Anemos Enterprise provides a library of pre-built manifests for popular open-source applications, allowing you to quickly generate production-ready manifests without the need to write complex configurations from scratch. This is particularly useful for teams that want to deploy common applications quickly and efficiently, without spending time on manual configurations or learning the intricacies of each application.

Generated manifests are optimized for the target environment, such as development or production, and include best practices for security, performance, and reliability. Manifests are also customized for the target Kubernetes cluster distribution, such as OpenShift, Minikube, or vanilla Kubernetes, ensuring compatibility and ease of deployment.

Supported applications include popular tools like

Anemos Enterprise provides tight integration between supported applications. This allows fast and consistent deployment of applications and their dependencies, without learning all the details and complex configurations required to integrate them manually. Some of the key integrations include:

• When Fluent Bit is added, parsers, filters, and workload annotations are automatically generated to ensure that logs are collected and processed correctly for each application. The logging structure across all applications is unified by standardizing log levels and formats, making it easier to analyze and monitor logs.
• When HashiCorp Vault is added, dynamic secret generation for supported applications such as Minio, Redis, RabbitMQ, and PostgreSQL are automatically configured. This ensures that sensitive information is stored securely and accessed only by authorized applications. Authorization with Kubernetes service accounts is also configured, allowing applications to access secrets without hardcoding them in manifests.
• When HashiCorp Vault or Keycloak is added, the necessary configurations for OIDC authentication for supported applications such as Grafana or Minio are automatically generated. This allows applications to authenticate and authorize users centrally and manage access control effectively.
• When HashiCorp Vault is added, secrets are injected into applications seamlessly using Vault agent sidecars, all statically configured in the manifests without need to run controllers or operators. This feature enables secure secret management on environments where running operators is not feasible or desired, such as on-premise customer clusters or edge devices.
• When Grafana is added, dashboards are automatically generated for supported applications, providing out-of-the-box monitoring and visualization capabilities. This allows users to quickly gain insights into application performance and health without manual dashboard configuration.

On-premises and customer clusters often have strict requirements for security, compliance, and resource management. Anemos Enterprise provides comprehensive reporting capabilities to help you meet these requirements:

• Generate detailed reports of all Kubernetes resources and container images used in your environment, enabling you to track and manage resources and application versions effectively.
• Summarize required hardware resources such as CPU and memory, helping you optimize resource allocation and ensure that your applications run efficiently.
• Perform linting and security analysis to identify potential issues, such as workloads without resource limits or containers running as root. This helps you maintain a secure and compliant environment by proactively addressing potential vulnerabilities and misconfigurations.

Anemos Enterprise allows you to perform various bulk modifications to your Kubernetes manifests, making it easier to manage and maintain your applications on different environments. Some of the available modifications include:

• Updating image registries and image pull secrets across all relevant manifests. This is particularly useful when container images are sent to on-premises customer clusters, where you may need to use a private registry. This also enables developers to use a local registry to cache container images locally, speeding up the development process.
• Managing TLS definitions and Cert Manager annotations for ingresses, ensuring that your applications are secure and accessible over HTTPS.
• Adding trusted CA certificates to container trust stores, allowing your applications to securely communicate with external services that require certificate validation.
• Injecting host aliases into specified workloads, enabling you to define custom DNS mappings for your applications without modifying the underlying Kubernetes DNS configuration.

Anemos Enterprise includes built-in support for generating load testing scripts for your applications. You can create load testing scripts using various manifest configurations and produce detailed CSV reports from the results. This feature allows you to validate the performance and scalability of your applications under different load conditions, ensuring that they can handle the expected traffic and user interactions.