Content Comparison

You can install Synergy and Focus DSPM in an air-gapped environment that is not directly connected to the Internet.

...

The following steps guide you through the installation of the dependencies required by Focus DSPM and Synergy (Endpoint Agent).

...

4. Check all pods are Running with the command: kubectl get pods -A

Install

...

DSPM/Synergy (Endpoint Agent) Helm Chart

Replace the following variables:

...

The following port must be publicly exposed in order to allow users to access Synergy (Endpoint Agent) or Focus DSPM product:

The user must not access the K3s nodes directly, instead, there should be a load balancer sitting between the end user and all the K3s nodes (master and worker nodes):

...

The following steps guide you through the installation of the dependencies required by Focus DSPM and Synergy (Endpoint Agent).

...

1. Install Getvisibility Essentials and set the daily UTC backup hour (0-23) for performing backups.
   If you are installing Focus or Enterprise append --set eck-operator.enabled=true to the command in order to enable ElasticSearch.

   Code Block
   $ helm upgrade --install gv-essentials charts/gv-essentials-$VERSION.tgz --wait \ --timeout=10m0s --kubeconfig /etc/rancher/k3s/k3s.yaml \ --set global.high_available=true \ --set eck-operator.enabled=true \ --set minio.replicas=4 \ --set minio.mode=distributed \ --set consul.server.replicas=3 \ --set updateclusterid.enabled=false \ --set backup.hour=1 --set eck-operator.enabled=true

2. Install Monitoring CRD:

   Code Block
   $ helm upgrade --install rancher-monitoring-crd charts/rancher-monitoring-crd-$VERSION.tgz --wait \ --kubeconfig /etc/rancher/k3s/k3s.yaml \ --namespace=cattle-monitoring-system \ --create-namespace

3. Install Monitoring:

   Code Block
   $ helm upgrade --install rancher-monitoring charts/rancher-monitoring-$VERSION.tgz --wait \ --kubeconfig /etc/rancher/k3s/k3s.yaml \ --set global.high_available=true \ --namespace=cattle-monitoring-system \ --set loki-stack.loki.replicas=2 \ --set prometheus.prometheusSpec.replicas=2

...

4. Check all pods are Running with the command:
   kubectl get pods -A

Install

...

DSPM/Synergy (Endpoint Agent) Helm Chart

Replace the following variables:

• $VERSION with the version that is present in the bundle that has been downloaded

• $RESELLER with the reseller code (either getvisibility or forcepoint)

• $PRODUCT with the product being installed (synergy or focus dspm or enterprise ultimate)

$ helm upgrade --install gv-platform charts/gv-platform-$VERSION.tgz --wait \
--timeout=10m0s --kubeconfig /etc/rancher/k3s/k3s.yaml \
--set high_available=true \
--set-string clusterLabels.environment=prod \
--set-string clusterLabels.cluster_reseller=$RESELLER \
--set-string clusterLabels.cluster_name=mycluster \
--set-string clusterLabels.product=$PRODUCT

...

• Before upgrading each chart, you can check the settings used in the current installation with
  helm get values <chartname>.

• If the current values are different from the defaults, you will need to change the parameters of the
  helm upgrade command for the chart in question.

• For example, if the backup is currently set to run at 2 AM instead of the 1 AM default, change
  --set backup.hour=1 to --set backup.hour=2.

• Below is a mostly default config.

...

...

DSPM/Synergy/

...

Ultimate Helm Chart

To upgrade FocusDSPM/Synergy/Enterprise Ultimate you must:

1. Download the new bundle

2. Import Docker images

3. Install FocusDSPM/Synergy/Enterprise Ultimate Helm Chart

...