Skip to content

Commit

Permalink
PCSUP-23758
Browse files Browse the repository at this point in the history
  • Loading branch information
smitapaloalto committed Aug 8, 2024
1 parent 7f01522 commit 1e454a2
Show file tree
Hide file tree
Showing 2 changed files with 17 additions and 13 deletions.
Original file line number Diff line number Diff line change
Expand Up @@ -194,7 +194,7 @@ https://main\--prisma-cloud-docs-website\--hlxsites.hlx.live/en/compute-edition/
The following storage drivers are supported:
* `overlay2`
* `overlay`
* `devicemapper` are supported.
* `devicemapper`

For more information, review Docker's guide to https://docs.docker.com/storage/storagedriver/select-storage-driver[select a storage driver].

Expand All @@ -213,12 +213,14 @@ Supported versions are listed in the <<orchestrators,orchestration>> section

Podman is a daemon-less container engine for developing, managing, and running OCI containers on Linux. The twistcli tool can use the preinstalled Podman binary to scan CRI images.

Podman v1.6.4, v3.4.2, v4.0.2
Podman v1.6.4, v3.4.2, v4.0.2 are supported.

*Note:* Defender installation is not supported on Podman hosts.

[#helm]
=== Helm

Helm is a package manager for Kubernetes that allows developers and operators to more easily package, configure, and deploy applications and services onto Kubernetes clusters.
Helm is a package manager for Kubernetes that allows developers and operators to package, configure, and deploy applications and services onto Kubernetes clusters.

Helm v3.10, v3.10.3, and 3.11 are supported.

Expand Down Expand Up @@ -348,13 +350,13 @@ For Microsoft Edge, only the new Chromium-based version (80.0.361 and later) is
=== Cortex XDR

Prisma Cloud Defenders can work alongside Cortex XDR agents.
Currently, users need to manually add exceptions in Console for both agents to work together.
Currently, users need to manually add exceptions in the Console for both agents to work together.
In a future release, there will be out-of-the-box support for co-existence.
Users can disable the Defender runtime defense when a Cortex XDR agent is present.

To allow for both the solutions to co-exist:

. Add the Cortex agent as a trustable executable.
For more information, see to xref:../configure/custom-feeds.adoc#create-a-list-of-trusted-executables[Creating a trusted executable].
For more information, refer to xref:../configure/custom-feeds.adoc#create-a-list-of-trusted-executables[Creating a trusted executable].

. Suppress runtime alerts from the Cortex agent by adding custom runtime rules that allow the Cortex agent process and file path.
. Suppress runtime alerts from the Cortex agent by adding custom runtime rules that allow the Cortex agent to process the file path.
Original file line number Diff line number Diff line change
Expand Up @@ -110,7 +110,7 @@ https://main\--prisma-cloud-docs-website\--hlxsites.hlx.live/en/compute-edition/
=== Kernel Capabilities

Prisma Cloud Defender requires the following kernel capabilities.
Refer to the the Linux capabilities https://man7.org/linux/man-pages/man7/capabilities.7.html[man page] for more details on each capability.
Refer to the Linux capabilities https://man7.org/linux/man-pages/man7/capabilities.7.html[man page] for more details on each capability.

* CAP_NET_ADMIN
* CAP_NET_RAW
Expand Down Expand Up @@ -148,7 +148,7 @@ https://main\--prisma-cloud-docs-website\--hlxsites.hlx.live/en/compute-edition/
The following storage drivers are supported:
* `overlay2`
* `overlay`
* `devicemapper` are supported.
* `devicemapper`.

For more information, review Docker's guide to https://docs.docker.com/storage/storagedriver/select-storage-driver[select a storage driver].

Expand All @@ -167,12 +167,14 @@ Supported versions are listed in the <<orchestrators,orchestration>> section

Podman is a daemon-less container engine for developing, managing, and running OCI containers on Linux. The twistcli tool can use the preinstalled Podman binary to scan CRI images.

Podman v1.6.4, v3.4.2, v4.0.2
Podman v1.6.4, v3.4.2, v4.0.2 are supported.

*Note:* Defender installation is not supported on Podman hosts.

[#helm]
=== Helm

Helm is a package manager for Kubernetes that allows developers and operators to more easily package, configure, and deploy applications and services onto Kubernetes clusters.
Helm is a package manager for Kubernetes that allows developers and operators to package, configure, and deploy applications and services onto Kubernetes clusters.

Helm v3.10, v3.10.3, and 3.11 are supported.

Expand Down Expand Up @@ -302,13 +304,13 @@ For Microsoft Edge, only the new Chromium-based version (80.0.361 and later) is
=== Cortex XDR

Prisma Cloud Defenders can work alongside Cortex XDR agents.
Currently, users need to manually add exceptions in Console for both agents to work together.
Currently, users need to manually add exceptions in the Console for both agents to work together.
In a future release, there will be out-of-the-box support for co-existence.
Users can disable the Defender runtime defense when a Cortex XDR agent is present.

To allow for both the solutions to co-exist:

. Add the Cortex agent as a trustable executable.
For more information, see to xref:../configure/custom-feeds.adoc#create-a-list-of-trusted-executables[Creating a trusted executable].
For more information, refer to xref:../configure/custom-feeds.adoc#create-a-list-of-trusted-executables[Creating a trusted executable].

. Suppress runtime alerts from the Cortex agent by adding custom runtime rules that allow the Cortex agent process and file path.
. Suppress runtime alerts from the Cortex agent by adding custom runtime rules that allow the Cortex agent to process the file path.

0 comments on commit 1e454a2

Please sign in to comment.