Skip to content
aembit
DOCS
Go to guide
Get Started
User Guide
CLI Guide
API Guide
AI Guide
Search
Ctrl
K
Cancel
Releases
GitHub
Help
Service Status
Knowledge Base
Get Support
Glossary
LLM Resources
Changelog
Dark
Dark
Light
Auto
GitHub
Guide
User Guide
Get Started
User Guide
CLI Guide
API Guide
AI Guide
Reference
In This Guide
Overview
Deploy & Install
Overview
Agent Controller
Colocating Edge Components
Container image best practices
Verifying container images
Verifying binary releases
CI/CD
Overview
GitHub Actions
Overview
Get started tutorial
Retrieve credentials
Action reference
Edge CLI
GitLab Jobs
Overview
GitLab CI/CD Component
Aembit CLI
Jenkins Pipelines
Kubernetes
Overview
Deploy to Kubernetes
Managing Agent Injector certificates
AWS EKS Fargate
OpenShift
Verify Aembit Helm chart
Serverless
Overview
AWS Lambda Container
AWS Lambda Functions
AWS ECS Fargate
Virtual appliances
Overview
Virtual Appliance
Virtual machines
Overview
Linux
Overview
Agent Controller
Agent Proxy
SELinux
Windows
Overview
Agent Controller
Agent Proxy
Databases
About Oracle Databases
Install AWS RDS certificates
Overview
Advanced options
Overview
Agent Controller
High Availability
Custom PKI-based TLS
Aembit PKI-based TLS
Create Agent Controller
Agent Proxy
About traffic steering methods
Termination strategy
Explicit steering
HTTP shutdown
Selective Transparent Steering
TLS Decrypt
Overview
Configure TLS Decrypt
About Standalone CA
Configure a Standalone CA
Change Agent log levels
Prometheus-compatible metrics
Trust private CAs
Discovery
Overview
Manage discovered workloads
Sources
Aembit Edge
Overview
Wiz
Manage Access Policies
Overview
Create an Access Policy
Client Workloads
Overview
Client Workload IDs
Overview
Using multiple identifiers
Aembit Client ID
AWS Account ID
AWS EC2 Instance ID
AWS ECS Service Name
AWS ECS Task Family
AWS Lambda ARN
AWS Region
Azure Subscription ID
Azure VM ID
GCP Identity Token
GitHub ID Token Repository
GitHub ID Token Subject
GitLab ID Token Namespace Path
GitLab ID Token Project Path
GitLab ID Token Ref Path
GitLab ID Token Subject
Hostname
Kubernetes Namespace
Kubernetes Pod Name
Kubernetes Pod Name Prefix
Kubernetes Service Account Name
Kubernetes Service Account UID
Process Command Line
Process Name
Process Path
Process User Name
Redirect URI
Source IP Address
Terraform Cloud Organization ID
Terraform Cloud Project ID
Terraform Cloud Workspace ID
Trust Providers
Overview
Add a Trust provider
Find Edge SDK Client ID
AWS Metadata Service trust provider
AWS Role Trust Provider
Azure Metadata Service trust provider
Certificate Signed Attestation
GCP Identity Token Trust Provider
GitHub Trust Provider
Gitlab Trust Provider
Kerberos
Kubernetes Service Account trust provider
OIDC ID Token
SAMLv2 Response
Terraform Cloud Identity Token Trust Provider
Access Conditions
Overview
Geo IP
Time Condition
Integrations
Overview
CrowdStrike Integration
Wiz Integration
CrowdStrike
Wiz
Credential Providers
Overview
Private Network Access
Integrations
AWS IAM Role
GitLab Dedicated/Self-Managed
GitLab.com
Azure Entra Federation
Overview
Multiple Credential Providers
Aembit Access Token
API key
About OIDC ID Tokens
OIDC ID Token
About SigV4/4a
AWS Secrets Manager
AWS STS Federation
Multiple AWS STS Providers
About JWT-SVID Token
JWT-SVID Token
Azure Entra WIF
Azure Key Vault
GitLab account
Google GCP WIF
HashiCorp Vault
JSON Web Token (JWT)
About MCP User-Based Access Tokens
MCP User-Based Access Token
Multiple JWT Providers
OAuth 2.0 authorization code
OAuth 2.0 client credentials
Username & Password
Advanced options
Advanced Options
Multiple Credential Providers with Terraform
OIDC & JWT-SVID Dynamic Claims
Vault Dynamic Claims
Server Workloads
Overview
Architecture Patterns
Credential lifecycle
Guides
Aembit API
Amazon RDS for MySQL
Amazon RDS for PostgreSQL
Amazon Redshift
Apigee
Atlassian
AWS Key Management Service (KMS)
Beyond Identity
Box
ChatGPT
Claude
AWS services
Entra ID
Oracle Database
Databricks
Freshsales
GCP BigQuery
Gemini
GitGuardian
GitHub REST
GitLab REST
Google Drive
HashiCorp Vault
Local MySQL
Local PostgreSQL
Local Redis
Looker Studio
Microsoft Graph
Okta
PagerDuty
PayPal
Salesforce REST
Sauce Labs
Overview
Slack
Snowflake
Snyk
Stripe
Enable Server Workload TLS
Developer Integration
Auth methods & schemes
Troubleshooting
Advanced options
Overview
Terraform
Terraform Configuration
Overview
Audit & Report
Access Authorization Events
Overview
Audit Logs
Global Policy Compliance
Workload events
Administration
Overview
Aembit Dashboard
Overview
Users
Add a user
Overview
Roles
Add a role
Overview
Resource Sets
Overview
Create a Resource Set
Assign roles
Add a resource
About component copying
Copy components
Deploy a Resource Set
Identity Providers
Overview
Configure SSO auto user creation
Create SAML 2.0 IdP
Create OIDC 1.0 IdP
Sign-On Policy
Overview
Global Policy Compliance
Overview
Managing Policy Compliance
Log Streams
AWS S3
Google Cloud Storage Bucket
CrowdStrike SIEM
Splunk SIEM
Overview
Discovery
Overview
Integrations
Wiz
Troubleshoot & Support
Agent Controller Health
Agent Proxy Connectivity
Agent Proxy Debug Network Tracing
Checking Tenant Health
Tenant Configuration
Overview
Help
Resources
Releases
Glossary
LLM Resources
Docs
/
User Guide
/
Deploy Install
/
Virtual Machine
/
Linux
Copy page
Markdown
Copy page
Copy this page as Markdown for LLMs
View as Markdown
View this page as plain text
Export
Download as PDF
Save this page as a PDF file
Open with
Copy this page as Markdown and open your chosen tool. Paste in the chat to get started.
Open in Claude
Ask questions about this page
Open in ChatGPT
Ask questions about this page
Open in Gemini
Ask questions about this page
Deploying Aembit Edge on Linux VMs
This section covers installing and configuring Aembit Edge Components on Linux virtual machines.
Agent Controller
Section titled “Agent Controller”
Set up Agent Controller on Linux
Agent Proxy
Section titled “Agent Proxy”
Set up Agent Proxy on a Linux VM
Configure Agent Proxy on SELinux or Red Hat Enterprise Linux (RHEL)