Part I. Deployment Guide

Table of Contents

Manual pages
cockpit.conf — Cockpit configuration file
cockpit-ws — Cockpit web service
cockpit-tls — TLS proxy for Cockpit web service
cockpit-desktop — Cockpit Desktop integration
cockpit-bridge — Cockpit Host Bridge
SSL/TLS Usage
HTTPS Requirement
Certificates
TCP Port and Address
Cockpit systemd Socket
SELinux Port
Firewalld Port
Start up
Process exit
Boot start up
Cockpit Authentication
Directly logging into the primary server
Logging into a secondary server from the primary session
Password
Kerberos
Public key
SSH host keys
Directly logging into a secondary server without a primary session
Single Sign On
Server Requirements
Client Requirements
Certificate/smart card authentication
User certificate generation
Certificate mapping with FreeIPA
Certificate mapping with Microsoft Active Directory
Certificate mapping with Samba Active Directory
Cockpit web server configuration
Cockpit web server resource limits
Authentication to other services like sudo and ssh
Privileges and Permissions
Customizing Polkit Privileges