As we reach the end of September 2024, ThreadFix version 3.x on-premises has officially reached its End-of-Life. Therefore, there is no longer support or updates for this version of the product. We have fully transitioned our product and development teams to focus ThreadFix SaaS and migrating all customers over from the on-premises versions. Our Customer Success and Support teams are here to help you in migrating to ThreadFix SaaS and maximizing the value you see from this improved offering from Coalfire. This is the next phase of ThreadFix and our team is looking forward to continuing to support you on this journey.

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

https://www.coalfire.com/insights/resources/video/getting-started-with-threadfix-3-0

Error rendering macro 'viewpdf' : The viewfile macro is unable to locate the page.

Installation

Installation Checklist

Preparing your environment

System Recommendations

Prepare

External Database

How would Support for open-source components included in Coalfire’s Helm Charts, but not developed by Coalfire (e.g. Kong) work? Support for 3rd party applications/services is provided/ limited as they apply to TF

Install with Helm

Scaling ThreadFix Services
How would we handle future version upgrade? What is the process?

Upgrade & Migration

Getting Started with ThreadFix 3.X


How to handle cycling of certs/secrets (pod recycling)?1) Capacity sizing of clusters and other resources PVs, DBs, in consideration with Navy Federal needs

  1. capacity sizing of clusters and other resources PVs, DBs

  2. Recovery approach of persistent data for Stateful sets, if any node goes down or in upgrade / patching scenarios

    1. nothing to change, its transient data. Data stored in sql server, recommend to scale it up.

    2. if node goes down persistent volume should be fine and the node will remap onto a new node.

  3. Design of High availability setup of the application within the same region

  1. Any performance testing indicators required

  1. Integration endpoints to other applications and any networking changes required

  1. Enable Authentication / SSO functionality

  1. Any specific concerns or issues (known) of having ThreadFix deployed in a separate Namespace while other tools to be deployed in their own namespaces and in the same AKS cluster

  1. Product updates/ tool security patches update with helm charts and impact on the downtime

  1. Active-Passive application configuration (if any)

10) DB sync if active-passive model HA deployment model
11) Heartbeat kind of utilities support HA deployment (if any)
12) Custom extension APIs and Certificate Transparency, if we will use TLS 1.2/ 1.3

Table of Contents

  • No labels

[www.threadfix.it] | [www.coalfire.com]
Copyright © 2024 Coalfire. All rights reserved.

This Information Security Policy is CoalFire - Public: Distribution of this material is not limited.