NeuralTrust | The leading security platform for generative AI

Prerequisites

Before installing NeuralTrust, ensure you have:

Kubernetes cluster (v1.20+)
- Minimum of 3 nodes
- Each node: 4 vCPUs, 16 GB Memory
- Total cluster resources: 12+ vCPUs, 48+ GB Memory
Helm (v3.8+)
kubectl configured to access your cluster
OpenAI API key
HuggingFace token (provided by NeuralTrust)
Google Container Registry (GCR) service account key (provided by NeuralTrust)

Required Tools

kubectl: For interacting with the Kubernetes cluster
helm: For deploying Kubernetes applications
yq: For YAML processing
jq: For JSON processing

Installation Steps

1. Environment Setup

First, clone the repository and set up environment files:

# Clone the repository
git clone https://github.com/NeuralTrust/neuraltrust-helm-charts.git
cd neuraltrust-helm-charts

# Create environment file
cp .env.example .env.dev  # For development
# or
cp .env.example .env.prod # For production

2. Configure Environment Variables

Required environment variables:

Common Variables

ENVIRONMENT: Environment (dev/prod)
EMAIL: Email for Let’s Encrypt certificates
OPENAI_API_KEY: OpenAI API key
HUGGINGFACE_TOKEN: HuggingFace token (provided by NeuralTrust)
GCR_KEY_FILE: Path to GCR service account key file

Data Plane API Variables

DATA_PLANE_API_URL: Full URL for the Data Plane API
DATA_PLANE_API_IMAGE_REPOSITORY: Docker image repository
DATA_PLANE_API_IMAGE_TAG: Docker image tag
DATA_PLANE_API_IMAGE_PULL_POLICY: Image pull policy
DATA_PLANE_JWT_SECRET: JWT secret for Control Plane authentication

Worker Variables

WORKER_IMAGE_REPOSITORY: Docker image repository
WORKER_IMAGE_TAG: Docker image tag
WORKER_IMAGE_PULL_POLICY: Image pull policy

3. Run Installation

# Set environment
export ENVIRONMENT=dev  # or prod

# Run installation script
./install-data-plane.sh

The script will:

Create namespace (default: neuraltrust)
Install cert-manager for SSL certificates
Install NGINX Ingress Controller
Create required secrets
Install ClickHouse database
Install Kafka for messaging
Deploy Data Plane components

Installation Options

Skip ingress resources:

./install-data-plane.sh --skip-ingress

Skip cert-manager installation:

./install-data-plane.sh --skip-cert-manager

Or use values file:

global:
  ingress:
    enabled: false
    controller:
      enabled: false
  certManager:
    enabled: false

Domain Configuration

DNS Setup

Create a subdomain for your Data Plane API (e.g., dataplane.yourdomain.com)
Configure CNAME record:

dataplane.yourdomain.com.  IN  CNAME  <your-ingress-controller-address>

Get ingress controller address:

kubectl get svc -n neuraltrust ingress-nginx-controller -o jsonpath='{.status.loadBalancer.ingress[0].ip}'

Alternative: Use A record:

dataplane.yourdomain.com.  IN  A  <your-ingress-controller-ip>

TLS/SSL Certificates

The installation automatically configures Let’s Encrypt certificates. Ensure:

Domain is publicly accessible
DNS propagation is complete
Valid email address in EMAIL variable

Note: For custom certificates, contact NeuralTrust support.

Connecting to Control Plane

After installation:

Log in to NeuralTrust portal
Navigate to “Data Plane” section
Add new Data Plane connection
Enter Data Plane API endpoint
Enter JWT secret from installation
Save connection

Important: Save the JWT secret displayed during installation for Control Plane connection.

Upgrading

To upgrade existing installation:

Update environment variables as needed
Run installation script again:

./install-data-plane.sh

The Helm charts will detect existing installations and perform an upgrade.

Troubleshooting

Common issues and solutions:

Pod startup failures

kubectl logs -n neuraltrust <pod-name>

Database connection issues

kubectl get pods -n neuraltrust | grep clickhouse

API key errors

Verify OpenAI API key and HuggingFace token

Ingress issues

kubectl get ingress -n neuraltrust

Certificate issues

kubectl get certificates -n neuraltrust

Control Plane connection issues

Verify Data Plane API endpoint is accessible
Confirm JWT token is correct

Additional Resources

For more information:

For support, contact support@neuraltrust.ai

Getting Started

Core Concepts

Traffic Management

Non-REST Connectivity

Rate Limiting & Request Control

Content Security

Application Security

Server Security

Data masking

Extending Functionality

Observability & Monitoring

Benchmark

API Reference

Installing on Kubernetes

Prerequisites

Required Tools

Installation Steps

1. Environment Setup

2. Configure Environment Variables

Common Variables

Data Plane API Variables

Worker Variables

3. Run Installation

Installation Options

Domain Configuration

DNS Setup

TLS/SSL Certificates

Connecting to Control Plane

Upgrading

Troubleshooting

Additional Resources

Getting Started

Core Concepts

Traffic Management

Non-REST Connectivity

Rate Limiting & Request Control

Content Security

Application Security

Server Security

Data masking

Extending Functionality

Observability & Monitoring

Benchmark

API Reference

​Prerequisites

​Required Tools

​Installation Steps

​1. Environment Setup

​2. Configure Environment Variables

​Common Variables

​Data Plane API Variables

​Worker Variables

​3. Run Installation

​Installation Options

​Domain Configuration

​DNS Setup

​TLS/SSL Certificates

​Connecting to Control Plane

​Upgrading

​Troubleshooting

​Additional Resources

Prerequisites

Required Tools

Installation Steps

1. Environment Setup

2. Configure Environment Variables

Common Variables

Data Plane API Variables

Worker Variables

3. Run Installation

Installation Options

Domain Configuration

DNS Setup

TLS/SSL Certificates

Connecting to Control Plane

Upgrading

Troubleshooting

Additional Resources