Deploying Tetragon on an Amazon EKS (Elastic Kubernetes Service) cluster involves a series of steps.
Tetragon is a security observability, and runtime enforcement tool for cloud-native environments, particularly effective in Kubernetes environments. Here’s a general outline of the process:
- Ensure you have an active AWS account and the AWS CLI installed and configured.
- Make sure your EKS cluster is up and running.
- Have kubectl installed and configured to interact with your EKS cluster.
Tetragon can be installed as a Kubernetes DaemonSet. This ensures that it runs on each node of your cluster.
You can use a Helm chart provided by Tetragon, or apply Kubernetes manifests directly.
Helm Installation (Recommended):
- Add the Tetragon Helm repository:
- Copy code - helm repo add tetragon https://charts.tetragon.io
- Update your local Helm chart repository cache - helm repo update
Install the Tetragon Helm chart:
- helm install tetragon tetragon/tetragon
- After installation, you might need to configure Tetragon according to your security and observability needs.
- This can include setting up logging, metrics, and defining security policies.
Once Tetragon is deployed, verify its operation: kubectl get pods -n kube-system | grep tetragon
- Check for logs or events to ensure it is functioning as expected.
Read more here - https://tetragon.io/docs/getting-started/install-k8s/