Page tree

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Published by Scroll Versions from space DEV and version r0871

This feature is no longer supported. Please do not install the 

D s platform
 in an EKS cluster on AWS. Instead, please use the supported high availability deployment solution. For more information, see Install for High Availability.

D toc

In the Amazon AWS infrastructure, the 

D s platform
 can be deployed in a high availability failover mode across multiple modes This section describes the process for installing the platform across multiple, highly available nodes.



Tip: Instance sizes should be larger than m4.2xlarge.

Disk space10 GB minimum10 GB minimum

NOTE: If you are publishing to S3, additional disk space should be reserved for a higher number of concurrent users or larger data volumes. For more information on fast upload to decrease disk requirements, see S3 Access in the Configuration Guide.



Tip: Paths to values are listed below in JSON notation (item.item.item).


Number of replica nodes of the

D s node
to maintain as failovers.

image.repositoryAWS path to the ECR image repository that you created.

Configure SSL

By default, SSL is enabled, and a certificate is required. 


  • SSL security is served through the AWS LoadBalancer that serves the 
    D s platform
    • For more information on the supported SSL configurations, see the values.yaml file provided in the 
      D s item
      itemhelm package
  • The SSL certificate must be issued for the FQDN of the 
    D s platform
loadBalancer.ssl.certificateARNThe ARN for the SSL certificate in the AWS Certificate Manager.

The certificate ARN value references the ARN stored in the AWS Certificate Manager, or you can import your own certificate into ACM. For more information, see



NOTE: You should have reserved at least 10 GB for each mount point.



Host of the NFS server for the configuration mount point
nfs.conf.pathOn the conf server, the path to the storage area. Default is the root location.
nfs.logs.serverHost of the NFS server for the logging mount point
nfs.logs.pathOn the conf server, the path to the storage area. Default is the root location.



Host of the Amazon RDS databases



D s item
must be hosted on the same RDS instance and available through the same port.


Port number through which to access the RDS databases. The default value is 5432.

database.typeThe type of database. Please leave this value as postgresql.

D s triconf

Below you can specify values that are applied to 

D s triconf
, which is the platform configuration file. For more information on these settings, see  Configure for AWS in the Configuration Guide.


The AWS account identifier to use when connecting to AWS resources.

The type of credential provider to use for individuals authenticating to AWS resources.


NOTE: During installation, the platform is configured to use the same account to access AWS resources. Per-user authentication must be set up afterward.

Supported values:

  • default - credentials are submitted as an AWS key/secret combination.
  • temporary - credentials are submitted using the same IAM role for all users.


    Tip: Using a temporary credential provider is recommended.

Details are below. the credential provider is set to temporary, this value defines the system-wide IAM role to use to access AWS. the credential is set to default, this value defines the AWS key to use for authentication. the credential is set to default, this value defines the AWS secret for the AWS key.

The default S3 bucket to use.


NOTE: The AWS account must have read/write access to this bucket.

After the platform is operational, you can apply additional configuration changes to this file through the command line or through the application. For more information, see  Platform Configuration Methods in the Configuration Guide.


When enabled, a separate set of fluentd pods is launched to collect and forward 

D s item


When set to true, a fluentd Statefulset is deployed to collect application logs.

You can specify value overrides to fluentd chart in the following manner:

Code Block
		repository: fluent/fluentd-kubernetes-daemonset
		tag: "v1.10.4-debian-cloudwatch-1.0"

See charts/fluentd/values.yaml in the helm package for supported values.


When set to true, a fluentd DaemonSet is deployed to collect node, Kubernetes, dataplane, and cluster logs.

If either of the above fluentd logging options is enabled, the following must be specified:


This value is the name of the EKS cluster that you created.

global.cluster.regionThis value is the name of the region where the EKS cluster was created.

Configure fluentd

Optionally, you can enable fluentd to collect application logs.