JFrog Artifactory Docker Registry Integration

Overview

This topic provides instructions on how to integrate the JFrog Artifactory Docker Registry with the Unified Agent.

Unified Agent supports scanning JFrog Artifactory Docker images on Artifactory Pro version 4 and above.

Artifactory Pro version 4 and above
Make sure Artifactory is up and running with a valid license
Configured Artifactory HTTP settings
Docker client
The relevant package manager must be installed. For details, see https://docs.mend.io/legacy-sca/latest/getting-started-with-the-unified-agent#GettingStartedwiththeUnifiedAgent-Prerequisites .

There are three Docker access method options when configuring Docker HTTP settings. Select one of the following:

Attribute	Type	Description	Required
docker.artifactory.enable	Boolean	Enables pulling Docker Images from Artifactory Pro Docker registry. Note: Verify that the 'docker.scanImages' and 'docker.pull.enable' parameter values are also set to 'true'.	Yes
docker.artifactory.url	String	Artifactory URL including http:// or https:// and contextpath (Artifactory default contextPath is “/artifactory" ) See the Artifactory HTTP Settings section.	Yes
docker.artifactory.userName	String	Username for Artifactory Pro Docker registry	Yes
docker.artifactory.userPassword	String	Password for Artifactory Pro Docker registry	Yes
docker.artifactory.repositoriesNames	String	Repository names in Artifactory Pro Docker registry separated by a space. If the customer uses port method “docker.artifactory.dockerAccessMethod=port” and is a read-only user - the customer must add “repository port” to each repository in ‘docker.artifactory.repositoriesNames' in this format: <repositoryName>:<repositoryPort> For example: “docker.artifactory.repositoriesNames=docker-repository:6555”	Yes
docker.artifactory.dockerAccessMethod	String	Required when the user has read-only access.	No

Parameters 'docker.scanImages' and 'docker.pull.enable' should be set to true.