I'm looking in to installing ECK in my Kubernetes clusters and I'm stuck on one issue: in the helm chart for ECK we're asked to specify a list of "managed namespaces". What does that mean? Specifically, what is being managed and what are the ramifications of allowing (or disallowing) ECK to manage a namespace? I would like ECK to be able to get logs from pods found in any namespace but if I don't have to let it "manage" namespaces, that'd be great.
Hello,
I would like ECK to be able to get logs from pods found in any namespace
I think this is more: I would like Filebeat managed by ECK to get logs from pods found in any namespace.
Managed namespaces are namespaces in which the ECK operator manages Elastic resources (Elasticsearch, Kibana, Beats, ...), defaults to all namespaces if empty or unspecified.
You should be able to configure ECK with a restricted list of managed namespaces and deploy Filebeat with RBAC which gives it access to all pods in your cluster.
OK, thanks. The fact that the default is wide open is what gave me pause.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.