Deploying Red Hat Advanced Cluster Security in ARO/ROSA

Prerequisites

1. An ARO cluster or a ROSA cluster.

Set up the OpenShift CLI (oc)

1. Download the OS specific OpenShift CLI from Red Hat.
2. Unzip the downloaded file on your local machine.
3. Place the extracted oc executable in your OS path or local directory.

Login to ARO / ROSA

• Login to your ARO / ROSA clusters with user with cluster-admin privileges.

Installing Red Hat Advanced Cluster Security in ARO/ROSA

For install RHACS in ARO/ROSA you have two options:
* Option 1 - Manual Installation
* Option 2 - Automated Installation using Ansible

Option 1 - Manual Installation

For install RHACS using the Option 1 - Manual installation:

1. Follow the steps within the RHACS Operator Installation Workshop to install the RHACS Operator.
2. Follow the steps within the RHACS Central Cluster Installation Workshopto install the RHACS Central Cluster.
3. Follow the steps within the RHACS Secured Cluster Configuration, to import the ARO/ROSA cluster into RHACS.

Option 2 - Automated Installation using Ansible

For install the RHACS in ROSA/ARO you can use the rhacs-demo repository that will install RH-ACS using Ansible playbooks:

1. Clone the rhacm-demo repo and install the galaxy collection:

ansible-galaxy collection install kubernetes.core


pip3 install kubernetes jmespath


git clone https://github.com/rh-mobb/rhacs-demo


cd rhacs-demo

2. Deploy the RHACS with the ansible-playbook command:

ansible-playbook rhacs-install.yaml

Note: This will install RHACS and also a couple of example Apps to demo. If you want just the plain RHACS installation, use the rhacs-only-install.yaml playbook.

Deploying Example Apps for demo RHACS

1. Deploy some example apps for demo RHACS policies and violations:

oc new-project test