Install JFrog Advanced Security on your Self-Hosted Environment with Helm

JFrog Installation & Setup Documentation

Content Type
Installation & Setup
ft:sourceType
Paligo

Tip

You are in Step 2, of the JFrog Advanced Security installation. For previous and next steps, refer to Installing JFrog Advanced Security.

You can install JAS in your existing JFrog Platform installation, install a new JFrog Platform installation with JAS, or install JAS along with a new installation of Artifactory and Xray.

You can install JAS with an existing Helm installation of the JFrog Platform.

  1. Contact JFrog Support to purchase or obtain a trial license of JFrog Advanced Security.

  2. Add charts.jfrog.io to your Helm client.

    helm repo add jfrog https://charts.jfrog.io
  3. Run the following command to update the Helm repository.

    helm repo update
  4. You can install JAS in a new JFrog Platform installation with JAS, install JAS in your existing JFrog Platform installation, or install JAS with the installation of Artifactory and Xray.

    New JFrog Platform Installation

    1. Run the following command to install JAS in a new JFrog platform installation.

      helm upgrade --install jfrog-platform --namespace jfrog-platform --create-namespace jfrog/jfrog-platform --set xray.serviceAccount.create=true --set xray.rbac.create=true --set insight.enabled=false --set distribution.enabled=false --set pipelines.enabled=false

      You can also install with a values YAML update

      1. Add the following values in the custom-values.yaml file

        serviceAccount: 
          create: true
        rbac: 
          create: true
      2. Run the following command.

        helm upgrade --install jfrog-platform --namespace jfrog-platform --create-namespace jfrog/jfrog-platform -f custom-values.yaml --create-namespace

    Existing JFrog Platform Installation

    1. Run the following command to install JAS in the current JFrog platform installation.

      helm upgrade --install jfrog-platform --namespace jfrog-platform --create-namespace jfrog/jfrog-platform --set xray.serviceAccount.create=true --set xray.rbac.create=true

      You can also install with a values YAML update

      1. Add the following values in the custom-values.yaml file.

        serviceAccount: 
          create: true 
        rbac: 
          create: true
      2. Run the following command.

        helm upgrade --install jfrog-platform --namespace jfrog-platform --create-namespace jfrog/jfrog-platform -f custom-values.yaml

    Existing Artifactory and Xray Helm Installation

    1. Upgrade Artifactory to version 7.49.x or later. For more information, see Upgrading Artifactory Helm Upgrade.

    2. Upgrade Xray to version 3.67.x or later. For more information, see Xray Helm Upgrade.

    3. Run the following command to install JAS.

      helm upgrade xray jfrog/xray --set serviceAccount.create=true --set rbac.create=true

      You can also install with a values YAML update

      1. Add the following values in the custom-values.yaml file.

        serviceAccount: 
          create: true 
        rbac: 
          create: true
      2. Run the following command.

        helm upgrade --install xray jfrog/xray -f custom-values.yaml
  5. Synchronize the database. For more information, see Synchronizing the Database.

  6. Configure a base URL. For more information, see General Settings.Base URL

Configure JAS for Self-Signed Helm Installation

Required Xray 3.83.11 or later.

Create a secret that contains the ca certificate in PEM base64 format. Update the system.yaml file with the information.

executionService: 
  platformCertificateSecretName: "<secret-name>"
  platformCertificateSecretKey: "<secret-key>"