Configuration¶
Zercurity provides a number of configuration options for on-premise deployments.
Production.env¶
Variable |
Options |
ZERCURITY_DOMAIN |
The system |
PROVIDER |
By default this is |
SECRET |
If you’re using the |
STAGE |
This can either be |
DB_ENGINE |
Only |
DB_HOSTNAME |
The hostname or IP address of your database instance. |
DB_DATABASE |
The database name you want to use. The Zercurity migrations container will automatically provision or upgrade the the provided database. |
DB_USERNAME |
Your database username |
DB_PASSWORD |
Your database password |
TEMP_PATH |
|
STORAGE_PATH |
A directory to store generated Zercurity
content. The default is |
RESOURCE_PATH |
|
REPOSITORY_URL |
|
API_CERTIFICATE_CHAIN |
|
ENROLL_DARWIN_DEVELOPER_KEY |
|
ENROLL_DARWIN_DEVELOPER_CER |
|
ENROLL_DARWIN_SIGNATORY_KEY |
|
ENROLL_DARWIN_SIGNATORY_CER |
|
ENROLL_LINUX_SIGNATORY_PEM |
|
ENROLL_WINDOWS_SIGNATORY_PEM |
|
AWS_KMS_KEY |
If you’re using AWS as your |
STRIPE_API_KEY |
If you need to enable billing as an MSP. You can provide your Stripe API key to automatically bill and invoice accounts. |
VIRUS_TOTAL_API_KEY |
If you don’t want to send application hashes to Zercurity you can add support for VT. |
GOOGLE_CLOUD_API_KEY |
|
ATLASSIAN_CLIENT_ID |
|
ATLASSIAN_CLIENT_KEY |
|
SLACK_CLIENT_ID |
|
SLACK_CLIENT_SECRET |
|
LICENSE_TRIAL |
By default this is set to |
LICENSE_ASSETS_LIMIT |
|
LICENSE_USERS_LIMIT |
|
LICENSE_TEAMS_LIMIT |
|
LICENSE_COMPANIES_LIMIT |
|
LICENSE_WORKFLOWS |
Globally enable workflow support. |
LICENSE_OSQUERY |
Globally enable Osquery support. |
LICENSE_SANTA |
Globally enable Google Santa support. |
LETSENCRYPT |
Either enable |
LETSENCRYPT_EMAIL |
Your Let’s Encrypt account email address
|
LETSENCRYPT_METHOD |
http |
LETSENCRYPT_OPTS |
Any additional Let’s Encrypt arguments |
Docker-compose.yml¶
This will be provided to you by your account manager.