Channels
extensions
rancher-extensions
supermicro-sixsq
ozt
os
one-point-x
rio
onlinemeetup
v16-v21-migration
events
onlinetraining
training-1220
training-0110
training-0124
k3s-contributor
submariner
storage
k3os
windows
ci-cd
theranchcast
rfed_ara
nederlands
ukranian
danish
training-0131
masterclass
training-0207
training-0214
terraform-controller
epinio
phillydotnet
swarm
rancher-wrangler
deutsch
russian
chinese
mesos
français
japanese
arm
longhorn-dev
terraform-provider-rke
service-mesh
azure
gcp
academy
random
elemental
espanol
lima
harvester-dev
portugues
kubernetes
kim
hypper
kubewarden
opni
logging
neuvector-security
rancher-setup
developer
office-hours
mexico
cabpr
rke
vsphere
longhorn-storage
k3s
k3d
terraform-provider-rancher2
fleet
amazon
harvester
rke2
s3gw
hobbyfarm
rancher-desktop
general
Title
h
hundreds-evening-84071
05/08/2023, 9:49 PMAnother question.....
In the Neuvector UI -> Policy -> Admission Control
I created a rule that DENY deployments in default namespace.
And this works perfectly.
My question is, where is this saved? Is it just writing a yaml file somewhere and applying it?
a
acoustic-sugar-94270
05/09/2023, 3:57 PMPolicies are saved in the controller config in memory.
You can use persistent storage to save controller configuration automatically when node goes away
or export configuration manually. Here’s a screenshot of how to export a backup.
image.png
You can specifically export/import admission control rules directly via CRD YAML…
or
you can “federate” admission control rules from a primary cluster to the federated clusters…
h
hundreds-evening-84071
05/09/2023, 6:48 PMThank you