05-11-2023 06:16 AM
We are attempting to deploy defenders in Kubernetes. We are cloud hosted prisma console. And checked through the kubernetes requirements and those seem to meet.
Uploaded the twistcli and ran the script that we generated in the console. We got the following error:
failed to generate defender daemonset: Status: 401 Unauthorized
POST https://us-west1.coud.twistlock.com/redacted/api/v30.00/defenders/daemonset.yaml failed.
Error: invalid token
Any idea where I should look for troubleshooting.
06-15-2023 04:55 AM
We found the issue was that the deploy script was being used too long after generation and thus invalidating the generated tokens. Pulled a fresh script from the console and the install happened fine.
05-11-2023 06:13 PM
Hello!
Thank you for reaching to Palo Alto Networks Support. My name is Umer, and I am part of Prisma Cloud Compute Support team. I will be assisting you with your question.
If you are using SaaS version of the console, then you will need to generate an Access Key by going under Setting > Access Control .
Here is Prisma Cloud Compute's documentation to generate a yaml file from API:
https://pan.dev/compute/api/post-defenders-daemonset-yaml/
Hope it helps! Let me know if you have any follow up questions.
Regards,
06-15-2023 04:55 AM
We found the issue was that the deploy script was being used too long after generation and thus invalidating the generated tokens. Pulled a fresh script from the console and the install happened fine.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
