Merge pull request #221 from ikartavtcev/dev

LU-3642: Update public documentation for cl9

Author: iatmachian

docs/cloudlinux_installation/README.md

@@ -77,7 +77,7 @@ Please refer to the [guide](#license-activation) to get activation key.
 
 Currently supported OS for conversion:
 * CentOS 7
-* AlmaLinux OS 8
+* AlmaLinux OS 8, AlmaLinux OS 9
 * RockyLinux (installation only, no uninstall option)
 
 
@@ -190,6 +190,65 @@ If you receive any troubles during the conversion process,
 please feel free to search our [knowledgebase](https://cloudlinux.zendesk.com/hc/en-us) 
 or contact our support and attach the conversion log (/var/log/cldeploy.log).
 
+### Technical details: How to enable secure boot for cl9
+
+#### Overview
+CloudLinux 9 uses non-modified AlmaLinux 9 kernel.\
+To make secure boot work with CloudLinux's kernel module you need to enroll CloudLinux secure boot key to your server.\
+This procedure shows how to do it
+
+#### Requirements
+* UEFI support
+* mokutil package installed
+* Access to server's BIOS options menu and boot screen
+
+#### Procedure
+1. Download CloudLinux key
+    1. `wget https://repo.cloudlinux.com/cloudlinux/SECURE-BOOT-KEY-cloudlinux-kmod.der`
+2. Import the key
+    1. `mokutil --import SECURE-BOOT-KEY-cloudlinux-kmod.der`
+    2. When prompted, enter a password of your choice. This password will be used when enrolling the key into the MOK list.
+3. Reboot server
+    1. Upon rebooting, the "Shim UEFI key management" screen appears. Press any key withing 10 seconds to proceed.
+4. Enroll the key
+
+Select `Enroll MOK`\
+![Step 1](./images/cl9_secureboot/1.png)
+
+Select `View key 0`\
+![Step 2](./images/cl9_secureboot/2.png)
+
+Make sure that CloudLinux's Secure Boot Key information is displayed\
+Press the Esc key when you are finished\
+![Step 3](./images/cl9_secureboot/3.png)
+
+Select `Continue` on the screen from Step 2
+It will ask "Enrol the key(s)?".\
+Select `Yes/OK`\
+![Step 4](./images/cl9_secureboot/4.png)
+
+Enter the password you used for importing the key (point 2.ii)\
+![Step 5](./images/cl9_secureboot/5.png)
+
+Select `Reboot` (Older versions may say `Continue boot`)\
+![Step 6](./images/cl9_secureboot/6.png)
+
+Now you can enable Secure Boot in BIOS options menu
+
+#### Useful commands
+* `mokutil --sb-state` to check current Secure Boot state
+* `mokutil --list-enrolled` to show list of enrolled keys
+
+#### If you wish to remove the CloudLinux key from the MOK list, follow the instructions below
+:::warning Warning
+Do not delete the key when secure boot is enabled - server will be unable to boot
+:::
+
+1. Disable Secure Boot
+2. `mokutil --delete SECURE-BOOT-KEY-cloudlinux-kmod.der`
+3. `mokutil --list-delete` (to check the key to be deleted)
+4. Reboot the system and go through the MOK management process to complete the deletion from the MOK list.
+
 ### Technical details: cldeploy
 
 By its design, CloudLinux OS Shared is very close to the upstream operating system - RHEL.
@@ -244,6 +303,10 @@ All CloudLinux OS editions may be installed using one ISO and source.
 
 You can download the latest CloudLinux OS ISO and use it to install CloudLinux OS on your server:
 
+* CloudLinux OS 9
+
+  * x86_64 version: [https://www.repo.cloudlinux.com/cloudlinux/9/iso/x86_64/](https://www.repo.cloudlinux.com/cloudlinux/9/iso/x86_64/)
+
 * CloudLinux OS 8
 
   * x86_64 version: [https://www.repo.cloudlinux.com/cloudlinux/8/iso/x86_64/](https://www.repo.cloudlinux.com/cloudlinux/8/iso/x86_64/)

docs/cloudlinux_installation/images/cl9_secureboot/1.png

@@ -27,6 +27,50 @@
 
 \** Python/Node.js/Ruby Selectors are available only for cPanel, DirectAdmin servers, and servers with custom panel with own integration.
 
+### CloudLinux 9 beta
+The first release of CloudLinux 9 is available as Shared and Shared Pro editions.\
+Admin and Solo editions temporarily unavailable to install or activate because of no panel/custom panel release only.\
+Other editions support will be extended once major control panels add support of CL9.
+
+<details>
+<summary>CloudLinux 9 beta limitations</summary>
+In the non-panel environment, for now, we can guarantee all of the following CloudLinux Shared components functionality:
+
+* LVE limits
+* LVE Stats
+* MySQL Governor
+* CageFS
+* PHP Selector
+* HardenedPHP
+* Apache mod_lsapi PRO
+
+Due to integration restrictions with some panels, we are unable to retrieve panel-related information
+(e.g. a list of domains or handlers used).\
+As a result, we are currently unable to provide the following components:
+
+* PHP X-Ray
+* Slow Site Analyzer
+* Website Monitoring Tool
+* Ruby selector
+* Centralized Monitoring
+
+For the custom panel installations, once integration with the CloudLinux components is set, the following components
+will work in the CloudLinux OS 9 environment:
+
+* LVE limits
+* LVE Stats
+* MySQL Governor
+* CageFS
+* PHP Selector
+* HardenedPHP
+* Python Selector
+* NodeJS Selector
+* Apache mod_lsapi PRO
+* PHP X-Ray
+* Slow Site Analyzer
+* Reseller limits
+</details>
+
 ### CloudLinux OS Solo
 CloudLinux OS Solo is designed for installation on VPS or VDS servers. 
 This edition has major difference agains all other, so you should look for the detailed docs 
@@ -161,3 +205,4 @@ Currently, the following versions are available and supported:
 |CloudLinux OS Shared (Pro) 8 | Mar 17, 2020 | May 31, 2029 |
 |CloudLinux OS Solo (8) | Mar 17, 2020 | May 31, 2029 |
 |CloudLinux OS Admin (8) | Mar 17, 2020 | May 31, 2029 |
+|CloudLinux OS Shared (Pro) 9 | Jan 17, 2023 | May 31, 2032 |