Prerequisites¶
The following prerequisites are required for a Self-managed deployment or a PrivaceraCloud Data-plane deployment:
- Cloud Provider - Privacera supports the following cloud providers: AWS, Azure and Google Cloud
- Kubernetes Cluster - Privacera supports the following managed Kubernetes distributions: AWS EKS, Azure AKS, Google Cloud GKE. The versions for the supported Kubernetes distributions are in the release document of each Privacera release.
- Cloud resources - Various cloud resources are required for Privacera deployment. These include:
- Managed RDBMS - to store policies and metadata
- Managed NoSQL - to store Privacera Discovery metadata (only if you are using Privacera Discovery module
- Object store bucket - to store configuration and audit logs
- Managed Kubernetes cluster - to run Privacera software
- Cloud compute (virtual server) - to run Privacera Manager software
- IAM policies and roles - to allow Privacera software to access cloud resources
- Network Setup - VPC, subnets, security groups, VPC peering or transit gateways. As Privacera will be connecting to your data-sources you will need to think about the network connectivity.
- Load balancer, DNS entries, TLS certificates - for securing the service endpoints
- Privacera Manager - This is the installation software used to configure and install Privacera software. Your Privacera Sales representative will give you the following,
- Credentials for Privacera docker registry
- Download URL of Privacera Manager software
- Air gap network (optional) - If you are in an air gap (no Internet access) network, you will need to host the docker images in your own docker registry. Refer to prerequisites for air gap Installation
For the installation, there are two parallel tracks - Creating Cloud Resources and Installing Privacera using Privacera Manager. In most organizations, these two are done by different teams or same person with different privileges. Most cloud resources need to be created before Privacera installation can start.
The prerequisites for each cloud provider are detailed in the following sections: