Yandex Managed Service for Kubernetes®
A service for managing Kubernetes® clusters in Yandex Cloud. Scaling of up to 1000+ nodes. Up to 60% cost savings.
companies use the service
clusters maintained
cores supported
Our clients
The advantages of managed Kubernetes
Quick start
Create a Kubernetes cluster, add a group of nodes to it, and get started right away. Use management tools you are familiar with: kubectl, Helm®, Terraform, and the UI console.
We take care of the cluster
And we update all the infrastructure components. New versions of Kubernetes become available in the quarter following the official release date, and their gradual distribution through release channels ensures a high level of reliability for updates.
Resiliency and scalability
Choose a master type: basic or high-availablity, which is automatically replicated across three geographically distributed availability zones. Autoscaling, automatic cluster recovery, seamless updates, and various release channels for different tasks are available out of the box.
Ready-made solutions for operational tasks
Ready-made tools for collecting telemetry from the cluster and applications running in it. Integration with Cloud DNS and Certificate Manager for centralized certificate management. Network Load Balancer and Application Load Balancer support for balancing incoming traffic.
We take care of most of the cluster maintenance
Independent control
Control on the Yandex Cloud side
Enterprise security standards for infrastructure and Kubernetes
Kubernetes secret encryption
All communications between the master and cluster nodes are encrypted using the TLS protocol, and PV disk encryption is supported for persistent volumes. You can also encrypt secrets in the cluster using a Yandex Key Management Service (KMS) key. This will protect sensitive information: passwords, tokens, and SSH keys.
Comprehensive protection for K8S clusters
In the Yandex Security Deck, KSPM control identifies vulnerabilities and errors in the configuration of worker nodes according to the CIS Kubernetes® Benchmark standard, protects against threats based on the Threat Matrix for Kubernetes® (Microsoft), and verifies compliance with Pod Security Standards and corporate policies, allowing you to flexibly configure security rules.
Access management and teamwork
Managed Service for Kubernetes® is integrated with Yandex IAM service account federations. This allows external systems to work safely with Yandex Cloud via OIDC without keys, reducing the risks of leaks and unauthorized access.
Yandex Cloud ecosystem for effective work with Kubernetes
Yandex Cloud has more than 75 interconnected services for building scalable infrastructure, storing, processing, and analyzing data, machine learning, and development. It also has specialized services and solutions for Kubernetes:
K8s plugin marketplace
A new routing solution in K8s: Yandex Cloud Gwin is a Kubernetes controller for integration with Application Load Balancer. This product allows you to manage cloud load balancers using standard Kubernetes resources (Ingress, Gateway API) and proprietary Custom Resource Definitions (CRD).
Native integration with Yandex Cloud services
You can connect to the Yandex Cloud Registry repository and store Docker® images near the infrastructure, configure Yandex Security Deck to identify vulnerabilities and bugs, and use Network Load Balancer and Application Load Balancer to balance incoming traffic.
Management tools
Kubernetes Cluster API, a provider for deploying user-managed Kubernetes clusters on Yandex Cloud infrastructure.
Create a hybrid, cloud, or on-premises installation
As Kubernetes cluster nodes, you can connect Yandex BareMetal servers or servers located outside Yandex Cloud, in your own data centers or in other clouds.
Cloud cluster with CPU
Cloud cluster with GPU
Dedicated physical server
Impement your projects with Managed Service for Kubernetes
Questions and answers
Managed Service for Kubernetes fully manages the master node and provides tools for node diagnostics and their recovery.