Skip to main content

Getting started

Datree secures your Kubernetes by blocking the deployment of misconfigured resources.


Install Datree to get insights on the status of your cluster and enforce your desired policies on new resources.


By default, Datree does not block misconfigured resources, it only monitors and alerts about them.
To enable enforcement mode, see the behavior page.

Install Datree with Helm

1. Add the Datree Helm repository

Run the following command in your terminal:

helm repo add datree-webhook
helm repo update

2. Install Datree on your cluster

Replace <DATREE_TOKEN> with the token from your dashboard, and run the following command in your terminal:

helm install -n datree datree-webhook datree-webhook/datree-admission-webhook --debug \
--create-namespace \
--set datree.token=<DATREE_TOKEN> \
--set datree.clusterName=$(kubectl config current-context)

This will create a new namespace (datree), where Datree’s services and application resources will reside. datree.token is used to connect your dashboard to your cluster. Note that the installation can take up to 5 minutes.


If you're looking to install on Openshift, add the following to the installation command:

--set securityContext.runAsUser=null

3. You're all set! 🎉

Datree will now run in the background, scanning your cluster for misconfigurations.
A detailed report will be available in your dashboard once the scan is complete.

What's next?

You can now proceed to configure Datree according to your needs.