JFrog Artifactory - Add Integration

ZeroNorth Experts
,
1

Suggested Reading: What is an Integration?

Overview

This article describes the process for configuring ZeroNorth to connect to a JFrog Artifactory Docker container registry to discovery and to orchestrate scanning of the Docker images in such registries. This article does not cover configuring ZeroNorth to connect to a JFrog Artifactory binaries repository.

Prerequisites

  • A valid ZeroNorth account, with admin privileges
  • Connectivity from ZeroNorth to the JFrog Artifactory Pro server. This connectivity can be provided by one of two ways:
    1. The JFrog Artifactory Pro server is network reachable from the ZeroNorth SaaS platform.
    2. Use ZeroNorth Integration Orchestrator onprem agent.
  • Username and password to the JFrog Artifactory Pro server
  • The Docker images must reside in the “docker-local” folder of the server:
    image
  • The JFrog Artifactory Pro server needs to be configured as follows:
    the artifactory.docker.catalogs.tags.fallback.fetch.remote.cache system property must be set to true (the default is false ) in the artifactory.system.properties file.

Adding the Integration

  1. Go to znADM > Integrations .
  2. Click +Add Integration .
    image
  3. Enter a Name .
  4. Set Initiate Scan From to either “ZeroNorth Platform” or “Customer’s Environment”. If selecting the latter option, please refer to the article ZeroNorth™ Integration-Orchestrator (an on-prem option) for details on setting up the Integration Orchestrator.
  5. Set Type to “JFrog Artifactory Docker”.
  6. In the Host field, enter the URL to the JFrog Artifactory Pro server. Typically, this will be in form like https://jfrog.my.com , leaving out the trailing / .
  7. Enter the Username .
  8. Enter the Password .
  9. Click Create Integration .

Discovering the Images

Once the Integration has been created, one can optionally perform a “Discovery”, which allows the ZeroNorth platform to inventory the Docker images in your JFrog Artifactory Pro server:

image

NOTE: If you had set Initiate Scan From to “Customer’s Environment”, ensure that your Integration Orchestrator is running before you click Discover .

NOTE: If you had set Initiate Scan From to “Customer’s Environment”, ensure that your Integration Orchestrator is running before you click Discover .