You can group Kubernetes resources in a scope. The scope target is Applications.

Prerequisites

Set up your Kubernetes clusters. See Adding Clusters and Installing Kubernetes Sensors.

Procedure

  1. On the left navigation pane, do one of the following depending on your system configuration and role:
    • If you have the Kubernetes Security DevOps or SecOps role and your system has only the Container security feature, click Inventory > Scopes.
    • If you have any other role and your system has Container security and other Carbon Black Cloud features, click Inventory > Kubernetes > Scopes.
  2. Click Add Scope.
  3. Enter a Name for the scope.
  4. For target resources, select Applications. This scope will target applications in specific namespaces. A policy can be enforced during the build, deployment, and execution phases.
  5. Click Next.
  6. Select the namespaces from the dropdown menu.
  7. Click Save.
    The scope is ready for use in a Kubernetes Hardening Policy.

What to do next

Create a Kubernetes Hardening Policy