CrowdStrike Kubernetes Protection
  • 30 Sep 2024
  • 2 Minutes to read
  • Dark
    Light
  • PDF

CrowdStrike Kubernetes Protection

  • Dark
    Light
  • PDF

Article summary

CrowdStrike Kubernetes Protection provides cloud-native application security, including breach prevention, workload protection, and cloud security posture management.

Types of Assets Fetched

This adapter fetches the following types of assets:

  • Compute Services
  • Containers

Parameters

  1. Host Name or IP Address (required) - The hostname or IP address of the CrowdStrike Kubernetes Protection server that Axonius can communicate with via the Required Ports.

  2. Client ID and Client Secret (optional) - Credentials provided by CrowdStrike Kubernetes Protection for authentication to the API for read access. To learn how to create the Client ID and Client Secret, see creating credentials.

  3. Verify SSL - Select this option to verify the SSL certificate of the server against the CA database inside of Axonius. To learn more, see SSL Trust & CA Settings.

  4. HTTPS Proxy (optional) - Connect the adapter to this proxy instead of directly connecting it to the domain.

  5. HTTPS Proxy User Name (optional) - The user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.

  6. HTTPS Proxy Password (optional) - The password to use when connecting to the server using the HTTPS Proxy.

To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.

CrowdStrikeKubernetesProtection


Advanced Settings

Note:

Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to ​Advanced Configuration for Adapters.

Under Advanced Settings, you can toggle the following options on/off to fetch different entities from different endpoints. The options are:

  1. Fetch Containers from Containers Endpoint
    • Fetch Containers Last Seen in X Days (default: 15) - when the above toggle is enabled, enter the number of past days you want to fetch containers from.
  2. Fetch ComputeServices of sub type compute_services_clusters from Cluster Endpoint
  3. Fetch ComputeServices of sub type compute_services_cloud_clusters from Cloud Endpoint
  4. Fetch ComputeServices of sub type compute_services_nodes from Nodes Endpoint
  5. Fetch ComputeServices of sub type compute_services_pods from PODs Endpoint
Note:

To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.

APIs

Axonius uses the [CrowdStrike Kubernetes Protection] API reference.

Required Ports

Axonius must be able to communicate with the value supplied in Host Name or IP Address via the following port:

  • TCP port 443

Required Permissions

The values supplied in Client ID and Client Secret must be associated with credentials that have read permissions in order to fetch assets.

Version Matrix

This adapter was only tested with the versions marked as supported, but may work with other versions. Contact Axonius Support if you have a version that is not listed, which is not functioning as expected.

VersionSupportedNotes
kubernetes-protection: v1Yes--


Supported From Version

Supported from Axonius version 4.8



Was this article helpful?