Skip to content

Install Immuta

Audience: System Administrators

Content Summary: This page outlines the supported deployment methods for installing Immuta.


We recommended installing Immuta with Kubernetes because of the minimal administration needed to achieve scale and availability, but Immuta can also be installed on a single Docker node. This chapter illustrates how to install Immuta using both of these methods.

Firewall Rules

Immuta Query Engine Port

The required firewall rules depend on whether you will use the Immuta Query Engine or exclusively use integrations. If you only use integrations, port 5432 is optional.

The following firewall rules are required to be opened to any host or network that need access to the Immuta service. Navigate to the tab of the technology you plan to use:

Port Protocol Source
443 TCP Web Service
Port Protocol Source
5432 TCP PostgreSQL
443 TCP Web Service


Immuta has a Helm chart available for installation on Kubernetes:

Specific guides are available for the following Kubernetes cloud providers:

Supported Software Versions

Immuta supports the following versions of Kubernetes:


Note: Immuta only supports the open source version of Kubernetes; the version should not be modified nor wrapped in a different deployment model.

  • v1.18
  • v1.19
  • v1.20
  • v1.21
  • v1.22
  • v1.23
  • v1.24

Amazon EKS

  • v1.19.15
  • v1.20.7
  • v1.21.5
  • v1.22.6

Azure Kubernetes Service (AKS)

  • v1.21
  • v1.22
  • v1.23

Google Kubernetes Engine (GKE)

  • v1.19
  • v1.20
  • v1.21
  • v1.22
  • v1.23


  • v4.7
  • v4.8
  • v4.9
  • v4.10

Helm Implementation

Immuta depends on the Helm functionality outlined below.

  • templates and functions
  • Helm hooks:
    • pre-install
    • pre-upgrade
    • post-upgrade
    • post-delete: This hook is not strictly necessary and is only used to clean up some resources that are not deleted by Helm itself. If the post-delete hook is not supported, some resources may be left on the cluster after running helm delete.

Immuta support ends at our Helm implementation; wrapping Helm in another orchestration tool falls outside the Immuta support window.

Single Node Docker

Single Node Docker Support

Single Node Docker can be used in production environments after a sizing review by the Immuta Customer Success team.

Immuta has a shell script based installation that can be used on a single Docker node:

Single Node Docker Limitations

The following features are unavailable in the Single Node Docker deployment method and are only supported in Kubernetes deployments:

  • automatic backups
  • external metadata database