The Lacework agent can be deployed across a Kubernetes cluster as a daemonset. Lacework supports the following release combinations:
| Kubernetes Release |
| v1.7.11 |
| v1.8.x |
| v1.9.x |
| v1.10.x |
| v1.11.x |
| v.1.12.x |
If you are using a different combination of releases, please contact Lacework for assistance.
To deploy using Kubernetes:
-
In the Lacework Console, download the two Kubernetes YAML files. Select Settings > Agents. Either use an existing agent access token or create a new agent token by clicking + Create New. Click Install Options. Click each of the Kubernetes download icons.
-
Using the kubectl command line interface, add the Lacework configuration file into the cluster.
$ kubectl create -f lacework-cfg-k8s.yaml
-
Instruct the Kubernetes orchestrator to deploy an agent on all nodes in the cluster, including the master.
$ kubectl create -f lacework-k8s.yaml
-
Repeat the above steps for each Kubernetes cluster.
The config.json file is embedded in the lacework-cfg-k8s.yaml file. To customize FIM or add tags in a kubernetes environment, edit the configuration section of the YAML file and push the revised lacework-cfg-k8s.yaml file to the cluster using the following command.
$ kubectl replace -f lw-k8s-cfg.yaml