This note describes how to configure Cisco Panoptica to use the JFrog Artifactory as a repository for CI/CD artifacts.
With Artifactory is configured with Panoptica, you will immediately gain visibility and control over the artifacts in you CI/CD pipeline. You will be able to see and control which containers from the Docker registries are running in production.
In addition, Panoptica can use this information to generate Panoptica identities for workloads about to be deployed into your environments.
In addition, you can optionally use image scan results from JFrog Xray security analysis to gain insight into vulnerabilities in your workloads.
You will need an account on both Artifactory and Panoptica.
Configure JFrog on Panoptica
- Navigate to the DEPLOYMENTS page, and select the REGISTRIES tab.
- Click New Registry.
- Enter a name (as it will appear in Panoptica), and the URL, as well as access credentials. For details about the URL, see, for example, here. The URL usually ends with /artifcatory, and has the a form like https://example.jfrog.io/artifactory
- Select Jfrog Artifactory for Type.
- Optionally, if you want to use JFrog Xray vulnerability information, enter a JFrog TOKEN (details for creating a token are in the section following, below).
- Click Test connection and, if this works, click FINISH.
Once configured, workloads that appear in the Workloads page, that originated in Artifactory, will appear with the JFrog attributes (the repository and image). In addition, if a token was supplied, to obtain Xray vulnerability information, image scan results obtained from JFrog will appear in the CI/CD page, in the IMAGES tab.
Create a JFrog Token for Xray
- Sign-in to JFrog.
- Select the Administration menu, in the navigation bar on the left.
- Select Access Tokens in the Identity and Access section.
- Click Generate Access Token.
- Select Xray in the Service section, and an expiry time (for example, Never), and then click Generate.
- Click Copy to copy the token value.
Updated 9 months ago