# Deployment OpenG2P offers production-grade deployment scripts, [Helm charts](/1.3/deployment/helm-charts.md) and utilities based on reputed open-source components like Kubernetes, Rancher etc. This architecture is also referred to as **V4**\*. The deployment infra may be used for sandbox, pilot or full-scale rollout. All modules are available as Dockers and Kubernetes is used as the orchestration platform. The deployment architecture is depicted below. {% hint style="info" %} \* This deployment architecture is referred to as "V4" by the OpenG2P team due to the way it has evolved over the past few years. The V4 deployment architecture is an extension of MOSIP's [V3 architecture](https://github.com/mosip/k8s-infra). Unlike V3, where separate clusters are created for environments, in V4, all sandboxes and environments reside in the same cluster with finer access controls {% endhint %} ## Deployment architecture (V4) {% embed url="" %} V4 Deployment Architecture {% endembed %} Essentially, for an organisation, you will need two clusters - one for [Rancher](/1.3/deployment/base-infrastructure/rancher.md) (it requires its own dedicated Kubernetes cluster. [Learn more >>](https://ranchermanager.docs.rancher.com/getting-started/installation-and-upgrade#high-availability-kubernetes-install-with-the-helm-cli)) and one for all OpenG2P modules and supporting components. All sandboxes and environments reside in the OpenG2P cluster under separate namespaces. The RBAC of Kubernetes is used to provide users access to namespaces. Further, the secure access to applications can be controlled by the following means: 1. Multiple Wireguard servers enabling separate [access channels](/1.3/deployment/deployment-guide/private-access-channel.md). 2. Access control at the application level where login to dashboards, and portals is controlled via authentication and authorisation defined in Keycloak. The Keycloak inside the Rancher cluster provides **organisation-wide authorization** and offers single sign-on to all resources. The above is a recommended architecture that also optimises resource usage. For deployment, set up the following in the sequence given below: * [Base infrastructure](/1.3/deployment/base-infrastructure.md) * OpenG2P specific modules *(instructions available in module-specific deployment pages)* --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.openg2p.org/1.3/deployment.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.