Giters

fjogeleit / kubecon-polr-demo-2022

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

KubeCon EU 2022 - PolicyReport CRD Demo

Requirement

  • Helm

Prepare Namespaces

kubectl apply -f ./namespaces

Install Tools

Kyverno, Prometheus, Grafana, Policy Reporter

helm upgrade --install policy-reporter-demo ./policy-reporter-demo -n policy-reporter --create-namespace

Kyverno Policies

helm upgrade --install kyverno-policies kyverno-policies -n kyverno --create-namespace --repo https://kyverno.github.io/kyverno --version v2.4.0 --set podSecurityStandard=restricted

Adapter PolicyReports: Trivy, Kube-Bench, Falco

kubectl apply -f ./polr

Accessing Dashboards

Grafana Dashboard

Default Login

Username: admin Password: prom-operator

kubectl port-forward service/policy-reporter-demo-grafana 3000:80 -n monitoring

Open: http://localhost:3000

Policy Reporter UI

kubectl port-forward service/policy-reporter-demo-ui 8082:8080 -n policy-reporter

Open: http://localhost:8082

Screenshots

PolicyReporter Grafana Dashboard

PolicyReporter UI Dashboard

About

Languages

Language:Smarty 100.0%