Red Hat has announced the general availability of Red Hat OpenShift 4.20, the latest version of the industry’s leading hybrid cloud application platform powered by Kubernetes. OpenShift 4.20 introduces capabilities for accelerating AI workloads, strengthening core platform security and enhancing virtualization strategies consistently from the datacenter, to public clouds, and the edge.
As organizations navigate increasing complexity and expanding regulatory requirements, they need a more consistent and reliable platform to bridge diverse applications and services across their entire IT footprint. There is also a growing need for capabilities that support digital sovereignty, which requires organizations to maintain expansive control over their cloud destiny – deciding precisely which applications and data must run in-house and which exist outside that domain.
Red Hat OpenShift 4.20 provides a unified and more efficient foundation, built with systems security front and center, enabling sovereign deployments and accelerating the development and deployment of applications and AI workloads across hybrid cloud environments.
“The pace of innovation in enterprise IT is accelerating, driven by the demands of AI and a shifting landscape caused by new regulations and corporations needing to mix sovereignty into their technology investments,” said Mike Barrett, vice president and general manager, Hybrid Cloud Platforms, Red Hat. “With Red Hat OpenShift 4.20, we are delivering a foundation that not only keeps pace with these changes but helps our customers lead them. We’re providing the tools to unify their infrastructure, from legacy virtual machines to modern approaches for virtualization, all while maintaining the enhanced security posture, confidence and production control that is essential for market changes coming in 2026.”
Strengthened platform security and enhanced core manageability
This latest release significantly strengthens the platform’s security posture. By hardening the platform for the unique requirements of sovereignty, Red Hat OpenShift 4.20 helps secure the main traffic between control plane components with initial support for post-quantum cryptography (PQC) algorithms for mTLS, to deliver long-term cryptographic protection for critical communications.
Additional features focused on control and identity include:
- Gain identity management flexibility and control: Bring-your-own OpenID Connect enables customers to use their existing OpenID Connect (OIDC) infrastructure, providing greater control over user data.
- Significantly lower cost pod-to-pod mTLS encryption, identity-based traffic policies, observability and morewith “sidecar-less” ambient mode with Red Hat OpenShift Service Mesh, helping reduce infrastructure costs, operational complexity, and resource overhead.
- Simplify external secret management with a cluster-wide service: The External Secrets Operator (ESO) provides lifecycle management for secrets fetched from external secret management systems, helping improve security.
- Reduce infrastructure costs with high availability on smaller footprints: Two-node OpenShift with arbiter enables a new high-availability form factor, reducing infrastructure costs without sacrificing resiliency.
- Enhance network integration and performance for on-premises deployments: Border Gateway Protocol (BGP) in OVN-Kubernetes delivers new networking capabilities to on-premises environments by providing continuous route exchange between OpenShift and external network fabrics, which means faster adaptation to network changes, VM migration or failover events.
Scaling AI from experimentation to production
Red Hat OpenShift 4.20 helps accelerate AI projects to run in production faster, more reliably, and with more confidence. New capabilities are designed to streamline the deployment and management of complex AI workloads, making them easier to scale and manage. For instance, the LeaderWorkerSet (LWS) API for AI workloads simplifies the management of large, distributed AI workloads with automated orchestration and scaling. Deployment time is dramatically reduced using Image volume source for AI workloads, which allows new models to be integrated in minutes without rebuilding application containers. Together, these features provide functionality for Red Hat OpenShift AI or other AI platforms to help customers move more easily from experimentation to production. Additionally, Model Context Protocol (DP) enables cluster management via developer tools like Visual Studio Code.
Production-ready virtualization
Red Hat continues to optimize Red Hat OpenShift Virtualization, enabling customers to manage virtual machines (VMs) alongside containers and cloud-native applications from a single platform. The addition of CPU load-aware rebalancing and Arm support improves performance and resource utilization for virtualized workloads, while expanded hybrid cloud support extends Red Hat OpenShift Virtualization to bare-metal deployments on Oracle Cloud, giving organizations more control over their infrastructure and the placement of their data. With enhanced storage offloading functionality, the migration toolkit for virtualization significantly accelerates VM migration from legacy virtualization solutions to OpenShift Virtualization through existing storage resources.
Availability
Red Hat OpenShift 4.20 is now generally available. More information, including how to upgrade to the latest version, is available here.
