openshift
diff --git a/‎_topic_maps/_topic_map.yml
Lines changed: 8 additions & 0 deletions b/‎_topic_maps/_topic_map.yml
Lines changed: 8 additions & 0 deletions
diff --git a/‎modules/log6x-logging-clo-cli-install.adoc
Lines changed: 163 additions & 0 deletions b/‎modules/log6x-logging-clo-cli-install.adoc
Lines changed: 163 additions & 0 deletions
diff --git a/‎modules/log6x-logging-clo-gui-install.adoc
Lines changed: 163 additions & 0 deletions b/‎modules/log6x-logging-clo-gui-install.adoc
Lines changed: 163 additions & 0 deletions
@@ -2997,6 +2997,8 @@ Topics:
       File: log6x-release-notes-6.2
     - Name: About logging 6.2
       File: log6x-about-6.2
+    - Name: Installing Logging
+      File: 6x-cluster-logging-deploying-6.2
     - Name: Configuring log forwarding
       File: log6x-clf-6.2
     - Name: Configuring the logging collector
@@ -3014,6 +3016,8 @@ Topics:
       File: log6x-release-notes-6.1
     - Name: About logging 6.1
       File: log6x-about-6.1
+    - Name: Installing Logging
+      File: 6x-cluster-logging-deploying-6.1
     - Name: Configuring log forwarding
       File: log6x-clf-6.1
     - Name: Configuring the logging collector
@@ -3033,6 +3037,8 @@ Topics:
       File: log6x-release-notes
     - Name: About logging 6.0
       File: log6x-about
+    - Name: Installing Logging
+      File: 6x-cluster-logging-deploying-6.0
     - Name: Upgrading to Logging 6.0
       File: log6x-upgrading-to-6
     - Name: Configuring log forwarding
@@ -3050,6 +3056,8 @@ Topics:
     Topics:
     - Name: Release notes
       File: logging-5-8-release-notes
+    - Name: Installing Logging
+      File: cluster-logging-deploying
     - Name: Configuring the logging collector
       File: cluster-logging-collector
 #  - Name: Support
 
@@ -0,0 +1,163 @@
+// Module is included in the following assemblies:
+//
+// 
+:_mod-docs-content-type: PROCEDURE
+[id="log6x-installing-logging-operator_{context}"]
+= Installing {clo} by using the CLI
+
+Install {clo} on your {product-title} cluster to collect and forward logs to a log store by using the {oc-first}.
+
+.Prerequisites
+
+* You have administrator permissions.
+* You installed the {oc-first}.
+* You installed and configured {loki-op}.
+* You have created the `openshift-logging` namespace.
+
+.Procedure
+
+. Create an `OperatorGroup` object:
++
+.Example `OperatorGroup` object
+[source,yaml]
+----
+apiVersion: operators.coreos.com/v1
+kind: OperatorGroup
+metadata:
+  name: cluster-logging
+  namespace: openshift-logging # <1>
+spec:
+  upgradeStrategy: Default
+----
+<1> You must specify `openshift-logging` as the namespace.
+
+. Apply the `OperatorGroup` object by running the following command:
++
+[source,terminal]
+----
+$ oc apply -f <filename>.yaml
+----
+
+. Create a `Subscription` object for {clo}:
++
+.Example `Subscription` object
+[source,yaml]
+----
+apiVersion: operators.coreos.com/v1alpha1
+kind: Subscription
+metadata:
+  name: cluster-logging
+  namespace: openshift-logging # <1>
+spec:
+  channel: stable-6.<y> # <2>
+  installPlanApproval: Automatic # <3>
+  name: cluster-logging
+  source: redhat-operators # <4>
+  sourceNamespace: openshift-marketplace
+----
+<1> You must specify `openshift-logging` as the namespace.
+<2> Specify `stable-6.<y>` as the channel.
+<3> If the approval strategy in the subscription is set to `Automatic`, the update process initiates as soon as a new operator version is available in the selected channel. If the approval strategy is set to `Manual`, you must manually approve pending updates.
+<4> Specify `redhat-operators` as the value. If your {product-title} cluster is installed on a restricted network, also known as a disconnected cluster, specify the name of the `CatalogSource` object that you created when you configured Operator Lifecycle Manager (OLM).
+
+. Apply the `Subscription` object by running the following command:
++
+[source,terminal]
+----
+$ oc apply -f <filename>.yaml
+----
+
+. Create a service account to be used by the log collector:
++
+[source,terminal]
+----
+$ oc create sa logging-collector -n openshift-logging
+----
+
+. Assign the necessary permissions to the service account for the collector to be able to collect and forward logs. In this example, the collector is provided permissions to collect logs from both infrastructure and application logs.
++
+[source,terminal]
+----
+$ oc adm policy add-cluster-role-to-user logging-collector-logs-writer -z logging-collector -n openshift-logging
+$ oc adm policy add-cluster-role-to-user collect-application-logs -z logging-collector -n openshift-logging
+$ oc adm policy add-cluster-role-to-user collect-infrastructure-logs -z logging-collector -n openshift-logging
+----
+
+. Create a `ClusterLogForwarder` CR:
++
+.Example `ClusterLogForwarder` CR
+[source,yaml]
+----
+apiVersion: observability.openshift.io/v1
+kind: ClusterLogForwarder
+metadata:
+  name: instance
+  namespace: openshift-logging # <1>
+spec:
+  serviceAccount:
+    name: logging-collector # <2>
+  outputs:
+  - name: lokistack-out
+    type: lokiStack # <3>
+    lokiStack:
+      target: # <4>
+        name: logging-loki 
+        namespace: openshift-logging
+      authentication:
+        token:
+          from: serviceAccount
+    tls:
+      ca:
+        key: service-ca.crt
+        configMapName: openshift-service-ca.crt
+  pipelines:
+  - name: infra-app-logs
+    inputRefs: # <5>
+    - application
+    - infrastructure
+    outputRefs:
+    - lokistack-out
+----
+<1> You must specify the `openshift-logging` namespace.
+<2> Specify the name of the service account created before.
+<3> Select the `lokiStack` output type to send logs to the `LokiStack` instance.
+<4> Point the `ClusterLogForwarder` to the `LokiStack` instance created earlier.
+<5> Select the log output types you want to send to the `LokiStack` instance.
+
+. Apply the `ClusterLogForwarder CR` object by running the following command:
++
+[source,terminal]
+----
+$ oc apply -f <filename>.yaml
+----
+
+.Verification
+
+. Verify the installation by running the following command:
++
+[source,terminal]
+----
+$ oc get pods -n openshift-logging
+----
++
+.Example output
+[source,terminal]
+----
+$ oc get pods -n openshift-logging
+NAME                                               READY   STATUS    RESTARTS   AGE
+cluster-logging-operator-fb7f7cf69-8jsbq           1/1     Running   0          98m
+instance-222js                                     2/2     Running   0          18m
+instance-g9ddv                                     2/2     Running   0          18m
+instance-hfqq8                                     2/2     Running   0          18m
+instance-sphwg                                     2/2     Running   0          18m
+instance-vv7zn                                     2/2     Running   0          18m
+instance-wk5zz                                     2/2     Running   0          18m
+logging-loki-compactor-0                           1/1     Running   0          42m
+logging-loki-distributor-7d7688bcb9-dvcj8          1/1     Running   0          42m
+logging-loki-gateway-5f6c75f879-bl7k9              2/2     Running   0          42m
+logging-loki-gateway-5f6c75f879-xhq98              2/2     Running   0          42m
+logging-loki-index-gateway-0                       1/1     Running   0          42m
+logging-loki-ingester-0                            1/1     Running   0          42m
+logging-loki-querier-6b7b56bccc-2v9q4              1/1     Running   0          42m
+logging-loki-query-frontend-84fb57c578-gq2f7       1/1     Running   0          42m
+----
@@ -0,0 +1,163 @@
+:_mod-docs-content-type: PROCEDURE
+[id="log6x-installing-logging-operator-using-web-console_{context}"]
+= Installing {clo} by using the web console
+
+Install {clo} on your {product-title} cluster to collect and forward logs to a log store from the OperatorHub by using the {product-title} web console.
+
+.Prerequisites
+
+* You have administrator permissions.
+* You have access to the {product-title} web console.
+* You installed and configured {loki-op}.
+
+.Procedure
+
+. In the {product-title} web console *Administrator* perspective, go to *Operators* -> *OperatorHub*.
+
+. Type {clo} in the *Filter by keyword* field. Click *{clo}* in the list of available Operators, and then click *Install*.
+
+. Select *stable-x.y* as the *Update channel*. The latest version is already selected in the *Version* field.
++
+The {clo} must be deployed to the {logging} namespace `openshift-logging`, so the *Installation mode* and *Installed Namespace* are already selected. If this namespace does not already exist, it will be created for you.
+
+. Select *Enable Operator-recommended cluster monitoring on this namespace.*
++
+This option sets the `openshift.io/cluster-monitoring: "true"` label in the `Namespace` object. You must select this option to ensure that cluster monitoring scrapes the `openshift-logging` namespace.
+
+. For *Update approval* select *Automatic*, then click *Install*.
++
+If the approval strategy in the subscription is set to *Automatic*, the update process initiates as soon as a new operator version is available in the selected channel. If the approval strategy is set to *Manual*, you must manually approve pending updates.
++
+[NOTE]
+====
+An Operator might display a `Failed` status before the installation completes. If the operator installation completes with an `InstallSucceeded` message, refresh the page.
+====
+
+. While the operator installs, create the service account that will be used by the log collector to collect the logs. 
+
+.. Click the *+* in the top right of the screen to access the *Import YAML* page. 
+
+.. Enter the YAML definition for the service account. 
++
+.Example `ServiceAccount` object
+[source,yaml]
+----
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: logging-collector # <1>
+  namespace: openshift-logging # <2>
+----
+<1> Note down the name used for the service account `logging-collector` to use it later when creating the `ClusterLogForwarder` resource.
+<2> Set the namespace to `openshift-logging` because that is the namespace for deploying the `ClusterLogForwarder` resource.
+
+.. Click the *Create* button.
+
+. Create the `ClusterRoleBinding` objects to grant the necessary permissions to the log collector for accessing the logs that you want to collect and to write the log store, for example infrastructure and application logs.
+
+.. Click the *+* in the top right of the screen to access the *Import YAML* page. 
+
+.. Enter the YAML definition for the `ClusterRoleBinding` resources.
++
+.Example `ClusterRoleBinding` resources
+[source,yaml]
+----
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: logging-collector:write-logs
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: logging-collector-logs-writer # <1>
+subjects:
+- kind: ServiceAccount
+  name: logging-collector
+  namespace: openshift-logging
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: logging-collector:collect-application
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: collect-application-logs # <2>
+subjects:
+- kind: ServiceAccount
+  name: logging-collector
+  namespace: openshift-logging
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: logging-collector:collect-infrastructure
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: collect-infrastructure-logs # <3>
+subjects:
+- kind: ServiceAccount
+  name: logging-collector
+  namespace: openshift-logging
+----
+<1> The cluster role to allow the log collector to write logs to LokiStack.
+<2> The cluster role to allow the log collector to collect logs from applications.
+<3> The cluster role to allow the log collector to collect logs from infrastructure.
+
+.. Click the *Create* button.
+
+. Go to the *Operators* -> *Installed Operators* page. Select the  operator and click the *All instances* tab.
+
+. After granting the necessary permissions to the service account, navigate to the *Installed Operators* page. Select the {clo} under the *Provided APIs*, find the *ClusterLogForwarder* resource and click *Create Instance*.
+
+. Select *YAML view*, and then use the following template to create a `ClusterLogForwarder` CR:
++
+.Example `ClusterLogForwarder` CR
+[source,yaml]
+----
+apiVersion: observability.openshift.io/v1
+kind: ClusterLogForwarder
+metadata:
+  name: instance
+  namespace: openshift-logging # <1>
+spec:
+  serviceAccount:
+    name: logging-collector # <2>
+  outputs:
+  - name: lokistack-out
+    type: lokiStack # <3>
+    lokiStack:
+      target: # <4>
+        name: logging-loki 
+        namespace: openshift-logging
+      authentication:
+        token:
+          from: serviceAccount
+    tls:
+      ca:
+        key: service-ca.crt
+        configMapName: openshift-service-ca.crt
+  pipelines:
+  - name: infra-app-logs
+    inputRefs: # <5>
+    - application
+    - infrastructure
+    outputRefs:
+    - lokistack-out
+----
+<1> You must specify `openshift-logging` as the namespace.
+<2> Specify the name of the service account created earlier.
+<3> Select the `lokiStack` output type to send logs to the `LokiStack` instance.
+<4> Point the `ClusterLogForwarder` to the `LokiStack` instance created earlier.
+<5> Select the log output types you want to send to the `LokiStack` instance.
+
+. Click *Create*.
+
+.Verification
+. In the *ClusterLogForwarder* tab verify that you see your `ClusterLogForwarder` instance.
+
+. In the *Status* column, verify that you see the messages: 
+
+* `Condition: observability.openshift.io/Authorized`
+* `observability.openshift.io/Valid, Ready`