scanner.analyzer.nodeSelector
|
Specify a node selector label as label-key: label-value to force Scanner to only schedule on nodes with the specified label. |
scanner.analyzer.tolerations
|
If the node selector selects tainted nodes, use this parameter to specify a taint toleration key, value, and effect for Scanner. |
scanner.analyzer.hostAliases
|
Use this parameter to inject hosts and IP addresses into the pod’s hosts file. |
scanner.analyzer.resources.requests.memory
|
The memory request for the Scanner container. Use this parameter to override the default value. |
scanner.analyzer.resources.requests.cpu
|
The CPU request for the Scanner container. Use this parameter to override the default value. |
scanner.analyzer.resources.limits.memory
|
The memory limit for the Scanner container. Use this parameter to override the default value. |
scanner.analyzer.resources.limits.cpu
|
The CPU limit for the Scanner container. Use this parameter to override the default value. |
scanner.analyzer.scaling.autoscaling
|
If you set this option to Disabled , Red Hat Advanced Cluster Security for Kubernetes disables autoscaling on the Scanner deployment. The default value is Enabled . |
scanner.analyzer.scaling.minReplicas
|
The minimum number of replicas for autoscaling. The default value is 2 . |
scanner.analyzer.scaling.maxReplicas
|
The maximum number of replicas for autoscaling. The default value is 5 . |
scanner.analyzer.scaling.replicas
|
The default number of replicas. The default value is 3 . |
scanner.analyzer.tolerations
|
If the node selector selects tainted nodes, use this parameter to specify a taint toleration key, value, and effect for Scanner. |
scanner.db.nodeSelector
|
Specify a node selector label as label-key: label-value to force Scanner DB to only schedule on nodes with the specified label. |
scanner.db.hostAliases
|
Use this parameter to inject hosts and IP addresses into the pod’s hosts file. |
scanner.db.resources.requests.memory
|
The memory request for the Scanner DB container. Use this parameter to override the default value. |
scanner.db.resources.requests.cpu
|
The CPU request for the Scanner DB container. Use this parameter to override the default value. |
scanner.db.resources.limits.memory
|
The memory limit for the Scanner DB container. Use this parameter to override the default value. |
scanner.db.resources.limits.cpu
|
The CPU limit for the Scanner DB container. Use this parameter to override the default value. |
scanner.db.tolerations
|
If the node selector selects tainted nodes, use this parameter to specify a taint toleration key, value, and effect for Scanner DB. |
scanner.scannerComponent
|
If you set this option to Disabled , Red Hat Advanced Cluster Security for Kubernetes does not deploy the Scanner deployment. Do not disable the Scanner on OpenShift Container Platform clusters. The default value is AutoSense . |
scannerV4.db.nodeSelector
|
If you want this component to only run on specific nodes, you can use this parameter to configure a node selector. |
scannerV4.db.tolerations
|
If the node selector selects tainted nodes, use this parameter to specify a taint toleration key, value, and effect for Scanner V4 DB. This parameter is mainly used for infrastructure nodes. |
scannerV4.db.resources.limits
|
Use this parameter to override the default resource limits for Scanner V4 DB. |
scannerV4.db.resources.requests
|
Use this parameter to override the default resource requests for Scanner V4 DB. |
scannerV4.db.persistence.persistentVolumeClaim.claimName
|
The name of the PVC to manage persistent data for Scanner V4.
If no PVC with the given name exists, it is created. The default value is scanner-v4-db if not set. To prevent data loss, the PVC is not removed automatically when Central is deleted. |
scannerV4.indexer.nodeSelector
|
If you want this component to only run on specific nodes, you can use this parameter to configure a node selector. |
scannerV4.indexer.tolerations
|
If the node selector selects tainted nodes, use this parameter to specify a taint toleration key, value, and effect for the Scanner V4 Indexer. This parameter is mainly used for infrastructure nodes. |
scannerV4.indexer.resources.limits
|
Use this parameter to override the default resource limits for the Scanner V4 Indexer. |
scannerV4.indexer.resources.requests
|
Use this parameter to override the default resource requests for the Scanner V4 Indexer. |
scannerV4.indexer.scaling.autoScaling
|
When enabled, the number of Scanner V4 Indexer replicas is managed dynamically based on the load, within the limits specified. |
scannerV4.indexer.scaling.maxReplicas
|
Specifies the maximum replicas to be used in the Scanner V4 Indexer autoscaling configuration. |
scannerV4.indexer.scaling.minReplicas
|
Specifies the minimum replicas to be used in the Scanner V4 Indexer autoscaling configuration. |
scannerV4.indexer.scaling.replicas
|
When autoscaling is disabled for the Scanner V4 Indexer, the number of replicas is always configured to match this value. |
scannerV4.monitoring.exposeEndpoint
|
Configures a monitoring endpoint for Scanner V4. The monitoring endpoint allows other services to collect metrics from Scanner V4, provided in a Prometheus-compatible format. Use Enabled to expose the monitoring endpoint. When you enable monitoring, RHACS creates a new service, monitoring , with port 9090, and a network policy allowing inbound connections to the port. By default, this is not enabled. |
scannerV4.scannerComponent
|
Enables Scanner V4. Valid values are:
* Default : Scanner V4 is not enabled and not deployed.
* AutoSense : If Central exists in the same namespace, Scanner V4 is not deployed and the existing Scanner V4 that was installed with Central is used. If there is no Central in this namespace, Scanner V4 is deployed.
* Disabled : Do not deploy Scanner V4. |