Red Hat OpenShift
Tigera and Red Hat have partnered to deliver an integrated, self-managed, active cloud-native application security platform for containers, Kubernetes, and cloud

Overview
Tigera’s Red Hat certified Operator makes it easy to install, manage, and upgrade Calico as the CNI in your OpenShift clusters. Red Hat and Tigera help organizations build security into their container and Kubernetes environments by offering a Kubernetes-native solution that extends the declarative nature of Kubernetes to specify security and observability as code.
Also certified with Red Hat OpenShift, Calico Enterprise helps you successfully ensure a consistent enforcement of security policies and compliance, and provides observability for troubleshooting across multi-cluster, multi-cloud, and hybrid deployments.
Benefits
Reduce attack surface
Reduce the attack surface area of cloud-native environments with a zero-trust approach using advanced workload network access controls and corresponding security policies
Detect and evaluate threats using real-time data
Find and assess security vulnerabilities faster using real-time data and machine learning capabilities
Automatically mitigate exposure risks
Quickly mitigate exposure risk and other issues
Top Use Cases

Zero-Trust Workload Security
Red Hat and Tigera help you build security into your cloud-native environments by monitoring, analyzing, and managing workload-to-workload communication with container security, zero-trust workload security, runtime threat defense, and full-stack observability.
What can you do with Calico?
Certified with Red Hat® OpenShift®, Tigera’s Calico Enterprise helps you successfully operate, optimize, and protect critical containerized applications across cloud environments.
KEY FEATURES INCLUDE
- Zero-trust workload access controls
- Identity-aware microsegmentation
- Universal firewall integration
- Envoy-based application-level protection

Container Security
Calico Enterprise is an active cloud-native application protection platform (CNAPP) with full-stack observability for containers, Kubernetes, and clouds.
What can you do with Calico?
It works across the build, deployment, and runtime phases of application and resource life cycles to protect your cloud-native application platform and workloads.
It also provides unified controls, real-time monitoring and visualization, and policy definition and application for consistent security and observability across multicluster, multi-cloud, and hybrid environments like Red Hat OpenShift.
KEY FEATURES INCLUDE
- Image assurance
- Configuration assessment
- Runtime threat defense

Run Calico in an Enterprise-ready Kubernetes distribution
Red Hat OpenShift is an enterprise-ready, security-focused hybrid cloud platform with built-in DevOps tools and security capabilities — including Security-Enhanced Linux (SELinux), security context constraints (SCC), identity and access management, data encryption, and Federal Information Processing Standards (FIPS) mode — that are activated by default.

Ready to address regulatory compliance challenges
The Kubernetes-native architecture embeds the solution into your application environment to provide detailed security controls and improved visibility between the network and microservices layers.
What can you do with Calico?
This solution also integrates with your existing security tools, environments, and security operations centers (SOCs) to provide additional controls and capabilities for modern workloads. Finally, the solution can encrypt sensitive data to comply with regulatory mandates like Payment Card Industry Data Security Standard (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA), and General Data Protection Regulation (GDPR).
Quick Start
Developers and administrators who want to apply security-policy enforcement to RedHat OpenShift can get started with Calico today. Tigera Operator installs and manages Project Calico and Calico Enterprise for OpenShift Container Platform environments.
Key Capabilities
Get Started
Tigera Operator installs and manages Project Calico and Calico Enterprise for OpenShift Container Platform environments
Resources
Blog
Extending OpenShift Security and Observability for Kubernetes Networking and Microservices with Calico Enterprise from Tigera
Learn More