Supported Environments and Prerequisites for Kubernetes Compliance
Overview
This article provides the supported environments for a Kubernetes Compliance integration and the prerequisites required for the integration.
Supported Kubernetes Environments
The supported Kubernetes provider environments are listed below:
- Amazon Elastic Kubernetes Service (Amazon EKS)
- EKS Fargate is not supported for this integration type.
- Google Kubernetes Engine (GKE)
- Autopilot mode is not supported for this integration type.
Supported Kubernetes Versions
The supported versions of Kubernetes are listed below:
v1.10
and above.
Integrations using Helm
The supported versions of Helm are listed below:
v3.1.x
and above.
Integrations using Terraform
The supported versions of Terraform are listed below:
~> 0.14
~> 0.15
~> 1.0
~> 1.1
Prerequisites
Linux Agent Access Token
A Linux Agent access token is required prior to completing the integration steps for any Kubernetes environment.
Use an existing agent token or create a new one for this integration.
- If you only want to monitor compliance configuration, it is recommended that you create a new access token. You can then disable or enable the Agent token for this integration without affecting other integrations that use this token.
- If you want to monitor both compliance configuration and workload security, you may want to use an existing access token. For example, if you have an Agent token in use for workload security on Kubernetes clusters, it may be better to combine this integration with the same access token.
note
You only need to generate the access token as the Agent is installed during the integration steps.
Integrations with Amazon EKS
- Ensure that an AWS Configuration integration exists for your AWS account or organization.
- Ensure that the AWS CLI is installed and configured to access your EKS environment.
Integrations with GKE
- Ensure that a Google Cloud Configuration integration exists for your Google Cloud project or organization.
- Ensure that the Google Cloud CLI (gcloud) is installed and configured to access your GKE environment.
Next Steps
Choose one of the following options to integrate Lacework with your Kubernetes cluster: