Support
Downloads
Contact Us
Sign In
Pivotal Platform
v2.8
v2.10
v2.9
v2.7
v2.6
v2.5
v2.4
v2.3
v2.2
v2.1
v2.0
v1.12
v1.11
v1.10
v1.9
v1.8
All docs
Downloads
Support
Contact Us
Sign In
Doc Index
Release Notes
Pivotal Application Service v2.8 Release Notes
Pivotal Application Service for Windows v2.8 Release Notes
Pivotal Isolation Segment v2.8 Release Notes
Installing
PAS on vSphere Requirements
Deploying PAS with NSX-T Networking
vSphere Virtual Disk Types
Configuring PAS
Quick Start PAS Configuration
Configuring File Storage for PAS
Configuring Load Balancing for PAS
Configuring SSL Termination for Pivotal Platform on vSphere
Installing Pivotal Isolation Segment
Getting Started with Small Footprint PAS
Upgrading
What Happens During PAS Upgrades
Configuring PAS for Upgrades
Upgrade Load Example: Pivotal Web Services
cf push Availability During PAS Upgrades
Concepts
PAS Concepts
PAS Overview
Services Overview
Orgs, Spaces, and Roles
Orgs, Spaces, Roles, and Permissions
Planning PAS Orgs and Spaces
High Availability
High Availability in PAS
How PAS Maintains High Availability
How PAS Manages Apps
How PAS Manages Apps
How Apps Are Staged
App Container Lifecycle
How Diego Balances App Processes
PAS Runtime Components
PAS Components
Diego Components and Architecture
PAS Routing Architecture
Cloud Controller
Cloud Controller Blobstore
User Account and Authentication (UAA) Server
Garden
GrootFS Disk Usage
HTTP Routing
CredHub
Administering
Administering PAS
Managing the Runtime
Managing the Runtime
Identifying the API Endpoint for Your PAS Instance
Creating and Modifying Quota Plans
Stopping and Starting Virtual Machines
Scaling PAS
Scaling Cloud Controller
Configuring Diego Cell Disk Cleanup Scheduling
Examining GrootFS Disk Usage
Using Metadata
Custom-Branding Apps Manager
Enabling Developers
Using Docker in PAS
Using Docker Registries
Enabling Volume Services
Managing Service Brokers
Managing Access to Service Plans
Dashboard Single Sign-On
Using Feature Flags
Managing Custom Buildpacks
Supporting WebSockets
Managing Internal MySQL for PAS
Scaling Internal MySQL
Running mysql-diag
Recovering From MySQL Cluster Downtime
User Accounts and Communications
User Accounts and Communications
PAS User Types
Creating and Managing Users with the cf CLI
Creating and Managing Users with the UAA CLI (UAAC)
Creating New PAS User Accounts
Configuring UAA Password Policy
UAA
User Account and Authentication
UAA Overview
UAA Concepts
Identity Providers in UAA
UAA Performance Metrics
Adding Existing SAML or LDAP Users to a Pivotal Platform Deployment
Configuring App Security Groups for Email Notifications
Getting Started with the Notifications Service
Configuring Authentication and Enterprise SSO for PAS
Configuring Authentication and Enterprise SSO for PAS
Configuring CA as an Identity Provider
Configuring PingFederate as an Identity Provider
Traffic and Security
Front End
Securing Traffic into PAS
Configuring SSL/TLS Termination at HAProxy
Securing System and App Endpoints
Configuring SSH Access for PAS
App SSH Components and Processes
Configuring Front End Idle Timeout for Gorouter and HAProxy
Load Balancing and Routing
Using Your Own Load Balancer
Enabling and Configuring TCP Routing
Enabling IPv6 for Hosted Apps
Configuring Proxy Settings for All Apps
Switching App Domains
Configuring Load Balancer Health Checks for PAS Routers
Configuring Route Service Lookup
Internal App Security
Container Security
Container-to-Container Networking
App Security Groups
Restricting App Access to Internal PAS Components
Certificates and Credentials
Rotating Runtime CredHub Encryption Keys
Rotating the Cloud Controller Database Encryption Key
Securing Service Instance Credentials with Runtime CredHub
Providing a Certificate for Your TLS Termination Point
Trusted System Certificates
Observability
Overview of Logging and Metrics
Logging
Configuring Logging in PAS
App Logging in PAS
Security Event Logging
Customizing Platform Log Forwarding
Monitoring
Monitoring PAS
Selecting and Configuring a Monitoring System
Identifying PAS Jobs Using vCenter
App Metrics
Container Metrics
Metric Registrar and Custom App Metrics
Using Metric Registrar
Identifying the Source Deployment of Metrics
Performance and Scaling
Key Performance Indicators
Key Capacity Scaling Indicators
Reporting
Reporting App, Task, and Service Instance Usage
Reporting Instance Usage with Apps Manager
Loggregator Architecture
Loggregator Architecture
Loggregator Guide for PAS Operators
Deploying a Nozzle to the Loggregator Firehose
Installing the Loggregator Plugin for cf CLI
Log and Metric Agent Architecture (Beta)
Pivotal Isolation Segment
Isolation Segments
Managing Isolation Segments
Routing for Isolation Segments
PASW
Overview
Concepts
Product Architecture
Installing
Installing and Configuring PASW
Downloading or Creating Windows Stemcells
Creating a Windows Stemcell for vSphere Using stembuild
Windows Diego Cells in Isolation Segments
Upgrading
Upgrading PASW and Windows Stemcells
Migrating Apps to PASW
Using
Deploying .NET Apps
Using SMB Volumes in .NET Apps
Tips for .NET Framework Developers
Troubleshooting
Troubleshooting Windows Diego Cells
Using Apps Manager
Using Apps Manager
Getting Started with Apps Manager
Logging In to Apps Manager
Managing Orgs and Spaces Using Apps Manager
Managing User Roles with Apps Manager
Managing Apps and Service Instances Using Apps Manager
Scaling an App Using App Autoscaler
About App Autoscaler
Scaling an App Using App Autoscaler
Tutorial: Scaling a Spring App on a Custom Metric
Using the App Autoscaler CLI
Viewing ASGs in Apps Manager
Configuring Spring Boot Actuator Endpoints for Apps Manager
Using Spring Boot Actuators with Apps Manager
Configuring Multi-Foundation Support in Apps Manager
Using the Cloud Foundry Command Line Interface (cf CLI)
Installing the cf CLI
Upgrading to cf CLI v7
Getting Started with the cf CLI
Using the cf CLI with a Proxy Server
Using the cf CLI with a Self-Signed Certificate
Using cf CLI Plugins
Developing cf CLI Plugins
cf CLI v6 Reference Guide
Using Experimental cf CLI Commands
Developer Guide
Developer Guide
Considerations for Designing and Running an App in the Cloud
Pivotal Dev
cf push
Pushing an App
Deploying with App Manifests
App Manifest Attribute Reference
Deploying an App with Docker
Deploying a Large App
Starting, Restarting, and Restaging Apps
Pushing an App with Multiple Processes
Running cf push Sub-Step Commands
Rolling App Deployments
Pushing Apps with Sidecar Processes
Using Blue-Green Deployment to Reduce Downtime and Risk
Troubleshooting App Deployment and Health
Routes and Domains
Configuring Routes and Domains
Configuring PAS to Route Traffic to Apps on Custom Ports
Managing Apps with the cf CLI
Running Tasks
Scaling an App Using cf scale
Using App Health Checks
App Revisions
Configuring Container-to-Container Networking
Managing Services
Services Overview
Managing Service Instances with the cf CLI
Sharing Service Instances
Delivering Service Credentials to an App
Managing Service Keys
Managing App Requests with Route Services
Configuring Play Framework Service Connections
Using an External File System (Volume Services)
User-Provided Service Instances
Streaming App Logs
Streaming App Logs to Log Management Services
Service-Specific Instructions for Streaming App Logs
Streaming App Logs to Splunk
Streaming App Logs with Fluentd
Streaming App Logs to Azure OMS Log Analytics
SSH for Apps and Services
App SSH Overview
Accessing Apps with SSH
Accessing Services with SSH
PAS Environment Variables
Cloud Controller API Client Libraries
Buildpacks
Buildpacks
Using Buildpacks
Using Buildpacks
How Buildpacks Work
Stack Association
Pushing an App with Multiple Buildpacks
Using a Proxy Server
Supported Binary Dependencies
Production Server Configuration
System Buildpacks
System Buildpacks
Binary Buildpack
Go Buildpack
HWC (.NET Framework)
HWC Buildpack
Creating an Extension Buildpack for .NET Apps
Tips for .NET Framework Developers
Java
Java Buildpack
Tips for Java Developers
Getting Started Deploying Apps
Getting Started Deploying Java Apps
Getting Started Deploying Grails Apps
Getting Started Deploying Ratpack Apps
Getting Started Deploying Spring Apps
Configuring Service Connections
Configuring Service Connections
Configuring Service Connections for Grails
Configuring Service Connections for Play Framework
Configuring Service Connections for Spring
Cloud Foundry Java Client Library
.NET Core Buildpack
NGINX Buildpack
Node.js
Node.js Buildpack
Tips for Node.js Developers
Environment Variables Defined by the Node Buildpack
Configuring Service Connections for Node.js
PHP
PHP Buildpack
Tips for PHP Developers
Getting Started Deploying PHP Apps
PHP Buildpack Configuration
Composer
Sessions
New Relic
Python Buildpack
R Buildpack
Ruby
Ruby Buildpack
Tips for Ruby Developers
Getting Started Deploying Ruby Apps
Getting Started Deploying Ruby Apps
Getting Started Deploying Ruby on Rails Apps
Configuring Rake Tasks for Deployed Apps
Environment Variables Defined by the Ruby Buildpack
Configuring Service Connections for Ruby
Support for Windows Gemfiles
Staticfile Buildpack
Customizing and Developing Buildpacks
Customizing and Developing Buildpacks
Creating Custom Buildpacks
Packaging Dependencies for Offline Buildpacks
Merging from Upstream Buildpacks
Upgrading Dependency Versions
Using CI for Buildpacks
Using CI for Buildpacks
Releasing a New Buildpack Version
Updating Buildpack-Related Gems
Service Brokers
Services
Example Service Brokers
Binding Credentials
Enabling Service Instance Sharing
App Log Streaming
Route Services
Supporting Multiple PAS Instances
Security and Compliance
PAS Security
General Data Protection Regulation and Pivotal Application Service
Troubleshooting and Diagnostics
Diagnosing Deployment Problems
Troubleshooting Slow Requests in PAS
Troubleshooting TCP Routing
Troubleshooting Router Error Responses
Troubleshooting Pivotal Platform on GCP
Checking Pivotal Platform State after a Power Failure on vSphere
Ops Manager Documentation
TAS for Kubernetes Documentation
Tanzu Kubernetes Grid Documentation
Tanzu Kubernetes Grid Integrated Edition Documentation
Security and Networking
Page last updated:
The following topics provide information about security and networking:
PAS Security
Container Security
Container-to-Container Networking
Orgs, Spaces, Roles, and Permissions
App Security Groups
App SSH Components and Processes
Create a pull request or raise an issue on the source for this page in GitHub
Release Notes
Download from Tanzu Network
Knowledge Base