Air-gapped environments are isolated from the public internet. To enable security scanning in such environments, you’ll need to configure a local Artifactory repository that mirrors https://releases.jfrog.io, and update your tools to use this repository for downloading required components.
Before You Begin
Access the internet and download the necessary files from the following link: Releases JFrog - Analyzer Manager.
Create a Dedicated Air-Gapped Artifactory Repository
- In your air-gapped environment, create a local generic Artifactory repository to store the required resources.
- Upload the downloaded resources to the local generic repository created in step 1.
- Set the environment variables in your CLI, IDE, or Frogbot to point to the local generic repository in your air-gapped Artifactory.
Configure Tools to Use Your Local Repo
After setting up the repository, you must configure your tools to pull all required components, such as binaries, analyzer tools, or metadata, from your internal Artifactory instance instead of the public internet.
Use the appropriate environment variable depending on the tool:
CLI
Define a JPD and server ID using:
jf c add <server-id>
Set the environment variable
JFROG_CLI_RELEASES_REPOusing the following format:<server-id>/<remote-repo>
Example:
If your JPD is:
https://artifactory-dev.domain.com/
And you configure the server ID asskycloud, and the remote repository isjfrog-release-remote, then:JFROG_CLI_RELEASES_REPO=skycloud/jfrog-release-remote
Frogbot
Set the standard Frogbot environment variables (e.g.,
JF_URL,JF_ACCESS_TOKEN, etc.) to connect to your JPD.Set the
JF_RELEASES_REPOenvironment variable with the remote repository name only:JF_RELEASES_REPO=jfrog-release-remote
IDE
The connected JPD will be used as the server.
In the extension settings, set the
External Resources Repositoryfield to your repository name,
or provide the environment variable:JFROG_IDE_RELEASES_REPO=jfrog-release-remote