This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Why are EKS Clusters defended with daemonsets NOT rendering in PCC/Manage/Defenders/Manage DaemonSets?

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Why are EKS Clusters defended with daemonsets NOT rendering in PCC/Manage/Defenders/Manage DaemonSets?

TommyHunt
L3 Networker

‎11-16-2022 07:57 AM

Navigating to PCC/Manage/Defenders/Manage DaemonSets, I see NO EKS daemonsets rendering in the console.

TommyHunt_0-1668613825643.png

 

However, Cloud Discovery renders these two EKS clusters Defended=True.

TommyHunt_1-1668614188162.png

 

What am I doing wrong?  Is it supposed to work this way?  Or, What have I misconfigured?  

Tommy Hunt AWS-CSA, Java-CEA, PMP, SAFe Program Consultant
thunt@citrusoft.org
https://www.citrusoft.org
0 Likes Likes
5 REPLIES 5

USheikh
L3 Networker

‎11-16-2022 04:05 PM

Hi TommyHunt,

 

Can you share the logs from the defender?

 

Since it is not showing in the console, please navigate to /var/lib/twistlock/log in the EKS and share the defender.log file.

 

Regards,

Umer Sheikh | Technical Support Engineer - Prisma Cloud Compute | PCCSE, AWS - Associate Architect

TommyHunt
L3 Networker
In response to USheikh

‎11-18-2022 07:40 AM - edited ‎11-18-2022 08:57 AM

Hi @USheikh thanks for your response.

So I downloaded the defender's logs from the Prisma Cloud Compute (PCC)/Manage/Defenders console.

TommyHunt_0-1668785897291.png

Is the attached an acceptable log?

I am also attaching the defender.yaml file.

Tommy Hunt AWS-CSA, Java-CEA, PMP, SAFe Program Consultant
thunt@citrusoft.org
https://www.citrusoft.org
defender.log.zip
defender.yaml.zip
0 Likes Likes

USheikh
L3 Networker

‎11-21-2022 05:09 PM

Hello Tommy,

 

Thank you for uploading the logs.

 

It looks like the defender is showing up in the console, but it is not showing up in the Daemonset tab.

 

Can you make sure to add the account in the cloud accounts section? For example, Compute > Manage > Cloud Accounts.

 

Once you have added the cloud account, can you check if the eks defender is showing up in the Daemonset tab?

 

Regards, 

 

Umer Sheikh | Technical Support Engineer - Prisma Cloud Compute | PCCSE, AWS - Associate Architect
0 Likes Likes

TommyHunt
L3 Networker
In response to USheikh

‎11-28-2022 09:02 AM - edited ‎11-28-2022 10:51 AM

@USheikh please carefully read the thread of conversation. You are "shooting from the hip."

 

Regarding your comment... "Can you make sure to add the account in the cloud accounts section? For example, Compute > Manage > Cloud Accounts."

 

The 2nd image of this conversation is a snapshot of the Compute/Manage/CloudAccounts console for this account.

 

The defenders and console appear to be connected, however, the defenders are not being rendered on specific pages of the console.

 

Do you have any other suggestions?

Tommy Hunt AWS-CSA, Java-CEA, PMP, SAFe Program Consultant
thunt@citrusoft.org
https://www.citrusoft.org
0 Likes Likes

MDavis29
L3 Networker
In response to TommyHunt

‎11-28-2022 09:46 AM

Hello TommyHunt, Would you be open to creating a support ticket for this effort?  I think creating one at this stage would be beneficial and help get your question answered.  Your time is important to us and I recommend a live working session with my colleagues is in order.  https://support.paloaltonetworks.com/Support/Index

 

  • 1704 Views
  • 5 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks