Skip to main content
Welcome to Virtru's support portal. As we work to make this page more accessible to screen readers, please contact us at support@virtru.com for technical support.

Prerequisites for Kubernetes Deployment

  • Updated

Overview

Before deploying the Virtru Customer Key Server (CKS) using Helm in a Kubernetes environment, you must first complete the standard Linux-based installation.

The Kubernetes (Helm) deployment is not a standalone setup. It relies on configuration values, credentials, and key material that are generated during the Linux installation process.

Required First Step: Linux Installation

You must complete the following deployment method: Standard Linux Server Installation

This process initializes your CKS instance and generates all required configuration artifacts.

Why This Is Required

The Linux installation performs critical setup steps that Kubernetes does not handle:

  • Generates authentication tokens
  • Creates RSA key pairs
  • Establishes Virtru environment configuration
  • Produces the required deployment artifacts
  • Prepares your CKS instance for communication with Virtru services

Without completing this step, the Helm deployment will not have the required inputs to function.

Required Artifacts from Linux Server

After completing the Linux installation, you must collect the following:

1. CKS Configuration Archive

/var/virtru/cks/send_to_virtru.tar.gz
  • Contains required configuration for Virtru integration
  • Must be shared with the Virtru Deployment Team for onboarding

Email send_to_virtru.tar.gz to Virtru

Please click here for detailed steps on downloading the send_to_virtru.tar.gz file.

Once the script has completed successfully, a file, send_to_virtru.tar.gz will be in your /var/virtru/cks/ directory. This file will contain the required information so that Virtru can communicate with your CKS appliance.

Send the file via Secure Share to the deployment team:

2. Authentication Token

From one of the following:

/var/virtru/cks/env/cks.env

Look for:

AUTH_TOKEN_STORAGE_IN_MEMORY_TOKEN_JSON

Or:

/var/virtru/cks/token-store/tokens.json

This value will be used for:

appSecrets:
  virtruAuth:
    data:
      authTokenJson: <BASE64 VALUE>

3. RSA Key Pairs

Located in:

/var/virtru/cks/keys/

Files:

  • rsa001.pub
  • rsa001.pem

These will be used in your Helm chart:

appSecrets:
  virtruKeys:
    data:
      rsa001.pub: |
        -----BEGIN PUBLIC KEY-----
        ...
      rsa001.pem: |
        -----BEGIN RSA PRIVATE KEY-----
        ...

Transition to Kubernetes (Helm)

Once the Linux server setup is complete:

  1. Extract the required values and artifacts
  2. Populate the Helm chart values.yaml
  3. Configure:
    • appSecrets
    • virtruOrgId
    • Ingress + TLS
  4. Proceed with Kubernetes deployment

Next Step proceed to: Helm Deployment Guide for Virtru CKS

 

Related articles