Sysdig Agent

We support installing Sysdig Agent using a package on: Debian, Ubuntu , CentOS, RHEL, Fedora, Amazon AMI, Amazon Linux 2.

Use the Quick Start Wizard

This option provides a bash script for installing the agent, and is appropriate for quick trial installations to get Sysdig up and running.

  1. Log in to Sysdig Secure as admin and select Integrations > Data Sources|Sysdig Agent.

  2. Click +Add Account and select Linux.

  3. As prompted by the Wizard screen, enter:

    • Tags: For identifying your container installation.
  4. The Wizard will autopopulate a code snippet with any tags, as well as autodetected Sysdig Secure endpoint and agent access key information.

  5. Copy and run the script. This will install the Sysdig agent and give you runtime threat detection.

Customized Deployments

Before you begin: Collect your agent access key and collector address.

For Debian and Ubuntu

  1. Trust the Sysdig Monitor GPG key, configure the apt repository, and update the package list by running the following commands:

    curl -s https://download.sysdig.com/DRAIOS-GPG-KEY.public | apt-key add -
    curl -s -o /etc/apt/sources.list.d/draios.list https://download.sysdig.com/stable/deb/draios.list
    apt-get update
    
  2. Install kernel development files by running the following command:

    apt-get -y install linux-headers-$(uname -r)
    
  3. Install, configure, and restart the Sysdig agent by running the following commands:

    apt-get -y install draios-agent
    echo customerid: ACCESS_KEY >> /opt/draios/etc/dragent.yaml
    echo tags: [TAGS] >> /opt/draios/etc/dragent.yaml
    echo collector: COLLECTOR_URL >> /opt/draios/etc/dragent.yaml
    echo ssl: true >> /opt/draios/etc/dragent.yaml
    service dragent restart
    

    Note: Replace [ACCESS_KEY] and [COLLECTOR_URL] with your own configuration parameters. [TAGS] is optional and can be used to add custom tags to your metrics.

For CentOS, RHEL, Fedora, Amazon AMI, Amazon Linux 2

  1. Trust the Sysdig Monitor GPG key, configure the yum repository by running the following commands:

    rpm --import https://download.sysdig.com/DRAIOS-GPG-KEY.public
    curl -s -o /etc/yum.repos.d/draios.repo https://download.sysdig.com/stable/rpm/draios.repo
    
  2. Install the EPEL repository by running the following command:

    yum install https://dl.fedoraproject.org/pub/epel/epel-release-latest-8.noarch.rpm
    

    Note: This command is required only if DKMS is not available in the distribution

  3. Install kernel development files by running the following command:

    yum -y install kernel-devel-$(uname -r)
    
  4. Install, configure, and start the Sysdig agent by running the following commands:

    yum -y install draios-agent
    echo customerid: ACCESS_KEY >> /opt/draios/etc/dragent.yaml
    echo tags: [TAGS] >> /opt/draios/etc/dragent.yaml
    echo collector: COLLECTOR_URL >> /opt/draios/etc/dragent.yaml
    echo ssl: true >> /opt/draios/etc/dragent.yaml
    echo secure: true >> /opt/draios/etc/dragent.yaml
    sudo systemctl enable dragent
    sudo systemctl start dragent
    

    Note: Note: Replace [ACCESS_KEY] and [COLLECTOR_URL] with your own configuration parameters. [TAGS] is optional and can be used to add custom tags to your metrics if you are using Sysdig Monitor.

Next Steps

Install the Host Scanner using a package