5 Administer and Maintain the Containerized AMC
Follow the best practices mentioned in this topic to efficiently maintain the Containerized AMC.
Security Guidelines
Here are some security recommendations for your Containerized AMC deployments.
-
Secrets: When providing passwords to Containerized AMC deployment, it is recommended to use Kubernetes Secrets instead of plain text.
-
UpToDate images: When a new version of AMC or WebLogic container image is available, download the latest version of
Java_AMC_<version>.ear
file and WebLogic container image, and create a new container image. Applying the latest Critical Patch Update (CPU) or Security Alert is required, older versions are not updated with the latest security patches. Upgrade the currently running Containerized AMC with the newly built image. -
Firewall: Follow the industry-standard practices, such as configuring firewall rules to restrict the network traffic and prevent accidental or malicious threats.
Containerized AMC Maintenance
The WLS and AMC updates are aligned with the Java CPU release cycles. Applying the latest CPU or Security Alert is required, older versions are not updated with the latest security patches. Ensure that the container images are up to date with these versions. When you update the container images, ensure that you upgrade your Containerized AMC deployment.
Database Administration
Any change in the database configuration will require a domain restart. If there are
corresponding changes to the database section of values.yaml
, an
upgrade of your Containerized AMC will
internally trigger a domain restart.