2022-03-02 08:16:31 +05:30
---
stage: Configure
group: Configure
info: To determine the technical writer assigned to the Stage/Group associated with this page, see https://about.gitlab.com/handbook/engineering/ux/technical-writing/#assignments
---
2022-05-07 20:08:51 +05:30
# Migrate to the GitLab agent for Kubernetes **(FREE)**
2022-03-02 08:16:31 +05:30
2022-05-07 20:08:51 +05:30
To connect your Kubernetes cluster with GitLab, you can use:
2022-03-02 08:16:31 +05:30
2022-05-07 20:08:51 +05:30
- [A GitOps workflow ](../../clusters/agent/gitops.md ).
- [A GitLab CI/CD workflow ](../../clusters/agent/ci_cd_tunnel.md ).
- [A certificate-based integration ](index.md ).
2022-03-02 08:16:31 +05:30
2022-05-07 20:08:51 +05:30
The certificate-based integration is
[**deprecated** ](https://about.gitlab.com/blog/2021/11/15/deprecating-the-cert-based-kubernetes-integration/ )
in GitLab 14.5. It is expected to be
[turned off by default in 15.0 ](../../../update/deprecations.md#certificate-based-integration-with-kubernetes )
and removed in GitLab 15.6.
2022-06-21 17:19:12 +05:30
If you are using the certificate-based integration, you should move to another workflow as soon as possible.
2022-03-02 08:16:31 +05:30
2022-05-07 20:08:51 +05:30
As a general rule, to migrate clusters that rely on GitLab CI/CD,
you can use the [CI/CD workflow ](../../clusters/agent/ci_cd_tunnel.md ).
This workflow uses an agent to connect to your cluster. The agent:
- Is not exposed to the internet.
- Does not require full cluster-admin access to GitLab.
2022-03-02 08:16:31 +05:30
NOTE:
2022-05-07 20:08:51 +05:30
The certificate-based integration was used for popular GitLab features like
GitLab Managed Apps, GitLab-managed clusters, and Auto DevOps.
Some features are currently available only when using certificate-based integration.
2022-03-02 08:16:31 +05:30
## Migrate cluster application deployments
### Migrate from GitLab-managed clusters
With GitLab-managed clusters, GitLab creates separate service accounts and namespaces
2022-05-07 20:08:51 +05:30
for every branch and deploys by using these resources.
2022-03-02 08:16:31 +05:30
2022-05-07 20:08:51 +05:30
The GitLab agent uses [impersonation ](../../clusters/agent/ci_cd_tunnel.md#use-impersonation-to-restrict-project-and-group-access )
2022-03-02 08:16:31 +05:30
strategies to deploy to your cluster with restricted account access. To do so:
1. Choose the impersonation strategy that suits your needs.
1. Use Kubernetes RBAC rules to manage impersonated account permissions in Kubernetes.
2022-05-07 20:08:51 +05:30
1. Use the `access_as` attribute in your agent configuration file to define the impersonation.
2022-03-02 08:16:31 +05:30
### Migrate from Auto DevOps
2022-05-07 20:08:51 +05:30
To configure your Auto DevOps project to use the GitLab agent:
2022-03-02 08:16:31 +05:30
2022-05-07 20:08:51 +05:30
1. Follow the steps to [install an agent ](../../clusters/agent/install/index.md ) in your cluster.
1. Go to the project where you use Auto DevOps.
1. On the left sidebar, select **Settings > CI/CD** and expand **Variables** .
2022-03-02 08:16:31 +05:30
1. Select **Add new variable** .
1. Add `KUBE_CONTEXT` as the key, `path/to/agent/project:agent-name` as the value, and select the environment scope of your choice.
1. Select **Add variable** .
1. Repeat the process to add another variable, `KUBE_NAMESPACE` , setting the value for the Kubernetes namespace you want your deployments to target, and set the same environment scope from the previous step.
2022-05-07 20:08:51 +05:30
1. On the left sidebar, select **Infrastructure > Kubernetes clusters** .
2022-03-02 08:16:31 +05:30
1. From the certificate-based clusters section, open the cluster that serves the same environment scope.
1. Select the **Details** tab and disable the cluster.
2022-06-21 17:19:12 +05:30
1. To activate the changes, on the left sidebar, select **CI/CD > Pipelines** and then **Run pipeline** .
2022-03-02 08:16:31 +05:30
2022-05-07 20:08:51 +05:30
For an example, [view this project ](https://gitlab.com/gitlab-examples/ops/gitops-demo/hello-world-service ).
2022-03-02 08:16:31 +05:30
2022-05-07 20:08:51 +05:30
### Migrate generic deployments
2022-03-02 08:16:31 +05:30
2022-05-07 20:08:51 +05:30
Follow the process for the [CI/CD workflow ](../../clusters/agent/ci_cd_tunnel.md ).
2022-03-02 08:16:31 +05:30
2022-05-07 20:08:51 +05:30
## Migrate from GitLab Managed applications
2022-03-02 08:16:31 +05:30
2022-06-21 17:19:12 +05:30
[GitLab Managed Apps (GMA) ](../../clusters/applications.md#gitlab-managed-apps-deprecated ) were deprecated in GitLab 14.0, and
the agent for Kubernetes does not support them. To migrate from GMA to the agent, go through the following steps:
1. [Migrate from GitLab Managed Apps to a cluster management project ](../../clusters/migrating_from_gma_to_project_template.md ).
1. [Migrate the cluster management project to use the agent ](../../clusters/management_project_template.md ).
2022-03-02 08:16:31 +05:30
2022-05-07 20:08:51 +05:30
## Migrate a cluster management project
2022-03-02 08:16:31 +05:30
2022-05-07 20:08:51 +05:30
See [how to use a cluster management project with the GitLab agent ](../../clusters/management_project_template.md ).
2022-03-02 08:16:31 +05:30
## Migrate cluster monitoring features
2022-05-07 20:08:51 +05:30
Cluster monitoring features are not yet supported by the GitLab agent for Kubernetes.
