You Don’t Just Add Kubernetes, You Inherit a Whole New Toolchain

When you adopt Kubernetes, you are electing to undertake a transformation. Are you ready for it?

Written by

Neil Cresswell

Portainer CEO

5 min read

•

May 1, 2025

July 8, 2025

Let’s be clear. This is our view of the world, forged from real experience with teams trying (and often failing) to make Kubernetes work in the enterprise.

Yes, you can add Kubernetes and rebuild your entire IT stack using open-source projects. Want ArgoCD instead of your old deployment tool? Sure. Need monitoring? Grab Prometheus, Alertmanager, Grafana, and Loki, then bolt them all together. Want security? Add Gatekeeper, maybe Kyverno, toss in cert-manager, wire up OPA, and maybe wrap the whole thing with Backstage if you're feeling brave.

It’s all possible.
We just think it’s madness.

Because Kubernetes is not a magic ingredient you add to your VM stack. It’s not a sidecar for your hypervisor. And it’s definitely not something your team can casually adopt on a Friday afternoon. Kubernetes is a catalyst. Once it enters your IT estate, everything changes. Your tools, your processes, your operating model.

Kubernetes Is Not a Drop-In Component

Too many teams treat Kubernetes like it’s a smarter version of vSphere. They think they can spin up a cluster and keep doing everything else the same way. That illusion lasts about a week.

Because the moment Kubernetes arrives, your old-world tools stop working.
Monitoring breaks. Patching becomes irrelevant. Access control gets fragmented.
Your entire CI/CD process hits a wall.

And suddenly, you're staring into the void, surrounded by unfamiliar tooling, an urgency to find "another tool" to solve a recently discovered gap in tool coverage, and an internal customer who is growing increasingly frustrated.

We’ve captured this transformation in the table below. On the left: the traditional VM-centric toolchain. On the right: what a modern container-native environment looks like with Portainer at the core.

	Old World (VM-Based Infra)	New World (Container-Based)
CI Tool	Jenkins, TeamCity, Bamboo	GitHub Actions, GitLab CI, CircleCI
CD Tool	Octopus Deploy, Jenkins Pipelines, Azure DevOps Pipelines	Portainer (GitOps-based CD)
Infrastructure Provisioning	Terraform, Ansible	Talos OS API, Terraform, ClusterAPI, or Cloud Provider API's
Server/OS Build	Kickstart, MDT, Packer, Windows Deployment Services	Negated when using Talos OS (immutable, minimal, automated builds)
Configuration Management	Ansible, Puppet, Chef, SCCM, SaltStack	Portainer with GitOps
Access and Authorisation	CyberArk, BeyondTrust, Thycotic (Delinea), Centrify, Microsoft PIM, One Identity, Jumpboxes	Portainer SSO with RBAC
Artifact Repository	Nexus, Artifactory, Azure Artifacts, JetBrains Space	GitHub Container Registry, GitLab Registry, Harbor, JFrog, Azure Container Registry, etc
Infrastructure Monitoring	Nagios, Zabbix, SolarWinds, PRTG, Microsoft SCOM	Portainer for basic monitoring, Prometheus, and Grafana for advanced use Cases
Application Monitoring	AppDynamics, New Relic, Dynatrace, SCOM	Portainer for basic monitoring, OpenTelemetry, Datadog for Advanced use cases
Logging	Splunk, Graylog, ELK Stack, Kiwi Syslog	Portainer for real-time container and app logs, Fluent Bit, Loki (for aggregation)
Secrets Management	Vault, CyberArk, Thycotic, KeePass, AD Certificate Services	Portainer (manages Kubernetes Secrets via UI), Sealed Secrets
Backup and DR	Veeam, Commvault, NetBackup, Rubrik, Acronis	Velero, Kasten (external to Portainer)
Security Policy Enforcement	GPOs, McAfee ePolicy Orchestrator, Symantec DLP	Portainer built-in policy engine
Incident Response and Alerting	PagerDuty, OpsGenie, SolarWinds Alerting, SCOM alerts	Same tools, now triggered via Prometheus Alertmanager
Job Scheduling	Windows Task Scheduler, cron, Control-M, Tidal Enterprise Scheduler	Portainer (Kubernetes CronJobs via UI)
Cluster / Container Management	VMware vSphere, Hyper-V SCVMM, manual scripts	Portainer (complete UI-driven management of Docker, Kubernetes, edge nodes)
Platform / IDP Layer	ITSM Self-Service Catalog + VMware vRA, BMC CLM, Red Hat CloudForms	Portainer (developer self-service portal with RBAC, guardrails, and GitOps deployment workflows)
Application Lifecycle Mgmt	SCCM, WSUS, runbooks, custom scripts	Portainer (Stacks, Templates, GitOps sync, redeploy on image updates)
Cost Visibility / Chargeback	VMware Chargeback, CloudHealth, Apptio, Excel	Kubecost (optional), Portainer (resource and image usage visibility per environment)
OS Patch Management	WSUS, SCCM, Ivanti, Shavlik	Portainer with Talos (immutable, reboot for OS updates)

This isn’t theory. It’s what we’ve watched unfold again and again. The teams that succeed are the ones who understand this from the outset. The ones who fail are the ones who think Kubernetes is “just another cluster.”

Why Portainer with Talos?

This stack doesn’t ask you to cobble things together, it doesn’t demand a team full of people (or high-paid external consultants!!) with"Kubestronaut" certifications, it just works.

Talos is a minimalist, immutable, API-driven operating system built for Kubernetes. No SSH, no config drift, no pets. It’s the OS Kubernetes deserves.

Portainer is the control plane your team has been missing. It gives you a GUI for everything. Cluster ops, app deployment, RBAC, GitOps, secrets, logs, cron jobs, policies, and multi-cluster management. No forced-CLI. No context switching. Just Kubernetes, made usable.

Together, Portainer and Talos don’t give you just Kubernetes. They give you Kubernetes with an opinionated, production-ready platform wrapped around it.

You don’t need twelve more tools.
You don’t need another consulting project.
You just need a stack that knows what it’s for.

It’s Not About What You Can Do. It’s About What You Should Do.

Yes, you can rebuild your platform from scratch with a dozen open-source tools. You can burn six months on integration and another twelve on maintenance. You can live in GitHub issues and Slack channels until your team quits from exhaustion.

Or you can take the fast lane.
One tool to run Kubernetes.
One tool to manage it.
One team, finally back in control.

Portainer with Talos is that fast lane.
Because Kubernetes doesn’t live in isolation. And neither should your team.