--- title: Kubernetes runtime chapter: false weight: 21 pre: "6.2 " --- ## Kubernetes runtime Now let’s add insights into our Kubernetes workloads that are already running. In the integrations page, click *ADD INTEGRATION* ![alt_text](images/bcButtonAddIntegration.png "image_tooltip") Then, from the *Cloud Providers* section, choose **Kubernetes**: ![alt_text](images/bcIntegrationsCloudProviders.png "image_tooltip") Create a new API key for the integration and click **CREATE**: ![alt_text](images/bcIntegrationK8sAPIKey.png "image_tooltip") Give the cluster a name. This name is used to identify the Kubernetes cluster within Bridgecrew. For example, use `workshop-cluster`. ![alt_text](images/bcIntegrationCreateK8sCluster.png "image_tooltip") Next, select your Kubernetes version (>0.19 or <0.19) and copy the provided kubectl commands: ![alt_text](images/bcIntegrationKubernetesCliForCopy.png "image_tooltip") Now, we simply run the kubectl commands provided to enable the runtime integration in our Kubenetes cluster: ![alt_text](images/kubectlRuntimeK8sIntegration.png "image_tooltip") By running `kubectl get cronjob --namespace bridgecrew`, we can see the Bridgecrew runtime agent scheduled to run and keep Bridgecrew updated with the runtime posture of the cluster. ![alt_text](images/bcK8sCronjobget.png "image_tooltip") Instead of waiting for the first scheduled run, we can manually run the job the first time so we can see data in the Bridgecrew dashboard: `kubectl create job --from=cronjob/bridgecrew manual-bc-runtime-scan --namespace=bridgecrew` ![alt_text](images/kubectlCreateJobRuntimeScan.png "image_tooltip") We will now start to see data under the incidents tab in the Bridgecrew dashboard. You can check on the status of the job's instance with the `kubectl get job -n bridgecrew` command. ![alt_text](images/kubectlGetJobKickoffRuntimeScan.png "image_tooltip") The **Incidents** tab covers runtime-related events. In this tab we can filter on our new cluster name, to see issues with the current running pods and services. Some of these are core Kubernetes services which require more access than regular hosted applications, so we’ll be looking at how to create suppression rules for certain items. We'll also fix our buggy dev environment code in future modules. ![alt_text](images/bcIncidentsPageK8SCluster.png "image_tooltip") ### Runtime scanning is enabled. Congratulations!