Open source technology company Red Hat has released the latest version of its hybrid cloud application platform, Red Hat OpenShift 4.20.
Powered by Kubernetes, the platform includes capabilities to accelerate AI workloads, strengthen core platform security, and enhance virtualization strategies from the data center to the public cloud to the edge.
As organizations grapple with increasing complexity and expanding regulatory requirements, Red Hat says they need a more consistent and reliable platform to bridge diverse applications and services across an organization’s IT footprint.
According to the company, there is a growing need for capabilities that support digital sovereignty, with organizations needing to maintain broad control over their cloud destiny and deciding exactly which applications and data need to run in-house and which reside outside of their domain.
Red Hat OpenShift 4.20 is designed to provide a unified, more efficient foundation with system security at its core. Support sovereign deployments while accelerating the development and deployment of applications and AI workloads across hybrid cloud environments.
“The pace of innovation in enterprise IT is accelerating, driven by the demand for AI, a changing landscape driven by new regulations, and the need for businesses to embed sovereignty into their technology investments,” said Mike Barrett, vice president and general manager of hybrid cloud platforms at Red Hat.
“With Red Hat OpenShift 4.20, we are providing the foundation to not only respond to these changes, but to help our customers lead them. We are providing the tools to consolidate infrastructure, from legacy virtual machines to modern approaches to virtualization, while maintaining the enhanced security posture, reliability, and production control that will be essential to the market changes coming in 2026.”
Security and core manageability
This release includes several updates aimed at enhancing the platform’s security capabilities in line with current and emerging enterprise requirements. Red Hat OpenShift 4.20 includes measures tailored for sovereignty-focused environments, adding initial support for post-quantum cryptography (PQC) algorithms in mTLS to provide long-term cryptographic protection for communications between control plane components.
This update expands operational flexibility within the core platform and adds new security features for Red Hat OpenShift Platform Plus users. This includes the general availability of Red Hat Advanced Cluster Security 4.9 and updates to Red Hat Trusted Artifact Signer and Red Hat Trusted Profile Analyzer, which make it easier to manage and analyze security data.
Zero Trust Workload Identity Manager will be released later this year to provide identity certificates for both machines and users across federated environments.
Additional features focused on control and identity include:
- Gain flexibility and control over identity management: Bring-your-own OpenID Connect allows customers to use their existing OpenID Connect (OIDC) infrastructure and supports greater control over user data.
- “Sidecarless” ambient mode with Red Hat OpenShift Service Mesh significantly reduces costs such as mTLS encryption between pods, identity-based traffic policies, and observability, helping to reduce infrastructure costs, operational complexity, and resource overhead.
- Simplify external secret management with cluster-wide services: The External Secret Operator (ESO) provides lifecycle management of secrets retrieved from external secret management systems to help improve security.
- Reduce infrastructure costs with high availability in a smaller footprint: Two-node OpenShift with Arbiter supports new high availability form factors and reduces infrastructure costs without sacrificing resiliency.
- Enhanced network integration and performance for on-premises deployments: Border Gateway Protocol (BGP) in OVN-Kubernetes provides new networking capabilities for on-premises environments by providing continuous route exchange between OpenShift and external network fabrics. This means faster adaptation to network changes, VM migrations, or failover events.
AI scaling
Red Hat OpenShift 4.20 helps you accelerate your AI projects and run them in production faster, more reliably, and with more confidence. New capabilities are designed to streamline deployment and management of complex AI workloads, making them easier to scale and manage.
For example, the LeaderWorkerSet (LWS) API for AI workloads simplifies the management of large-scale distributed AI workloads with automated orchestration and scaling.
You can reduce deployment time by using image volume sources for AI workloads. This allows you to integrate new models without rebuilding your application container. These features provide capabilities to Red Hat OpenShift AI or other AI platforms to help customers move from experimentation to production. Model Context Protocol (DP) enables cluster management through developer tools such as Visual Studio Code.
virtualization
Red Hat continues to optimize Red Hat OpenShift Virtualization to enable customers to manage virtual machines (VMs) alongside containers and cloud-native applications from a single platform.
CPU load-aware rebalancing and the addition of Arm support improve performance and resource utilization for virtualized workloads, while expanded hybrid cloud support extends Red Hat OpenShift Virtualization to bare metal deployments on Oracle Cloud, giving organizations control over the placement of their infrastructure and data.
With enhanced storage offload capabilities, the migration toolkit for virtualization can significantly accelerate the migration of VMs from traditional virtualization solutions to OpenShift Virtualization over existing storage resources.
