Top 50 OpenShift Interview Questions - 2024 Questions

To get the complete list of Questions and Scenarios please visit OpenShift Questions and Answers

1. What is OpenShift?

OpenShift is a Kubernetes-based container orchestration platform, designed for the development and deployment of applications. It automates the deployment, scaling, and management of containerized applications.

1. Explain the difference between OpenShift and Kubernetes.

While Kubernetes is an open-source container orchestration tool, OpenShift is a Kubernetes distribution with additional features like a more robust security model, integrated DevOps tools, and a user-friendly web console for managing Kubernetes environments.

To get the complete list of Questions and Scenarios please visit OpenShift Questions and Answers

1. How does OpenShift handle container security?

OpenShift enhances container security through Security Context Constraints (SCCs) that dictate permissions for containers, ensuring they run with the least necessary privileges. It also includes built-in monitoring and logging for better security oversight.

1. What is a DeploymentConfig in OpenShift?

DeploymentConfig is an OpenShift object that defines how to deploy and update an application. It includes additional features like triggers for automated deployments and rollback capabilities, which are not available in standard Kubernetes Deployment objects.

1. Describe how you can scale applications in OpenShift.

Applications in OpenShift can be scaled manually using the web console or command-line interface, or automatically based on CPU usage or other metrics. This is managed through the Horizontal Pod Autoscaler.

1. What is an ImageStream in OpenShift?

An ImageStream is an OpenShift object that provides an abstraction over Docker images. It allows for easier tracking of images and their versions in the registry, and can trigger deployments when the image changes.

1. How does OpenShift integrate with CI/CD pipelines?

OpenShift integrates with CI/CD pipelines through its Source-to-Image (S2I) feature, webhooks, and compatibility with various CI/CD tools like Jenkins. This allows for automated building, testing, and deployment of applications.

1. What are Operators in OpenShift?

Operators in OpenShift are a method of packaging, deploying, and managing a Kubernetes application. They automate the management of complex applications by encoding human operational knowledge into software.

1. Explain how routing works in OpenShift.

OpenShift uses routers to handle incoming requests and route them to the appropriate services based on the route configuration. Routes expose services at hostnames outside the cluster.

1. What is a Project in OpenShift?

A Project in OpenShift is a Kubernetes namespace with additional annotations. It's a way to organize and manage resources (like pods, services, and routes) in a multi-tenant environment.

To get the complete list of Questions and Scenarios please visit OpenShift Questions and Answers

1. What is a Pod in OpenShift?

A Pod is the smallest deployable unit in OpenShift, which encapsulates one or more containers, their storage resources, a unique network IP, and options that govern how the container(s) should run.

1. How does OpenShift implement load balancing?

OpenShift uses a built-in HAProxy router for basic load balancing and can also integrate with external load balancers. It distributes incoming traffic among pods based on the configured routing rules.

1. Explain the role of etcd in OpenShift.

Etcd is a distributed key-value store used by OpenShift for storing all cluster data, including configurations, state, and metadata. It's crucial for Kubernetes’ operation and cluster coordination.

1. What are Labels and Selectors in OpenShift?

Labels are key-value pairs attached to objects like pods. Selectors are used to select a set of objects based on their labels. They are essential for organizing and controlling resources within a cluster.

1. How do you manage storage in OpenShift?

Storage in OpenShift is managed using Persistent Volumes (PVs) and Persistent Volume Claims (PVCs). PVs represent storage resources, while PVCs are requests by users for storage resources, which can be dynamically provisioned.

1. What is an OpenShift Template?

An OpenShift Template is a file that defines a list of objects for creating applications, including pods, services, and routes. It can include parameters for customization and can be used to deploy complex applications quickly.

1. How does OpenShift handle logging and monitoring?

OpenShift integrates with tools like Elasticsearch, Fluentd, and Kibana (EFK) for logging, and Prometheus for monitoring. These provide comprehensive logging, log aggregation, and detailed insights into the health and performance of applications and the cluster.

1. What is a Service in OpenShift?

A Service in OpenShift is an abstraction that defines a logical set of pods and a policy to access them. It enables internal connectivity within the cluster by providing a stable IP address and DNS name for pods.

1. Explain NetworkPolicies in OpenShift.

NetworkPolicies in OpenShift are used to control the flow of traffic between pods. They define how groups of pods can communicate with each other and other network endpoints.

1. What are Resource Quotas and Limit Ranges in OpenShift?

Resource Quotas are used to set constraints on the amount of resources (like CPU, memory) a project can use. Limit Ranges define minimum and maximum constraints on resources that can be allocated to individual pods in a project.

To get the complete list of Questions and Scenarios please visit OpenShift Questions and Answers

1. How does OpenShift support multi-tenancy?

OpenShift supports multi-tenancy through namespaces, resource quotas, and network policies, which isolate and manage resources for different projects or users within the same cluster.

1. What is a DaemonSet in OpenShift?

A DaemonSet ensures that a copy of a pod runs on all or some specific nodes in the cluster. It's commonly used for running cluster storage daemons, log collectors, or monitoring agents.

1. How do you troubleshoot application issues in OpenShift?

Troubleshooting in OpenShift involves checking pod logs, using the oc command-line tool for inspecting pod status and events, and leveraging built-in monitoring tools for insights into application performance and health.

1. What is Source-to-Image (S2I) in OpenShift?

Source-to-Image (S2I) is a tool for building reproducible container images from source code. It captures the code and its dependencies and combines them with a base image to create a ready-to-run container image.

1. Explain how rolling updates work in OpenShift.

Rolling updates in OpenShift allow for deployment of new versions of applications with zero downtime. New pods are gradually rolled out and replace the old ones, ensuring no disruption in service.

1. What are OpenShift Secrets and ConfigMaps?

Secrets are used to store sensitive data like passwords and SSH keys. ConfigMaps hold non-confidential data in key-value pairs. Both can be mounted into pods or used by the application at runtime.

1. How does OpenShift use Service Mesh?

OpenShift can integrate with Service Mesh (like Istio) to provide advanced network functionality, such as intelligent routing, traffic control, and security policies at the microservices level.

1. What is the role of a Master node in OpenShift?

The Master node in OpenShift is responsible for managing the cluster, scheduling pods, maintaining the desired state, and managing interactions with worker nodes.

1. Explain the concept of StatefulSets in OpenShift.

StatefulSets are used for managing stateful applications. They maintain a sticky identity for each of their pods and handle deployment and scaling while preserving the state and uniqueness of these pods.

1. What are the benefits of using OpenShift’s Container Registry?

OpenShift’s Container Registry is a secure, integrated Docker registry which stores and manages Docker images. It supports automated builds and deployments and integrates with OpenShift’s authentication and authorization for image management.

1. What is a BuildConfig in OpenShift?

BuildConfig is an OpenShift object that defines how to build an application. It includes source code location, build strategy, and output image details. It automates the process of building and deploying container images.

1. How does OpenShift implement auto-scaling?

OpenShift implements auto-scaling using the Horizontal Pod Autoscaler, which automatically scales the number of pods in a replication controller, deployment, or replica set based on observed CPU utilization or custom metrics.

1. Explain Role-Based Access Control (RBAC) in OpenShift.

RBAC in OpenShift is a method for regulating access to computer or network resources based on the roles of individual users. It allows administrators to define roles and attach policies that dictate what each role can and cannot do within the cluster.

1. What are OpenShift Routes and how are they different from Kubernetes Services?

Routes in OpenShift expose services to external traffic. Unlike Kubernetes Services, which provide internal cluster networking, Routes allow external users to access services running inside the cluster with hostnames.

1. How do you backup and restore OpenShift clusters?

Backing up an OpenShift cluster involves saving etcd data, cluster configuration, and application data. Restoration involves recreating the cluster from the backup, including restoring etcd data and reapplying the configurations.

1. What is a ReplicaSet in OpenShift?

A ReplicaSet in OpenShift ensures that a specified number of pod replicas are running at any given time. It's used for scaling and maintaining the availability of pods.

1. How does OpenShift support DevOps practices?

OpenShift supports DevOps practices by providing integrated tools for continuous integration and continuous deployment (CI/CD), automation capabilities with Jenkins pipelines, and easy application scaling and management.

1. What is a Liveness Probe and a Readiness Probe in OpenShift?

Liveness Probes check if a container is alive, and restarts it if the probe fails. Readiness Probes determine if a container is ready to serve traffic, ensuring traffic doesn’t go to pods that are not ready.

1. Explain how Ingress works in OpenShift.

Ingress in OpenShift manages external access to services in the cluster, typically HTTP. It provides load balancing, SSL termination, and name-based virtual hosting, and is more powerful and flexible than Routes for complex traffic routing.

1. How does OpenShift handle persistent storage?

OpenShift handles persistent storage through Persistent Volumes (PVs) and Persistent Volume Claims (PVCs), supporting various storage solutions like NFS, iSCSI, and cloud storage. PVs are pre-provisioned storage resources, while PVCs are user requests for storage.

1. What are the benefits of using Operators in OpenShift?

Operators in OpenShift automate complex applications' deployment and lifecycle management. They encapsulate operational knowledge, handle upgrades seamlessly, and ensure applications are running optimally, reducing manual intervention.

1. How do you manage user authentication and authorization in OpenShift?

User authentication in OpenShift is handled through Identity Providers like LDAP, OpenID Connect, or HTPasswd. Authorization is managed through RBAC, where roles with specific permissions are assigned to users or groups.

1. What is Code Ready Containers in OpenShift?

Code Ready Containers is a tool that allows running a minimal OpenShift cluster on a local machine. It's designed for development and testing purposes, providing an environment that closely mimics a full OpenShift cluster.

1. How do you perform version upgrades in OpenShift?

OpenShift version upgrades are performed through the Cluster Version Operator, which orchestrates the upgrade process. It ensures the upgrade is rolled out across the cluster components in a controlled and phased manner.

1. What is an OpenShift OperatorHub?

OperatorHub is a catalog of Operators available in OpenShift, providing an easy way to find, install, and manage Kubernetes applications packaged as Operators. It simplifies deploying and managing complex software stacks.

1. How are resources isolated in OpenShift?

Resources in OpenShift are isolated through namespaces, limiting resource visibility and access within the cluster. Additionally, network policies and Security Context Constraints (SCCs) provide fine-grained control over network traffic and permissions.

1. Explain the concept of Quotas and LimitRanges in OpenShift.

Quotas in OpenShift are used to limit the total resource consumption per project, preventing overuse. LimitRanges specify constraints on the size of resources (like Pods, PersistentVolumeClaims, or Containers) within a project.

1. What is the purpose of the oc command-line tool in OpenShift?

The oc command-line tool is used for interacting with an OpenShift cluster. It allows users to perform various tasks like creating and managing resources, viewing logs, and executing commands within containers.

1. How do you handle node failures in OpenShift?

In OpenShift, node failures are managed automatically. Pods running on failed nodes are rescheduled on other nodes. StatefulSets and Persistent Volumes ensure data consistency and availability during such failures.

1. What are the best practices for securing an OpenShift cluster?

Securing an OpenShift cluster involves enforcing strong authentication and authorization, using network policies for pod isolation, securing etcd storage, regularly updating and patching the cluster, and monitoring cluster activities.

To get the complete list of Questions and Scenarios please visit OpenShift Questions and Answers

You may Learn OpenShift Basics & Interview preparation from here:

✔️ 100 OpenShift Operators

✔️ Free OpenShift CLI Commands PDF

✔️ About OpenShift Logging – ELK Stack

✔️ OpenShift Migration – Step by Step instructions about Migrating OCP v4.5 to v4.10

✔️ OpenShift Installation Delivery Checklist – Technical activities list

✔️ How to Enable Access Logs on OpenShift Default Routes

✔️ Grafana – Understanding OpenShift Monitoring

✔️ Download the OpenShift Health-Check commands and Automation ideas

✔️ Download the OpenShift Data Foundation (ODF) Installation instructions on Airgap Environment

✔️ Know all about OpenShift Infra Nodes

✔️ OpenShift Installation Key Questions