Get Started

Getting Started

Deploy

Onboard and Manage Accounts

Amazon Web Services (AWS)

Google Cloud Platform (GCP)

Microsoft Azure

Oracle Cloud Infrastructure (OCI)

Additional Providers

Collect and Integrate Data

Harvesting & Event-Driven Harvesting

Integrations

Understand Data

Visibility & Reporting

Inventory

Query Filters & Insights

Manage and Act on Data

Bots & Automation

Infrastructure as Code (IaC) Security

Cloud IAM Governance

Vulnerability Management

Workload Security

Manage System Settings

InsightCloudSec System Configuration

Developer Resources

APIs

Support

Kubernetes Security Guardrails

Kubernetes Security Guardrails (K8s Guardrails) helps harden your production environment by auditing your Kubernetes clusters, nodes, and pods configuration. This ensures that your cluster is tuned and runs according to security best practices and internal guidelines. Kubernetes Guardrails provides actionable recommendations for risk mitigation. You can easily shift-left to resolve security and compliance issues in the development stage before moving to production.

For any questions about setup, configuration, or support reach out to your CSM or to support through our Customer Support Portal.

Getting Started

Prerequisites

Before getting started with Kubernetes Security Guardrails you will need to have the following:

A functioning InsightCloudSec Platform installation
Configuration to support either the local and/or remote scanner. Check out the Kubernetes Scanners - Overview for an overview of our scanning options.
- For configurations using the Remote Scanner option you must have version 22.10.x or later
InsightCloudSec Admin permissions (Domain or Org Admin)
- Check out our Clusters Account Setup & Management or the Kubernetes Scanners - Overview for additional details.
Familiarity using Helm
Familiarity using kubectl
Access to the license server (e.g. if you do not see the Add Kubernetes API Key option on the Kubernetes Clusters page this feature is not enabled)

DevOps Support

If you are not experienced with the tools identified above we recommend working closely with us or coordinating with your own DevOps resources for support.

What is Supported by Kubernetes Security Guardrails?

Multi-cluster vulnerability scanner
A summary of your cluster’s compliance and security status
A detailed list of compliance and security issues, followed by recommendation for a quick remediation
Baseline your clusters profile and easily monitor degradations
Our current setup can support up to two API keys to enable key rotation. The clusters will be installed as a single Organization (within InsightCloudSec).

What's Next?

After you've completed your Clusters Account Setup & Management and have enabled your preferred Kubernetes Scanner(s) you can move on to exploring the data provided by Kubernetes Security Guardrails.

Check out the Using Kubernetes Security Guardrails page for details around viewing information within Insights and in the Compliance Scorecard.

A future release will also provide a dedicated page within InsightCloudSec to view details for clusters you have harvested.

Did this page help you?

Workload Security

Kubernetes Node Scanner

Workload Security

Using Kubernetes Security Guardrails