Deploy Cyberwatch with MicroK8s (deprecated)

This describes how to deploy Cyberwatch from scratch with MicroK8s on a machine that has access to the internet.

Prerequisites

Ensure that the following prerequisites are satisfied:

• a machine satisfying Cyberwatch’s technical prerequisites;
• credentials to access container images and Helm charts (i.e a login/password provided by Cyberwatch);
• a valid license file to access the vulnerability database (provided by Cyberwatch).
• 30 GB of disk space on /var/snap/ and 10 GB on /var/lib.
• outgoing HTTPS requests allowed towards the following domains:

dl.fedoraproject.org
download.fedoraproject.org
.cloudfront.net
api.snapcraft.io
.cdn.snapcraft.io
.cdn.snapcraftcontent.com
k8s.gcr.io
storage.googleapis.com
get.helm.sh
harbor.cyberwatch.fr
registry-1.docker.io
auth.docker.io
production.cloudflare.docker.com
securitydb.cyberwatch.fr
download.windowsupdate.com (optional)
dl.cyberwatch.fr

Deploy Cyberwatch

1. Install MicroK8s;
2. Install Cyberwatch.

Deploy Cyberwatch behind proxy with MicroK8s

In the event of a Cyberwatch deployment behind a proxy, refer to this page:

• Deploy Cyberwatch behind proxy with MicroK8s

Troubleshooting

The page Troubleshooting contains common issues and details on how to debug a failure during the deployment. If required, you can contact the support at support@cyberwatch.fr.