Before you Start - Agentless Workload Scanning
Before you can start using Agentless Workload Scanning, check that your environment is supported and that you have configured access to your cloud provider.
Support Matrix for Agentless Workload Scanning
Supported Cloud Providers
info
GCP support for Agentless Workload Scanning is in Preview.
- Amazon Web Services (AWS)
- Google Cloud Platform (GCP)
Supported Operating Systems
x86 Architecture
| Operating System | Versions |
|---|---|
| Alma Linux | 8.7, 9.1 |
| Alpine Linux (General beta support) | 3.10, 3.11, 3.12, 3.13, 3.14, 3.15, 3.16.2 |
| Amazon Linux | 2, 2022, 2023 |
| Amazon Linux AMI | 2016.03, 2016.09, 2017.03, 2017.09, 2018.03 |
| CentOS | 6.x, 7.x, 8.x, 9.x |
| Debian | 9 (Stretch), 10 (Buster), 11 (Bullseye) |
| Fedora | 30, 31, 32, 33, 34, 35 |
| Kali GNU/Linux Rolling | Rolling distribution (up to Kali 2022.3) |
| Oracle Linux | 8.3, 8.4, 8.5 |
| Red Hat Enterprise Linux | 7.9, 8.0, 8.1.0, 8.2, 8.3, 8.4, 8.5, 8.6, 9 |
| Red Hat OpenShift | 4.9 |
| Red Hat OpenShift Service on AWS | 4.9, 4.10, 4.11, 4.12 |
| Rocky Linux | 8.4, 8.5, 8.6, 8.7, 9.0, 9.1 |
| SUSE | 11.4.20, 12 SP1, 12 SP5, 15, 15 SP1, 15 SP2, 15 SP3, 15 SP4 |
| Ubuntu | 14.04, 16.04, 16.10, 17.04, 17.10, 18.04, 18.10, 19.04, 19.10, 20.04, 21.04, 21.10 22.04 LTS (Jammy Jellyfish), 22.1 |
ARM64 Architecture
info
Lacework supports the following ARM-based operating systems, including AWS Graviton and Graviton2 ARM-based instances.
| Operating System | Versions |
|---|---|
| Alma Linux | 8.7, 9.1 |
| Amazon Linux | 2, 2022, 2023 |
| CentOS | 6.10, 8.2, 9 |
| Debian | 9 (Stretch), 10 (Buster), 11 (Bullseye) |
| Fedora | 30, 31, 32, 33, 34, 35 |
| Flatcar | 2605.x (amd64 only) |
| Red Hat Enterprise Linux | 7.9, 8.0, 8.1, 8.2, 8.3, 8.4, 8.5, 8.6, 9 |
| Red Hat OpenShift | 4.9 |
| Red Hat OpenShift Service on AWS | 4.9, 4.10, 4.11, 4.12 |
| Rocky Linux | 8.4, 8.5, 8.6, 8.7, 9.0, 9.1 |
| SUSE | 12 SP5, 15 SP2, 15 SP3, 15 SP4 |
| Ubuntu | 16.04, 17.04, 18.04, 19.04, 20.04, 21.04, 21.10 22.04 LTS (Jammy Jellyfish), 22.1 |
Supported Container Image Formats
| Container image format | Directories scanned |
|---|---|
| Docker | /var/lib/docker |
| OCI | /var/lib/containers/storage /home/<username>/.local/share/containers/storage |
note
Lacework does not support pure containerd image formats.
Supported File Systems
- Btrfs
- ext2
- ext3
- ext4
- XFS
- ReiserFS
Supported Language Libraries and Package Managers
See the following sections:
Configure Access to your Cloud Provider
Configure access to your cloud provider before you begin using Agentless Workload Scanning.
AWS
Configure at least one AWS account integration with Lacework prior to integrating Agentless Workload Scanning.
- Choose your AWS Integration Type.
- Complete the AWS Integration Prerequisites.
- Create an AWS account integration using either Terraform, CloudFormation, or the AWS Console.
Configure your Agentless Workload Scanning integration by completing one of the following options:
GCP
info
GCP support for Agentless Workload Scanning is in Preview.
Configure at least one GCP project or organization integration with Lacework prior to integrating Agentless Workload Scanning.
- Choose your GCP Integration Type.
- Complete the GCP Integration Prerequisites.
- Create an GCP project or organization integration using either Terraform, or the GCP Console.
Configure your Agentless Workload Scanning integration using Terraform.