have been architected for virtual machines.

Related resource:

Operator Lifecycle Manager (OLM)

Operator Lifecycle Manager (OLM) is a part of Operator Framework, an open source toolkit designed to manage Operators in an effective, automated, and scalable way. OLM helps developers install, update, and manage the lifecycle of Kubernetes native applications (Operators) and associated services running across their OpenShift Container Platform clusters.

Kubernetes cluster services

A key component of the OpenShift Kubernetes Engine is the core cluster services that automate the container application environment installations, upgrades, and life-cycle management without downtime.

Installing and Updating Clusters

OpenShift Installer is a simple, flexible, and matured command-line tool that helps with OpenShift cluster deployment on any infrastructure of your choice. OpenShift also comes with OpenShift Update Service, which provides over-the-air updates to the OpenShift platform, including Red Hat Enterprise Linux CoreOS. With the  OpenShift platform, administrators can perform cluster updates with a single operation either via the web console or the OpenShift CLI and are notified when an update is available or completed.


OpenShift Container Platform includes a preinstalled, preconfigured, and self-updating monitoring stack that provides monitoring for core platform components. Several pre-built monitoring dashboards and sets of alerts notify cluster administrators about cluster health and help to quickly troubleshoot the issues. From the OpenShift web console, admins can view and manage metrics, and alerts for the cluster and can enable monitoring for user-defined projects.


OpenShift offers full, supported access to the Kubernetes Container Network Interface (CNI), including support for any third-party software-defined networking solution that is compatible with the Red Hat OpenShift Container Platform. OpenShift includes Open vSwitch software-defined networking (SDN) and also allows you to take full advantage of the Open Virtual Network (OVN) Kubernetes overlay, Multus, and Multus plugins that are supported on OpenShift.


OpenShift Container Platform supports multiple types of storage, both for on-premise and cloud providers. You can manage container storage for persistent and non-persistent data in an OpenShift Container Platform cluster. OpenShift Container Platform uses the Kubernetes persistent volume (PV) framework to allow cluster administrators to provision persistent storage for a cluster. Developers can use persistent volume claims (PVCs) to request PV resources without having specific knowledge of the underlying storage infrastructure.

Container Registry

As a part of cluster services, OpenShift provides a built-in container image registry, an out-of-the-box solution for developers to store and manage container images that run their workloads. This internal registry can be scaled up or down like any other cluster workload without infrastructure provisioning. OpenShift registry is also integrated into the cluster's authentication and authorization system, enabling developers to have fine-grained control over container images.

Related resource:

Authentication and Authorization

OpenShift comes pre-build with central authentication and authorization services. The authentication layer identifies the user associated with requests to the OpenShift Container Platform API while the authorization layer then uses information about the requesting user to determine if the request is allowed. Administrators can define permissions and assign them to users using the RBAC objects, roles, and bindings. And can control access to thought projects, namespaces, and Security Context Constraints (SCCs).

App Management using Helm

Operators are among the most important components of the OpenShift Container Platform. Operators are the preferred method of packaging, deploying, and managing services on OpenShift. As a developer, you can install operator SDK CLI to create Go, Ansible, or Helm-based operators. The OpenShift web console can be used to select and install a chart from the Helm charts listed in the Developer Catalog, as well as add custom Helm chart repositories. The Helm CLI is integrated with the OpenShift web terminal making it easy to visualize, browse, and manage information regarding projects.


Manage workloads

Start with a complete set of services to build applications, including Red Hat OpenShift Serverless, Red Hat OpenShift Service Mesh, and Red Hat OpenShift Pipelines. These developer-friendly workflows enable developers to go straight from application code to container.

Platform services


Red Hat OpenShift Source-to-image (S2I) is a tool for building reproducible container images. It produces ready-to-run images by injecting the application source into a base container image and assembling a new image. With Source-to-image, a developer can speed up their application build process with flexibility and can also leverage a shared ecosystem of images with practices for their applications.

CI/CD pipelines

Red Hat OpenShift Pipelines is built from the open source Tekton project, enabling developers to create cloud-native, continuous integration, and continuous delivery (CI/CD) solutions on OpenShift. OpenShift Pipelines automates application deployments across multiple platforms by abstracting away the underlying implementation details. With OpenShift Pipelines developers are free to choose tools such as Source-to-Image (S2I), Buildah, Buildpacks, and Kaniko, making application deployment portable across any Kubernetes platform.


Red Hat OpenShift GitOps is built from the open source Argo CD project, enabling developers to deliver declarative configuration and continuous delivery of cloud-native applications, including code, components, and infrastructure, deployed across single or multi-cluster OpenShift and Kubernetes infrastructure using Argo CD.


Red Hat OpenShift Serverless is based on the open source project Knative which delivers Kubernetes native primitives to build event-driven microservices, containers, and compatible Function-as-a-Service capabilities on the OpenShift platform. OpenShift Serverless provides out-of-the-box traffic routing, security, and configurable capabilities to scale applications up and down based on demand.

Related resources:

Service mesh

Red Hat OpenShift Service Mesh is based on open source projects Istio, Kiali, and Jaeger and provides a uniform way to manage, connect and observe micro-services applications running on OpenShift. OpenShift Service Mesh simplifies security, traffic control, and observability to applications so that developers can focus on building things that are important to their business.

Cost visibility

Red Hat OpenShift Cost Management helps business leaders, IT managers as well as developers to effectively visualize costs aggregated across hybrid infrastructure so your business can stay on budget. Cost management understands spending habits and distributes costs into projects, organizations, and regions. It also models costs to align operations, developers, and business and make the responsible accountable.

Build cloud-native apps

Red Hat’s product development cycle has always been rooted in open source and the communities that help to steer Red Hat’s products’ direction. Like Fedora is the upstream project for Red Hat Enterprise Linux, the projects listed here are the upstream versions of products that make up the Red Hat Ansible Automation Platform.

Application services and runtimes

Languages and runtimes

Red Hat OpenShift Runtimes is a collection of runtimes and frameworks, designed and optimized to run on OpenShift and accelerate the development and delivery of business solutions. The runtime collection includes support for Quarkus, Spring Boot, Vert.x, Thorntail, and Node.js, as well as provide prescriptive architectures, design patterns, developer tools, best practices, and ready-made example applications.

Related resource: 

API management

Red Hat OpenShift API Management provides a streamlined developer experience for building, deploying, and scaling cloud-native, integrated applications. API management enables developers for API-first, microservices-based application development allowing organizations to easily reuse existing assets and create modern cloud-native applications.

Related resource: 


Red Hat Integration gives developers and DevOps the cloud-native tools needed for integrating applications and systems; including application programming interface (API) connectivity, API management and security, data transformation, service composition, service orchestration, real-time messaging, data streaming, change data capture, and cross-data center consistency.

Related resource: 


Based on Apache Kafka and Apache ActiveMQ, Red Hat AMQ equips developers with everything needed to build messaging applications that are fast, reliable, and easy to administer. AMQ Broker supports multiple protocols and fast message persistence. AMQ Interconnect leverages the AMQP protocol to distribute and scale your messaging resources across the network. AMQ Clients provides a suite of messaging APIs for multiple languages and platforms.

Related resource: 

Data-driven insights

Data Services makes data management in the hybrid cloud or multi-cloud environment simple by simplifying access to software-defined storage and data services. With OpenShift, you can run databases and data analytics in a consistent way across clouds to accelerate the delivery of cloud-native applications.

Data services

Data Analytics

Red Hat OpenShift Data Science is a cloud-based service that provides a platform for data scientists and developers to build intelligent applications. Data scientists can build artificial intelligence/machine learning (AI/ML) models with Jupyter notebooks, TensorFlow, and PyTorch support. Developers can port these AI/ML models to other platforms and deploy them in production, on containers, and in hybrid cloud and edge environments.

Related resources:    


With Red Hat OpenShift Database Access, developers can easily connect their applications to third-party database services, and DevOps can provision and manage access to those databases.

Related resources:

  • Red Hat OpenShift Database Access

Developer productivity

Find the tools that you need to build in the cloud. Red Hat’s developer tools for Kubernetes simplify your workflow while giving you the capabilities of this powerful platform. Developers and DevOps who have chosen Java for application development can enhance their development pipeline in the world of cloud development using Red Hat’s Java tools all at no cost.

Developer tools and services

Red Hat OpenShift Dev Spaces

Red Hat OpenShift Dev Spaces (formerly CodeReady Workspaces) uses Kubernetes and containers to provide any member of the development or IT team with a consistent, secure, zero-configuration, and instant development environment. Red Hat Dev Spaces includes a powerful in-browser IDB with support for visual studio code, developers need only a machine capable of running a web browser to code, build, test, and run on OpenShift, without fiddling around with the details of managing a Kubernetes cluster.

Developer CLI

OpenShift Do (odo) is a CLI tool for developers who are writing, building, and deploying applications on OpenShift. With odo, developers get an opinionated CLI tool that supports fast, iterative development. odo abstracts away Kubernetes and OpenShift concepts, so developers can focus on what's most important to them. Existing tools like oc and kubectl are more operators focused, while odo is developer-focused, enabling developers to build and deploy applications without needing them to know the underlying Kubernetes and OpenShift concepts.

Web Terminal

OpenShift Web Terminal brings command-line tools right to the web console and its Linux environment runs a pod deployed on your OpenShift Cluster. The web terminal eliminates the need to install software, configure connections, and authenticate your local terminal. It also makes it easier to use OpenShift on devices like tablets and mobile phones, which might lack a native terminal.

Service Binding

OpenShift Service Binding Operator makes it easy for developers to connect their applications to backing services like REST APIs, databases, event buses, and others, providing a consistent and predictable experience. Service Binding Operator eliminates the need to manually configure and manage error-prone binding information and benefits developers from a self-service experience that connects their applications to the different backing services they need.

OpenShift Plugins and Extensions

Developers and DevOps who work with Red Hat OpenShift can use their preferred development environments thanks to Visual Studio Code and IntelliJ extensions.

Development environment

Developer Sandbox for Red Hat OpenShift

The Developer Sandbox for OpenShift provides developers with a private OpenShift environment in a shared, multi-tenant OpenShift cluster that is pre-configured with a set of developer tools. 

Related resources:   

Red Hat OpenShift Local

Red Hat OpenShift Local (CodeReady Containers) is the quickest way to get started building OpenShift clusters. It is designed to run on a local computer to simplify setup and testing and emulate the cloud development.

    Red Hat named a Challenger in the 2023 Gartner® Magic Quadrant™

    Red Hat was positioned in the Challenger Quadrant of the 2023 Gartner® Magic Quadrant™ for DevOps Platforms


    Multicluster Management

    With multicluster management, get visibility and control to manage the cluster and application life cycle, security, and compliance of the entire Kubernetes domain across multiple data centers, and private and public clouds.

    Advanced application life-cycle management

    With multicluster management, developers can use open standards and deploy application policies that are integrated into existing CI/CD pipelines; define and deploy applications across clusters based on defined policies; use cluster labels and application rules to move workloads across clusters and between multiple cloud providers.

    Related resource:

    Multicluster observability for health and optimization

    With out-of-the-box multicluster dashboards, store long-term historical data and visualize multicluster health and optimization, store long-term data, and get an aggregated view of individual cluster or multicluster metrics for quick troubleshooting.


    Global registry

    The Global Registry is a private container registry that stores, builds, and deploys container images focusing on cloud-native and DevSecOps development models and environments. Developers and DevOps can analyze images for security vulnerabilities and identify issues to help reduce security risks.

    Image management

    Red Hat Quay lets you view a two-week configurable history. Images can be tracked by tag and reverted to a previous state within a configurable time frame.

    Related resource: 

    Security scanning

    Red Hat Quay scans containers for vulnerabilities, giving you visibility into known issues and how to fix them. Quay integrates automatically with vulnerability detectors such as Clair and scans container images to identify and notify you about vulnerabilities that could be used to exploit images.

    Geo-replication mirroring

    Developers and DevOps have all of the content needed for their Kubernetes environments with multicluster and multi-region content management. Red Hat Quay’s continuous geographic distribution provides improved performance, ensuring your content is always available close to where it is needed most.

    Image builds

    Red Hat Quay features a built-in image build service triggered by GitHub Actions. Streamline the CI/CD pipeline with build triggers, Git hooks, and robot accounts. Developers can easily build or rebuild container images that are then automatically stored in Quay based on filters and custom tagging rules.


    Cluster Data Management

    Cluster data management is persistent software-defined storage based on Ceph, Noobaa, and Rook technologies for both hybrid and multi-cloud environments. It is easy to install and manage as a part of the container-based application lifecycle.

    Multi-cloud portability

    A multi-cloud gateway abstracts storage infrastructure, so data can be stored in many different places but act as one persistent repository. It allows users to start small and scale as needed on-premise, in multiple clusters, and with cloud-native storage.

    Related resource:

    Simplified application development

    OpenShift Data Foundation provides accessible data and support for all Red Hat OpenShift apps. It also simplifies data management across the hybrid cloud. Developers can provision storage directly from Red Hat OpenShift without switching to a separate user interface.

    Simplified application development

    OpenShift Data Foundation provides accessible data and support for all Red Hat OpenShift apps. It also simplifies data management across the hybrid cloud. Developers can provision storage directly from Red Hat OpenShift without switching to a separate user interface.