Guardium Insights instance creation using custom resource (CR)

Guardium® Insights simplifies your organization's data security architecture and enables access to long-term data security and compliance data. It provides security teams with risk-based views and alerts, as well as advanced analytics based on proprietary machine learning technology to uncover hidden threats. Guardium Insights gives security professionals the ability to quickly create data security and audit reports, monitor activity in on-prem and DBaaS sources, and take action from a central location.

Before proceeding with the installation, make sure your environment meets the System requirements and prerequisites and Hardware cluster requirements - and ensure that you have prepared for installation (and ensure that you are logged in to the OpenShift® command line interface).

Procedure

  1. Create a YAML file using this example:
    apiVersion: gi.ds.isc.ibm.com/v1
kind: GuardiumInsights
metadata:
  #name: This must be 10 or less characters
  name: gi-sample
spec:
  version: 3.2.0
  license:
    accept: true
    #licenseType - Refer the table above for License Options
    licenseType: L-GBLK-CDVHGZ
  guardiumInsightsGlobal:
    # IBM Security Guardium Insights template size can be defined as below using the size parameter
    #size: values-xsmall, values-small, values-med, values-large
    size: values-small
    insights:
      ingress:
        #hostName: FQDN for IBM Security Guardium Insights - Part of it will be your Openshift publically reachable fixed application domain
        hostName: guardiuminsights.apps.mycluster.example.local
        #domainName: This will be your Openshift publically reachable fixed application domain
        domainName: apps.mycluster.example.local
      ics:
        #Namespace of where IBM Common Services is running
        namespace: ibm-common-services
    #storageClassName: This must be a ReadWriteMany StorageClass.
    storageClassName: rook-cephfs
  2. Create the instance using the example file with the following command:
    oc create -f <guardium-insights-custom-resource-example.yaml>
  3. Check the status of the instance creation:
    oc get guardiuminsights

    Before completion, the output should be similar to:

    NAME      TYPE      STATUS   REASON                           MESSAGE                                     DESIRED_VERSION   INSTALLED_VERSION
staging   Running   True     GuardiumInsightsInstallRunning   Running installation of Guardium Insights   3.2.0

    After completion, the output should be similar to:

    NAME      TYPE    STATUS   REASON      MESSAGE                    DESIRED_VERSION   INSTALLED_VERSION
staging   Ready   True     Completed   Completed Reconciliation   3.2.0             3.2.0
    Note: If you do not receive the Completed Reconciliation message within approximately one hour of instance verification, you may be able to resolve the problem by following the steps in this troubleshooting topic.
Limitations:
  • Only one instance of Guardium Insights can reside on a cluster.
  • This product can only run on amd64 architecture type with AVX enabled hardware.
  • This product's operator only supports an install mode of type OwnNamespace.