<img src="https://ws.zoominfo.com/pixel/JHVDdRXH2uangmUMQBZd" width="1" height="1" style="display: none;">

Weaveworks 2022.03 release featuring Magalix PaC | Learn more

Welcome to Magalix Documentation!

These pages cover what Magalix is, how to get started using it, and reference materials for its features and supported cloud providers.

Get started quickly, and get all your questions answered now!

Talk to an Expert

Setting Up KubeGuard

What is KubeGuard?

Magalix can help you secure your infrastructure by scanning your K8s clusters and detecting any violating entities. However, you want to be detecting and preventing any violations really early in your software development life cycle, in order to fix these security violations before they get deployed and configured into your clusters. Here is where KubeGuard fits in your workflow.

KubeGuard is simply the prevention mechanism you can integrate with your development workflows to enforce policies on entities before they get deployed to your clusters. KubeGuard can work on any one or all of the following stages:

  1. Commit Time, which means integrating KubeGuard in your source control like Github, or Gitlab to enforce policies.
  2. Build Time, which means integrating KubeGuard in your build pipelines within tools like CircleCI, Jenkins to enforce policies.
  3. Deployment Time, which means using KubeGuard as an admission controller in your K8s clusters to monitor any changes on your clusters and prevent the entities that violate your policies from getting deployed.

How KubeGuard Works?

To use KubeGuard, first, you need to create a guard. A guard is a group of policies that you need to enforce. Once the guard is created, it creates a unique guard webhook URL that can receive entities coming from any platform, whether it’s source control, build pipeline, or K8s admission controller. Once an entity is received on that URL, Magalix backend responds back if this entity is violating or compliant with the policies in the guard.

Setting Up New Guard

In the left navigation menu, at the bottom. You will be able to see KubeGuard menu item. Once you click on it, it will take you to a page with a list of all account-created guards.

To create a new guard,

  1. Click on the “Create Guard” button.
  2. Enter a name for the guard
  3. Choose which policies to add to the guard
  4. Click create.

Setting Up KubeGuard

Once a new guard is created, a unique URL will be generated for that guard. You can either use that URL right away yourself or ask our support on how to set it up in your favorite tool.