Platform-wise permissions
This topic describes the platform-wise permissions required to execute a variety of chaos experiments on different platforms in your target environments.
On-premise VMs (VMware VMs)
Chaos agent deployment model | Connectivity requirements from agent | Connectivity requirements from VM/cluster/app | Access requirements for agent install | Access requirements for basic chaos experiments | Access requirements for advanced chaos experiments | Chaos deployment and architecture details | Supported chaos faults |
---|---|---|---|---|---|---|---|
Native Chaos Agent on Each VM (system service within Target Windows Machine) |
| Application and Chaos Agent Co-Exist on same VM | Install agent as a administrator user | Run experiments with non-administrator user | Run experiments with administrator user | Refer to Windows Chaos Infrastructure Management . | Basic faults within non-administrator, Basic + Advanced faults with administrator |
Centralized chaos agent on Kubernetes (leverage VMware tools to inject chaos process inside the guest VM) |
| Inbound over port 443 on ESX host (from Kubernetes chaos agent) | Install agent as a cluster-admin OR as a user mapped to cluster role with these permissions. |
|
|
|