Skip to content

Commit 77ff1f9

Browse files
author
Yash Tewari
committed
Edit Agent manifest to mount node's /etc directory.
Corresponding change made in Agent repository with: elastic/elastic-agent#1382
1 parent a946155 commit 77ff1f9

1 file changed

Lines changed: 14 additions & 54 deletions

File tree

x-pack/plugins/fleet/server/services/elastic_agent_manifest.ts

Lines changed: 14 additions & 54 deletions
Original file line numberDiff line numberDiff line change
@@ -81,21 +81,12 @@ spec:
8181
- name: varlog
8282
mountPath: /var/log
8383
readOnly: true
84-
- name: etc-kubernetes
85-
mountPath: /hostfs/etc/kubernetes
84+
- name: etc-full
85+
mountPath: /hostfs/etc
8686
readOnly: true
8787
- name: var-lib
8888
mountPath: /hostfs/var/lib
8989
readOnly: true
90-
- name: passwd
91-
mountPath: /hostfs/etc/passwd
92-
readOnly: true
93-
- name: group
94-
mountPath: /hostfs/etc/group
95-
readOnly: true
96-
- name: etcsysmd
97-
mountPath: /hostfs/etc/systemd
98-
readOnly: true
9990
volumes:
10091
- name: datastreams
10192
configMap:
@@ -113,26 +104,15 @@ spec:
113104
- name: varlog
114105
hostPath:
115106
path: /var/log
116-
# Needed for cloudbeat
117-
- name: etc-kubernetes
107+
# The following volumes are needed for Cloud Security Posture integration (cloudbeat)
108+
# If you are not using this integration, then these volumes and the corresponding
109+
# mounts can be removed.
110+
- name: etc-full
118111
hostPath:
119-
path: /etc/kubernetes
120-
# Needed for cloudbeat
112+
path: /etc
121113
- name: var-lib
122114
hostPath:
123115
path: /var/lib
124-
# Needed for cloudbeat
125-
- name: passwd
126-
hostPath:
127-
path: /etc/passwd
128-
# Needed for cloudbeat
129-
- name: group
130-
hostPath:
131-
path: /etc/group
132-
# Needed for cloudbeat
133-
- name: etcsysmd
134-
hostPath:
135-
path: /etc/systemd
136116
---
137117
apiVersion: rbac.authorization.k8s.io/v1
138118
kind: ClusterRoleBinding
@@ -367,21 +347,12 @@ spec:
367347
- name: varlog
368348
mountPath: /var/log
369349
readOnly: true
370-
- name: etc-kubernetes
371-
mountPath: /hostfs/etc/kubernetes
350+
- name: etc-full
351+
mountPath: /hostfs/etc
372352
readOnly: true
373353
- name: var-lib
374354
mountPath: /hostfs/var/lib
375355
readOnly: true
376-
- name: passwd
377-
mountPath: /hostfs/etc/passwd
378-
readOnly: true
379-
- name: group
380-
mountPath: /hostfs/etc/group
381-
readOnly: true
382-
- name: etcsysmd
383-
mountPath: /hostfs/etc/systemd
384-
readOnly: true
385356
- name: etc-mid
386357
mountPath: /etc/machine-id
387358
readOnly: true
@@ -398,26 +369,15 @@ spec:
398369
- name: varlog
399370
hostPath:
400371
path: /var/log
401-
# Needed for cloudbeat
402-
- name: etc-kubernetes
372+
# The following volumes are needed for Cloud Security Posture integration (cloudbeat)
373+
# If you are not using this integration, then these volumes and the corresponding
374+
# mounts can be removed.
375+
- name: etc-full
403376
hostPath:
404-
path: /etc/kubernetes
405-
# Needed for cloudbeat
377+
path: /etc
406378
- name: var-lib
407379
hostPath:
408380
path: /var/lib
409-
# Needed for cloudbeat
410-
- name: passwd
411-
hostPath:
412-
path: /etc/passwd
413-
# Needed for cloudbeat
414-
- name: group
415-
hostPath:
416-
path: /etc/group
417-
# Needed for cloudbeat
418-
- name: etcsysmd
419-
hostPath:
420-
path: /etc/systemd
421381
# Mount /etc/machine-id from the host to determine host ID
422382
# Needed for Elastic Security integration
423383
- name: etc-mid

0 commit comments

Comments
 (0)