Skip to content

Configuring Whitelist Host

This guide will help you configure the PRIVACERA_PORTAL_WHITELIST_HOST for your Privacera Portal. The PRIVACERA_PORTAL_WHITELIST_HOST is a configuration setting that specifies which hosts are allowed to access the Privacera Portal. This is an important security measure to ensure that only trusted hosts can interact with your portal. The values for the whitelist host are accepted in a comma-separated way.

Configuring Whitelist Host

  1. SSH into the instance where Privacera Manager is installed.

  2. Navigate to the config directory with the following command:

    Bash
    1
    cd ~/privacera/privacera-manager/config

  3. Copy the sample-vars if they are not already present in the custom-vars directory by running the following command:

    Bash
    1
    cp -n sample-vars/vars.portal.yml custom-vars/vars.portal.yml

  4. Update the PRIVACERA_PORTAL_WHITELIST_HOST and PRIVACERA_PORTAL_HOST_HEADER_PREVENTION_ENABLE:

    a. Open the vars.portal.yml file in a text editor.

    Bash
    1
    vi custom-vars/vars.portal.yml

    b. Add or update the following properties: The values for the whitelist host are accepted in a comma-separated way.

    YAML
    1
2
    PRIVACERA_PORTAL_WHITELIST_HOST: "your.whitelist.host1,your.whitelist.host2"
PRIVACERA_PORTAL_HOST_HEADER_PREVENTION_ENABLE: true

    c. Save and close the file.

Deploying the Service

  1. Generate the Helm charts. This step prepares the required Kubernetes configurations for deploying the Privacera services.

    Bash
    1
2
    # This step usually takes a few minutes.
./privacera-manager.sh setup

  2. Apply the Helm charts. This will deploy the Privacera services to your Kubernetes cluster.

    Bash
    1
2
    # This step usually takes a few minutes.
./pm_with_helm.sh upgrade

  3. Perform post-installation steps, such as generating the plugin tarball and updating Route 53 DNS. These steps are essential to finalize the deployment and ensure that all services are properly configured.

    Bash
    1
2
    # This step usually takes a few minutes.
./privacera-manager.sh post-install

By following these steps, you will have successfully configured the PRIVACERA_PORTAL_WHITELIST_HOST and deployed the Privacera services with the updated configuration.

Comments