Supported Linux distributions

• Amazon Linux 1 & 2
• Ubuntu 14.04, 16.04, 18.04, 20.04
• CentOS 6, 7, 8
• RHEL 6, 7, 8
• Debian 8, 9, 10
• Fedora 31, 32
• SUSE/openSUSE 11
• Oracle Linux 7, 8 (RHEL & UEK kernels)

Supported architectures

• x86_64
• aarch64 (For example, ARM64, AWS Graviton, etc.)

Supported kernel versions

The following kernel versions are required to collect telemetry using Audit:

• 2.6.32-71 and above (mainline)

The following kernel versions are required to collect telemetry using eBPF:

• 4.11 and above (mainline)
• In some distributions, including CentOS and RHEL, backports for eBPF support exist on earlier kernels. RHEL supports eBPF in kernels 3.10.0-940 and above.