CLM
Automate certificate lifecycle management including issuance, discovery, renewal, and deployment, across public and private trust CAs. Assess, prioritize, and plan your migration to quantum-safe encryption with the Quantum Trust Hub add-on module.
PKI
Provision, govern and scale private trust certificates with a Post Quantum ready cloud based Enterprise PKI-as-a-Service.
Code Signing
Secure software, firmware, and containers with a comprehensive enterprise code signing solution.
SSH
Control SSH access and key rotation at scale with an SSH key lifecycle management solution.
KUBE
Unify DevOps and Security teams by managing certificates with a Kubernetes-native certificate lifecycle management solution.
DDI
Manage domain registration, renewal, decommissioning, and other security controls with an end-to-end domain lifecycle management solution.
ADC
Automate and orchestrate application delivery infrastructure at scale with an ADC lifecycle automation platform.
Platform
Manage policy and automation across all of the products and modules in the AVX ONE platform.
AppViewX Setup
Get detailed instructions for setting up AVX ONE in on-premises or SaaS deployments.
- AppViewX On-Prem Setup Guides
  - Install, Upgrade, and Maintenance Guide
    - Overview
    - Working with Prerequisites
    - Deploying the AppViewX Virtual Appliance
    - Interactive-Based Installation with Terminal UI
    - Whitelisting UI Access Hosts (On-Premise Deployments)
      AppViewX Web UI is typically accessed via Istio ingress (NodePort) and/or a Load Balancer URL. This topic explains how to whitelist the hostnames/IPs (URLs) that are allowed to access the AppViewX Web UI in on-premise deployments.
    - Monitoring and Maintaining AppViewX
    - External Certificate for Kubernetes
    - Uninstalling AppViewX
    - Troubleshooting
    - Dynamic API's Addition Script
    - Disable Kex Algorithm Guide
    - Migrating CentOS to Ubuntu/RHEL
    - Upgrading RHEL to v8.10/v9.4
    - Upgrading Ubuntu 20.04 to Ubuntu 22.04
    - Upgrading Ubuntu 22.04 to Ubuntu 24.04
    - OS Patching on Ubuntu for Multi-Node Environment
- AppViewX SaaS Setup Guides
- Managed Kubernetes
- OpenShift Deployment with ArgoCD
- MSP Portal User Guide
- AppViewX Windows Gateway Setup
- AppViewX on ServiceNow Guides
- AppViewX Supported Integrations
- Support
- Glossary
Release Artifacts
Review new features, fixes, and security advisories with official AppViewX release documentation.

Sudo Privilege Access for RHEL OS

AppViewX is installed on a Kubernetes engine. To install the underlying Kubernetes engine and other required dependencies, such as containerd, sudo access and executable permissions for the /tmp mount point are required.

Adding Commands in the Sudoers List

Below are the commands that must be added to the sudoers list to perform essential tasks such as installation, upgrade, Master Load Balancer configuration, prerequisite validation, and uninstallation of AppViewX. These commands are mandatory for any upgrade activities, and no alternative methods are supported.

Note: The package manager commands may vary depending on whether you are using RHEL/CentOS or Ubuntu. Please add them to the sudoers list accordingly.


S NO	Commands to add in sudoers list
1	mkdir (path: /usr/bin/mkdir)
2	cp
3	chmod
4	sed
5	systemctl
6	rm
7	kubeadm
8	chown
9	yum
10	rpm
11	bash
12	mv
13	tee
14	whoami
15	grep
16	mount
17	umount
18	sleep
19	cat
20	crictl
21	timedatectl
22	nc
23	istioctl
24	calicoctl
25	touch
26	ln
27	journalctl
28	true
29	pkill
30	tar
31	netstat
32	apt
33	apt-get
34	dpkg
35	openssl
36	fips-mode-setup
37	update-crypto-policies
38	vi
39	sh (path: /bin/sh)
40	modprobe (path: /usr/sbin/modprobe)
41	sysctl
42	swapoff
43	setenforce
44	tcpdump
45	hwclock
46	ifconfig
47	ip
48	rmmod
49	firewall-cmd
50	<ABSOLUTE_PATH>/k8s-kms-plugin/k8s-kms-plugin
51	<APPVIEWX_INSTALLED_PATH>/prereq-temp/validation
The commands with the asterix (*) do not require separate installation but should be included in the sudo privileges list. These packages are included as part of the installer. (Installation path: up to appviewx_kubernetes, for example, /home/appviewx/appviewx_kubernetes).

Apart from the above commands, Sudo user must be able to read/write/execute in the following directories:

/etc/ (read/write/)
/var/ (read/write/)
/tmp/ (read/write/execute)
/usr/ (read/write/)
/home/SSH_OTHER_USER (Other user is user-defined in /scripts/appviewx.conf)

AppViewX