For AI agents: a documentation index is available at the root level at /llms.txt and /llms-full.txt. Append /llms.txt to any URL for a page-level index, or .md for the markdown version of any page.
      • AstroFully-managed data operations, powered by Apache Airflow.
      • Astro Private CloudRun Airflow-as-a-service in your environment.
      • Professional ServicesExpert Airflow services for your enterprise's success.
    • Tools
      • Cosmos
      • Orbiter
      • CLI
      • AI SDK
      • Agents
      • Blueprint
      • UpdatesThe State of Airflow 2026See the insights from over 5,800 data practitioners in the full report. Download Now ➔
  • Customers
  • Docs
    • Insights
      • Blog
      • Webinars
      • Resource Library
      • Events
    • Education
      • Academy
      • What is Airflow?
  • Pricing
Get Started Free
    • Overview
      • Create a Deployment
      • Execution mode
        • Overview
        • Shared responsibility model
        • Get started
          • Configure OpenLineage
          • Enable Sentinel monitoring
          • Install in restricted Kubernetes namespace
          • Set up custom timetable support
          • Configure AWS PrivateLink
          • Configure Azure Private Link
        • Deploy Remote Execution project
        • Deploy a dbt project
        • Helm chart reference
      • Worker queues
      • Environment variables
      • Secrets backend
    • Book Office Hours

Product

  • Platform Overview
  • Astro
  • Astro Observe
  • Astro Private Cloud
  • Security & Trust
  • Pricing

Tools & Services

  • Cosmos
  • Docs
  • Professional Services
  • Product Updates

Use Cases

  • AI Ops
  • Data Observability
  • ETL/ELT
  • ML Ops
  • Operational Analytics
  • All Use Cases

Industries

  • Financial Services
  • Gaming
  • Retail
  • Manufacturing
  • Healthcare
  • All Industries

Resources

  • Academy
  • eBooks & Guides
  • Blog
  • Webinars
  • Events
  • The Data Flowcast Podcast
  • All Resources

Airflow

  • What is Airflow
  • Airflow on Astro
  • Airflow 3.0
  • Airflow Upgrades
  • Airflow Use Cases
  • Airflow 2.x End of Life

Company

  • Our Story
  • Customers
  • Newsroom
  • Careers
  • Contact

Support

  • Knowledge Base
  • Status
  • Contact Support
GitHubYouTubeLinkedInx
  • Legal
  • Privacy
  • Terms of Service
  • Consent Preferences

  • Do Not Sell or Share My Personal information
  • Limit the Use Of My Sensitive Personal Information

Apache Airflow®, Airflow, and the Airflow logo are trademarks of the Apache Software Foundation. Copyright © Astronomer 2026. All rights reserved.

LogoLogo
On this page
  • Step 1: Create a restricted namespace
  • Step 2: Configure Global Security Settings
  • Step 3: Configure component-specific settings
  • Worker configuration
  • Dag processor configuration
  • Triggerer configuration
  • Step 4: (Optional) Add logging sidecar configuration
Manage DeploymentsRemote ExecutionAdvanced configuration

Install Remote Execution Agents in a restricted kubernetes namespace

Edit this page
Built with
Airflow 3

This feature is only available for Airflow 3.x Deployments.

You can install the Remote Execution Agent in a Kubernetes namespace with restricted pod security standards. Your organization might have different security standards for infrastructure supporting internal-only sandboxes compared to production environments.

Kubernetes Pod Security Standards define different security levels for Pods:

  • Privileged: No restrictions (least secure)
  • Baseline: Prevents known privilege escalations
  • Restricted: Highly-constrained settings following security best practices (most secure)

The Restricted profile enforces the following limitations:

  • Runs containers as non-root users
  • Prevents privilege escalation
  • Drops all Linux capabilities
  • Uses read-only root filesystems when possible
  • Requires a runtime default seccomp profile

However, because of these limitations, you need to complete the following additional Remote Execution Agent configuration set up.

Step 1: Create a restricted namespace

Create a Namespace in your Kubernetes manifest with the following restricted Pod security standards:

1apiVersion: v1
2kind: Namespace
3metadata:
4  name: astro-agent-restricted
5  labels:
6    pod-security.kubernetes.io/enforce: restricted
7    pod-security.kubernetes.io/audit: restricted
8    pod-security.kubernetes.io/warn: restricted

Step 2: Configure Global Security Settings

Modify your Agent’s values.yaml file to set global security context settings that apply to all Agent components’ Pods and containers:

1# Global pod security context for all components
2podSecurityContext:
3  seccompProfile:
4    type: RuntimeDefault
5  runAsUser: 50000
6  fsGroup: 50000
7  runAsNonRoot: true
8
9# Global container security context for all components
10containerSecurityContext:
11  allowPrivilegeEscalation: false
12  readOnlyRootFilesystem: true
13  capabilities:
14    drop:
15      - ALL

Step 3: Configure component-specific settings

When using the Agent in a restricted namespace, you must configure volume mounts because:

  1. The container security context sets readOnlyRootFilesystem: true
  2. These directories need write access during runtime
  3. Using emptyDir volumes provides isolated, writable storage that meets security requirements

Worker configuration

1workers:
2  - name: default-worker
3    # Other worker settings...
4
5    # Required volumes for filesystem access
6    volumes:
7      - name: tmp
8        emptyDir: {}
9      - name: task-logs
10        emptyDir: {}
11
12    volumeMounts:
13      - name: tmp
14        mountPath: /tmp # This folder is used by the Astro Agent to maintain the socket file
15      - name: task-logs
16        mountPath: /usr/local/airflow/logs # Or the configured folder that holds the task logs

Dag processor configuration

1dagProcessor:
2  # Other Dag processor settings...
3
4  # Required volumes for filesystem access
5  volumes:
6    - name: tmp
7      emptyDir: {}
8
9  volumeMounts:
10    - name: tmp
11      mountPath: /tmp # This folder is used by the Astro Agent to maintain the socket file

Triggerer configuration

1triggerer:
2  # Other triggerer settings...
3
4  # Required volumes for filesystem access
5  volumes:
6    - name: tmp
7      emptyDir: {}
8    - name: task-logs
9      emptyDir: {}
10
11  volumeMounts:
12    - name: tmp
13      mountPath: /tmp # This folder is used by the Astro Agent to maintain the socket file
14    - name: task-logs
15      mountPath: /usr/local/airflow/logs # Or the configured folder that holds the task logs

Step 4: (Optional) Add logging sidecar configuration

1loggingSidecar:
2  # Other logging sidecar settings...
3
4  securityContext:
5    allowPrivilegeEscalation: false
6    readOnlyRootFilesystem: true
7    capabilities:
8      drop:
9        - ALL
10  volumeMounts:
11    - name: task-logs
12      mountPath: /etc/airflow/logs # Or the configured folder that holds the task logs