How to deploy Tetragon on an eks cluster

February 7, 2023
min read
Yehonatan Rumyantsev
Cloud Specialist
Tags
No items found.
Related Resources
No items found.

TL;DR

Deploying Tetragon on an Amazon EKS (Elastic Kubernetes Service) cluster involves a series of steps.

Tetragon is a security observability, and runtime enforcement tool for cloud-native environments, particularly effective in Kubernetes environments. Here’s a general outline of the process:

Prerequisites:

  1. Ensure you have an active AWS account and the AWS CLI installed and configured.
  2. Make sure your EKS cluster is up and running.
  3. Have kubectl installed and configured to interact with your EKS cluster.

Install Tetragon:

Tetragon can be installed as a Kubernetes DaemonSet. This ensures that it runs on each node of your cluster.

You can use a Helm chart provided by Tetragon, or apply Kubernetes manifests directly.

Helm Installation (Recommended):

  1. Add the Tetragon Helm repository:
  2. Copy code - helm repo add tetragon https://charts.tetragon.io
  3. Update your local Helm chart repository cache - helm repo update

Install the Tetragon Helm chart:

  1. helm install tetragon tetragon/tetragon


Configure Tetragon:

  1. After installation, you might need to configure Tetragon according to your security and observability needs.
  2. This can include setting up logging, metrics, and defining security policies.

Verify Installation:

Once Tetragon is deployed, verify its operation: kubectl get pods -n kube-system | grep tetragon

  1. Check for logs or events to ensure it is functioning as expected.

Read more here - https://tetragon.io/docs/getting-started/install-k8s/