Day-2’000 - Migration From Kubeadm+Ansible To ClusterAPI+Talos: A Swiss Bank’s... Clément Nussbaumer
Migration From Kubeadm+Ansible To ClusterAPI+Talos: A Swiss Bank’s... Clément Nussbaumer
KubeCon + CloudNativeCon Europe 2025 · Session
In this insightful KubeCon EU presentation, Clément Nussbaumer, a software engineer at the Swiss bank Post Finance, detailed a significant operational challenge: the in-place migration of long-lived, shared Kubernetes clusters from a traditional `kubeadm` and Ansible-based management approach to a more modern, declarative stack utilizing Cluster API and Talos Linux. The talk, aptly titled "Day-2’000," refers to the impressive longevity of Post Finance's Kubernetes clusters, some of which are approaching six years in continuous operation. This duration highlights the critical need for robust upgrade and migration strategies that avoid downtime and disruption for hundreds of application teams.
AI review
This presentation by Clément Nussbaumer from Post Finance is a masterclass in tackling a truly difficult operational challenge: the in-place, zero-downtime migration of long-lived, production Kubernetes clusters. The speaker provides an exceptionally deep dive into the technical intricacies of moving from a `kubeadm` and Ansible-based setup to a modern Cluster API and Talos Linux stack. The candid sharing of specific configuration pitfalls (like service account issuer and etcd encryption keys), the ingenious PKI import mechanism, and the pragmatic disaster recovery solution for the…