Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

Thales Logo

All

  • All
back

Deploy a CTE for Kubernetes Volume

Create a CTE Policy for Kubernetes

search

Please Note:

Create a CTE Policy for Kubernetes

For the generic instructions on how to create a CTE policy, see Policies

Specifically, when creating a policy for protecting Persistent Volumes in CTE for Kubernetes:

  1. Create a policy with type : Container Storage Interface

  2. For the CTE for Kubernetes policy name, use the name listed for the policy parameter: csi.cte.cpl.thalesgroup.com/policy in the cte-csi-claim.yaml file.

  3. Make the GuardPolicy name the same name as the CTE for Kubernetes policy.

  4. Attach this GuardPolicy to the K8s Storage Group.

CTE for Kubernetes only supports User Sets with a UID and GID. User names and Group names are not supported.

Process Sets are supported, however, CTE for Kubernetes does not support Signature Sets.

On this page