LightBeam Installer

1.0 LightBeam Installation

a. Copy the lightbeam-chart.zip file shared by the LightBeam team on the Jump Box.

b. Verify the default storage class name in override-values.yaml

c. Install the LightBeam chart:

If you are installing the LightBeam chart on a self-managed kubernetes cluster, add the --self_managed flag to the installer script as shown below. Replace this with --eks or --aks if you are installing the chart on AWS EKS or Azure kubernetes. The --spectra flag specifies the spectra deployment.

On-prem

export DOCKER_USERNAME="lbcustomers" DOCKER_REGISTRY_PASSWORD="<DOCKER_REGISTRY_TOKEN>" KBLD_REGISTRY_HOSTNAME="docker.io" KBLD_REGISTRY_USERNAME="lbcustomers" KBLD_REGISTRY_PASSWORD="<DOCKER_REGISTRY_TOKEN>"

cd lightbeam-chart/

#Command for on-prem 
nohup bash installer/lb-install.sh --install --self_managed --spectra --values charts/lightbeam/values.yaml --final_values  charts/lightbeam/values.yaml --freeze_values charts/lightbeam/freeze-values.yaml --override_values charts/lightbeam/override-values.yaml --auth_url http://192.168.99.1 2>&1 &

Note: In command above replace 192.168.99.1 with IP of the master node. 

While on-prem installation is in progress proceed to 2.0 LightBeam UI Access (Manadatory for on-prem) and complete the steps.

For managed clusters hosted in AWS, Azure, GCP run the following command.

EKS

AKS

GKE

Contact [email protected] for DOCKER_REGISTRY_TOKEN

One can verify the installation by running `kubectl get pods -n lightbeam` and check the status of all pods. Review installation progress with command

(Optional) Install the logging and monitoring chart

Update the default storage class name in standalone-cluster.yaml as used for installing LightBeam.

d. Post-install setup:

Use the following command to get the address to access Lightbeam UI

2.0 LightBeam UI Access (Manadatory for on-prem)

Create the following script and systemd service to access LightBeam using Jump Box IP address.

• Create new file:

• Change permission of file:

• Create new file:

• Enable and start services:

• Access LightBeam UI using Public IP of node and Port 80:

http://<JUMPBOX_VM_PUBLIC_IP>:80

3.0 LightBeam Upgrade

The LightBeam team shares the latest release LightBeam chart which needs to be copied on the Jump Box. Upgrade the LightBeam chart:

The --spectra flag specifies the spectra deployment.

One can verify the upgrade by running kubectl get pods -n lightbeam and checking the status of all pods.

As part of upgrade, the following actions are taken:

• Pausing datasource scanning and processing.

• Updating latest database schema.

• Updating all LightBeam services to the respective release versions. As part of this step, all latest release version Docker images from Dockerhub registry are downloaded on respective worker nodes.

• A post-upgrade job is executed which resumes scans for all data sources and starts processing, also verifies all services health.

About LightBeam

LightBeam automates Privacy, Security, and AI Governance, so businesses can accelerate their growth in new markets. Leveraging generative AI, LightBeam has rapidly gained customers’ trust by pioneering a unique privacy-centric and automation-first approach to security. Unlike siloed solutions, LightBeam ties together sensitive data cataloging, control, and compliance across structured and unstructured data applications providing 360-visibility, redaction, self-service DSRs, and automated ROPA reporting ensuring ultimate protection against ransomware and accidental exposures while meeting data privacy obligations efficiently. LightBeam is on a mission to create a secure privacy-first world helping customers automate compliance against a patchwork of existing and emerging regulations.

For any questions or suggestions, please get in touch with us at: [email protected].