Light

jaydenaung / cloudguard-onboard-openshift Goto Github PK

View Code? Open in Web Editor NEW

0.0 2.0 1.0 46 KB

Onboarding Openshift to CloudGuard Native

License: GNU General Public License v3.0

Shell 25.01% Python 74.99%

cloudguard-onboard-openshift's Introduction

How to Automate Onboarding an Openshift cluster to Check Point CloudGuard Native

This tutorial is details how to onboard Openshift cluster to CloudGuard native using automation scripts.

(Manual onboarding guide is here. The original repo is forked from Dean Houari's Repo.

Prerequisites

Register for a CloudGuard native account. https://secure.dome9.com/v2/register/invite
Generate CloudGuard API key and secret here https://secure.dome9.com/v2/settings/credentials

Run the following command:

git clone https://github.com/jaydenaung/cloudguard-onboard-openshift

Using automation scripts to automate the onboarding process

Bash Shell

Make sure that uid1000.json and cp-cloudguard-openshift.yaml are in the same directory as onboard-1.sh.
Edit variables and run onboard-1.sh to onboard the cluster.

    ./onboard-1.sh

Alternatively, you can follow the instructions below and execute command lines manually.

Python Script (Work in Progress))

You can use the python script onboard_oc_1.py to onboard or remove an OpenShift cluster to and from CloudGuard.

# Install requirements
pip3 install -r requirements.txt
# Execute script
python3 onboard_oc_1.py onboard

For cluster onboarding you will need to provide:

Your Cluster Name (e.g. my_cluster)
Namespace (e.g. checkpoint)
CloudGuard API Key (you can export environment variable CHKP_CLOUDGUARD_ID and script will detect it)
CloudGUard API Secret (you can export environment variable CHKP_CLOUDGUARD_SECRET and script will detect it)

For cluster removal you will need to provide:

The path to the yaml file that was generated during onboarding. The script will try to find a yaml file in the current directory.
CloudGuard API Key (Alternatively, can export environment variable CHKP_CLOUDGUARD_ID and the script will detect it)
CloudGUard API Secret (you can also export environment. variable CHKP_CLOUDGUARD_SECRET and the script will detect it.)

Verififcation

Log onto CloudGuard native and wait for the initial sync process to be completed.

cloudguard-onboard-openshift's People

Contributors

Watchers

Forkers

myfriendlyusername

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.

Jobs