Alibaba Cloud Container Service for Kubernetes (ACK)
Table of Contents
Alibaba Cloud Container Service for Kubernetes (ACK)
Alibaba Cloud Container Service for Kubernetes (ACK) is a managed Kubernetes service.
Use the standard Kubernetes install procedure to deploy Prisma Cloud to Alibaba ACK, but specify an Alibaba Cloud-specific StorageClass when configuring the deployment.
This procedure shows you how to use Helm charts to install Prisma Cloud, but all other install methods are supported.
Prerequisites
- You have provisioned an ACK cluster.
- Download the latest recommended release.
- Download the release tarball to the system where you administer your cluster (where you run your kubectl commands).$ wget <LINK_TO_CURRENT_RECOMMENDED_RELEASE_LINK>Unpack the Prisma Cloud release tarball.$ mkdir twistlock $ tar xvzf twistlock_<VERSION>.tar.gz -C prisma_cloud/Create a Helm chart for Prisma Cloud Console.$ <PLATFORM>/twistcli console export kubernetes \ --storage-class alicloud-disk-available \ --service-type LoadBalancer \ --helmInstall Console.$ helm install twistlock-console \ --namespace twistlock \ ./twistlock-console-helm.tar.gzChange the PersistentVolumeClaim’s reclaimPolicy.$ kubectl get pv $ kubectl patch pv <pvc-name> -p '{"spec":{"persistentVolumeReclaimPolicy":"Retain"}}'Get the public endpoint address for Console. When the service is fully up, the LoadBalancer’s IP address is shown.$ kubectl get service -w -n twistlockOpen a browser window, and navigate to Console. By default, Console is served on HTTPS on port 8083 of the LoadBalancer:https://<LOADBALANCER_IP_ADDR>:8083Continue with the rest of the install here.
