Try JFrog
Guides
Contact SupportTry JFrog
Start typing to search…
  1. jfrog
  2. For JFrog Administrators

Initial Configuration of Your Subscription

When you receive your JFrog subscription credentials, complete these prerequisite steps for a smooth and seamless experience. To perform the following procedures, log in to my.jfrog.com or your SaaS JPD.

Enable Cloud Communication

To enable communication between the JFrog Platform Cloud and your organization, you must allow the JFrog Platform Cloud's NAT IPs on your organization's network. This establishes egress traffic and ensures smooth data flow between the JFrog Platform Cloud and your organization.

For more information, see: What Are Artifactory Cloud NATed IPs?

Enable Direct Data Download

By default, JFrog Platform Cloud uses Direct Cloud Storage Download to serve artifacts. Clients download requested binaries directly from cloud storage. This eliminates Artifactory as a middleman, optimizes download performance, and supports scaling.

For JFrog Platform deployment on the Azure cloud, no special configuration is required.

For a JFrog Platform deployed on AWS or GCP clouds:

  • Ensure that all workloads and clients across your organization can download traffic directly from AWS S3 Bucket or Google Cloud Storage.
  • Ensure that all clients and workloads in your organization support redirection with a 302 Status Code. This is typically supported by most modern clients.

For more information, see What URLs/IPs Should I Add to an Allowlist for Direct Cloud Storage Download.

Refer to the following information from your cloud vendor:

Use Allowlists to Limit Access to Your Subscription

By default, JFrog Platform Cloud is accessible from the public internet. For enhanced security, we strongly recommended that you limit access to the IPs used by your organization's clients and workloads.

To secure your instance, configure IP CIDR allow lists using the MyJFrog Portal. Implement access restrictions so that only authorized IPs can reach the platform. For more information, see Configure the IP/CIDR Allowlist in MyJFrog.

Enable Log Collection

By default, cloud logs are not retained. We strongly recommend that you enable automated log collection for sites in your subscription as soon as possible. Set up log collection using one of these methods:

  • JFrog Cloud Log Collection saves logs to a dedicated Artifactory system repository. This feature is enabled by an API to each SaaS JPD site in your subscription.
  • JFrog Cloud Streaming (available with JFrog Cloud Enterprise+ subscription only) is a near-real-time log streaming service that allows customers to stream eligible logs from their JFrog Cloud instance to third-party cloud-based log analytics platforms.

Optional Features in Your Subscription

  • A CNAME (Canonical Name) is a DNS record that acts as an alias. You can define a custom domain name in the MyJFrog Portal that points to your Artifactory instance, making it easier to access and share. A recognizable URL enhances usability and service branding, and facilitates seamless integration with other tools in your development ecosystem. For more information, see Create a New Custom Domain Name in MyJFrog.
  • JFrog can use Virtual Private Cloud (VPC) technology to communicate through a secure tunnel, without exposing your traffic to the public internet. JFrog supports AWS PrivateLink, GCP Private Service Connect, and Azure Private Link. Configure VPC using the MyJFrog Portal. For more information, see Manage PrivateLink Connections in MyJFrog.

Updated 8 days ago