What Is Cloud Container Engine

What Is Cloud Container Engine

Cloud Container Engine (CCE) is a hosted Kubernetes product or service that simplifies the deployment and management of containerized applications. With CCE, you can easily create Kubernetes clusters, deploy containerized applications, and manage and maintain them.

Cloud Container Engine (CCE) is a hosted Kubernetes product or service that simplifies the deployment and management of containerized applications. With CCE, you can easily create Kubernetes clusters, deploy containerized applications, and manage and maintain them.

Free Packages Free

Register now to take advantage of these incredible deals

Huawei Cloud Blossom Program

Help your business bloom with cloud resource discounts, free trainings, and so on

Why CCE

  • Faster Setup

    Get your clusters up and running in just a few clicks, and minimize heavy lifting by auto deploying and maintaining containers. With out-of-the-box support for Docker and Kubernetes, CCE takes care of the behind-the-scene configurations.

    Get your clusters up and running in just a few clicks, and minimize heavy lifting by auto deploying and maintaining containers. With out-of-the-box support for Docker and Kubernetes, CCE takes care of the behind-the-scene configurations.

  • Hybrid Deployment

    Deploy VMs and bare metal servers, or pool heterogeneous nodes (GPU-/NPU-enabled) to build secure, efficient container running environments powered by a high-performance network model.

    Deploy VMs and bare metal servers, or pool heterogeneous nodes (GPU-/NPU-enabled) to build secure, efficient container running environments powered by a high-performance network model.

  • Enterprise-Ready Availability and Security

    Ensure your HA and security with three master nodes on the control plane, cross-AZ deployment of nodes and applications, fully private clusters, Kubernetes RBAC, etc.

    Ensure your HA and security with three master nodes on the control plane, cross-AZ deployment of nodes and applications, fully private clusters, Kubernetes RBAC, etc.

  • Open Source Compatibility

    Run your workloads on a certified Kubernetes platform. CCE is one of the first container platforms to pass the Certified Kubernetes Conformance Program offered by the Cloud Native Computing Foundation (CNCF), where Huawei is a founding and premium member. Huawei also gained its seat on the Kubernetes Steering Committee.

    Run your workloads on a certified Kubernetes platform. CCE is one of the first container platforms to pass the Certified Kubernetes Conformance Program offered by the Cloud Native Computing Foundation (CNCF), where Huawei is a founding and premium member. Huawei also gained its seat on the Kubernetes Steering Committee.

Application Scenarios

Auto Scaling

Autoscale your computing resources in line with fluctuating demands by adding or reducing cloud servers or containers with zero effort on your end. This allows you to achieve service stability.

Advantages

  • High Scalability

    Make the most of multiple policies to scale your containers in mere seconds.

  • High Availability

    Automatically detect the statuses of pods in your auto-scaling groups to keep your clusters running like clockwork.

  • Pay-As-You-Go Pricing

    Pay only for the cloud servers you use and redirect funds into other avenues of your business.

Related Services
ECS
AOM

DevOps

CCE fits in perfectly with existing continuous integration and continuous delivery (CI/CD) pipelines, allowing you to use source code to automatically compile code, create images, complete grayscale releases, and build containers — all in one place.

Advantages

  • Streamlined Operations

    Stay on top of your work by substantially reducing your scripting workload (over 80%) through streamlined process interaction.

  • Easy Integration

    Utilize various APIs to integrate CCE with your existing CI/CD systems and enjoy the benefits of flexible customization.

  • Flexible Scheduling

    Freely choose how to schedule your tasks with a fully containerized architecture that promotes more efficient execution.

Related Services
OBS
VPN

Hybrid Cloud

Seamlessly orchestrate applications and data both on-premises and on cloud. Collectively manage your containers for flexible resource scheduling and reliable disaster recovery (DR).

Advantages

  • Reduced Costs

    Take advantage of Huawei Cloud's resource pool to rapidly scale during peak hours. Compared to building a private cloud from scratch, the savings are worth writing home about.

  • High Availability

    Protect your service systems from outages using a multi-cloud DR approach. If one cloud is faulty, your system loads will be automatically diverted to other clouds, allowing you to maintain service continuity.

  • Complementary Technologies

    Get the best of both the on-premises system and the cloud. The on-premises system works seamlessly with other Huawei Cloud services, giving you a wide range of added benefits.

Related Services
ECS
DC
SWR
VPN

AI Containers

Run your containers on high-performance GPU-accelerated cloud servers to take your AI computing to the next level. By sharing GPUs between multiple containers, you can minimize idle time and drastically reduce costs.

Advantages

  • High-performance

    Considerably improve your AI computing performance with the bare-metal NUMA architecture and high-speed InfiniBand NICs.

  • Efficient

    Fully utilize your GPUs by sharing and scheduling them between multiple containers. This helps you keep your costs in check.

  • Tried-and-Tested

    Run your AI containers with any mainstream GPU without facing compatibility issues. AI containers have been put into large-scale use and demonstrated their value in Huawei Cloud's Enterprise Intelligence (EI) products.

Related Services
ELB
OBS

Functions of Cloud Container Engine

One-stop Deployment and O&M

Create Kubernetes clusters, automate app deployment and O&M — all in one place.

High Availability

Ensure your service continuity with a highly available cluster control plane and cross-AZ deployment of nodes and applications.

Application Scheduling

Balance the performance and reliability with affinity and anti-affinity policies set for workloads, nodes, and AZs.

Easy Scaling

Autoscale your nodes and workloads with HPA and CustomedHPA policies to handle fluctuating demands.

Compatible with Kubernetes and Docker

Enjoy our full support for the most recent Kubernetes and Docker releases, native APIs, and command line tool.

DevOps

Easily connect to Jenkins and GitLab for your container delivery with no need to manually define Dockerfiles.

Underlying IaaS Resources

Directly use Huawei Cloud high-performance compute (ECS/BMS), networking (VPC/EIP/ELB), and storage (EVS/OBS/SFS) services.

Identity Authentication

You can use CCE via the CCE console, APIs, and SDKs, but all your requests must be authenticated.

CCE provides identity authentication for cloud services and clusters.

For cloud services, APIs are opened through API Gateway. You can operate cloud infrastructure resources (for example, creating nodes) and cluster resources (for example, creating workloads). Two authentication modes are available. Use either of them. For details, see Authentication.

  1. Token: Requests are authenticated using tokens. For details about tokens, see Obtaining a User Token Through Password Authentication.
  2. AK/SK: Requests are encrypted using AK/SK pairs. This mode is more secure. For details about access keys, see Access Keys.

For clusters, CCE allows you to operate cluster resources (for example, creating workloads) through the Kubernetes native API server, but not cloud infrastructure resources (for example, creating nodes). You need to access the cluster using a kubeconfig file. For details, see Connecting to a Cluster Using kubectl. You can obtain a kubeconfig file in the following ways:

  1. Console: Obtaining a Cluster Certificate
  2. API: Obtaining a Cluster Certificate

Access Control

CCE combines IAM and Kubernetes RBAC for you to manage cluster and namespace permissions. You can assign different permissions for IAM users and user groups under your account. For details, see Permissions Management.

Table 1 CCE access control

Permissions
Description
Documentation

Cluster

Cluster permissions management evolves out of IAM system policies. IAM users in the same user group have the same permissions. On IAM, you can configure system policies to describe which IAM user groups can perform which operations on cluster resources. For example, you can grant user group A permissions to create and delete cluster X, add nodes, or install add-ons, while granting user group B permissions to view information about cluster X.

Cluster Permissions (IAM-based)

Namespace

You can regulate users' or user groups' access to Kubernetes resources in a single namespace based on their Kubernetes RBAC roles. CCE has been enhanced based on open source capabilities. You can assign RBAC roles to IAM users or user groups on the CCE console or calling APIs using IAM tokens.

Namespace Permissions (Kubernetes RBAC-based)

Logs

CCE allows you to configure policies for collecting, managing, and analyzing workload logs periodically to prevent logs from being over-sized.

CCE works with AOM to collect workload logs. When a node is created, the ICAgent (the DaemonSet named icagent in the kube-system namespace of the cluster) of AOM is installed by default. After the ICAgent collects workload logs (*.log, *.trace, and *.out formats) and reports them to AOM, you can view them on the CCE or AOM console.

For details about workload logging, see Container Logs.

Documentation

  • Shared Responsibilities

    Huawei guarantees that its commitment to cyber security will never be outweighed by the consideration of commercial interests. 

    Huawei guarantees that its commitment to cyber security will never be outweighed by the consideration of commercial interests. 

    Learn More

  • Pricing Details

    Cloud Container Engine (CCE) is free of charge. You only pay for the resources (such as nodes) created when you are using CCE. 

    Cloud Container Engine (CCE) is free of charge. You only pay for the resources (such as nodes) created when you are using CCE. 

    Learn More

  • Basic Concepts

    CCE provides highly scalable, high-performance, enterprise-class Kubernetes clusters and supports Docker containers. 

    CCE provides highly scalable, high-performance, enterprise-class Kubernetes clusters and supports Docker containers. 

  • Container and Kubernetes

    Container technologies originate from Linux. Containers provide lightweight virtualization, allow process and resource isolation, and become popular since the emergence of Docker. 

    Container technologies originate from Linux. Containers provide lightweight virtualization, allow process and resource isolation, and become popular since the emergence of Docker. 

    Learn More

  • Getting Started

    This section describes how to use Cloud Container Engine (CCE) and provides frequently asked questions (FAQs) to help you quickly get started with CCE.

    This section describes how to use Cloud Container Engine (CCE) and provides frequently asked questions (FAQs) to help you quickly get started with CCE.

    Learn More

  • Creating a Kubernetes Cluster

    This section describes how to quickly create a CCE cluster. For details, see Buying a CCE Cluster. In this example, the default or simple configurations are in use.

    This section describes how to quickly create a CCE cluster. For details, see Buying a CCE Cluster. In this example, the default or simple configurations are in use.

    Learn More

  • Adding Nodes for Management

    In CCE, you can Creating a Node or add existing nodes (ECSs/BMSs) into your cluster. These nodes can be billed in yearly/monthly or pay-per-use mode.

    In CCE, you can Creating a Node or add existing nodes (ECSs/BMSs) into your cluster. These nodes can be billed in yearly/monthly or pay-per-use mode.

    Learn More

  • Custom Monitoring

    CCE allows you to upload custom metrics to AOM. The ICAgent on a node periodically calls the metric monitoring API configured on a workload to read monitoring data and then uploads the data to AOM.

    CCE allows you to upload custom metrics to AOM. The ICAgent on a node periodically calls the metric monitoring API configured on a workload to read monitoring data and then uploads the data to AOM.

    Learn More

  • Auto Scaling

    Auto scaling is a service that automatically and economically adjusts service resources based on your service requirements and configured policies.

    Auto scaling is a service that automatically and economically adjusts service resources based on your service requirements and configured policies.

    Learn More

FAQs

Videos About CCE

Kubernetes Objects

04:26

Kubernetes Objects

Introduction Kubernetes Cluster

02:33

Introduction Kubernetes Cluster

Creating Kubernetes Cluster

08:30

Creating Kubernetes Cluster

CCE Service Introduction

03:10

CCE Service Introduction

Kubernetes Objects

04:26

Kubernetes Objects

Introduction Kubernetes Cluster

02:33

Introduction Kubernetes Cluster

Creating Kubernetes Cluster

08:30

Creating Kubernetes Cluster

CCE Service Introduction

03:10

CCE Service Introduction

We use cookies to improve our site and your experience. By continuing to browse our site you accept our cookie policy. Find out more