Container orchestrators provide native capabilities for deploying agents, such as Defender, to every node in the cluster. Twistlock leverages these capabilities to install Defender.
The process for deploying Container Defender to a cluster can be found in the dedicated orchestrator-specific install guides.
Defender DaemonSet for Kubernetes, Openshift, and Pivotal Container Service (PKS).
Defender task for Amazon ECS
Defender global service for Docker Swarm
Defender app for DC/OS.
If you don’t have kubectl access to your cluster (or oc access for OpenShift), you can deploy Defender DaemonSets directly from the Console UI.
You’ve created a kubeconfig credential for your cluster so that Twistlock can access it to deploy the Defender DaemonSet.
Log into Twistlock Console.
Go to Manage > Defenders > Manage.
Click DaemonSets.
For each cluster in the table, click Actions > Deploy.
The table shows a count of deployed Defenders and their version number.