Merge pull request #59703 from xenolinux/metrics-monitoring-cert-manager-operator

OSDOCS#6016: cert-manager: Enabling metrics and monitoring

Author: maxwelldb

_topic_maps/_topic_map.yml

@@ -1011,6 +1011,8 @@ Topics:
     File: cert-manager-operator-install
   - Name: Managing certificates with an ACME issuer
     File: cert-manager-operator-issuer-acme
+  - Name: Enabling monitoring for the cert-manager Operator for Red Hat OpenShift
+    File: cert-manager-monitoring
   - Name: Configuring the egress proxy for the cert-manager Operator for Red Hat OpenShift
     File: cert-manager-operator-proxy
   - Name: Uninstalling the cert-manager Operator for Red Hat OpenShift

modules/cert-manager-enable-metrics.adoc

@@ -0,0 +1,61 @@
+// Module included in the following assemblies:
+//
+// * security/cert_manager_operator/cert-manager-monitoring.adoc
+
+:_content-type: PROCEDURE
+[id="cert-manager-enable-metrics_{context}"]
+= Enabling monitoring by using a service monitor for the {cert-manager-operator}
+
+You can enable monitoring and metrics collection for the {cert-manager-operator} by using a service monitor to perform the custom metrics scraping.
+
+.Prerequisites
+
+* You have access to the cluster with `cluster-admin` privileges.
+* The {cert-manager-operator} is installed.
+
+.Procedure
+
+. Add the label to enable cluster monitoring by running the following command:
++
+[source,terminal]
+----
+$ oc label namespace cert-manager openshift.io/cluster-monitoring=true
+----
+
+. Enable monitoring for user-defined projects. See _Enabling monitoring for user-defined projects_ for instructions.
+
+. Create a service monitor:
+
+.. Create a YAML file that defines the `ServiceMonitor` object:
++
+.Example `service-monitor.yaml` file
+[source,yaml]
+----
+apiVersion: monitoring.coreos.com/v1
+kind: ServiceMonitor
+metadata:
+  labels:
+    app: cert-manager
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: cert-manager
+    app.kubernetes.io/name: cert-manager
+  name: cert-manager
+  namespace: cert-manager
+spec:
+  endpoints:
+  - interval: 30s
+    port: tcp-prometheus-servicemonitor
+    scheme: http
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: cert-manager
+      app.kubernetes.io/name: cert-manager
+----
+
+.. Create the `ServiceMonitor` object by running the following command:
++
+[source,terminal]
+----
+$ oc create -f service-monitor.yaml
+----

modules/cert-manager-query-metrics.adoc

@@ -0,0 +1,36 @@
+// Module included in the following assemblies:
+//
+// * security/cert_manager_operator/cert-manager-monitoring.adoc
+
+:_content-type: PROCEDURE
+[id="cert-manager-query-metrics_{context}"]
+= Querying metrics for the {cert-manager-operator}
+
+After you have enabled monitoring for the {cert-manager-operator}, you can query its metrics by using the {product-title} web console.
+
+.Prerequisites
+
+* You have access to the cluster as a user with the `cluster-admin` role.
+* You have installed the {cert-manager-operator}.
+* You have enabled monitoring and metrics collection for the {cert-manager-operator}.
+
+.Procedure
+
+. From the {product-title} web console, navigate to *Observe* -> *Metrics*.
+
+. Add a query by using one of the following formats:
+
+** Specify the endpoints:
++
+[source,promql]
+----
+{instance="<endpoint>"} <1>
+----
+<1> Replace `<endpoint>` with the value of the endpoint for the `cert-manager` service. You can find the endpoint value by running the following command: `oc describe service cert-manager -n cert-manager`.
+
+** Specify the `tcp-prometheus-servicemonitor` port:
++
+[source,promql]
+----
+{endpoint="tcp-prometheus-servicemonitor"}
+----

security/cert_manager_operator/cert-manager-monitoring.adoc

@@ -0,0 +1,21 @@
+:_content-type: ASSEMBLY
+[id="cert-manager-monitoring"]
+= Enabling monitoring for the {cert-manager-operator}
+include::_attributes/common-attributes.adoc[]
+:context: cert-manager-monitoring
+
+toc::[]
+
+You can expose controller metrics for the {cert-manager-operator} in the format provided by the Prometheus Operator.
+
+// Enabling metrics for the {cert-manager-operator}
+include::modules/cert-manager-enable-metrics.adoc[leveloffset=+1]
+
+[role="_additional-resources"]
+.Additional resources
+
+* xref:../../monitoring/enabling-monitoring-for-user-defined-projects.adoc#enabling-monitoring-for-user-defined-projects_enabling-monitoring-for-user-defined-projects[Enabling monitoring for user-defined projects]
+* xref:../../monitoring/managing-metrics.adoc#setting-up-metrics-collection-for-user-defined-projects_managing-metrics[Setting up metrics collection for user-defined projects]
+
+// Querying metrics for the {cert-manager-operator}
+include::modules/cert-manager-query-metrics.adoc[leveloffset=+1]