This Lacework GitHub site provides the officially supported Lacework Linux agent releases. From this site, you can download and install the Lacework Linux agent.
For information about supported Linux operating systems, how to configure the agent, agent features, workload dossiers, AWS Fargate, and more, see the Lacework Linux Agent Documentation.
In the right frame, click Releases to view all the available Linux agent releases.
The Assets section for each release lists all the release download files. These files contain the agent installers. In addition, each release contains a link to the specific agent release notes and the docker pull
command for pulling down a Lacework docker install image.
To view the release notes for all Linux agent releases, see Linux Agent Release Notes.
This README.md file provides instructions for installing the Lacework Linux agent from this GitHub repository. You can also install the agent from the Lacework Console. For information about the different installation methods, see Linux Agent Installation Methods.
Complete the following steps before you install the Linux agent:
-
Ensure that the Linux agent supports the distribution installed on your machine. For more information, see Supported Operating Systems.
-
Use sed (GNU sed) version 4.2.2 or higher in the procedures below.
-
Download the release package
release.tgz
(whererelease
is the agent release number) and thechecksum_sha256.txt
files from this GitHub repository.- In the right frame, click Releases to view all the available agent releases.
- Find a release and click
release.tgz
to download the file that contains the agent installers, whererelease
is the agent release number. - For the same release, click the
checksum_sha256.txt
file, and thechecksum_sha256.txt.asc
signature file to download them. - Create a temporary directory such as
~/lacework
and move therelease.tgz
,checksum_sha256.txt
, andchecksum_sha256.txt.asc
files to that directory.
-
Verify that the checksum in the
checksum_sha256.txt
file matches the checksum of therelease.tgz
file.-
In a terminal window, go to the
~/lacework
directory.$ cd ~/lacework
-
Verify that the
release.tgz
matches the checksum.$ shasum -c checksum_sha256.txt
If the verification is successful, an
OK
is reported.
-
-
Verify that the checksum is signed correctly.
-
Download the Lacework agent GPG key.
$ gpg --keyserver hkp://keyserver.ubuntu.com:80 --recv-keys 360D55D76727556814078E25FF3E1D4DEE0CC692
-
Verify the signature.
$ gpg --verify checksum_sha256.txt.asc
If the verification is successful you should see:
gpg: assuming signed data in 'checksum_sha256.txt' gpg: Signature made <TIMESTAMP> gpg: using RSA key 360D55D76727556814078E25FF3E1D4DEE0CC692 gpg: Good signature from "Lacework Inc. <[email protected]>"
-
-
Unzip the
release.tgz
file into a temporary directory. -
Using the Lacework Console, create an agent access token by following the instructions in Create Agent Access Tokens.
-
In the Lacework Console, click the ... icon in the row for the token and select Copy to copy the access token.
For single host installations, Lacework recommends using the install.sh
installation script.
-
Complete the prerequisites steps.
-
Set the
token
environment variable equal to the agent access token you copied from the Lacework Console.$ export token=<copied_agent_access_token>
-
Use
sed
to replace$1
with a valid agent access token in theinstall.sh
file.$ sed -i.bak "s/ARG1=\$1/ARG1=${token}/g" ~/lacework/install.sh
-
Run the
install.sh
script to install the agent by following the instructions in Run the Lacework Agent Installation Script.
-
Complete the prerequisites steps.
-
Set the
token
environment variable equal to the agent access token you copied from the Lacework Console.$ export token=<copied_agent_access_token>
-
Use
sed
to replace$1
with a valid agent access token in theinstall.sh
file.$ sed -i.bak "s/ARG1=\$1/ARG1=${token}/g" ~/lacework/install.sh
-
Unzip
chef.tar.gz
into a temporary directory such as~/lacework/chef
$ tar -xzf chef.tar.gz
-
Copy the
install.sh
file with the updated token to the appropriate directory.$ cp ~/lacework/install.sh ~/lacework/chef/datacollector/files/default
-
Install the agent by following the instructions in Install with Chef.
-
Complete the prerequisites steps.
-
Set the
token
environment variable equal to the agent access token you copied from the Lacework Console.$ export token=<copied_agent_access_token>
-
Use
sed
to replaceLaceworkAccessToken
with a valid agent access token in thelacework-cfg-k8s.yaml
file.$ sed -i.bak "s/\${LaceworkAccessToken}/${token}/g" lacework-cfg-k8s.yaml
-
Install the agent on Kubernetes by following the instructions in Deploy on Kubernetes. On the Releases page of this site, find the appropriate
docker pull
command in the Lacework Agent Docker Images section for a specific release.
-
Complete the prerequisites steps.
-
Set the
token
environment variable equal to the agent token you copied from the Lacework Console.$ export token=<copied_agent_access_token>
-
Use
sed
to replaceLaceworkAccessToken
with the valid agent access token in thedocker-compose.yml
anddocker-compose-v3.yml
files.$ sed -i.bak "s/\${LaceworkAccessToken}/${token}/g" docker-compose.yml $ sed -i.bak "s/\${LaceworkAccessToken}/${token}/g" docker-compose-v3.yml
-
Install the agent by following the instructions in Install using Docker Swarm. On the Releases page of this site, find the appropriate
docker pull
command in the Lacework Agent Docker Images section for a specific release.
-
Complete the prerequisites steps.
-
Set the
token
environment variable equal to the agent token copied from the Lacework Console.$ export token=<copied_agent_access_token>
-
Use
sed
to replaceaccessToken
with a valid agent access token in thevalues.yaml
file.$ sed -i "/accessToken:/s/$/${token}/" ~/lacework/helm/lacework-agent/values.yaml
-
Optional - Add custom tags to the helm chart.
$ sed -i "/env:/s/$/${custom tag}/" ~/lacework/helm/lacework-agent/values.yaml
-
Install the agent by following the helm instructions in Deploy on Kubernetes.