Setup and Deployment

These pages describe how to deploy STIG Manager.

Contents:

• 1. STIG Manager OSS Setup and Technical Information
  • 1.1. Architecture & Core Components
  • 1.2. Critical Configuration Requirements
  • 1.3. Additional Suggested Configuration
  • 1.4. Deployment Scenarios
  • 1.5. First Steps
• 2. Authentication and Identity
  • 2.1. JSON Web Token (JWT) Requirements
  • 2.2. Scopes, and Privileges
  • 2.3. Authentication Example - RedHat Keycloak 19
  • 2.4. STIGMAN_CLIENT_REAUTH_ACTION
• 3. Database
  • 3.1. Database Requirements
  • 3.2. Database - MySQL Latest 8.x
• 4. Logging
  • 4.1. Logging schemas
  • 4.2. Common
• 5. Deploy with TLS
  • 5.1. Configure a Reverse Proxy or Kubernetes Ingress Controller
  • 5.2. STIG Manager with nginx for TLS and CAC Authentication
• 6. Additional Proxy Configuration
  • 6.1. Max Request Body Size
  • 6.2. Proxy Requirements for Streaming and SSE
  • 6.3. Future Considerations
• 7. STIG Manager API Data Representations and Permissions
  • 7.1. Data Model
  • 7.2. Application Access
  • 7.3. Database Entity Relationship Diagrams
• 8. Environment Variables
• 9. Securing and Assessing STIG Manager Deployments
  • 9.1. Securing Your Deployment
  • 9.2. Assessing Your Deployment