Red Hat OpenShift

Tigera and Red Hat have partnered to deliver an integrated, self-managed, active cloud-native application security platform for containers, Kubernetes, and cloud


Tigera’s Red Hat certified Operator makes it easy to install, manage, and upgrade Calico as the CNI in your OpenShift clusters. Red Hat and Tigera help organizations build security into their container and Kubernetes environments by offering a Kubernetes-native solution that extends the declarative nature of Kubernetes to specify security and observability as code.

Also certified with Red Hat OpenShift, Calico Enterprise helps you successfully ensure a consistent enforcement of security policies and compliance, and provides observability for troubleshooting across multi-cluster, multi-cloud, and hybrid deployments.


Reduce attack surface

Reduce the attack surface area of cloud-native environments with a zero-trust approach using advanced workload network access controls and corresponding security policies

Detect and evaluate threats using real-time data

Find and assess security vulnerabilities faster using real-time data and machine learning capabilities

Automatically mitigate exposure risks

Quickly mitigate exposure risk and other issues

Top Use Cases

Zero-Trust Workload Security

Red Hat and Tigera help you build security into your cloud-native environments by monitoring, analyzing, and managing workload-to-workload communication with container security, zero-trust workload security, runtime threat defense, and full-stack observability.

What can you do with Calico?

Certified with Red Hat® OpenShift®, Tigera’s Calico Enterprise helps you successfully operate, optimize, and protect critical containerized applications across cloud environments.


  • Zero-trust workload access controls
  • Identity-aware microsegmentation
  • Universal firewall integration
  • Envoy-based application-level protection

Container Security

Calico Enterprise is an active cloud-native application protection platform (CNAPP) with full-stack observability for containers, Kubernetes, and clouds.

What can you do with Calico?

It works across the build, deployment, and runtime phases of application and resource life cycles to protect your cloud-native application platform and workloads.

It also provides unified controls, real-time monitoring and visualization, and policy definition and application for consistent security and observability across multicluster, multi-cloud, and hybrid environments like Red Hat OpenShift.


  • Image assurance
  • Configuration assessment
  • Runtime threat defense

Run Calico in an Enterprise-ready Kubernetes distribution

Red Hat OpenShift is an enterprise-ready, security-focused hybrid cloud platform with built-in DevOps tools and security capabilities — including Security-Enhanced Linux (SELinux), security context constraints (SCC), identity and access management, data encryption, and Federal Information Processing Standards (FIPS) mode — that are activated by default.

Ready to address regulatory compliance challenges

The Kubernetes-native architecture embeds the solution into your application environment to provide detailed security controls and improved visibility between the network and microservices layers.

What can you do with Calico?

This solution also integrates with your existing security tools, environments, and security operations centers (SOCs) to provide additional controls and capabilities for modern workloads. Finally, the solution can encrypt sensitive data to comply with regulatory mandates like Payment Card Industry Data Security Standard (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA), and General Data Protection Regulation (GDPR).

Quick Start

Developers and administrators who want to apply security-policy enforcement to RedHat OpenShift can get started with Calico today. Tigera Operator installs and manages Project Calico and Calico Enterprise for OpenShift Container Platform environments.

Key Capabilities

Get Started

Tigera Operator installs and manages Project Calico and Calico Enterprise for OpenShift Container Platform environments



Ensuring Security and Resiliency for Kubernetes on OpenShift

Learn More


Extending OpenShift Security and Observability for Kubernetes Networking and Microservices with Calico Enterprise from Tigera

Learn More


OpenShift Network Security and Compliance using Calico Featuring: Tigera

Learn More

Become a Tigera Partner