Contents Menu Expand Light mode Dark mode Auto light/dark, in light mode Auto light/dark, in dark mode Skip to content
inoQulate v1.2 Manual
inoQulate v1.2 Manual

Table of Contents

  • 1. Getting Started with inoQulate on the Azure Marketplace in a Sandbox Environment
    • 1.1. Before You Start
    • 1.2. Subscribe to inoQulate from the Azure Marketplace
    • 1.3. Set up the Solution
    • 1.4. Recommended Next Steps (Optional)
  • 2. Using the inoQulate Solution
  • 3. Troubleshooting
  • 4. Frequently Asked Questions
Back to top
View this page

1.4. Recommended Next Steps (Optional)¶

Now that your installation is complete, here are a few steps you can follow to enhance the protection of your Azure cloud resources.

1.4.1. Set Allowed Container Images¶

The inoQulate solution uses Container Images from the pqceepub.azurecr.io repository, and you are recommended to create an Azure Policy to audit that the inoQulate AKS cluster is only using images from pqceepub.azurecr.io.

Microsoft Defender for Cloud may recommend your Azure resources to only deploy images from allowed registries, hence you are recommended to configure this in your Microsoft Defender for Cloud settings.

1.4.2. Restrict Kubernetes API Access¶

It is a good practice to restrict the Kubernetes API access to only the administrator.

  1. In the Azure portal, enter Kubernetes Services in the search box. Select Kubernetes Services.

  2. Click inoQulate.

  3. In the left side bar, under the Section Settings, click Networking.

  4. Click Manage.

  5. Tick Set authorized IP ranges and fill in the Administrator’s IP Address.

  6. Click Save.

Next
2. Using the inoQulate Solution
Previous
1.3. Set up the Solution
Copyright © 2023-2024, pQCee.com
Made with Sphinx and @pradyunsg's Furo
On this page
  • 1.4. Recommended Next Steps (Optional)
    • 1.4.1. Set Allowed Container Images
    • 1.4.2. Restrict Kubernetes API Access