Securing a cloud-native environment, such as SUSE Rancher, requires unique considerations. New abstractions like containers, plus the dynamic nature of a Kubernetes orchestrated environment can hamper visibility, especially for legacy tools that aren’t designed for containers and cloud. To help, Sysdig and SUSE have launched a SUSE One Partner Solution Stack designed to not only showcase our joint solution, but also to provide easy ways for you to get started.
Why Sysdig with SUSE Rancher?Sysdig and SUSE already share many joint customers. These users pair Rancher and the Sysdig platform to achieve simple, consistent cluster operations, monitoring, and security. If you’re not familiar with Rancher, I recommend a visit to the Rancher product page on suse.com. Let me summarize from my point of view. In a nutshell, Rancher helps DevOps teams deploy applications with Kubernetes from core to cloud to edge. Rancher simplifies Kubernetes cluster operations, like provisioning and diagnostics. And, from a security standpoint, Rancher helps you automate processes through a consistent set of user access and security policies for all your clusters — no matter where they’re running.
How Sysdig helps Rancher usersDevOps teams have a lot of things to think about when it comes to managing the flow of applications onto cloud-native infrastructure. Two big ones are security and performance. Sysdig was born as an open-source Linux system exploration and troubleshooting tool with native support for containers. Since then, we’ve innovated with additional projects such as Falco. And, we have grown to provide SaaS-based security and monitoring built on an open-source stack. Our superpower is visibility. With Sysdig, you have easy access to the actual behavior of your containers, Kubernetes clusters, and more. Built around this visibility are controls, and other useful capabilities and workflows to simplify the job of securing and monitoring containers, Kubernetes, and cloud. In the chart above, you’ll see a number of capabilities that help Rancher users – both on-prem, and in the cloud. For example:
- Image scanning – helps developers and DevOps teams identify and resolve container image vulnerabilities in CI/CD pipelines and registries
- Runtime security – gives security and DevSecOps teams a way to detect unexpected and malicious behavior in running containers, clusters, and clouds
- Cloud security – ensures the configuration of your public cloud infrastructure and services follow best practices
- Kubernetes, Prometheus, and cloud monitoring – displays the connection between the performance of your cloud infrastructure and the services that power your apps