Skip to content

aqua_enforcer

Directory actions

More options

Directory actions

More options

Latest commit

 

History

History
 
 

aqua_enforcer

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
docker/compose
docker/compose
 
 
ecs/cloudformation/aqua-ecs-ec2
ecs/cloudformation/aqua-ecs-ec2
 
 
kubernetes_and_openshift
kubernetes_and_openshift
 
 
README.md
README.md
 
 

README.md

Aqua Enforcer

Overview

Aqua Enforcers provide full runtime protection and other functionality for containers and selected host-related functionality.

In Kubernetes, the enforcer runs as a DaemonSet deployment for workload runtime security, blocking unauthorized deployments, monitoring and restricting runtime activities and generating audit events.

Deployment methods

Suited for

  • Aqua Enterprise SaaS
  • Aqua Enterprise Self-Hosted

Supported platforms

  • Kubernetes and Openshift (SaaS and Self-Hosted)
  • AWS ECS (Self-Hosted only)
  • Docker (SaaS and Self-Hosted)

Note:

  • For OpenShift version 3.x use RBAC definition from ./aqua_enforcer/kubernetes_and_openshift/manifests/001_aqua_enforcer_rbac/openshift_ocp3x
  • For OpenShift version 4.x use RBAC definition from ./aqua_enforcer/kubernetes_and_openshift/manifests/001_aqua_enforcer_rbac/openshift

References

Before you start using any of the deployment methods documented in this reposiory, Aqua strongly recommends you to refer the following product documentation: