This topic provides information about the technical support for the StackRox Kubernetes Security Platform and details about other supported software and infrastructure.

StackRox Kubernetes Security Platform support

StackRox supports the StackRox Kubernetes Security Platform versions for up to six months after its release, which corresponds to the previous nine released versions. StackRox will make reasonable efforts and assist you in supporting some older versions. However, the support team may request you to upgrade to a newer released version of the StackRox Kubernetes Security Platform for full support.

For the StackRox Kubernetes Security Platform, StackRox supports:

  • The latest released version (referred to as N).

  • Nine earlier versions.

The support window of the StackRox Kubernetes Security Platform versions is known as N-9 where: N (latest release) - 9 (earlier versions).

Along with our N-9 support window, StackRox might support version N-10 to N-13, depending on a case-by-case basis. StackRox will not support any earlier versions than N-13.

Support on various platforms

The StackRox support team supports a platform version based on the upstream (or vendor) product’s support lifecycle for that version. When support for a platform version reaches its end of life (EOL) or is not actively maintained, StackRox no longer supports it.

StackRox does not support:

  • Installing the StackRox Kubernetes Security Platform on Minikube and other similar single-node clusters.

  • Amazon Elastic File System (EFS). Use Amazon Elastic Block Store (EBS) with the default GP2 volume type instead.

  • Older CPUs that do not have the Streaming SIMD Extensions (SSE) 4.2 instruction set, for example Intel processors older than Sandy Bridge and AMD processors older than Bulldozer. Both of these processors were released in 2011.

Operating systems

Operating system Version

Ubuntu

16.04 LTS, 18.04 LTS, and 20.04 LTS with standard or cloud-provider-specific kernel versions

Debian

9, 10

Red Hat Enterprise Linux

7.3 till 7.9, 8.0 and newer

CentOS

7, 8

Fedora CoreOS

Stable stream 32.20200824.3.0 and newer

Flatcar Container Linux

2023.4.0 and newer

Google COS

77 and newer

Amazon Linux

2

Garden Linux

27.0 and newer

Container runtimes

Container runtimes Version

Docker

17.03 and newer

CRI-O and runC

-

CRI-O and runC support is available starting from Red Hat Advanced Cluster Security for Kubernetes version 2.5.31.0.

Container orchestrators and platforms

Container orchestrators and platforms Version

link:https://kubernetes.io/docs/setup/release/notes/1

1.15 and newer

OpenShift Container Platform

3.10, 3.11, 4.1, and newer

link:https://docs.d2iq.com/mesosphere/dcos/services/kubernetes/2

2.0.0 and newer

  1. StackRox supports new versions of Kubernetes within three months of its open-source general-availability release. You might need to upgrade the Red Hat Advanced Cluster Security for Kubernetes to get support for the latest Kubernetes versions. See the Kubernetes support section for more details.

  2. DC/OS support is available starting from Red Hat Advanced Cluster Security for Kubernetes 2.5.31.0.

Kubernetes support

The following table lists the minimum version of the StackRox Kubernetes Security Platform that StackRox support based on the Kubernetes version.

Kubernetes version StackRox minimum support version

1.15, 1.16, 1.17

3.0.42.0

1.18

3.0.47.1

1.19

3.0.52.0

Managed Kubernetes services

StackRox support recent Kubernetes and OpenShift Container Platform versions, and test on managed Kubernetes service from all major cloud providers, including:

Collector will not install on GKE clusters if you enable secure boot because third-party unsigned kernel module, which are not signed by Google’s CA, cannot be loaded when secure boot is enabled.

Along with other types of clusters, StackRox also supports clusters created by using the kops - Kubernetes Operations tool with the default configurations on Amazon Web Services (AWS).