VMware Tanzu support

[Ankurk99]

Feature Request

Short Description

Support for VMware Tanzu needs to be validated. Validation has to be done for:

• [ ] enforcement supported? What is the LSM used?
• [ ] Audit/Observability supported
• [ ] Paste the output of karmor probe

As an FYI, the tasks involved would be:

1. Setup a k8s cluster using free tier vmware tanzu program
2. Install KubeArmor
3. Check sample workloads and verify if following things are working:
   • Policy Enforcement
   • Alerts/Telemetry
4. Get karmor probe output reference and attach in this issue
5. Update Kubearmor support matrix

edit: added comments suggestions

[nyrahul]

As an FYI, the tasks involved would be:

1. Setup a k8s cluster using free tier vmware tanzu program
2. Install KubeArmor
3. Check sample workloads and verify if following things are working:
   • Policy Enforcement
   • Alerts/Telemetry
4. Get karmor probe output reference and attach in this issue
5. Update Kubearmor support matrix

[saurabh3460]

@nyrahul I want to work on this, please assign it to me

[vrabbi]

When you say tanzu, there are actually 3 tanzu distributions, so it is important to be exact on which distro this is being tested. There is tkgi (foremerly pks), tkgm (multi cloud tkg on aws azure and vsphere), and tkgs (vsphere with tanzu). Also they support ubuntu and photonOS3 as well as amazon linux 2 when running on aws so important again to be explicit about what is tested and validated

[Ankurk99]

@saurabh3460 Were you able to setup the environment? And can you please mention which one are you testing first?

[saurabh3460]

@Ankurk99 I struggled with cli installation but did that so far and I am going with amazon and ubuntu setup first

[jatinagwal]

@saurabh3460 Can I pick this up ?

[saurabh3460]

sorry @jatinagwal for late reply sure take it, @nyrahul can you please assign it to him?

[HariVamsiK]

@jatinagwal are you working on this? If not, I want to take this up.

[jatinagwal]

@jatinagwal are you working on this? If not, I want to take this up.

Hey, sorry I mentioned progress on slack. Actually, to deploy TKG i don't have enough resources. You can pick this

[Ankurk99]

Hey @HariVamsiK, were you able to setup the Tanzu instance?

[HariVamsiK]

No not yet, I'm still figuring out the instances to use to setup the cluster. I'll update you the progress once I'm done setting up. I'll be using AWS for this.

[Ankurk99]

Hey @HariVamsiK, Do you require any help in setting up the Tanzu instance?

[HariVamsiK]

Yeah I might need it, I talked to @saurabh3460 about this and got some inputs from him.

Sorry I was busy with some academic work. Will start the work soon and report about it in the next community meeting.

[Ankurk99]

No worries, let's discuss about that in the community call then. If you need any help till then, please feel free to ask here.

[akashsawan1]

hey, If no one is working ? I would love to work on this. Please assign it to me. @Ankurk99

[HariVamsiK]

@akashsawan1 I'm working on it, Was able to create the management cluster too. Testing only remains now.

[akashsawan1]

@akashsawan1 I'm working on it, Was able to create the management cluster too. Testing only remains now.

Oh great , let me know if you got stuck somewhere, we can work on resolving the issue together.