Getting started with KSOC has two initial onboarding steps.

Connect Your Cloud Environments (recommended for managed Kubernetes)

NOTE: Connecting a cloud environment is optional, but recommended for cloud hosted Kubernetes environments. You can skip straight to installing Kubewatcher in your clusters.

Kubernetes clusters in hosted cloud environments can be auto-discovered and continually monitored by connecting KSOC to your cloud account via tools such as Terraform and CloudFormation.

Connecting Cloud Environment Prerequisites

Supported Cloud Environments for Cluster Autodiscovery

Supported Deployment Methods



Microsoft Azure

Resource Manager (coming soon)

Google Cloud Platform (coming soon)

Connect to Image Registry (recommended for all Kubernetes environments)

NOTE: Connecting image registries are optional, but recommended for all Kubernetes environments. It is also recommended to connect image registries before installing Kubwatcher in your clusters. You can skip straight to installing Kubewatcher in your clusters.

KSOC can scan cluster images in connected image registries for vulnerabilities.

Connecting Image Registry Prerequisites

  • The hostname of the image registry (usually or
  • The username & password or JSON key of an account with access to the image registry

Deploying Kubewatcher (required for all Kubernetes environments)

KSOC monitors the posture of clusters via KSOC's Kubewatcher deployment in each cluster.

Deploying Kubewatcher Prerequisites

  • Kubewatcher requires outbound port 443 access to
  • kubectl installed and configured to communicate with your Kubernetes API
  • Helm 3 installed

Did this page help you?