Kubernetes

Integrating a Kubernetes cluster involves deploying a Firefly agent (container) in your cluster that reports resource info. In Firefly, select Add New > Kubernetes. You'll be prompted for a Cluster ID (an alias or name to identify the cluster) and whether to mark it as production. You can also choose to integrate Argo CD if you use it for GitOps (Firefly will then fetch additional data about the cluster's apps).

On the next step, Firefly will provide a command, a Helm install command that includes a manifest URL and an API token – which you run in your K8s cluster's context. This command installs Firefly's agent (often in the firefly namespace). The agent will collect cluster resources (Pods, Deployments, Services, etc.) and send them to Firefly.

If Argo CD integration was enabled, you'll also input your Argo CD domain and an API token for Argo in the Firefly setup, which allows Firefly to correlate Argo applications with cluster objects. Once done, Firefly will list your cluster in Inventory (under Kubernetes provider) and you'll see Kubernetes objects as part of your asset inventory.

For K8s, Firefly's drift and codification features can track the cluster's manifests similarly to cloud resources. The integration will continuously monitor the cluster (the agent watches for changes) and Firefly also periodically pulls. If you destroy the cluster or uninstall the agent, Firefly will mark those resources as deleted after a while.

Prerequisites

  • Access to a Kubernetes cluster with administrative privileges.

  • kubectl or Helm installed and configured.

  • Cluster context properly configured.

  • (Optional) Argo CD installed if using GitOps.

  • (Optional) AWS S3 bucket for Argo CD configuration (if using Argo CD).

Setup Procedure

  1. In Firefly, click Settings > Integrations.

  2. Click Add New > Kubernetes.

  3. Enter the Cluster ID (a unique alias).

  4. (Optional) Select the Mark as Production checkbox.

  5. (Optional) To display the Kubernetes object status from Argo CD in the Inventory, select the Integrate Argo CD checkbox (Currently supported by AWS only).

  6. Click Next.

Argo CD Integration (Optional)

If you are integrating with Argo CD, fill in the following fields:

  • Argo CD Domain: The Argo CD server domain in your cluster.

  • Argo CD API Token: We recommend creating a dedicated Argo CD user with read-only permissions, without admin permissions, and then create a token for the new user. See Create New User and Generate Token in the Argo CD documentation.

  • AWS S3 Bucket: Create a dedicated bucket in an AWS account integrated with Firefly for the Argo CD configuration output.

  • AWS S3 Bucket Region: Select the region of the S3 account.

  1. Click Next.

  2. Copy the command, and run it in the terminal (this installs Firefly's agent in the firefly namespace).

  3. Click Done.

Configuration Details

  • Firefly scans by default every 15 minutes. You can configure the frequency in the Helm install command.

  • Your Kubernetes configurations list will stay updated automatically.

  • You can enforce IaC or policies on your Kubernetes assets.

  • Supports monitoring of Kubernetes resources.

  • Supports drift detection and manifest tracking.

  • Supports Argo CD integration for GitOps workflows.

Last updated

Was this helpful?