Skip to content

Connect a Kubernetes cluster

Use the Kubernetes connection wizard to connect a Kubernetes cluster to Venafi Control Plane and view information about the cluster and related certificates.

Prerequisites

  • Access to a Kubernetes cluster that you want to connect to Venafi Control Plane.
  • The ability to install new components.
  • The Kubernetes cluster must be able to connect to Venafi Control Plane.
  • The Kubernetes cluster must be one of these supported Kubernetes flavors:
    • AWS Elastic Kubernetes Service (EKS)
    • Azure Kubernetes Service (AKS)
    • Google Kubernetes Engine (GKE)
    • Red Hat OpenShift
    • Self-hosted Kubernetes distributions such as vanilla Kubernetes or Rancher
  • The Kubernetes cluster must be able to connect to the API endpoints described in Discovery Agent network requirements.

To connect a Kubernetes cluster

  1. Sign in to Venafi Control Plane.

  2. Click Installations > Kubernetes Clusters.

  3. Click Connect.

  4. Under Prerequisites, click Continue.
  5. Under Install the Venafi CLI tool, select your operating system, copy the relevant command, and run it on your system.
  6. After you install the CLI tool for CyberArk Certificate Manager, select Continue.
  7. Under Name the Cluster, enter a Name and Description.

  8. In the text box, copy the CLI tool connection command and run it on your system.

    The connection command does the following:

    1. Runs prerequisite checks to help ensure that cluster connection successfully completes.
    2. Creates a new service account on Venafi Control Plane.
    3. Adds a new cluster resource to Venafi Control Plane.
    4. Installs the Discovery Agent on the cluster.
    5. Ensures the Discovery Agent reports data to Venafi Control Plane.

  9. When the command is complete, select The connection command has completed and click Continue. A message indicating a successful connection appears.

  10. Click Finish.

To disconnect a Kubernetes cluster

  1. Sign in to Venafi Control Plane.
  2. Click Installations > Kubernetes Clusters.
  3. Click the Name of the cluster to disconnect.
  4. In the panel that appears on the right, click Disconnect.