g3rzi
commented
1 year ago Hi Victor, Thank you for taking the time to open a ticket. I first want to say that in the last couple of weeks we did some major updates on the way we load KubiScan through containers and we are aware that the documentation is not updated, we are planning to fix that. Regarding your questions:
- You are right, this is where you can use by using a service account. We created a setup for creating a special service account with the relevant permissions, after you create it, you can use this token to run KubiScan from remote. Actually, you don't need to run it on the master, you can run it everywhere, you will just need to have a kubeconfig with enough permissions. I need to update the readme :)
- We need to update the readme, I will take these notes when updating.
- We are aware of that, and we will see how we can improve that. Maybe creating a WiKi page in the repository that will help. You can also check the examples page or by running
kubiscan -e.
I will update you once the readme will be updated.
Regarding the EKS, for now, what I would do is follow the creation of the service account to run KubiScan from remote.
christophetd
Description
I want to run KubiScan on the EKS cluster. But I did not find anything in the documentation or on the Internet about how to do it correctly. Below is a description of the problems I encountered
The documentation says that this tool should be launched on the master node - but it is impossible for EKS. There are just nodes.
There are no details on whether this tool can be run on a local machine and remotely test something.
There is very little documentation and it is confusing.
Please can you clarify the steps on how to run this tool on the EKS cluster and update the readme file because many things look non-obvious?