Contents x
    Enterprise TrustHub
    • 12 Nov 2024
    • 2 Minutes to read
    • Print
    • Dark
      Light
    • PDF
    Contents

    Enterprise TrustHub

    • Updated on 12 Nov 2024
    • 2 Minutes to read
    • Print
    • Dark
      Light
    • PDF
    Article summary

    About this Article
    This article provides information regarding Enterprise TrustHub. 


    Virsec Enterprise TrustHub is the first party code and any customized third-party code with their checksum values that are inherently trusted. It is a customer-specific repository with exclusive access for that customer/tenant. To add executables to the Enterprise TrustHub, ensure that the repository information is provided in CMS.

    NOTE
    Ensure that Auto-Allowlist option is selected in the Host Profile so that the discovered packages are allowed to execute on workloads.


    Workflow

    The diagram below depicts how the Enterprise TrustHub is refreshed:

    EnterpriseTrustHubWorkflow

    1. From CMS, a user can add repository information
    2. Packages are then retrieved from these repos by CMS
    3. A third-party unpacker service is utilized to unpack these packages
    4. These packages are then included in the Enterprise TrustHub, exclusive for a customer


    Trusted Repositories

    The below workflow shows how the Trusted Repositories function:

    IntegratingWIthTrustHub


    Trusted Repositories can be managed through CMS:

    1. Navigate to TrustHub > Trusted Repositories to view the list of repositoriesEnterpriseTrustRepoListCMS
    2. To add a new repository, follow the steps below:
      1. Click AddEnterpriseTrustRepo1
      2. Provide the below information:
        1. Name - Provide a suitable name
        2. URL - Provide the repo URL path that hosts a list of executables or a URL for a particular executable. If the path is for a directory in a repo, all the executables present in that directory and its sub-directories are scanned
        3. Credentials - Provide valid username/password or access token
        4. (Optional) Options - The connection to the repo is established using curl command. The parameters requited for this curl command can be provided here
        5. (Optional) Description - Provide a suitable description
      3. Click Save to just add the repo OR Scan and Save to add and initiate a scan on the repo for available executables. The newly added repository is now listed on the Trusted Repositories pageAddNewRepository
    3. To initiate a scan, select the required repository and click ScanOnce the scan is completed, the packages discovered are visible in the Enterprise TrustHub pageEnterpriseTrustRepoScan
    4. To edit an existing repository, follow the steps below:
      1. Select the required repository and click Edit
      2. Modify the information as required. Click Save or Scan and Save EnterpriseTrustRepoEdit
    5. To delete an existing repository, follow the steps below:
      1. Select the required repository and click Delete
      2. Click YES on the confirmation screen. The repository is no longer listed in the pageEnterpriseTrustRepoDelete


    Enterprise TrustHub

    To view all the executables in the Enterprise TrustHub loaded from the added trusted repositories, follow the steps below:

    1. Navigate to TrustHub > Trusted Packages > Enterprise
    2. All the executables present in these repositories are visible in the list after the repository scanEnterpriseTrustRepoList
    3. To view more information about a package, click on the package nameEnterpriseTrustRepoList2
    4. All the files included as part of the package are listed along with their checksum and created date


    Was this article helpful?
    What's Next