Deploy Inference Workloads with NVIDIA NIM

1. Set the model name by selecting a model from the dropdown list or entering the model name

2. Set how the model profile should be selected. A NIM model profile sets compatible model engines and criteria for engine selection, such as precision, latency, throughput optimization, and GPU requirements. Profiles are optimized to balance either latency or throughput, with quantized profiles (e.g., fp8) preferred to reduce memory usage and enhance performance.

   • Automatically (recommended) - NIM is designed to automatically select the most suitable profile from the list of compatible profiles based on the detected hardware. Each profile consists of different parameters that influence the selection process.

   • Manually - Enter profile name or unique hash identifier

3. Set how to access NGC by choosing one of the following:

   • If you choose to not allow access to NGC, load the model from a local model-store. Go to Setting up data & storage.

   • Provide a token by entering your NVIDIA NGC API key. To obtain a key, go to NGC → Setup → API Key, then generate or copy an existing key.

   • Select credential from a predefined list of Shared secrets or My Credentials. My credentials are Generic secret credentials created via User settings. This credential must contain an NGC_API_KEY and must already exist in the same namespace as the workload. To obtain a key, go to NGC → Setup → API Key, then generate or copy an existing key.

   • To add a new Generic secret credential:

     • Click +NEW CREDENTIALS

     • Enter a name

     • The key is set to NGC_API_KEY and cannot be changed

     • Enter a value - your <NGC API key>

     • Click CREATE CREDENTIAL

     When created, the credential is also saved under User settings → Credentials, where it can be reused in future workloads.

4. Set an inference serving endpoint

   • Select HTTP or gRPC and enter the corresponding container port

   • Modify who can access the endpoint. See Accessing the inference workload for more details:

     • By default, Public is selected giving everyone within the network access to the endpoint with no authentication

     • If you select All authenticated users and applications, access is given to everyone within the organization’s account that can log in (to NVIDIA Run:ai or SSO).

     • For Specific group(s), enter group names as they appear in your identity provider. You must be a member of one of the groups listed to have access.

     • For Specific user(s) and application(s), enter a valid user email or name. If you remove yourself, you will lose access.

Load from existing setup

1. Click the load icon. A side pane appears, displaying a list of available environments. Select an environment from the list.

2. Optionally, customize any of the environment’s predefined fields as shown below. The changes will apply to this workload only and will not affect the selected environment.

3. Alternatively, click the ➕ icon in the side pane to create a new environment. For step-by-step instructions, see Environments.

Provide your own settings

Manually configure the settings below as needed. The changes will apply to this workload only.

Configure environment

1. Set the environment image:

   • Select Custom image and add the Image URL or update the URL of the existing setup

   • Select from the NGC public registry and choose the image name and tag from the dropdown.

2. Set the image pull policy. Set the condition for pulling the image. It is recommended to pull the image only if it's not already present on the host.

3. Set an inference serving endpoint. The connection protocol and the container port are defined within the environment:

   • Select HTTP or gRPC and enter a corresponding container port

   • Modify who can access the endpoint. See Accessing the inference workload for more details:

     • By default, Public is selected giving everyone within the network access to the endpoint with no authentication

     • If you select All authenticated users and applications, access is given to everyone within the organization’s account that can log in (to NVIDIA Run:ai or SSO).

     • For Specific group(s), enter group names as they appear in your identity provider. You must be a member of one of the groups listed to have access.

     • For Specific user(s) and application(s), enter a valid user email or name. If you remove yourself, you will lose access.

4. Set the connection for your tool(s). If you are loading from existing setup, the tools are configured as part of the environment.

   • Select the connection type - External URL or NodePort:

     • Auto generate - A unique URL / port is automatically created for each workload using the environment.

     • Custom URL / Custom port - Manually define the URL or port. For custom port, make sure to enter a port between 30000 and 32767. If the node port is already in use, the workload will fail and display an error message.

   • Modify who can access the tool:

     • By default, All authenticated users and applications is selected giving access to everyone within the organization’s account.

     • For Specific group(s), enter group names as they appear in your identity provider. You must be a member of one of the groups listed to have access to the tool.

     • For Specific user(s) and application(s), enter a valid user email or name. If you remove yourself, you will lose access to the tool.

5. Set the command and arguments for the container running the workload. If no command is added, the container will use the image’s default command (entry-point).

   • Modify the existing command or click +COMMAND & ARGUMENTS to add a new command.

   • Set multiple arguments separated by spaces, using the following format (e.g.: --arg1=val1).

6. Set the environment variable(s):

   • Modify the existing environment variable(s) or click +ENVIRONMENT VARIABLE. The existing environment variables may include instructions to guide you with entering the correct values.

   • You can select Custom to define your own variable or choose from a predefined list of Secrets, ConfigMaps and My credentials. My credentials are Docker registry or Generic secret credentials created via User settings. The credential must already exist in the same namespace as the workload.

   Some environment variables are injected by NVIDIA Run:ai. See Built-in workload environment variables for more details.

7. Enter a path pointing to the container's working directory

8. Set where the UID, GID, and supplementary groups for the container should be taken from. If you select Custom, you’ll need to manually enter the UID, GID and Supplementary groups values.

9. Select additional Linux capabilities for the container from the drop-down menu. This grants certain privileges to a container without granting all the root user's privileges.

1. Select the NIM model. Set the model name by selecting a model or entering the model name as displayed in NIM.

2. Set how the model profile should be selected. A NIM model profile sets compatible model engines and criteria for engine selection, such as precision, latency, throughput optimization, and GPU requirements. Profiles are optimized to balance either latency or throughput, with quantized profiles (e.g., fp8) preferred to reduce memory usage and enhance performance.

   • Automatically (recommended) - NIM is designed to automatically select the most suitable profile from the list of compatible profiles based on the detected hardware. Each profile consists of different parameters that influence the selection process.

   • Manually - Enter profile name or hash

3. Set how to access NGC by choosing one of the following:

   • If you choose to not allow access to NGC, load the model from a local model-store. Go to Setting up data & storage.

   • Provide a token by entering your NVIDIA NGC API key. To obtain the key, go to NGC → Setup → API Key, then generate or copy an existing key.

   • Select credential. If you are selecting an existing Generic secret credential, make sure it contains an NGC_API_KEY. To add a new Generic secret credential:

     • Click +NEW CREDENTIAL

     • Enter a name

     • Select New secret:

       • Enter a key - NGC_API_KEY

       • Enter a value - your <NGC API key>

     • Click CREATE CREDENTIAL

   Once created, the new credential is automatically selected. For step-by-step instructions, see Credentials.

4. Set an inference serving endpoint

   • Select HTTP or gRPC and enter the corresponding container port

   • (Optional) Modify who can access the endpoint. See Accessing the inference workload for more details:

     • By default, Public is selected giving everyone within the network access to the endpoint with no authentication

     • If you select All authenticated users and applications, access is given to everyone within the organization’s account that can log in (to NVIDIA Run:ai or SSO).

     • For Specific group(s), enter group names as they appear in your identity provider. You must be a member of one of the groups listed to have access.

     • For Specific user(s) and applications, enter a valid user email or name. If you remove yourself, you will lose access.

Load from existing setup

1. Click the load icon. A side pane appears, displaying a list of available compute resources. Select a compute resource from the list.

2. Optionally, customize any of the compute resource's predefined fields as shown below. The changes will apply to this workload only and will not affect the selected compute resource.

3. Alternatively, click the ➕ icon in the side pane to create a new compute resource. For step-by-step instructions, see Compute resources.

Provide your own settings

Manually configure the settings below as needed. The changes will apply to this workload only.

Configure compute resources

1. Set the number of GPU devices per pod (physical GPUs).

2. Enable GPU fractioning to set the GPU memory per device using either a fraction of a GPU device’s memory (% of device) or a GPU memory unit (MB/GB):

   • Request - The minimum GPU memory allocated per device. Each pod in the workload receives at least this amount per device it uses.

   • Limit - The maximum GPU memory allocated per device. Each pod in the workload receives at most this amount of GPU memory for each device(s) the pod utilizes. This is disabled by default, to enable see the above note.

3. Set the CPU resources

   • Set CPU compute resources per pod by choosing the unit (cores or millicores):

     • Request - The minimum amount of CPU compute provisioned per pod. Each running pod receives this amount of CPU compute.

     • Limit - The maximum amount of CPU compute a pod can use. Each pod receives at most this amount of CPU compute. By default, the limit is set to Auto which means that the pod may consume up to the node's maximum available CPU compute resources.

   • Set the CPU memory per pod by selecting the unit (MB or GB):

     • Request - The minimum amount of CPU memory provisioned per pod. Each running pod receives this amount of CPU memory.

     • Limit - The maximum amount of CPU memory a pod can use. Each pod receives at most this amount of CPU memory. By default, the limit is set to Auto which means that the pod may consume up to the node's maximum available CPU memory resources.

4. Set extended resource(s)

   • Enable Increase shared memory size to allow the shared memory size available to the pod to increase from the default 64MB to the node's total available memory or the CPU memory limit, if set above.

   • Click +EXTENDED RESOURCES to add resource/quantity pairs. For more information on how to set extended resources, see the Extended resources and Quantity guides.

5. Set the minimum and maximum number of replicas to be scaled up and down to meet the changing demands of inference services:

   • If the number of minimum and maximum replicas are different, autoscaling will be triggered and you'll need to set conditions for creating a new replica. A replica will be created every time a condition is met. When a condition is no longer met after a replica was created, the replica will be automatically deleted to save resources.

   • Select one of the variables to set the conditions for creating a new replica. The variable's values will be monitored via the container's port. When you set a value, this value is the threshold at which autoscaling is triggered.

6. Set when the replicas should be automatically scaled down to zero. This allows compute resources to be freed up when the model is inactive (i.e., there are no requests being sent). Automatic scaling to zero is enabled only when the minimum number of replicas in the previous step is set to 0.

7. Set the order of priority for the node pools on which the Scheduler tries to run the workload. When a workload is created, the Scheduler will try to run it on the first node pool on the list. If the node pool doesn't have free resources, the Scheduler will move on to the next one until it finds one that is available:

   • Drag and drop them to change the order, remove unwanted ones, or reset to the default order defined in the project.

   • Click +NODE POOL to add a new node pool from the list of node pools that were defined on the cluster. To configure a new node pool and for additional information, see Node pools.

8. Select a node affinity to schedule the workload on a specific node type. If the administrator added a ‘node type (affinity)’ scheduling rule to the project/department, then this field is mandatory. Otherwise, entering a node type (affinity) is optional. Nodes must be tagged with a label that matches the node type key and value.

9. Click +TOLERATION to allow the workload to be scheduled on a node with a matching taint. Select the operator and the effect:

   • If you select Exists, the effect will be applied if the key exists on the node.

   • If you select Equals, the effect will be applied if the key and the value set match the value on the node.

1. Select a compute resource or click +NEW COMPUTE RESOURCE to add a new compute resource to the gallery. For a step-by-step guide on adding compute resources to the gallery, see Compute resources. Once created, the new compute resource will be automatically selected.

2. Set the minimum and maximum number of replicas to be scaled up and down to meet the changing demands of inference services:

   • If the number of minimum and maximum replicas are different, autoscaling will be triggered and you'll need to set conditions for creating a new replica. A replica will be created every time a condition is met. When a condition is no longer met after a replica was created, the replica will be automatically deleted to save resources.

   • Select one of the variables to set the conditions for creating a new replica. The variable's values will be monitored via the container's port. When you set a value, this value is the threshold at which autoscaling is triggered.

3. Set when the replicas should be automatically scaled down to zero. This allows compute resources to be freed up when the model is inactive (i.e., there are no requests being sent). When automatic scaling to zero is enabled, the minimum number of replicas set in the previous step, automatically changes to 0.

4. Optional: Set the order of priority for the node pools on which the Scheduler tries to run the workload. When a workload is created, the scheduler will try to run it on the first node pool on the list. If the node pool doesn't have free resources, the Scheduler will move on to the next one until it finds one that is available:

   • Drag and drop them to change the order, remove unwanted ones, or reset to the default order defined in the project.

   • Click +NODE POOL to add a new node pool from the list of node pools that were defined on the cluster. To configure a new node pool and for additional information, see Node pools.

5. Select a node affinity to schedule the workload on a specific node type. If the administrator added a ‘node type (affinity)’ scheduling rule to the project/department, then this field is mandatory. Otherwise, entering a node type (affinity) is optional. Nodes must be tagged with a label that matches the node type key and value.

6. Optional: Click +TOLERATION to allow the workload to be scheduled on a node with a matching taint. Select the operator and the effect:

   • If you select Exists, the effect will be applied if the key exists on the node.

   • If you select Equals, the effect will be applied if the key and the value set match the value on the node.

Select the data source that will serve as the model store. If the model is already stored on the selected data source it will be loaded from there automatically. Otherwise, it will be stored on the selected data source during the first workload deployment:

1. Click the load icon. A side pane appears, displaying a list of available data sources. Select a data source from the list.

2. Optionally, customize any of the data source's predefined fields as shown below. The changes will apply to this workload only and will not affect the selected data source:

   • Container path - Enter the container path to set the data target location.

3. Alternatively, click the ➕ icon in the side pane to create a new data source. For step-by-step instructions, see Data sources.

Load from existing setup

1. Click the load icon. A side pane appears, displaying a list of available data sources/volumes. Select a data source/volume from the list.

2. Optionally, customize any of the data source's predefined fields as shown below. The changes will apply to this workload only and will not affect the selected data source.

   • Container path - Enter the container path to set the data target location.

   • ConfigMaps sub-path - Specify a sub-path (file/key) inside the ConfigMap to mount (for example, app.properties). This lets you mount a single file from an existing ConfigMap.

3. Alternatively, click the ➕ icon in the side pane to create a new data source/volume. For step-by-step instructions, see Data sources or Data volumes.

Configure data sources for a one-time configuration

1. Click the ➕ icon and choose the data source from the dropdown menu. You can add multiple data sources.

2. Once selected, set the data origin according to the required fields and enter the container path to set the data target location.

3. Select Volume to allocate a storage space to your workload that is persistent across restarts:

   • Set the Storage class to None or select an existing storage class from the list. To add new storage classes, and for additional information, see Kubernetes storage classes. If the administrator defined the storage class configuration, the rest of the fields will appear accordingly.

   • Select one or more access mode(s) and define the claim size and its units.

   • Select the volume mode. If you select Filesystem (default), the volume will be mounted as a filesystem, enabling the usage of directories and files. If you select Block, the volume is exposed as a block storage, which can be formatted or used directly by applications without a filesystem.

   • Set the Container path with the volume target location.

Select the data source that will serve as the model store. If the model is already stored on the selected data source it will be loaded from there automatically. Otherwise, it will be stored on the selected data source during the first workload deployment.

1. Select an existing data source where the model is already cached to reduce loading time.

2. To add a new data source, click + NEW DATA SOURCE. For a step-by-step guide, see Data sources. Once created, it will be automatically selected. This will cache the model and reduce loading time for future use.

1. Set the workload priority. Choose the appropriate priority level for the workload. Higher-priority workloads are scheduled before lower-priority ones.

2. Set the workload initialization timeout. This is the maximum amount of time the system will wait for the workload to start and become ready. If the workload does not start within this time, it will automatically fail. Enter a value between 5 seconds and 60 minutes. If you do not set a value, the default is taken from Knative’s max-revision-timeout-seconds.

3. Set the request timeout. This defines the maximum time allowed to process an end-user request. If the system does not receive a response within this time, the request will be ignored. Enter a value between 5 seconds and 10 minutes. If you do not set a value, the default is taken from Knative’s revision-timeout-seconds.

4. Set annotations(s). Kubernetes annotations are key-value pairs attached to the workload. They are used for storing additional descriptive metadata to enable documentation, monitoring and automation.

5. Set labels(s). Kubernetes labels are key-value pairs attached to the workload. They are used for categorizing to enable querying.

1. Set annotations(s). Kubernetes annotations are key-value pairs attached to the workload. They are used for storing additional descriptive metadata to enable documentation, monitoring and automation.

2. Set labels(s). Kubernetes labels are key-value pairs attached to the workload. They are used for categorizing to enable querying.