Enable service maps using Cilium

  • Release version: Australia
  • Updated May 21, 2026
  • 1 minute to read

    • Enable application service maps based on the traffic between the workloads in Kubernetes by connecting to a Cilium agent already running in the cluster.

    Before you begin

    Cilium must already be installed and running in the target Kubernetes cluster. ServiceNow does not install Cilium.

    This feature is not supported on OpenShift.

    Role required: discovery_admin.

    About this task

    Cilium is open-source software that you can run in your Kubernetes cluster to control traffic and apply network policies. If Cilium is already running in the cluster, KVA can connect to the Cilium agent through its Hubble layer to pull traffic data. A DaemonSet pod is deployed with minimal permissions to collect this data and report it to the main Informer pod, which then sends it to the ServiceNow instance.

    This method requires fewer permissions than the ServiceNow DaemonSet method and reduces the effort required to get security approval in environments with strict permission policies. The outcomes are the same as the other service map methods. For more information, see Install Kubernetes Visibility Agent (KVA) Informer.

    Note:
    Only the Helm chart installation method is supported for this feature. The k8s_informer.yaml file method is not supported.

    Procedure

    In the Helm install command, add the following parameter: 
    --set connectionsDiscovery.method=cilium

    What to do next

    Create application service maps