Title
Create new category
Edit page index title
Edit category
Edit link
Linux Offline Installation
This guide provides step-by-step instructions for installing MetaDefender Software Supply Chain and its dependencies on machines with limited or no internet connectivity.
A machine with internet access is required to download the dependencies manually and transfer them to the offline machine.
Installing Binary Packages
You will need to download and install the binary packages(found in Installation details) for your respective operating system:
Debian/Ubuntu
RedHat/CentOS
Note: For detailed instructions, refer to the guide for Debian/Ubuntu or CentOS/RHEL
Installing Docker and Docker Compose
To be able to install the dependencies offline, you need a machine connected to the internet to download the required packages. Later, the packages will be copied to the offline machine.
To download the dependencies, follow the official guide for Docker Engine and Docker Compose
The compose plugin for docker can be installed only manually when in an offline environment using the following commands (also available in the official instructions in the link above):
For RedHat based operating systems:
Since RedHat officially supports Podman as a container engine, skip Docker installation and follow our guide on Podman Configuration.
Installing MetaDefender Software Supply Chain package
After the prerequisites above have been set up, you can run the MetaDefender Software Supply Chain installer to setup the compose files and the mdssc command line.
Debian/Ubuntu
RedHat/CentOS
Pulling the Docker Images
In offline environments, all required Docker images must be pulled on an internet-connected machine and transferred to the target system.
Required Images
MetaDefender Software Supply Chain requires:
MDSSC service images
OPSWAT platform services
Third-party infrastructure images (database, cache, messaging)
All images are versioned per release.
Use the following placeholders:
<MDSSC_VERSION>— e.g.3.1.1<PLATFORM_VERSION>— e.g.platform-2.x
Step 1: Pull Images (Online Machine)
Can be tried on the offline machine also with the Docker whitelist: Allowlist | Docker Docs
Step 2: Export Images
Step 3: Load Images (Offline Machine)
Alternative (Testing): Load images using the offline toolkit
This method is currently in testing. Use it only if instructed by OPSWAT support or if the manual pull/export flow is not feasible.
Download the offline toolkit on an internet-connected machine and transfer it to the offline machine:
Download it using the following command:
Then extract it and load the images:
This alternative requires unzip to be installed on the machine where you extract the toolkit.
Podman Configuration
MDSSC can also run using the Podman container engine instead of the default Docker one on RHEL operating systems. Podman, podman-docker and docker-compose need to be installed and running before installing MDSSC.
After the installation is complete, MDSSC needs to be configured to skip the checks for the default Docker engine. This is done by setting SKIP_DOCKER_CHECKS=yes in the /etc/mdssc/customer.env file. The following commands can be used to install Podman and MDSSC on RHEL.
Starting MetaDefender Software Supply Chain
Finally, MDSSC can be started using the regular startup command:
Next Steps
Once the MetaDefender Software Supply Chain services are running, a few additional steps are required before the system is fully operational:
Activate your license You must upload and apply a valid license to enable functionality. For details, see offline license activation section from License Page.
Configure a Scan Pool At least one scan instance is required to analyze source code, containers or artifacts. For details, see Scan Pools.