- In this release, Lacework has added some internal logging to monitor agent connectivity with the Lacework platform. Agents will periodically connect to https://agentcheck.lacework.dev to enable Lacework to monitor agent connectivity with the Lacework platform.
- Corrected a package signing issue with installing the agent on Fedora Linux.
- Support for Kubernetes version 1.27 - Lacework has certified agent v6.7.2 for deployment on Kubernetes version 1.27.
- Enabled support to help with resource-constrained systems that would under certain circumstances cause the agent to restart due to long startup times.
Automatic discovery of agent server URL - The Lacework agent uses a region-specific agent server URL to communicate with the Lacework platform. By default, agents use the https://api.lacework.net URL in the US region. For Linux agent v6.6 or earlier installed outside the default region, you must explicitly configure the agent server URL using the
serverurlparameter in the config.json file. For more information, see Agent Server URL.
Region URL US (default) https://api.lacework.net US-02 (US) https://aprodus2.agent.lacework.net European Union (EU) https://api.fra.lacework.net Australia and New Zealand (ANZ) https://auprodn1.agent.lacework.net/
Starting with Linux agent v6.7, it is optional for you to configure the agent server URL. The agent automatically discovers the agent server URL for your region.
To automatically discover the agent server URL for Linux agent v6.7 or later:
- The agents for which you have not configured the agent server URL will first communicate with https://api.lacework.net that is located in the US region to know the region they belong to, and then use only the region-specific URL.
- The agents for which you have configured the agent server URL will first communicate with the configured server URL to know the region they belong to.
Once the correct region is established, agents remember it and communicate only with the agent server URL for that region until you modify the URL.
- In this release, Lacework has added some internal logging to monitor agent connectivity with the Lacework platform.
- Agent v6.6.2 connects to the
agentcheck.lacework.devLacework owned domain to monitor agent connectivity with the Lacework platform. This may trigger a medium severity alert in your Lacework console. You can ignore this alert as it does not indicate any malicious activity.
- GKE Autopilot support - Workload security for GKE Autopilot with the Lacework Linux agent is now generally available. You can deploy Linux agent v6.2 or later on GKE Autopilot clusters running GKE version 1.25.8-gke.1000 or later. For more information, see Install on GKE Autopilot.