Skip to main content

NTA with Kong API Gateway in Linux

This document is for Invicti Platform

This feature is available with Invicti API Security Standalone or Bundle.

In the Linux installation method, Kong Gateway (KGW) is deployed on a single host or server, without the need for containerization or orchestration platforms. This setup is ideal for simpler environments, such as small production systems, or when minimal overhead is desired for direct management of the Kong instance. In this scenario, NTA runs in a separate Docker container alongside Kong Gateway, allowing for easy integration while keeping the Kong deployment lightweight and straightforward.

This document navigates you through the configuration process of Kong into your development environment.

Prerequisites

  • Kong API Gateway: Ensure Kong API Gateway v 3.0 or newer is installed and configured.

Step 1: Download nta.zip and copy the plugin

  1. Download the KongPluginLinux.zip and extract its contents. Copy the executable in the file.

  2. Copy the plugin to the Kong plugins directory using the following command:

cp ./nta /usr/local/kong/plugins/
🔧 Plugin directory location

The default Kong plugins directory is /usr/local/kong/plugins/. If Kong is installed in a different location or configured with a custom plugin directory, adjust the path accordingly.

  1. Verify that you copied the plugin successfully:
ls -l /usr/local/kong/plugins/nta

Step 2: Set environment variables

After copying the plugin to the Kong plugins directory, set the required environment variables to enable it. You can add these to your Kong configuration file or set them in your system environment.

  1. It is recommended to run bash, first.
export KONG_PLUGINS="bundled,nta"
export KONG_PLUGINSERVER_NAMES="nta"
export KONG_PLUGINSERVER_NTA_START_CMD="/usr/local/kong/plugins/nta"
export KONG_PLUGINSERVER_NTA_QUERY_CMD="/usr/local/kong/plugins/nta -dump"

  1. For the first command—export KONG_PLUGINS="bundled,nta"—be sure to include all your existing plugins in the list. Since the current plugins you have are unknown, you need to modify the command to include them all, separated by commas, and then add nta to the list.

  2. The remaining commands are to be used as they are.

🔧 Persistent environment variables

To make these environment variables persistent across system reboots, add them to your shell profile file (.bashrc, .profile, or .bash_profile) or your Kong configuration file.

Step 3: Restart kong

To apply the changes, restart Kong using one of the following commands:

kong reload

or

kong restart

Need help?

Invicti Support team is ready to provide you with technical help. Go to Help Center

Was this page useful?