You can integrate Red Hat Advanced Cluster Security for Kubernetes (RHACS) with different cloud management platforms to discover potential clusters to secure. The cluster discovery aims to gain a detailed overview of the cluster assets already or not yet secured by RHACS.
The clusters discovered from a cloud management platform are accessible from the Platform Configuration → Clusters → Discovered clusters page.
RHACS matches the discovered clusters against already secured clusters. Based on the result of the matching, a discovered cluster has one of the following statuses:
Secured: The cluster is secured by RHACS.
Unsecured: The cluster is not secured by RHACS.
Undetermined: The metadata collected from secured clusters is not enough for a unique match. The cluster is either secured or unsecured.
For successful cluster matching, ensure that the following conditions are met:
Sensors running on secured clusters have been updated to the latest version.
Access to instance tags via the metadata service has been granted for secured clusters running on AWS. Sensors require access to the AWS EC2 instance tags to determine the cluster status.
You can integrate RHACS with the following cloud management platforms:
To discover cluster assets from Paladin Cloud, create a new integration in Red Hat Advanced Cluster Security for Kubernetes.
A Paladin Cloud account.
A Paladin Cloud API token.
In the RHACS portal, go to Platform Configuration → Integrations.
Scroll down to the Cloud source integrations section and select Paladin Cloud.
Click New integration.
Enter a name for Integration name.
Enter the Paladin Cloud API endpoint for Paladin Cloud endpoint. The default is https://api.paladincloud.io
.
Enter the Paladin Cloud API token for Paladin Cloud token.
Select Test to confirm that authentication is working.
Select Create to generate the configuration.
Once configured, Red Hat Advanced Cluster Security for Kubernetes discovers cluster assets from your connected Paladin Cloud account.
To discover cluster assets from Red Hat OpenShift Cluster Manager, create a new integration in Red Hat Advanced Cluster Security for Kubernetes.
A Red Hat account.
In the RHACS portal, go to Platform Configuration → Integrations.
Scroll down to the Cloud source integrations section and select Red Hat OpenShift Cluster Manager.
Click New integration.
Enter a name for Integration name.
Enter the Red Hat OpenShift Cluster Manager API endpoint for Endpoint. The default is https://api.openshift.com
.
Enter the Red Hat OpenShift Cluster Manager API token for API token.
Select Test to confirm that authentication is working.
Select Create to generate the configuration.
Once configured, Red Hat Advanced Cluster Security for Kubernetes discovers cluster assets from your connected Red Hat account.