MKE 4k 4.1.2 Release: Key Enhancements for Reliability and Security

Mirantis Kubernetes Engine for k0rdent (MKE 4k) is opinionated, batteries-included, feature-complete Enterprise Kubernetes – easily deployed and managed with mkectl. Built-in is k0rdent: a complete, template-driven, composable manager for deploying and lifecycle managing MKE 4k or other Kubernetes clusters on any public or private cloud or bare metal.

MKE 4k 4.1.2 is now out, focusing on smoother ops, stronger security, and performance boosts. Here's a concise overview of the top features.

Improved Upgrades from MKE 3

Upgrades from MKE 3 are made more reliable and provide better user experience, featuring advanced error detection for early issue spotting, strong validation to confirm compatibility, and automated rollbacks for quick recovery. 

Improved Secure Access to MKE 4k Clusters

MKE 4k 4.1.2 provides a secure, seamless method for users to access MKE 4k management and child clusters in a multi-cluster Kubernetes platform. The solution offers one consistent authentication flow for kubectl, the CLI, and the MKE 4k Dashboard. It circumvents long-lived credentials, such as client certificates and service account tokens. This enhances security by enforcing short-term access, integrates with existing IdPs, and simplifies multi-cluster management for enterprises.

Role-Based Access Control (RBAC) Improvements

MKE 4k 4.1.2's RBAC offers better control in multi-user environments, with precise role-based permissions. It extends MKE 3's Kubernetes UX, delivering a refined enterprise UI for access management. Teams securely share resources, applying least-privilege to block unauthorized access. It aids compliance, lowers risks, and eases teamwork in intricate setups without hurting ease of use.

etcd Maintenance Improvements

MKE 4k 4.1.2 improves the ability of cluster administrators to manage etcd by enhancing the MKE 4k UI with various warnings around etcd state, and providing a new etcd maintenance component to help facilitate etcd defragmentation operations. This will help MKE4k cluster administrators maintain smooth ops and cluster stability.

Bastion Host Support in mkectl

For tight security environments, mkectl supports SSH via bastion/jump hosts. It adds adaptability, enables remote work, and fits enterprise networks seamlessly, preserving oversight and efficiency.

Managed Support for Calico eBPF Data Plane

With the 4.1.2 release, MKE 4k now supports the use of the Calico eBPF data plane for high-performance networking. This leverages eBPF kernel technology for efficient packet processing without modifications. Benefits include boosted throughput, lower latency, unified security policies for pods and hosts, and improved scalability.

MKE 4k 4.1.2 empowers you to build Kubernetes platforms your way—scalable, secure, and effortless.  For more information about MKE 4k 4.1.2, see the release notes and the MKE 4k documentation or contact us to learn more!