×

If you are using PagerDuty, you can forward alerts from Red Hat Advanced Cluster Security for Kubernetes to PagerDuty.

The following steps represent a high-level workflow for integrating Red Hat Advanced Cluster Security for Kubernetes with PagerDuty:

  1. Add a new API service in PagerDuty and get the integration key.

  2. Use the integration key to set up notifications in Red Hat Advanced Cluster Security for Kubernetes.

  3. Identify the policies you want to send notifications for, and update the notification settings for those policies.

Configuring PagerDuty

Start integrating with PagerDuty by creating a new service and by getting the integration key.

Procedure
  1. Navigate to ConfigurationServices.

  2. Select Add Services.

  3. Under General Settings, specify a Name and Description.

  4. Under Integration Setting, click Use our API Directly with Events v2 API selected for the Integration Type drop-down menu.

  5. Under Incident Settings, select an Escalation Policy, and configure notification settings and incident timeouts.

  6. Accept default settings for Incident Behavior and Alert Grouping, or configure them as required.

  7. Click Add Service.

  8. From the Service Details page, make note of the Integration Key.

Configuring Red Hat Advanced Cluster Security for Kubernetes

Create a new integration in Red Hat Advanced Cluster Security for Kubernetes by using the integration key.

Procedure
  1. On the RHACS portal, navigate to Platform ConfigurationIntegrations.

  2. Scroll down to the Notifier Integrations section and select PagerDuty.

  3. Click New Integration (add icon).

  4. Enter a name for Integration Name.

  5. Enter the integration key in the PagerDuty integration key field.

  6. Click Test (checkmark icon) to validate that the integration with PagerDuty is working.

  7. Click Create (save icon) to create the configuration.

Configuring policy notifications

Enable alert notifications for system policies.

Procedure
  1. On the RHACS portal, navigate to Platform ConfigurationPolicies.

  2. Select one or more policies for which you want to send alerts.

  3. Under Bulk actions, select Enable notification.

  4. In the Enable notification window, select the PagerDuty notifier.

    If you have not configured any other integrations, the system displays a message that no notifiers are configured.

  5. Click Enable.

  • Red Hat Advanced Cluster Security for Kubernetes sends notifications on an opt-in basis. To receive notifications, you must first assign a notifier to the policy.

  • Notifications are only sent once for a given alert. If you have assigned a notifier to a policy, you will not receive a notification unless a violation generates a new alert.

  • Red Hat Advanced Cluster Security for Kubernetes creates a new alert for the following scenarios:

    • A policy violation occurs for the first time in a deployment.

    • A runtime-phase policy violation occurs in a deployment after you resolved the previous runtime alert for a policy in that deployment.