Sicura Logo
Guides
Upgrades
Running Sicura Console
RPM Installation
Known Issues
Introduction
Installation
Commands
Container Installation
Configuration
Security
Collector
Experimental
Plugins
Account Configuration
Database
Sidebar
Profiles
Infrastructure
Administration
Scheduling
Reports
How To
Use the API
Enforce Compliance
Custom Profiles
Sicura Logo
Menu
Home
Documentation

Security

This article provides configuration options for the Sicura Console, including disabling remediation, changing cryptographic settings, and configuring SSL termination.

Security

Note: All of the following config options can be set in  /etc/sicura/sicura-console.yaml

 

Enable/Disable Remediation from the Console.

To disable the ‘Remediate’ button system wide, set the following option to false.

main.disable_enforcement: true

Setting the Hashing Algorithm for the Database Schema Engine

main.schema_engine.signature_hash: "SHA384"

Changing Cryptographic Settings

Some cryptographic settings used by Sicura Console have configuration options specified in the config file to meet some policy requirements.

To set the hashing algorithm for the web server’s HMAC algorithm use the following setting:

main.rack-session.hmac: "SHA384"

Configuring Listen Address and Port

The address and port can be specified using the following parameters:

main.listen_ip: localhost

Note: In order for the Sicura Console to be discoverable externally (Both LAN and Internet) listen_ip should be 0.0.0.0

main.listen_port: 6468

Using Internal SSL Termination

First, either self-generate or purchase an SSL certificate and key.

Then place them in /etc/ssl/certs and /etc/ssl/private respectively.

In sicura-console.yaml add the following configuration:

main.ssl.enabled: true
main.ssl.key: "/etc/ssl/private/mykey.key"
main.ssl.cert: "/etc/ssl/certs/mycert.pem"

# Enable SSL verify (Insecure if set to false)
main.ssl.verify: true
In this category

Infrastructure

This document provides information on the infrastructure management, node organization, and scan triggering within the Sicura agent, including instructions on accepting/rejecting nodes, creating automation rules, and viewing scan results.

Read Article
In this category

Plugins

This article provides information on the Sicura Console, including its plugins, configuration options, and instructions for setting up notification and authentication providers.

Read Article
In this category

Administration

This article provides an overview of the administration options available in the Console UI of the Sicura platform, including authentication providers, groups, users, and roles.

Read Article
In this category

Security

This article provides configuration options for the Sicura Console, including disabling remediation, changing cryptographic settings, and configuring SSL termination.

Read Article
In this category

Use the API

This article provides an overview of the API usage and Swagger documentation for Sicura Console.

Read Article
In this category

Scheduling

This article explains how to use the scheduling feature in SICURA to define repeat scheduled tasks for folders and endpoints.

Read Article
In this category

Reports

This article provides an overview of the report generation system in Sicura Console, including the two built-in report generators and the options available for exporting scan results in various formats.

Read Article
In this category

Profiles

This article explains how profiles are used in the Sicura console to scan and enforce compliance rules on systems.

Read Article
In this category

Prerequisites

This article provides instructions for installing and configuring PostgreSQL and creating a user and database for Sicura Console.

Read Article
In this category

Account Configuration

This article provides instructions on how to configure the administrator account for Sicura Console.

Read Article
In this category

Experimental

This article describes an experimental configuration option to improve simultaneous use of the console via request threading.

Read Article
In this category

Enforce Compliance

This article explains the steps required to set up automatic compliance enforcement with the Sicura Console.

Read Article
In this category

Database

This article provides instructions and information on configuring the database connection for the Sicura Console.

Read Article
In this category

Custom Profiles

This article explains how to use Sicura to export subsets of policies in order to customize what is enforced out of any given baseline policy.

Read Article
In this category

Collector

This article explains how to configure the Sicura Console Collector, including pruning report data and enabling legacy versions.

Read Article
Sicura Logo
To discover more about Sicura, head over to our website.
Visit website
Guides
Upgrades
Running Sicura Console
RPM Installation
Known Issues
Introduction
Installation
Commands
Container Installation
Categories
How To
Configuration
Sidebar
© 2023 Sicura
Changelog