Persistent Mobile Foundation Custom Resource (CR) configuration
Parameters
| Qualifier | Parameter | Definition | Allowed Value | |
|---|---|---|---|---|
| global.arch | amd64 | amd64 worker node scheduler preference in a hybrid cluster | 3 - Most preferred 2 - No preference 0 - Do not use Default is 3 - Most preferred. |
|
| ppc64le | ppc64le worker node scheduler preference in a hybrid cluster | 3 - Most preferred 2 - No preference 0 - Do not use Default is 0 - Do not use. |
||
| s390x | s390x worker node scheduler preference in a hybrid cluster | 3 - Most preferred 2 - No preference 0 - Do not use Default is 0 - Do not use. |
||
| global.image | pullPolicy | Image Pull Policy | Always, Never, or IfNotPresent. Default: IfNotPresent | |
| pullSecret | Image pull secret | Required only if images are not hosted on OCP image registry. | ||
| global.ingress | hostname | The external hostname or IP address to be used by external clients | Leave blank to default to the IP address of the cluster proxy node | |
| secret | TLS secret name | Specifies the name of the secret for the certificate that has to be used in the Ingress definition. The secret has to be pre-created using the relevant certificate and key. Mandatory if SSL/TLS is enabled. Pre-create the secret with Certificate & Key before supplying the name here. Refer here | ||
| sslPassThrough | Enable SSL passthrough | Specifies is the SSL request should be passed through to the PMF service - SSL termination occurs in the PMF service. false (default) or true | ||
| global.timezone | TZ value of the timezone | Any allowed TZ value. Example of TZ values: Asia/Kolkata Africa/Abidjan etc.. See here - List of tz database time zones for complete list of TZ values If left empty, uses UTC timezone |
||
| global.dbinit | enabled | Enable initialization of Server, Push and Application Center databases | Initializes databases and create schemas / tables for Server, Push and Application Center deployment.(Not required for Analytics). true (default) or false | |
| repository | Docker image repository for database initialization | Repository of the PMF database docker image. Make sure the placeholder REPO_URL is replaced with right docker registry url. | ||
| tag | Docker image tag | See Docker tag description | ||
| mfpserver | enabled | Flag to enable Server | true (default) or false | |
| mfpserver.image | repository | Docker image repository | Repository of the PMF Server docker image. Make sure the placeholder REPO_URL is replaced with right docker registry url. | |
| tag | Docker image tag | See Docker tag description | ||
| consoleSecret | A pre-created secret for login | Refer here | ||
| mfpserver.db | type | Supported database vendor name. | DB2 (default) / MySQL / Oracle | |
| host | IP address or hostname of the database where PMF Server tables need to be configured. | |||
| port | Port where database is setup | |||
| secret | A precreated secret which has database credentials | |||
| name | Name of the PMF Server database | |||
| schema | Server db schema to be created. | If the schema already present, it will be used. Otherwise, it will be created. | ||
| ssl | Database connection type | Specify if you database connection has to be http or https. Default value is false (http). Make sure that the database port is also configured for the same connection mode | ||
| driverPvc | Persistent Volume Claim to access the JDBC Database Driver | Specify the name of the persistent volume claim that hosts the JDBC database driver. Required if the database type selected is not DB2 | ||
| adminCredentialsSecret | MFPServer DB Admin Secret | If you have enabled DB initialization ,then provide the secret to create database tables and schemas for PMF components. | ||
| mfpserver | adminClientSecret | Admin client secret | Specify the Client Secret name created. Refer here | |
| pushClientSecret | Push client secret | Specify the Client Secret name created. Refer here | ||
| liveupdateClientSecret | LiveUpddate client secret | Specify the Client Secret name created. Refer here | ||
| mfpserver.replicas | The number of instances (pods) of PMF Server that need to be created | Positive integer (Default: 3) | ||
| mfpserver.autoscaling | enabled | Specifies whether a horizontal pod autoscaler (HPA) is deployed. Note that enabling this field disables the replicas field. | false (default) or true | |
| min | Lower limit for the number of pods that can be set by the autoscaler. | Positive integer (default to 1) | ||
| max | Upper limit for the number of pods that can be set by the autoscaler. Cannot be lower than min. | Positive integer (default to 10) | ||
| targetcpu | Target average CPU utilization (represented as a percentage of requested CPU) over all the pods. | Integer between 1 and 100(default to 50) | ||
| mfpserver.pdb | enabled | Specifu whether to enable/disable PDB. | true (default) or false | |
| min | minimum available pods | Positive integer (default to 1) | ||
| mfpserver.customConfiguration | Custom server configuration (Optional) | Provide server specific additional configuration reference to a pre-created config map. Refer here | ||
| mfpserver | keystoreSecret | Refer the configuration section to pre-create the secret with keystores and their passwords. | ||
| mfpserver.resources | limits.cpu | Describes the maximum amount of CPU allowed. | Default is 2000m. See Kubernetes - meaning of CPU | |
| limits.memory | Describes the maximum amount of memory allowed. | Default is 2048Mi. See Kubernetes - meaning of Memory | ||
| requests.cpu | Describes the minimum amount of CPU required - if not specified will default to limit (if specified) or otherwise implementation-defined value. | Default is 1000m. See Kubernetes - meaning of CPU | ||
| requests.memory | Describes the minimum amount of memory required. If not specified, the memory amount will default to the limit (if specified) or the implementation-defined value. | Default is 1536Mi. See Kubernetes - meaning of Memory | ||
| mfppush | enabled | Flag to enable PMF Push | true (default) or false | |
| repository | Docker image repository | Repository of the PMF Push docker image. Make sure the placeholder REPO_URL is replaced with right docker registry url. | ||
| tag | Docker image tag | See Docker tag description | ||
| mfppush.replicas | The number of instances (pods) of PMF Server that need to be created | Positive integer (Default: 3) | ||
| mfppush.autoscaling | enabled | Specifies whether a horizontal pod autoscaler (HPA) is deployed. Note that enabling this field disables the replicaCount field. | false (default) or true | |
| min | Lower limit for the number of pods that can be set by the autoscaler. | Positive integer (default to 1) | ||
| max | Upper limit for the number of pods that can be set by the autoscaler. Cannot be lower than minReplicas. | Positive integer (default to 10) | ||
| targetcpu | Target average CPU utilization (represented as a percentage of requested CPU) over all the pods. | Integer between 1 and 100(default to 50) | ||
| mfppush.pdb | enabled | Specifu whether to enable/disable PDB. | true (default) or false | |
| min | minimum available pods | Positive integer (default to 1) | ||
| mfppush.customConfiguration | Custom configuration (Optional) | Provide Push specific additional configuration reference to a pre-created config map. Refer here | ||
| mfppush | keystoresSecretName | Refer the configuration section to pre-create the secret with keystores and their passwords. | ||
| mfppush.resources | limits.cpu | Describes the maximum amount of CPU allowed. | Default is 1000m. See Kubernetes - meaning of CPU | |
| limits.memory | Describes the maximum amount of memory allowed. | Default is 2048Mi. See Kubernetes - meaning of Memory | ||
| requests.cpu | Describes the minimum amount of CPU required - if not specified will default to limit (if specified) or otherwise implementation-defined value. | Default is 750m. See Kubernetes - meaning of CPU | ||
| requests.memory | Describes the minimum amount of memory required. If not specified, the memory amount will default to the limit (if specified) or the implementation-defined value. | Default is 1024Mi. See Kubernetes - meaning of Memory | ||
| mfpliveupdate | enabled | Flag to enable Liveupdate | false (default) or true | |
| mfpliveupdate.image | repository | Docker image repository | Repository of the PMF Live Update docker image. Make sure the placeholder REPO_URL is replaced with right docker registry url. | |
| tag | Docker image tag | See Docker tag description. | ||
| consoleSecret | A pre-created secret for login | Refer here. | ||
| mfpliveupdate.db | type | Supported database vendor name | DB2 (default) / MySQL / Oracle | |
| host | IP address or hostname of the database where PMF Server tables need to be configured. | |||
| port | Database Port number. | |||
| secret | A pre-created secret, which has database credentials. | |||
| name | Name of the PMF Server database. | |||
| schema | Server db schema to be created. | If the schema is already present, it will be used. Otherwise, it will be created. | ||
| ssl | Database connection type. | Specify if you database connection has to be http or https. Default value is false (http). Make sure that the database port is also configured for the same connection mode. | ||
| driverPvc | Persistent Volume Claim to access the JDBC Database Driver. | Specify the name of the persistent volume claim that hosts the JDBC database driver. Required, if the database type selected is not DB2. | ||
| adminCredentialsSecret | MFPServer DB Admin Secret. | If you have enabled DB initialization ,then provide the secret to create database tables and schemas for PMF components. | ||
| mfpliveupdate.replicas | The number of instances (pods) of PMF Liveupdate that need to be created. | Positive integer (Default: 2. | ||
| mfpliveupdate.autoscaling | enabled | Specifies whether a horizontal pod autoscaler (HPA) is deployed. Note that enabling this field disables the replicas field. | false (default) or true. | |
| min | Lower limit for the number of pods that can be set by the autoscaler. | Positive integer (defaults to 1). | ||
| max | Upper limit for the number of pods that can be set by the autoscaler. Cannot be lower than min. | Positive integer (defaults to 10). | ||
| targetcpu | Target average CPU utilization (represented as a percentage of requested CPU) over all the pods. | Integer between 1 and 100(defaults to 50). | ||
| mfpliveupdate.pdb | enabled | Specify whether to enable/disable PDB. | true (default) or false. | |
| min | minimum available pods | Positive integer (defaults to 1). | ||
| mfpliveupdate.customConfiguration | Custom server configuration (Optional). | Provide server specific additional configuration reference to a pre-created config map. Refer here. | ||
| mfpliveupdate | keystoreSecret | Refer the configuration section to pre-create the secret with keystores and their passwords. | ||
| mfpliveupdate.resources | limits.cpu | Describes the maximum amount of CPU allowed. | Default is 1000m. See Kubernetes - meaning of CPU. | |
| limits.memory | Describes the maximum amount of memory allowed. | Default is 2048Mi. See Kubernetes - meaning of Memory. | ||
| requests.cpu | Describes the minimum amount of CPU required - if not specified will default to limit (if specified) or otherwise implementation-defined value. | Default is 750m. See Kubernetes - meaning of CPU. | ||
| requests.memory | Describes the minimum amount of memory required. If not specified, the memory amount will default to the limit (if specified) or the implementation-defined value. | Default is 1024Mi. See Kubernetes - meaning of Memory. | ||
| mfpanalytics | enabled | Flag to enable analytics | false (default) or true | |
| mfpanalytics.image | repository | Docker image repository | Repository of the PMF Operational Analytics docker image. Make sure the placeholder REPO_URL is replaced with right docker registry url. | |
| tag | Docker image tag | See Docker tag description | ||
| consoleSecret | A pre-created secret for login | Refer here | ||
| mfpanalytics.replicas | The number of instances (pods) of PMF Operational Analytics that need to be created | Positive integer (Default: 2) | ||
| mfpanalytics.autoscaling | enabled | Specifies whether a horizontal pod autoscaler (HPA) is deployed. Note that enabling this field disables the replicaCount field. | false (default) or true | |
| min | Lower limit for the number of pods that can be set by the autoscaler. | Positive integer (default to 1) | ||
| max | Upper limit for the number of pods that can be set by the autoscaler. Cannot be lower than minReplicas. | Positive integer (default to 10) | ||
| targetcpu | Target average CPU utilization (represented as a percentage of requested CPU) over all the pods. | Integer between 1 and 100(default to 50) | ||
| mfpanalytics.shards | Number of Elasticsearch shards for PMF Analytics | default to 2 | ||
| mfpanalytics.replicasPerShard | Number of Elasticsearch replicas to be maintained per each shard for PMF Analytics | default to 2 | ||
| mfpanalytics.persistence | enabled | Use a PersistentVolumeClaim to persist data | true | |
| useDynamicProvisioning | Specify a storageclass or leave empty | false | ||
| volumeName | Provide an volume name | data-stor (default) | ||
| claimName | Provide an existing PersistentVolumeClaim | nil | ||
| storageClassName | Storage class of backing PersistentVolumeClaim | nil | ||
| size | Size of data volume | 20Gi | ||
| mfpanalytics.pdb | enabled | Specify whether to enable/disable PDB. | true (default) or false | |
| min | minimum available pods | Positive integer (default to 1) | ||
| mfpanalytics.customConfiguration | Custom configuration (Optional) | Provide Analytics specific additional configuration reference to a pre-created config map. Refer [here](#optional-custom-server-configuration | ||
| mfpanalytics | keystoreSecret | Refer the configuration section to pre-create the secret with keystores and their passwords. | ||
| mfpanalytics.resources | limits.cpu | Describes the maximum amount of CPU allowed. | Default is 1000m. See Kubernetes - meaning of CPU | |
| limits.memory | Describes the maximum amount of memory allowed. | Default is 2048Mi. See Kubernetes - meaning of Memory | ||
| requests.cpu | Describes the minimum amount of CPU required - if not specified will default to limit (if specified) or otherwise implementation-defined value. | Default is 750m. See Kubernetes - meaning of CPU | ||
| requests.memory | Describes the minimum amount of memory required. If not specified, the memory amount will default to the limit (if specified) or the implementation-defined value. | Default is 1024Mi. See Kubernetes - meaning of Memory | ||
| mfpanalytics_recvr | enabled | Flag to enable Analytics Receiver | false (default) or true | |
| mfpanalytics_recvr.image | repository | Docker image repository | Repository of the PMF Live Update docker image. Make sure the placeholder REPO_URL is replaced with right docker registry url. | |
| tag | Docker image tag | See Docker tag description. | ||
| mfpanalytics_recvr.replicas | The number of instances (pods) of PMF Analytics Receiver that needs to be created. | Positive integer (Default: 1. | ||
| mfpanalytics_recvr.autoscaling | enabled | Specifies whether a horizontal pod autoscaler (HPA) is deployed. Note that enabling this field disables the replicaCount field. | false (default) or true. | |
| min | Lower limit for the number of pods that can be set by the autoscaler. | Positive integer (defaults to 1). | ||
| max | Upper limit for the number of pods that can be set by the autoscaler. Cannot be lower than min. | Positive integer (defaults to 10). | ||
| targetcpu | Target average CPU utilization (represented as a percentage of requested CPU) over all the pods. | Integer between 1 and 100(defaults to 50). | ||
| mfpanalytics_recvr.pdb | enabled | Specify whether to enable/disable PDB. | true (default) or false. | |
| min | minimum available pods | Positive integer (defaults to 1). | ||
| mfpanalytics_recvr | analyticsRecvrSecret | A pre-created secret for receiver. | Refer here. | |
| mfpanalytics_recvr.customConfiguration | Custom configuration (Optional). | Provide Analytics specific additional configuration reference to a pre-created config map. Refer here. | ||
| mfpanalytics_recvr | keystoreSecret | Refer the configuration section to pre-create the secret with keystores and their passwords. | ||
| mfpanalytics_recvr.resources | limits.cpu | Describes the maximum amount of CPU allowed. | Default is 1000m. See Kubernetes - meaning of CPU. | |
| limits.memory | Describes the maximum amount of memory allowed. | Default is 2048Mi. See Kubernetes - meaning of Memory. | ||
| requests.cpu | Describes the minimum amount of CPU required - if not specified will default to limit (if specified) or otherwise implementation-defined value. | Default is 750m. See Kubernetes - meaning of CPU. | ||
| requests.memory | Describes the minimum amount of memory required. If not specified, the memory amount will default to the limit (if specified) or the implementation-defined value. | Default is 1024Mi. See Kubernetes - meaning of Memory. | ||
| mfpappcenter | enabled | Flag to enable Application Center | false (default) or true | |
| mfpappcenter.image | repository | Docker image repository | Repository of the PMF Application Center docker image. Make sure the placeholder REPO_URL is replaced with right docker registry url. | |
| tag | Docker image tag | See Docker tag description | ||
| consoleSecret | A pre-created secret for login | Refer here | ||
| mfpappcenter.db | type | Supported database vendor name. | DB2 (default) / MySQL / Oracle | |
| host | IP address or hostname of the database where Appcenter database needs to be configured | |||
| port | Port of the database | |||
| name | Name of the database to be used | The database has to be precreated. | ||
| secret | A precreated secret which has database credentials | |||
| schema | Application Center database schema to be created. | If the schema already exists, it will be used. If not, one will be created. | ||
| ssl | Database connection type | Specify if you database connection has to be http or https. Default value is false (http). Make sure that the database port is also configured for the same connection mode | ||
| driverPvc | Persistent Volume Claim to access the JDBC Database Driver | Specify the name of the persistent volume claim that hosts the JDBC database driver. Required if the database type selected is not DB2 | ||
| adminCredentialsSecret | Application Center DB Admin Secret | If you have enabled DB initialization, then provide the secret to create database tables and schemas for PMF components | ||
| mfpappcenter.autoscaling | enabled | Specifies whether a horizontal pod autoscaler (HPA) is deployed. Note that enabling this field disables the replicaCount field. | false (default) or true | |
| min | Lower limit for the number of pods that can be set by the autoscaler. | Positive integer (default to 1) | ||
| max | Upper limit for the number of pods that can be set by the autoscaler. Cannot be lower than minReplicas. | Positive integer (default to 10) | ||
| targetcpu | Target average CPU utilization (represented as a percentage of requested CPU) over all the pods. | Integer between 1 and 100(default to 50) | ||
| mfpappcenter.pdb | enabled | Specifu whether to enable/disable PDB. | true (default) or false | |
| min | minimum available pods | Positive integer (default to 1) | ||
| mfpappcenter.customConfiguration | Custom configuration (Optional) | Provide Application Center specific additional configuration reference to a pre-created config map. Refer here | ||
| mfpappcenter | keystoreSecret | Refer the configuration section to pre-create the secret with keystores and their passwords. | ||
| mfpappcenter.resources | limits.cpu | Describes the maximum amount of CPU allowed. | Default is 1000m. See Kubernetes - meaning of CPU | |
| limits.memory | Describes the maximum amount of memory allowed. | Default is 2048Mi. See Kubernetes - meaning of Memory | ||
| requests.cpu | Describes the minimum amount of CPU required - if not specified will default to limit (if specified) or otherwise implementation-defined value. | Default is 750m. See Kubernetes - meaning of CPU | ||
| requests.memory | Describes the minimum amount of memory required. If not specified, the memory amount will default to the limit (if specified) or the implementation-defined value. | Default is 1024Mi. See Kubernetes - meaning of Memory |
[OPTIONAL] Creating Custom Defined Console Login secrets
By default, the console login secrets for all the PMF components are created automatically during the deployment. Optionally one can choose to create Login Secret to access Server, Analytics and Application Center console explictly. The secret created should be provided for the property consoleSecret in charts_v1_mfoperator_cr.yaml. Following is the example.
For Server,
kubectl create secret generic serverlogin --from-literal=MFPF_ADMIN_USER=admin --from-literal=MFPF_ADMIN_PASSWORD=admin
For Analytics,
kubectl create secret generic analyticslogin --from-literal=MFPF_ANALYTICS_ADMIN_USER=admin --from-literal=MFPF_ANALYTICS_ADMIN_PASSWORD=admin
For Analytics receiver,
kubectl create secret generic analytics_recvrsecret --from-literal=MFPF_ANALYTICS_RECVR_USER=admin --from-literal=MFPF_ANALYTICS_RECVR_PASSWORD=admin
For Application Center,
kubectl create secret generic appcenterlogin --from-literal=MFPF_APPCNTR_ADMIN_USER=admin --from-literal=MFPF_APPCNTR_ADMIN_PASSWORD=admin
NOTE: If these secrets are not provided, they are created with default username and password of admin/{random-password} during the installation of PMF.
[OPTIONAL] Creating TLS secret for ingress configuration
PMF components can be configured with hostname based Ingress for external clients to reach them using hostname. The Ingress can be secured by using a TLS private key and certificate. The TLS private key and certificate must be defined in a secret with key names tls.key and tls.crt.
The secret mf-tls-secret is created in the same namespace as the Ingress resource by using the following command.
kubectl create secret tls mf-tls-secret --key=/path/to/tls.key --cert=/path/to/tls.crt
The name of the secret is then provided in the field global.ingress.secret in the custom resource configuration yaml.
[OPTIONAL] Creating custom keyStore secret for the deployments
You can provide your own keystore and truststore to Server, Push, Analytics and Application Center deployment by creating a secret with your own keystore and truststore.
Pre-create a secret with keystore.jks and truststore.jks along with keystore and trustore password using the literals KEYSTORE_PASSWORD and TRUSTSTORE_PASSWORD provide the secret name in the field keystoreSecret of respective component.
Below is an example of creating keystore secret for the server deployment using keystore.jks, truststore.jks and set their passwords.
kubectl create secret generic server-secret --from-file=./keystore.jks --from-file=./truststore.jks --from-literal=KEYSTORE_PASSWORD=worklight --from-literal=TRUSTSTORE_PASSWORD=worklight
NOTE: The names of the files and literals should be the same as mentioned in command above. Provide this secret name in
keystoresSecretNameinput field of respective component to override the default keystores when configuring the helm chart.
[OPTIONAL] Creating secrets for confidential clients
PMF Server is predefined with confidential clients for Admin Service. The credentials for these clients are provided in the mfpserver.adminClientSecret and mfpserver.pushClientSecret fields.
These secrets can be created as follows:
kubectl create secret generic mf-admin-client --from-literal=MFPF_ADMIN_AUTH_CLIENTID=admin --from-literal=MFPF_ADMIN_AUTH_SECRET=admin
kubectl create secret generic mf-push-client --from-literal=MFPF_PUSH_AUTH_CLIENTID=admin --from-literal=MFPF_PUSH_AUTH_SECRET=admin
If the values for these fields mfpserver.pushClientSecret, mfpserver.adminClientSecret and mfpserver.liveupdateClientSecret are not provided during helm chart installation, default client secrets are created respectively with below credentials as follows:
admin / nimdaformfpserver.adminClientSecretpush / hsupformfpserver.pushClientSecretliveupdate / etadpuevilformfpserver.liveupdateClientSecret
[OPTIONAL] Custom Server Configuration
To customise the configuration (example: modifying a log trace setting, adding a new jndi property and so on), you will have to create a configmap with the configuration XML file. This allows you to add a new configuration setting or override the existing configurations of the PMF components.
The custom configuration is accessed by the PMF components through a configMap (mfpserver-custom-config) which can be created as follows -
kubectl create configmap mfpserver-custom-config --from-file=<configuration file in XML format>
The configmap created using the above command should be provided in the Custom Server Configuration in the Helm chart while deploying PMF.
Below is an example of setting the trace log specification to warning (The default setting is info) using mfpserver-custom-config configmap.
- Sample config XML (logging.xml)
<server>
<logging maxFiles="5" traceSpecification="com.ibm.mfp.*=debug:*=warning"
maxFileSize="20" />
</server>
- Creating configmap and add the same during the helm chart deployment
kubectl create configmap mfpserver-custom-config --from-file=logging.xml
- Notice the change in the messages.log (of PMF components) - Property traceSpecification will be set to com.ibm.mfp.=debug:*=warning.
[OPTIONAL] Using custom generated LTPA keys
By default, the images of PMF bundles a set of ltpa.keys for each PMF component. In production environment, when there is a need to update the out-of-the-box ltpa.keys with custom generated ones, you can use custom configuration to add any custom generated ltpa.keys along with the config xml.
Following is the config sample ltpa.xml.
<server description="mfpserver">
<ltpa
keysFileName="ltpa.keys" />
<webAppSecurity ssoUseDomainFromURL="true" />
</server>
The following command is an example of adding the custom LTPA keys.
kubectl create configmap mfpserver-custom-config --from-file=ltpa.xml --from-file=ltpa.keys
For more details about the LTPA keys generation and other details, refer to the Liberty documentation.
Note: Having multiple custom-configmaps is not supported for adding custom configuration, instead it is recommended to create the custom configuration configmap as follows.
kubectl create configmap mfpserver-custom-config --from-file=ltpa.xml --from-file=ltpa.keys --from-file=moreconfig.xml
[OPTIONAL] Using Taint and Tolerations
Taints and tolerations allow the node to control which pods should (or should not) be scheduled on them.
Note: This feature is only available on PMF component images version 9.1.0 or later.
Adding a Taint to an Existing Node
You add a taint to a node using the oc adm taint command. Refer to Taint and Tolerations to know more about the parameter usage.
oc adm taint nodes <node-name> <key>=<value>:<effect>
For example:
oc adm taint nodes worker-node1 dedicated=ibm-mf-server:NoExecute
Enabling a Toleration in Custom Resource
You can add toleration to a pod by enabling the tolerations property in the Custom Resource.yaml and by setting the required properties key, value, operator, and effect. By default, tolerations are set to false.
For example:
Enabling Toleration for mfpserver deployment:
tolerations:
enabled: true
key: "dedicated"
operator: "Equal"
value: "ibm-mf-server"
effect: "NoSchedule"
Last modified on