Skip to main content

Architecture, Prerequisites, and Process

Architecture

Trust Domain Servers are deployed in a Kubernetes cluster via Helm chart. Trust Domain Server pods are deployed as Kubernetes ReplicaSets. Each pod contains a Trust Domain Server container.

Prerequisites

  1. A Defakto organization and registered user
  2. The spirlctl CLI installed and authenticated
  3. Kubernetes cluster

High-level procedure overview

  1. Create self-hosted Trust Domain with Defakto Control Plane
  2. Deploy Trust Domain Server via Helm chart
  3. Verify Trust Domain Server is connected to Defakto Control Plane
  4. Register your first cluster with self-hosted Trust Domain Server
  5. Configure and deploy Workload API agents in your cluster
  6. Verify Workload API agents are connected to Trust Domain Server