Learn Harness' Key Concepts

Quickstarts

Supported Platforms and Technologies

Harness Products and Editions

How to Use Harness Docs

Harness FirstGen vs Harness NextGen

Harness Self-Managed Enterprise Edition Overview

CI Pipeline Quickstart

Build and Push an Artifact

Build and Push to GCR

Upload Artifacts to JFrog

Modify and Override Build Settings Before a Build

Define a Kubernetes Cluster Build Infrastructure

Configure a Kubernetes Build Farm to use Self-Signed Certificates

Define an AWS VM Build Infrastructure

Create and Configure a Codebase

Run a Drone Plugin in CI

Run a GitHub Action in CI

Share CI Data Across Steps and Stages

Save and Restore Cache from S3

Save and Restore Cache from GCS

Run a Script in a CI Stage

Run Docker-in-Docker in a CI Stage

Clone and Process Multiple Codebases in the Same Pipeline

View Tests

Set up Test Intelligence

CI Build Stage Settings

Configure Service Dependency Step Settings

CI Run Step Settings

Plugin Step Settings

Build and Push to GCR Step Settings

Build and Push an Image to Docker Registry Step Settings

Build and Push to ECR Step Settings

Upload Artifacts to S3 Step Settings

Upload Artifacts to GCS Step Settings

Upload Artifacts to JFrog Artifactory Step Settings

Save Cache to GCS Step Settings

Save Cache to S3 Step Settings

Restore Cache from GCS Settings

Restore Cache from S3 Step Settings

Harness CI Images List

CI Build Image Updates

Built-in CI Codebase Variables Reference

CI Cluster Requirements

Run Tests Step Settings

CI Pipeline Basics

Harness CI Concepts

Drone and Harness

Test Intelligence

Optimizing CI Build Times

Troubleshooting Continuous Integration (CI)

Kubernetes CD Quickstart

Helm Chart CD Quickstart

Kustomize Quickstart

Azure ACR to AKS CD Quickstart

Native Helm Quickstart

Harness Argo CD GitOps Quickstart

Harness CD Community Edition Quickstart

CD Pipeline Basics

Kubernetes Services

Kubernetes Infrastructure

Provision Target Deployment Infra Dynamically with Terraform

Create a Kubernetes Rolling Deployment

Create a Kubernetes Canary Deployment

Create a Kubernetes Blue Green Deployment

Deploy Manifests Separately using Apply Step

Scale Kubernetes Pods

Delete Kubernetes Resources

Run Kubernetes Jobs

Verify Deployments with the Verify Step

Verify Deployments with AppDynamics

Verify Deployment with Prometheus

Verify Deployments with Dynatrace

Verify Deployments with Splunk

Verify Deployments with Custom Health Source

Verify Deployments with Google Cloud Operations

Verify Deployments with New Relic

Verify Deployments with Datadog

Add Kubernetes Manifests

Add Container Images as Artifacts for Kubernetes Deployments

Add and Override Values YAML Files

Pull an Image from a Private Registry for Kubernetes

Ignore a Manifest File During Deployment

Add a Kubernetes Sidecar Container

Deployment Concepts and Strategies

Kubernetes Deployments Overview

Harness CD Community Edition Overview

Terraform Provisioning with Harness

Deploy Helm Charts

Use Kustomize for Kubernetes Deployments

Terraform How-tos

Plan Terraform Provisioning with the Terraform Plan Step

Provision with the Terraform Apply Step

Remove Provisioned Infra with the Terraform Destroy Step

Rollback Provisioned Infra with the Terraform Rollback Step

Using Manual Harness Approval Steps in CD Stages

Create Jira Issues in CD Stages

Update Jira Issues in CD Stages

Create Service Now Tickets in CD Stages

Update Service Now Tickets in CD Stages

Propagate and Override CD Services

Using Shell Scripts in CD Stages

Using HTTP Requests in CD Pipelines

Add a Pipeline Notification Strategy

Synchronize Deployments using Barriers

Monitor Deployments and Services in CD Dashboards

View Deployments Dashboard (Current Generation)

View Services Dashboard (Current Generation)

Example Kubernetes Manifests using Go Templating

Kubernetes Releases and Versioning

Kubernetes Rollout Step

Canary Deployment Step

Canary Delete Step

What Can I Deploy in Kubernetes?

Kubernetes Rollback

Kubernetes Annotations and Labels

Using OpenShift with Harness Kubernetes

Kubernetes Apply Step

JSON and XML Functors

HTTP Step Reference

Run Steps in a Step Group

Shell Script Step Reference

Getting Started with Feature Flags

Java Quickstart

Create a Feature Flag

Enable or Disable a Feature Flag

Edit and Delete a Feature Flag

Add Targets

Manage Target Groups

Manage Variations of the Feature Flag

Add Flag Prerequisites

Targeting Users with Flags

Add and Manage Access Control

View Activities of a Feature Flag

View Metrics

Manage Feature Flags using Git Experience

Build a Feature Flag Pipeline

Relay Proxy

Deploy Relay Proxy

Harness Policy Engine Overview for Feature Flags

Use Harness Policy Engine for Feature Flags

JavaScript SDK Reference

iOS SDK Reference

Android SDK Reference

Flutter SDK Reference

React Native SDK Reference

Xamarin SDK Reference

Java SDK Reference

Go SDK Reference

Node.js SDK Reference

.NET SDK Reference

Python SDK Reference

Ruby SDK Reference

Communication Strategy Between SDKs and Harness Feature Flags

GDPR Compliance

Feature Flags Overview

Client-Side and Server-Side SDKs

SDK Version Policy

Anonymous Users and Monthly Active Users Count

Set Up Cloud Cost Management for Kubernetes

Set Up Cloud Cost Management for AWS

Set Up Cloud Cost Management for GCP

Set Up Cloud Cost Management for Azure

Create an AWS Connector for AutoStopping Rules

Create an Azure Connector for AutoStopping Rules

Create a GCP Connector for AutoStopping Rules

Create a Kubernetes Connector for AutoStopping Rules

Review AutoStopping Rules Requiremnets

Create AutoStopping Rules for AWS

Create AutoStopping Rules for Amazon ECS

Create AutoStopping Rules for RDS

Create AutoStopping Rules for Azure

Create AutoStopping Rules for GCP

Create AutoStopping Rules for a Kubernetes Cluster

Create AutoStopping Rules with Terraform

Use AutoStopping Rules Dashboard

Create an Application Load Balancer for AWS

Create an Application Gateway for Azure

Create a Custom Load Balancer for GCP

Configure ECG for AutoStopping Rules

Create Cost Perspectives

Share Your Cost Perspective Report

Create a Budget for Your Perspective

Analyze Cost for AWS Using Perspectives

Analyze Cost for Azure Using Perspectives

Analyze Cost for GCP Using Perspectives

Analyze Cost for Kubernetes Using Perspectives

Perform Root Cost Analysis

Optimize Kubernetes Costs with Workload Recommendations

Optimize Kubernetes Costs with Node Pool Recommendations

Create a Budget

Detect Cloud Cost Anomalies with CCM

View AWS Cost Dashboard

View AWS Reservation Efficiency Dashboard

View Azure Cost Dashboard

View Cluster Cost Dashboard

View GCP Cost Dashboard

View Multi-cloud Cost Overview Dashboard

View AWS Resource Breakdown Dashboard

Orphaned EBS Volumes and Snapshots Dashboard

View AWS EC2 Instance Metrics Dashboard

View AWS EC2 Inventory Cost Dashboard

Use Multiple Tags in AWS Dashboards

Manage Access Control for CCM Dashboards

Cloud Cost Management Overview

AutoStopping Rules Overview

Key Cloud Cost Concepts

Datadog Integration with Cloud Cost Management

SLO Management Quickstart

Change Impact Analysis Quickstart

SLO-Driven Governance

Install an Error Tracking Agent

Error Tracking in SRM

Service Reliability Management Basics

Security Testing Orchestration Quickstart (Public Preview)

Security Step Settings Reference

Security Testing Orchestration Basics (Public Preview)

Harness Chaos Engineering Quickstart (Public Preview)

Harness Chaos Engineering Basics (Public Preview)

Harness YAML Quickstart

Harness Git Experience Quickstart

Harness Policy Engine Quickstart

Harness Role-Based Access Control Overview

Get Started with RBAC

Add and Manage Users

Add and Manage User Groups

Add and Manage Service Accounts

Add and Manage API Keys

Add and Manage Resource Groups

Add and Manage Roles

Create Organizations and Projects

Install a Kubernetes Delegate

Install a Docker Delegate

Select Delegates with Tags

Run Scripts on Delegates

Configure Delegate Proxy Settings

Automate Delegate Installation

Truststore Override for Delegates

Delegate Registration and Verification

Non-Root Delegate Installation

Create a Custom Delegate that Includes Custom Tools

Secure Delegates with Tokens

Add a Kubernetes Cluster Connector

Add an AWS Connector

Add a Microsoft Azure Cloud Connector

Add a Google Cloud Platform (GCP) Connector

Add a GitHub Connector

Connect to a Cloud Provider

Connect to an Artifact Repo

Connect to Harness Container Image Registry Using Docker Connector

Connect to a Git Repo

Connect to Jira

Connect to ServiceNow

Connect to Monitoring and Logging Systems

Connect to IBM Cloud Container Registry

Use a GitHub App in a GitHub Connector

Create a Connector using YAML

Add a Secret Manager

Add a HashiCorp Vault Secret Manager

Add an Azure Key Vault Secret Manager

Add an AWS Secrets Manager

Add an AWS KMS Secret Manager

Add Google KMS as a Harness Secret Manager

Add and Reference Text Secrets

Add and Reference File Secrets

Add SSH Keys

Disable Built-In Secret Manager

Two-Factor Authentication

Single Sign-On (SSO) with SAML

Single Sign-On (SSO) with OAuth

Provision Users with Okta (SCIM)

Provision Users and Groups with OneLogin (SCIM)

Provision Users and Groups using Azure AD (SCIM)

Add a Stage

Define a Failure Strategy on Stages and Steps

Run Pipelines using Input Sets and Overlays

Run Specific Stages in Pipeline

Searching the Console View

Retry Pipeline Deployments

Adding Jira Approval Stages and Steps

Using Manual Harness Approval Stages

Adding ServiceNow Approval Stages and Steps

Schedule Pipelines using Triggers

Trigger Pipelines on New Helm Chart

Trigger Pipelines on a New Artifact

Trigger Pipelines using Git Events

Trigger Pipelines using Git Event Payload Conditions

Templates Overview

Create a Step Template

Create an HTTP Step Template

Create a Stage Template

Create a Pipeline Template

Use a Template

Git Experience How-tos

Add Source Code Managers

Configure Git Sync in Harness

Manage Pipelines in Git Repos

Manage Project Resources in Git Repos

Manage Input Sets and Overlays in Git Repos

Add Folders to Existing Git Experience Repos

Diagnose and Fix Git Sync Errors

Create Dashboards

Schedule and Share Dashboards

Create Visualizations and Graphs

Download Dashboard Data

Use Dashboard Actions

Create Conditional Alerts

Add Custom Fields

Extracting Characters from Harness Variable Expressions

Add Account, Org, and Project-level Variables

View Audit Trail

Add SMTP Configuration

Send Notifications Using Slack

Send Notifications to Microsoft Teams

Use Harness Open Policy Agent For Connectors

Add a Policy Engine Step to a Pipeline

Harness Entity Reference

Entity Identifier Reference

Entity Retention Policy

Entity Deletion Reference

Entity Name and Id Rules

Data Retention

Tags Reference

Delegate Requirements and Limitations

Permissions and Ports for Harness Connections

Common Delegate Initialization Scripts

Whitelist Harness Domains and IPs

Step and Stage Failure Strategy References

Stage and Step Conditional Execution Settings

Triggers Reference

YAML Reference: Pipelines

Built-in Harness Variables Reference

GitLab Connector Settings Reference

Bitbucket Connector Settings Reference

AWS CodeCommit Connector Settings Reference

Git Connector Settings Reference

GitHub Connector Settings Reference

AWS Connector Settings Reference

Kubernetes Cluster Connector Settings Reference

Google Cloud Platform (GCP) Connector Settings Reference

HTTP Helm Repo Connector Settings Reference

Artifactory Connector Settings Reference

Nexus Connector Settings Reference

Docker Connector Settings Reference

Jira Connector Settings Reference

API Permissions Reference

Permissions Reference

Source Code Manager Settings

Authentication Overview

Organizations and Projects Overview

Delegates Overview

Delegate Installation Overview

Harness Secrets Management Overview

Harness Git Experience Overview

Fixed Values, Runtime Inputs, and Expressions

Harness Policy Engine Overview

Input Sets and Overlays

Pipeline Resource Constraints

Harness API Quickstart

Use the Harness REST API

Self-Managed Enterprise Edition - Kubernetes Cluster: Infrastructure Requirements

Self-Managed Enterprise Edition - Kubernetes Cluster: Setup Guide

Self-Managed Enterprise Edition Support Policy for Kubernetes

Self-Managed Enterprise Edition - Kubernetes Cluster: Add Ingress Controller Service Annotations

Self-Managed Enterprise Edition - Virtual Machine: Infrastructure Requirements

Self-Managed Enterprise Edition - Virtual Machine: Setup Guide

Self-Managed Enterprise Edition - Virtual Machine: Backup and Recovery

Monitor Harness Self-Managed Enterprise Edition

Troubleshooting Harness

Harness Security FAQs

Cloud Cost Management (CCM) FAQs

Continuous Delivery (CD) FAQs

Harness Delegate FAQs

Feature Flags (FF) FAQs

Continuous Integration (CI) FAQs

Harness Self-Managed Enterprise Edition Release Notes

Harness SaaS Release Notes

Harness Self-Managed Enterprise Edition Release Notes 2021

Harness SaaS Release Notes 2021

Harness Delegate Docker Image Change Log

All Categories > Harness Platform > Platform How-tos > Delegates > Non-Root Delegate Installation

Non-Root Delegate Installation

Updated 2 months ago by Michael Cretzman

Before You Begin
Limitations
Step 1: Download the Delegate Config File
Option: Pick a Non-Root Type
Step 2: Update the Delegate Image
Step 3: Install the Delegate
See Also

By default, Harness Delegates use root access. You can install a different Docker image tag of the Delegate if you want to install and run the Delegate as non-root.

Harness Delegate images are publicly hosted on Docker Hub.

This topic described how to install and run a Delegate as non-root.

In this topic:

Before You Begin

Limitations

The Harness Delegate does NOT require root account access, but the Kubernetes and Docker Delegates run as root by default.
If you do not run the Delegate as root, be aware that you cannot install any software using a Delegate Initialization Script.

Step 1: Download the Delegate Config File

Download the Delegate config file as part of its installation.

For examples, see:

Option: Pick a Non-Root Type

Harness Delegate images are publicly hosted on Docker Hub and Harness has non-root options for different platforms:

Unless you are using OpenShift or a Universal Base Images (UBI), you will want to use to use delegate:non-root.

Step 2: Update the Delegate Image

In the Delegate config file, update the image tag to use the non-root image: harness/delegate:non-root.

For example, here's the Docker Delegate config file updated:

version: "3.7"
services:
  harness-ng-delegate:
    restart: unless-stopped
    deploy:
      resources:
        limits:
          cpus: "0.5"
          memory: 2048M
    image: harness/delegate:non-root
    environment:
      - ACCOUNT_ID=xxx
      - ACCOUNT_SECRET=xxx
      - MANAGER_HOST_AND_PORT=https://app.harness.io
      - WATCHER_STORAGE_URL=https://app.harness.io/public/prod/premium/watchers
...

Here's the Kubernetes Delegate config file updated:

...
---

apiVersion: apps/v1
kind: StatefulSet
metadata:
  labels:
    harness.io/name: foo
  name: foo
  namespace: harness-delegate-ng
spec:
  replicas: 1
  podManagementPolicy: Parallel
  selector:
    matchLabels:
      harness.io/name: foo
  serviceName: ""
  template:
    metadata:
      labels:
        harness.io/name: foo
    spec:
      containers:
      - image: harness/delegate:non-root
        imagePullPolicy: Always
        name: harness-delegate-instance
        ports:
          - containerPort: 8080

...

Step 3: Install the Delegate

Install the Delegate as described in topics such as the following:

Non-Root Delegate Installation

Before You Begin

Limitations

Step 1: Download the Delegate Config File

Option: Pick a Non-Root Type

Step 2: Update the Delegate Image

Step 3: Install the Delegate

See Also

Please Provide Feedback

People also searched for Delegate Requirements and Limitations Automate Delegate Installation Delegate Installation Overview

Feedback

People also searched for

Delegate Requirements and Limitations

Automate Delegate Installation

Delegate Installation Overview