Red Hat Alliance
Reduce risk and complexity in the
hybrid cloud

Get unified protection for the Red Hat portfolio with the CrowdStrike Falcon® platform.

Partnership benefits

CrowdStrike’s certified integrations for Red Hat Enterprise Linux, Red Hat OpenShift, and Red Hat Ansible Automation Platform bridge the gap between security and operations.

Reduce exposure

Scale and innovate securely with hardened infrastructure and unified breach prevention.

Control costs

Capability-rich platforms meet you where you are today, and grow as you need them tomorrow.

Accelerate delivery

Offer services that span clouds and business units with automation for security, operations, and more.

How the Falcon platform protects
Red Hat environments

When the most advanced adversaries target enterprise infrastructure, CrowdStrike’s industry-leading threat intelligence and runtime protection are there to stop them.

Linux endpoint protection

The CrowdStrike Falcon® sensor is certified software for Red Hat Enterprise Linux 6 through 9 and deploys as a single RPM package, no reboot required.

  • Detect and prevent known and zero-day attacks with machine learning packaged into a lightweight sensor 

  • Graphically explore process trees, host details, user information, vulnerability data, and more in one console
  • Monitor sensitive files and directories for changes to comply with industry requirements
Kubernetes and cloud protection

The Falcon operator is certified for Red Hat OpenShift and supports self-managed, Red Hat OpenShift Service on AWS (ROSA), and Azure Red Hat OpenShift (ARO).

  • Stop breaches inside user workloads, control plane services, and the CoreOS operating system
  • Block deployment of noncompliant workloads with the Falcon admission controller
  • View incidents and misconfigurations across your Kubernetes fleet and entire cloud estate
Security automation

The Falcon collection is certified with Red Hat Ansible Automation Platform.

  • Install and configure the Falcon sensor on Linux, Windows, and Mac through prebuilt roles
  • Stream events from the Falcon platform and automatically trigger job templates with Event-Driven Ansible
  • Interact with the CrowdStrike API through modules; no need for Python scripting or HTTP calls

Protecting all companies,
from small business to enterprise