Skip to content

Lacework

Deploy Lacework Agents

module "lacework" {
  source  = "tx-pts-dai/kubernetes-platform/aws//modules/datadog"
  version = ...

  cluster_name = module.eks.cluster_name
}

Requirements

Name Version
terraform >= 1.3.2
aws ~> 5.0
kubernetes >= 2.0.0
lacework >= 2.0.0

Providers

Name Version
aws ~> 5.0
kubernetes >= 2.0.0
lacework >= 2.0.0

Modules

Name Source Version
lacework_k8s_datacollector lacework/agent/kubernetes 2.5.2

Resources

Name Type
kubernetes_namespace_v1.lacework resource
lacework_agent_access_token.kubernetes resource
aws_caller_identity.this data source

Inputs

Name Description Type Default Required
agent_tags A map/dictionary of Tags to be assigned to the Lacework datacollector map(string) {} no
cluster_name Name of the cluster string n/a yes
enable_cluster_agent A boolean representing whether the Lacework cluster agent should be deployed bool true no
namespace Namespace for Lacework resources string "lacework" no
node_affinity Node affinity settings 
list(object({
    key      = string
    operator = string
    values   = list(string)
  }))
 
[
  {
    "key": "eks.amazonaws.com/compute-type",
    "operator": "NotIn",
    "values": [
      "fargate"
    ]
  }
]
 no
pod_priority_class_name Name of the pod priority class string "system-node-critical" no
resources Resources for the Lacework agent 
object({
    cpu_request = string
    mem_request = string
    cpu_limit   = string
    mem_limit   = string
  })
 
{
  "cpu_limit": "1000m",
  "cpu_request": "100m",
  "mem_limit": "1024Mi",
  "mem_request": "256Mi"
}
 no
server_url Lacework server URL string "https://api.fra.lacework.net" no
tolerations Tolerations for the Lacework agent list(map(string)) 
[
  {
    "effect": "NoSchedule",
    "operator": "Exists"
  }
]
 no

Outputs

No outputs.

Requirements

Name Version
terraform >= 1.3.2
aws >= 5.0.0
kubernetes >= 2.0.0
lacework >= 1.18.2

Providers

Name Version
aws >= 5.0.0
kubernetes >= 2.0.0
lacework >= 1.18.2

Modules

Name Source Version
lacework_k8s_datacollector lacework/agent/kubernetes 2.5.1

Resources

Name Type
kubernetes_namespace_v1.lacework resource
lacework_agent_access_token.kubernetes resource
aws_caller_identity.this data source

Inputs

Name Description Type Default Required
agent_tags A map/dictionary of Tags to be assigned to the Lacework datacollector map(string) {} no
cluster_name Name of the cluster string n/a yes
enable_cluster_agent A boolean representing whether the Lacework cluster agent should be deployed bool true no
namespace Namespace for Lacework resources string "lacework" no
node_affinity Node affinity settings 
list(object({
    key      = string
    operator = string
    values   = list(string)
  }))
 
[
  {
    "key": "eks.amazonaws.com/compute-type",
    "operator": "NotIn",
    "values": [
      "fargate"
    ]
  }
]
 no
pod_priority_class_name Name of the pod priority class string "system-node-critical" no
resources Resources for the Lacework agent 
object({
    cpu_request = string
    mem_request = string
    cpu_limit   = string
    mem_limit   = string
  })
 
{
  "cpu_limit": "1000m",
  "cpu_request": "100m",
  "mem_limit": "1024Mi",
  "mem_request": "256Mi"
}
 no
server_url Lacework server URL string "https://api.fra.lacework.net" no
tolerations Tolerations for the Lacework agent list(map(string)) 
[
  {
    "effect": "NoSchedule",
    "operator": "Exists"
  }
]
 no

Outputs

No outputs.