Install Tracee on Kubernetes

In the deploy/ directory you will find Yaml files to deploy Tracee in a Kubernetes environment either with Helm or with a static yaml.

Tip

The preferred way to deploy Tracee is through its Helm chart!

1. Install Tracee using Helm

   1. Add Aqua chart repository:

      helm repo add aqua https://aquasecurity.github.io/helm-charts/
      helm repo update
      

      or clone the Helm chart:

      git clone --depth 1 --branch v0.16.0 https://github.com/aquasecurity/tracee.git
      cd tracee
      

   2. Install the chart from the Aqua chart repository:

      helm install tracee aqua/tracee \
              --namespace tracee-system --create-namespace
      

      or install the Helm chart from a local directory:

      helm install tracee ./deploy/helm/tracee \
              --namespace tracee-system --create-namespace
      

2. Install Tracee Manually

   To install Tracee

   kubectl create namespace tracee-system
   kubectl create -n tracee-system \
       -f https://raw.githubusercontent.com/aquasecurity/tracee/main/deploy/kubernetes/tracee/tracee.yaml
   

Platform Support

This approach assumes that host nodes have either BTF available or kernel headers available under conventional location. See Tracee's prerequisites for more info. For the major Kubernetes platforms this should work out-of-the-box, including GKE, EKS, AKS, minikube.