1 of 1

Deploy on a VPS

Virtual Private Server - Remote internet-facing VM

This setup aims to expose CISO Assistant on a VPS while using automated Let's Encrypt for certificates management.

provision your VPS and make sure it has a public reachable IP
Setup your DNS zone to point to the IP of your VPS (A record). Give it sometime to propagate (depends on the registrar). It's better to start with this once you get the IP to give it enough time for propagation.
on the following I'm using ubuntu 24.04. So adjust the packages installation according to your OS
ssh to your server and perform the following commands:

#update ubuntu repository and OS
sudo apt update
sudo apt upgrade 

# install docker
sudo snap install docker

#install python
sudo apt install python3-pip python3.12-venv

#clone the repo
git clone https://github.com/intuitem/ciso-assistant-community.git

#go to the config generator
cd ciso-assistant-community
cd config

# setting up the python project and dependencies 
python3 -m venv .venv
source .venv/bin/activate
pip install -r requirements.txt

# run the interactive config generator
python make_config.py

Follow the instructions and make sure to do the following:

select VM/Remote
Internet facing - yes
Port to use: 443

It should look like something like this:

Keep track of the URL mentioned at the end of the config generator. You can review the generated yml file and adapt it if needed.

# switch to sudo. This can be avoided depending on your docker setup
sudo su 
./docker-compose.sh

Wait for the app to initialize and you will get a prompt to enter the first admin user and the password.

You can go back and update the docker-compose.yml according to your needs or restart the interactive guide to create a new one.

You can choose Traefik instead of Caddy using the config builder.

Clean up

cd config
# stop and remove containers
docker compose rm -fs
# delete the db and proxy config
git clean -fdx .