1. Introduction
2. Installation
3. Upgrades
4. Running SIMP Console
5. Configuration - Accounts
6. Configuration - Collector
7. Configuration - Database
8. Configuration - Security
9. Configuration - Plugins
10. Sidebar - Administration
11. Sidebar - Infrastructure
12. Sidebar - Reports
13. Commands
14. Known Issues

Note: All of the following config options can be set in

      /etc/simp/simp-console.yaml

Security

Enable/Disable Remediation from the Console.

Set the following option to ‘false’ to disable the ‘remediate’ button system wide.

main.disable_enforcement: true

Setting the Hashing Algorithm for the Database Schema Engine

main.schema_engine.signature_hash: "SHA384"

Changing Cryptographic Settings

Some cryptographic settings used by the SIMP Console have configuration options specified in the config file to meet some policy requirements.

To set the hashing algorithm for the web server’s HMAC algorithm use the following setting:

main.rack-session.hmac: "SHA384"

Configuring Listen Address and Port

The address and port can be specified using the following parameters:

main.listen_ip: localhost

Note: In order for the SIMP Console to be discoverable externally (Both LAN and Internet) listen_ip should be 0.0.0.0

main.listen_port: 6468

Using Internal SSL Termination

First, either self-generate or purchase an SSL certificate and key.

Place them in /etc/ssl/certs and /etc/ssl/private respectively.

In your simp-console.yaml add the following configuration:

main.ssl.enabled: true
main.ssl.key: "/etc/ssl/private/mykey.key"
main.ssl.cert: "/etc/ssl/certs/mycert.pem"

# Enable SSL verify (Insecure if set to false)
main.ssl.verify: true