Book a demo

Enabling Legacy Query Engine

The query engine is no longer installed by default. This guide demonstrates how to enable the query engine using the Immuta Enterprise Helm chart (IEHC).

If you are using any of the legacy data platforms, you must enable the query engine.

Kubernetes namespace

The following section(s) presume the IEHC was deployed into namespace immuta, and that the current namespace is immuta.

Prerequisites

When migrating from the IHC to IEHC, query engine state is not retained. You must enable query engine rehydration to restore existing data source tables. If SQL credentials are used, they must be recreated by using LDAP sync or manually with the following command executed in the bometadata database:

TRUNCATE bometadata."profile-sql";

  • The Immuta in production guide must be completed before proceeding.

  • Validate that secret immuta-secret exists in the current namespace.

    kubectl get secret/immuta-secret

Create Kubernetes secret

  1. Create a file named secret-data.env with the following content.

    # query-engine
IMMUTA_FEATURE_PASSWORD=<immuta-feature-password>
PATRONI_SUPERUSER_PASSWORD=<patroni-superuser-password>
PATRONI_REPLICATION_PASSWORD=<patroni-replication-password>
PATRONI_RESTAPI_PASSWORD=<patroni-api-password>

  2. Create secret named immuta-legacy-secret from file secret-data.env

    kubectl create secret generic immuta-legacy-secret --from-env-file=secret-data.env

  3. Delete file secret-data.env, as it's no longer needed.

    rm -i secret-data.env

Edit Helm values

  1. Edit the immuta-values.yaml file to include the following Helm values.

  2. Update all placeholder values in the immuta-values.yaml file.

Avoid these special characters in generated passwords

whitespace, $, &, :, \, /, '

Apply Helm values

Perform a Helm upgrade to apply the changes made to immuta-values.yaml.

PreviousExternal Cache ConfigurationNextPrivate Container Registries

Last updated