The following disclaimers outline the responsibilities and limitations of Sestek when deploying Kubernetes on customer environments. Customers are expected to agree on these points before proceeding with the deployment.
- Sestek assumes no responsibility for vulnerabilities or security issues at the operating system level. Sestek will not perform OS security patching, and does not guarantee the patch or support lifecycle of the Linux distributions used. It is the customer’s responsibility to install, maintain, and patch the operating systems.
- Sestek assumes no responsibility for vulnerabilities or security issues within Kubernetes itself. Kubernetes upgrades will be performed once per year by Sestek, to the latest supported Kubernetes version available at that time.
- Sestek will deploy an open-source, vanilla Kubernetes cluster with the NGINX Ingress Controller.
- Sestek will deploy open-source load balancers, whose performance and reliability may be lower than enterprise-grade alternatives.
- During the lifecycle of the project, certain Kubernetes version upgrades may require an operating system version update or new virtual machines to be provisioned. In such cases, Sestek may request the customer to provide the necessary operating system update and/or provide the new virtual machines.
- Internet connectivity should be provided as explained in Kubernetes by Sestek Deployment Topology. Sestek support engineers should have remote connection to the Terminal Server. Origin Server should have connectivity to the Central Knovvu Container Registry.
- Sestek advises that this deployment model is not recommended for customers subject to regulatory or compliance obligations. In those cases, we recommend installation of OpenShift or a similar platform for Kubernetes management.