Creating Workload Clusters
The topics in this section explain how to configure workload clusters and use the Tanzu CLI to create the clusters.
What Are Workload Clusters?
In VMware Tanzu Kubernetes Grid, workload clusters are the Kubernetes clusters in which your application workloads run.
Tanzu Kubernetes Grid automatically deploys clusters to the platform on which you deployed the management cluster. Tanzu Kubernetes Grid automatically deploys clusters from whichever management cluster you have set as the context for the CLI.
You can create three types of workload clusters:
- Class-based clusters (default)
- Plan-based clusters (legacy)
- TKC-based clusters (legacy)
These workload cluster types are described in Workload Cluster Types.
Supported Infrastructure Platforms
You can deploy workload clusters with the Tanzu CLI after you have deployed a standalone management cluster to vSphere. You can also deploy workload clusters to vSphere with Tanzu on vSphere 8 if you have connected the Tanzu CLI to the vSphere with Tanzu Supervisor.
You can use the Tanzu CLI to deploy workload clusters to the following platforms:
- vSphere 7 and 8 if you are using a standalone management cluster
- vSphere 8 with a vSphere with Tanzu Supervisor cluster
ImportantFrom v2.5.1 onwards, Tanzu Kubernetes Grid does not support creating workload clusters on vSphere 6.7. For more information, see End of Support for TKG Management and Workload Clusters on vSphere 6.7.
Prerequisites for Cluster Deployment
Before starting the deployment workflow described in this section, ensure:
- You have followed the procedures in Install the Tanzu CLI and Kubernetes CLI for Use with Standalone Management Clusters or Install the Tanzu CLI and Kubernetes CLI for Use with a vSphere with Tanzu Supervisor.
- You have deployed a standalone management cluster to vSphere 7 or vSphere 8 or connected the Tanzu CLI to a vSphere 8 instance on which a vSphere with Tanzu Supervisor cluster is running:
- For instructions on deploying a standalone management cluster, see Deploying and Managing TKG 2.5 Standalone Management Clusters on vSphere.
- For instructions on connecting the Tanzu CLI to a vSphere with Tanzu Supervisor cluster, see Connect the Tanzu CLI to the Supervisor in Install the Tanzu CLI and Kubernetes CLI for Use with a vSphere with Tanzu Supervisor.
-
If you are deploying workload clusters to vSphere, each cluster requires one static virtual IP address to provide a stable endpoint for Kubernetes. Make sure that this IP address is not in the DHCP range, but is in the same subnet as the DHCP range.
Mac OS Bootstrap Machine: If your bootstrap machine runs Mac OS and you deploy a workload cluster using thumbprint verification with a self-signed certificate, as set by configuring
VSPHERE_INSECURE: falseandVSPHERE_TLS_THUMBPRINT, add the vCenter certificate to the machine’s trust store:-
From vSphere, download the vCenter certificate .pem file:
-
Double-click the downloaded file and add it to the MacOS system Keychain as a trusted certificate:
-
During the cluster deployment process, if MacOS pops up an alert message that the certificate is not trusted, change its policy to Always Trust:
-
Steps for Cluster Deployment
To create a workload cluster with the Tanzu CLI, you:
-
Complete the prerequisites in Prerequisites for Cluster Deployment above.
-
Configure the cluster as described in Configuration Files and Object Specs and in the cluster configuration topic for your infrastructure:
-
Create the cluster as described in Create Workload Clusters.
To create workload clusters in other ways, without the Tanzu CLI, see:
- To create a workload cluster with the Tanzu Mission Control UI, see Provisioning Workload Clusters in the Tanzu Mission Control documentation.
- (vSphere 8 with Supervisor) To create a workload cluster declaratively with
kubectl, see Provisioning TKG Clusters on Supervisor Declaratively Using Kubectl and YAML.
What to Do Next
Proceed to Configuration Files and Object Specs.
