You need to first install PostgreSQL separately as the PostgreSQL binaries are no longer bundled with the Linux archive installer for Insight. For more information, see Install PostgreSQL for Insight.
Before you proceed, see System Requirements for information on supported platforms, supported browsers, and other requirements.
Complete the following steps to install the product.
Extract the contents of the compressed archive and move it into
/insight
directory.tar -xvf jfrog-insight-<version>-linux.tar.gz mv jfrog-insight-<version>-linux insight
Install PostgreSQL and start the PostgreSQL service.
Already have a PostgreSQL installation?
Set your PostgreSQL connection details in the Shared Configurations section of the
$JFROG_HOME/insight/var/etc/system.yaml
file.PostgreSQL is required and must be installed before continuing with the next installation steps.
Prepare for the Elasticsearch Installation by increasing the map count. For additional information refer to the Elastic Search documentation.
sudo sysctl -w vm.max_map_count=262144
To make this change permanent, remember to update the
vm.max_map_count
setting in/etc/sysctl.conf
.Install Elasticsearch.
You can download a compatible version of Elasticsearch from this page. Instructions to install Elasticsearch are available here.
You can install the package available at
jfrog-insight-<version>-rpm/third-party/elasticsearch/elasticsearch-<version>.tar.gz
or you can download a compatible version of Elasticsearch from this page.When connecting an external instance of Elasticsearch to Insight, add the following flag in the Shared Configurations of
$JFROG_HOME/insight/var/etc/system.yaml
file.shared: elasticsearch: external: true
Navigate to the Elasticsearch installation directory and create Elasticsearch users.
$ELASTICSEARCH_HOME/bin/elasticsearch-users useradd <USERNAME> -p <PASSWORD>-r superuser
Copy Elasticsearch CA certificate,
<ES_PATH>/config/certs/http_ca.crt
into the Insight certificates folder,<INSIGHT_HOME>/var/etc/security/keys/trusted
.Add the following in the shared section of
$JFROG_HOME/insight/var/etc/system.yaml
file. Refer to Shared Configurations section.shared: elasticsearch: url: <URL_TO_ELASTICSEARCH_INSTANCE>:<ELASTICSEARCH_PORT> username: <USERNAME> password: <CLEAR_TEXT_PASSWORD_FOR_THE_ABOVE_USERNAME>
If you use Amazon Elasticsearch Service
Enter the following in the shared section of the YAML file.
shared: elasticsearch: url: <URL_TO_ELASTICSEARCH>:<ELASTICSEARCH_PORT> external: true aes: signed: true serviceName: <AES_SERVICE_NAME> region: <AES_SERVICE_REGION> accessKey: <AWS_ACCESS_KEY> secretKey: <AWS_SECRET_KEY>
You must log in to the service using your Amazon AWS credentials.
Customize the product configuration.
Set the Artifactory connection details.
Customize the PostgreSQL Database connection details. (optional)
Set any additional configurations (for example: ports, node id) using the
Insight system.yaml configuration file
.
Start and manage the Insight service as the user who extracted the tar.
As a process
insight/app/bin/insight.sh start
Manage the process.
insight/app/bin/insight.sh start|stop|status|restart
As a service
Insight is packaged as an archive file and an install script that can be used to install it as a service running under a custom user. Currently supported on Linux systems.
OS User Permissions
When running Insight as a service, the installation script creates a user called
insight
(by default)which must have run and execute permissions on the installation directory.It is recommended to extract the Insight download file into a directory that gives run and execute permissions to all users such as
/opt
.To install Insight as a service, execute the following command as root:
Note
User and group can be passed through
distribution/var/etc/system.yaml
asshared.user
andshared.group
. This takes precedence over values passed through the command line on install.insight/app/bin/installService.sh --user <enter user, default value is insight> --group <enter group, default value is insight> -u | --user : [optional] (default: distribution) user which will be used to run the product, it will be created if its unavailable-g | --group : [optional] (default: distribution) group which will be used to run the product, it will be created if its unavailable
The user and group is stored in
insight/var/etc/system.yaml
at the end of installation.To manage the service, use
systemd
orinit.d
commands depending on your system.Using systemd
systemctl <start|stop|status> insight.service
Using init.d
service insight <start|stop|status>
Access Insight from your browser at:
http://<jfrogUrl>/ui/
.Go to the Dashboard tab in theApplicationmodule in the UI
Add the following in the shared section of
$JFROG_HOME/insight/var/etc/system.
yaml
file. Refer to Shared Configurations section.Note
If you use Amazon Elasticsearch Service, enter the following in the shared section of the YAML file.
If you use the Amazon Elasticsearch Service, you must log in to the service using your Amazon AWS credentials.
Check the Insight log.
tail -f $JFROG_HOME/insight/var/log/console.log
Configure log rotation of the console log
The
console.log
file can grow quickly since all services write to it. For more information, see configure the log rotation.
Install PostgreSQL for Insight
You must install PostgreSQL before you proceed with the installation of Insight.
Using Microsoft Azure PostgreSQL
Some managed databases, such as Azure, have a different username for accessing the database than the actual one inside the database. For Azure-managed PostgreSQL, the username
will be, for example insight@mycompany
and the actualUsername
will be insight
. For more information, see Insight System YAML.
Passwords for PostgreSQL with special characters
Do not use a password for PostgreSQL that has special characters: Xray may not work if you configure a password that has special characters, such as~ = # @ $ /
.
Set up Your PostgreSQL Databases, Users and Schemas
Warning
Database can only be changed for a new installation. Changing the names during an upgrade will result in the loss of existing data.
Helm Users
Create a user with permission. Use this user's credentials during your Helm installation on this page.
Log in to the PostgreSQL database as an admin and execute the following commands.
PostgreSQL Database and User Creation
CREATE DATABASE insight WITH ENCODING='UTF8' TABLESPACE=pg_default; # Exit from current login \q # Login to $DB_NAME database using admin user (by default its postgres) psql -U postgres insight CREATE USER insight WITH PASSWORD 'password'; GRANT ALL ON DATABASE insight TO insight;
Configure the
system.yaml
file with the database configuration details according to the information above. For example.shared: database: type: postgresql driver: org.postgresql.Driver url: jdbc:postgresql://localhost:5432/insight username: insight password: password