# Getting Started

The instructions and how-to guides on this page illustrate how to install Immuta in your Kubernetes environment. If you are upgrading Immuta, navigate to the [Upgrade section](https://documentation.immuta.com/2024.2/self-managed-deployment/upgrade-overview) instead.

## Prerequisites and requirements

* Use a supported version of Kubernetes.
* Use Helm 3.2.0 or newer (When using a Helm version older than 3.8.0, enable OCI experimental mode by exporting environment variable `HELM_EXPERIMENTAL_OCI=1`.)
* Deploy the services listed on the Deployment requirements guide. See the [recommendations table](https://documentation.immuta.com/2024.2/deployment-requirements#infrastructure-recommendations) for guidance for specific cloud providers.
* Grant [RBAC permissions](https://kubernetes.io/docs/reference/access-authn-authz/rbac/) to create Kubernetes resources in the cluster.

## Pull the Helm chart

Consult the [upgrade overview](https://documentation.immuta.com/2024.2/self-managed-deployment/upgrade-overview) if unsure which Helm chart to use.

## ocir.immuta.com

{% hint style="warning" %}
**Helm chart availability**

The deprecated Immuta Helm chart (IHC) is not available from ocir.immuta.com.
{% endhint %}

Copy the snippet below and replace the placeholder text with the credentials provided to you by your Immuta support professional:

```shell
echo <token> | helm registry login --password-stdin --username <username> ocir.immuta.com
```

## Install Immuta

Immuta can be installed on any Kubernetes cluster. Select a guide below that corresponds to your Kubernetes distribution to install Immuta. If your distribution is not listed below (such as [K3s](https://k3s.io/) or [RKE2](https://docs.rke2.io/)), follow the generic installation instructions:

* [Managed public cloud](https://documentation.immuta.com/2024.2/self-managed-deployment/install/managed-public-cloud): This guide includes instructions for
  * Amazon Elastic Kubernetes Service (EKS)
  * Google Kubernetes Engine (GKE)
  * Microsoft Azure Kubernetes Service (AKS)
* [Red Hat OpenShift](https://documentation.immuta.com/2024.2/self-managed-deployment/install/red-hat-openshift)
* [Generic installation](https://documentation.immuta.com/2024.2/self-managed-deployment/install/generic-installation)

## Configure Ingress

To complete your installation and access the Immuta application, [configure Ingress](https://documentation.immuta.com/2024.2/self-managed-deployment/configure/ingress-configuration).

## Additional recommendations

The [configure section](https://documentation.immuta.com/2024.2/self-managed-deployment/configure) includes guidance for various scenarios you may encounter during and post-deployment. Below are several guides from that section that most customers follow to complete their deployment of Immuta, but none of these is a requirement for the Immuta installation to work.

* [TLS configuration](https://documentation.immuta.com/2024.2/self-managed-deployment/configure/tls-configuration): Secure your Ingress by specifying a Secret that contains a TLS private key and certificate.
* [Immuta in production](https://documentation.immuta.com/2024.2/self-managed-deployment/configure/immuta-in-production): Follow these best practices for configuring your deployment for a production environment.
* [External cache configuration](https://documentation.immuta.com/2024.2/self-managed-deployment/configure/external-cache-configuration): The Immuta Enterprise Helm chart manages its own Memcached deployment inside the cluster. However, you can opt to externalize the key-value cache post-installation.