This is a cache of https://docs.openshift.com/acs/4.5/cloud_service/installing_cloud_other/init-bundle-cloud-other-apply.html. It is a snapshot of the page at 2024-11-24T18:03:35.658+0000.
Applying an init bundle for Kubernetes secured clusters - Setting up RHACS Cloud <strong>service</strong> with Kubernetes secured clusters | RHACS Cloud <strong>service</strong> | Red Hat Advanced Cluster Security for Kubernetes 4.5
×

Apply the init bundle by using it to create resources.

Applying the init bundle on the secured cluster

Before you configure a secured cluster, you must apply the init bundle by using it to create the required resources on the secured cluster. Applying the init bundle allows the services on the secured cluster to communicate with RHACS Cloud service.

If you are installing by using Helm charts, do not perform this step. Complete the installation by using Helm; See "Installing RHACS on secured clusters by using Helm charts" in the additional resources section.

Prerequisites
  • You must have generated an init bundle containing secrets.

  • You must have created the stackrox project, or namespace, on the cluster where secured cluster services will be installed. Using stackrox for the project is not required, but ensures that vulnerabilities for RHACS processes are not reported when scanning your clusters.

Procedure
  • Using the kubectl CLI, run the following commands to create the resources:

    $ kubectl create namespace stackrox (1)
    $ kubectl create -f <init_bundle>.yaml \(2)
      -n <stackrox> (3)
    1 Create the project where secured cluster resources will be installed. This example uses stackrox.
    2 Specify the file name of the init bundle containing the secrets.
    3 Specify the project name that you created. This example uses stackrox.
Verification
  • Restart Sensor to pick up the new certificates.

    For more information about how to restart Sensor, see "Restarting the Sensor container" in the "Additional resources" section.

Next steps

  • Install RHACS secured cluster services in all clusters that you want to monitor.

Additional resources