Self Hosted Client Setup
- 09 Jan 2025
- 2 Minutes to read
- Print
- DarkLight
- PDF
Self Hosted Client Setup
- Updated on 09 Jan 2025
- 2 Minutes to read
- Print
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback
See Clarity Self Hosted for details on the requirements for the virtual machine and database.
Clarity Security Appliance
Clarity will provide you with an .ova (let us know if you need a special format) for creating the Virtual Machine within your infrastructure. This will be preconfigured with the following options based on your requirements:
SSH Enabled or Disabled
Local or AWS Cloudwatch logs
Email through AWS or ready to configure with local SMTP
Client Setup Script
Once you receive the virtual disk and spin up the virtual machine, we will need to configure the virtual machine to connect to the database. Either connect to the console via your hypervisor console or SSH into the machine if you requested SSH be enabled out of the box.
Networking
You will need networking working before you can run the client setup script. If you have DHCP enabled on the virtual machine network, this should happen automatically.
If you need to used a static IP address, you will need to manually configure the network settings in the virtual machine.
The Client Setup Script handles the following:
Change Root Password (Required)
Configure Database Connection (Required)
Configure local App URL (Required, Ex: https://self-host.claritysecurity.io)
Configure SMTP (Optional, you can also opt for Clarity to handle email distribution)
Next we will run the client setup script in which you will need to provide following values, Clarity will provide you with the randomly generated password for your appliance.
Navigate to /var/www/html and execute the clientsetup.sh script. It will prompt you for the information below.
Value | Description | Example |
|---|---|---|
Root Password | Determine a replacement for the randomly generated password provided by Clarity. | |
DB_HOST | Hostname for the database (or IP address) | mysql-clarity.claritysecurity.io |
DB_USERNAME | Username for your service user | clarity_database_user |
DB_PASSWORD | Password for your service user | |
DB_PORT | Port for your MySQL instance traffic | 3306 |
DB_DATABASE | The Name of the database you created for Clarity | clarity_security |
APP_URL | Full URL for the web interface for Clarity. | https://self-host.claritysecurity.io |
MAIL_HOST | The host for your internal mail server. | smtp.claritysecurity.io (this example is not a valid option) If you would like Clarity to handle email, let your support team know. |
MAIL_PORT | The port for your internal mail server. | 587 or 25 (default: 587) |
MAIL_USERNAME | The username for the email service user. | smtp_username |
MAIL_PASSWORD | The password for the email service user. | |
MAIL_ENCRYPTION | Protocol for Mail Encryption | tls or null |
Passwords
DB_PASSWORD and MAIL_PASSWORD cannot contain the character “#”.
Reset the local Admin password
Once again you will need to log into (SSH preferred) into your Clarity appliance to change the password for the admin account for the UI.
Below is the sequence of commands to overwrite the existing password for your webUI admin user.
cd /var/www/html/
php artisan tinker
#(once in tinker)
$user = User::find(1);
$user->password = Hash::make('YOUR_PASSWORD_HERE');
$user->save();
exitBelow is an example of a successful password reset using the commands above:
Special Notes
Your clarity appliance has 2 local password that you will want to store securely:
Root Account: The root account of the Virtual Machine appliance
User: root, Password: Secure password of your choosing
Local Admin: The Local Admin account for your Clarity webUI
User: admin@claritysecurity.io, Password: Secure password of your choosing
Need help?
If you have any problems, contact your customer success team. You can also get in touch with our general support via email, open a support ticket. Our general support team is available Monday - Friday from 8:00 AM - 6:30 PM CST.
Was this article helpful?
