Overview
KernelCare is a live patching system that automatically applies security patches to Linux kernel vulnerabilities, with no reboots. It’s used on over 500,000 servers, and has been used to patch servers running for 6+ years for Dell, Zoom, and other enterprise companies. It works with all major Linux distributions, such as RHEL, CentOS, Amazon Linux, and Ubuntu, and interoperates with common vulnerability scanners, cloud monitoring tools, and patch management solutions.
This integration allows you to forward the Kernelcare metrics through the Datadog Agent.
Setup
The Kernelcare check is not included in the Datadog Agent package, so you need to install it.
Installation
For Agent v7.21+ / v6.21+, follow the instructions below to install the Kernelcare check on your host. See Use Community Integrations to install with the Docker Agent or earlier versions of the Agent.
Run the following command to install the Agent integration:
datadog-agent integration install -t datadog-kernelcare==<INTEGRATION_VERSION>
Configure your integration similar to core integrations.
Configuration
Edit the kernelcare.d/conf.yaml file, in the conf.d/ folder at the root of your Agent’s configuration directory to start collecting your kernelcare performance data. See the sample kernelcare.d/conf.yaml for all available configuration options.
Restart the Agent.
Validation
Run the Agent’s status subcommand and look for kernelcare under the Checks section.
Data Collected
Metrics
kernelcare.uptodate
(gauge) | The number of uptodate servers |
kernelcare.outofdate
(gauge) | The number of outofdate servers |
kernelcare.unsupported
(gauge) | The number of unsupported servers |
kernelcare.inactive
(gauge) | The number of inactive servers |
Events
The Kernelcare integration does not include any events.
Service Checks
kernelcare.can_connect
Returns Critical if the Agent cannot connect to Kernelcare to collect metrics, returns OK otherwise.
Statuses: ok, critical
Troubleshooting
Need help? Contact Datadog support.
