reference deployment
Snyk Controller for Amazon EKS
Import and test EKS workloads to identify security vulnerabilities
This Partner Solution deploys Snyk controller for Amazon Elastic Kubernetes Service (Amazon EKS) to the Amazon Web Services (AWS) Cloud. It lets you import and test running EKS workloads to identify vulnerabilities in associated images and configurations that might make workloads less secure. As new images are deployed and workload configurations change, Snyk continually monitors workloads to identify security issues.
This Partner Solution is for developers, DevOps, security teams, and roles within an organization for building, deploying, and maintaining Amazon EKS applications.
This Partner Solution was developed by Snyk in collaboration with AWS. Snyk is an AWS Partner.
-
What you'll build
-
How to deploy
-
Costs and licenses
-
What you'll build
-
This Partner Solution sets up the following. Note that this module is based on the Modular and Scalable Amazon EKS Architecture Partner Solution.
- A Kubernetes namespace for Snyk.
- A Kubernetes secret that contains a Snyk integration ID and Docker configuration file.
- A Snyk monitor pod.
* The template that deploys the Partner Solution into an existing VPC skips the tasks marked by asterisks and prompts you for your existing VPC configuration.
-
How to deploy
-
To deploy Snyk Controller for Amazon EKS, follow the instructions in the deployment guide. The deployment process takes about 1.5 hours and includes these steps:
- If you don't already have an AWS account, sign up at https://aws.amazon.com.
- Prepare an existing EKS cluster.
- Retrieve a Snyk Kubernetes integration ID.
- Launch the Partner Solution.
- Deploy into a new VPC and new Amazon EKS cluster
- Deploy into a new Amazon EKS cluster in an existing VPC
- Deploy into an existing Amazon EKS cluster (This option might require you to prepare your cluster according to the instructions in the deployment guide. For more information, refer to Prepare an existing cluster.)
- Test the deployment.
Amazon may share user-deployment information with the AWS Partner that collaborated with AWS on this solution.
-
Costs and licenses
-
This Partner Solution requires a Snyk license. For more information, refer to Snyk’s AWS Marketplace page.
You are responsible for the cost of the AWS services and any third-party licenses used while running this solution. There is no additional cost for using the solution.
This solution includes configuration parameters that you can customize. Some of these settings, such as instance type, affect the cost of deployment. For cost estimates, refer to the pricing pages for each AWS service you use. Prices are subject to change.
Tip: After you deploy a solution, create AWS Cost and Usage Reports to track associated costs. These reports deliver billing metrics to an Amazon Simple Storage Service (Amazon S3) bucket in your account. They provide cost estimates based on usage throughout each month and aggregate the data at the end of the month. For more information, refer to What are AWS Cost and Usage Reports?
