Zetafence management plane backend consist of the following services:

  • API server that handles REST API calls from UX, zetacli, and other services
  • Security server that analyzes dependencies and metadata to make security assessment. Security service only communicates with the API server within the cluster via gRPC
  • Mongo DB. Both API server and Security server communicates with local Mongo DB

Zetafence UX service is generally deployed closest to API server, but it could be deployed elsewhere as well. The only requirement is for UX services to communicate to API server on SSL over TCP port 443.

In addition to these, Zetafence Discovery Agents are deployed on specific customer VPCs that need security risk posture evaluation. Multiple such discovery agents across VPCs, and aggregate data into management plane.

Day 2 and BeyondDeployment