Connect Deployed Agents to SaaS Management (K8s & Linux)


When logged in to the open-appsec portal, click on Getting Started. You will see this page:
Follow these steps to connect your agents to the management:

Step 1: Confirm agent is deployed

Check the "I deployed an agent" box, the Central Management box will become enabled.

Step 2: Create a profile

  1. 1.
    In the Getting Started page, click Manage and choose either Kubernetes Profile or Linux Embedded Agent Profile depending on your installation type. You will get into the related Profile page:
NGINX Kubernetes Ingress Profile Example
Kong Linux Profile Example

Step 3: Select Subtype

In the "sub type" field select either NGINX or Kong depending on what kind of open-appsec agent / deployment you want to connect.

Step 4: Determine Management Master

Choose the relevant option to decide whether you want to edit assets and policies via the WebUI or locally in a declarative way (using CRDs or configuration file). If you choose a declarative option you can still view the configuration in the WebUI in read-only mode.
Kubernetes management mode
NGINX management mode

Step 4: Create secure communication channel between Agent(s) and Management

Follow the guidelines under Download & Deployment:
  1. 1.
    Enforce policy, by clicking the button at the top right of the page.
  2. 2.
    Copy the command as shown in the selected profile and run it in your Kubernetes or NGINX Environment to connect your deployed agents to this profile and the central management. Here are some examples:
Connect Existing open-appsec NGINX Linux Example
Connect Existing open-appsec Kong Kubernetes Example
Once you performed the instructions, after about two minutes, you will see a green notification bar in the Web UI. Your open-appsec agents are now connected to the management!