Configure TLS Certificates for Pipelines

JFrog Installation & Setup Documentation

Content Type
Installation & Setup
ft:sourceType
Paligo

TLS connections can be used within the JFrog Pipelines between different nodes and services. By default, TLS is disabled. When TLS is enabled, all communications to JFrog Pipelines are required to use TLS.

Note

This feature is available for Pipelines self-hostedise versions only.

JFrog Pipelines supports the following scenarios for TLS:

  • TLS is enabled in JFrog Platform with JFrog Access issued CA certificates.

    • Pipelines is configured with a load balancer set up with publicly trusted certificates.

    • Pipelines is configured with a load balancer set up with custom certificates.

  • TLS is enabled in JFrog Platform with users providing a CA certificate and matching private key.

    • Pipelines is configured with a load balancer set up with publicly trusted certificates.

    • Pipelines is configured with a load balancer set up with custom certificates.

  • TLS is disabled in JFrog Platform. Pipelines is configured with a load balancer set up with publicly trusted certificates.

  • TLS is disabled in JFrog Platform with JFrog Access issued CA certificates. Pipelines is configured with a load balancer set up with custom certificates.

HA Setup

  • For HA setup, you need to add the certificate to every node's trusted directory or KeyStore. The Certificates are not propagated between HA nodes automatically.

  • For information about how TLS connections can be used within the JFrog Platform between the different cluster nodes and services, see the section Managing TLS Certificates.Manage TLS Certificates