Threat Stack Agent CoreOS Installation Overview

As of June 2017, Threat Stack supports CoreOS Stable channel v1353.8.0 and later.

Install the Agent Software

Click for the CoreOS Installer.

To install the agent software, run ./ from the untarred package directory.  

NOTE: A -f or --force option suppresses the interactive prompt.

The Threat Stack Agent installer installs the agent software and dependencies under /opt/threatstack. It installs the agent as a standard systemd service.

Configure the Agent Software

The first time you start the agent, provide your deploy key to authenticate with the Threat Stack service.

NOTE: Threat Stack requires that you provide the deploy key to authenticate. 

Run /opt/threatstack/bin/cloudsight setup --deploy-key=KEY, where KEY is your deploy key, to do so.

CoreOS automatically enables container monitoring. To disable it, run:

/opt/threatstack/bin/cloudsight config enable_containers=0

/opt/threatstack/bin/cloudsight restart

Check the Service Connection Status

To check the status of the service connection and various services maintained by the agent, run: /opt/threatstack/bin/cloudsight status.

Run /opt/threatstack/bin/cloudsight --help for more options. 

If you want to verify that your agent is connected in the Threat Stack UI, navigate to the SERVERS page.

Uninstall CoreOS
To uninstall CoreOS run rm -r /opt/threatstack /etc/init.d/cloudsight

Have more questions? Submit a request


Article is closed for comments.