Skip to main content

Getting started

Datree secures your Kubernetes by blocking the deployment of misconfigured resources.


Install Datree to get insights on the status of your cluster and enforce your desired policies on new resources.


By default, Datree does not block misconfigured resources, it only monitors and alerts about them.
To enable enforcement mode, see the behavior page.

Install Datree using the tool of your choice

   helm        argo       flux
  1. Add the Datree Helm repository

    helm repo add datree-webhook
    helm repo update
  2. Install Datree on your cluster
    Replace <DATREE_TOKEN> with the token from your dashboard, and run the following command:

    helm install -n datree datree-webhook datree-webhook/datree-admission-webhook --debug \
    --create-namespace \
    --set datree.token=<DATREE_TOKEN> \
    --set datree.clusterName=$(kubectl config current-context)

If you're looking to install on Openshift, add the following to the installation command:

--set securityContext.runAsUser=null
  • The installation will create a new namespace (datree), where Datree’s services and application resources will reside.
  • datree.token is used to connect your cluster to your dashboard.
  • Note that the installation can take up to 5 minutes.

You're all set! 🎉

Datree will now run in the background, scanning your cluster for misconfigurations.
A detailed report will be available in your dashboard once the scan is complete.

What's next?

You can now proceed to configure Datree according to your needs.