JFrog Artifactory Training — Universal Artifact Repository & Binary Lifecycle Management

What Is JFrog Artifactory?

JFrog Artifactory is the leading universal artifact repository manager, supporting 30+ package types — Maven, Gradle, Docker, npm, PyPI, NuGet, Helm, Conan, and more — in a single platform. Artifactory manages the entire binary lifecycle: proxy remote repositories for caching and security, host local repositories for internal artifacts, and manage virtual repositories that unify multiple sources behind a single URL. Artifactory is the artifact backbone for organizations practicing DevSecOps, providing artifact provenance, vulnerability scanning (JFrog Xray), and distribution (JFrog Distribution).

Role in the DevOps Supply Chain

Artifactory sits at the center of the software supply chain: builds publish artifacts → Artifactory stores, indexes, and scans them → deployments pull artifacts from Artifactory. This provides: a single source of truth for all binaries, caching of external dependencies (faster builds, resilience against external outages), artifact promotion across environments (dev → staging → production), and integration with JFrog Xray for vulnerability scanning and license compliance.

Who Should Attend

DevOps engineers managing artifact repositories and build integration
Build/release engineers implementing artifact promotion strategies
Security engineers using JFrog Xray for vulnerability scanning
Teams evaluating Artifactory vs. Nexus

Learning Outcomes

Configure Artifactory repositories — local, remote, virtual — for Maven, Docker, npm, PyPI
Implement artifact promotion strategies (snapshot → staging → release)
Integrate Artifactory with Jenkins, GitHub Actions, Maven, Gradle, and Docker
Manage RBAC, permissions, and LDAP/SAML integration
Use JFrog CLI for automation and CI/CD pipeline integration
Implement cleanup policies and storage management

Course Modules

Artifactory Architecture — Repository types (local, remote, virtual). Package types. High availability. Storage.
Maven/Gradle Repositories — Snapshot vs. release repos. Layout policies. Build integration (settings.xml).
Docker Registry — Docker repo configuration. Image push/pull. Image promotion. Cleanup policies.
npm, PyPI, NuGet Repositories — npm registry. PyPI proxy. NuGet gallery. Virtual repos for unified access.
CI/CD Integration — Jenkins Artifactory plugin. JFrog CLI. GitHub Actions. Build info. Artifact promotion pipelines.
Security & Governance — JFrog Xray integration. Vulnerability scanning. License compliance. Build blockage on policy violation.
Administration — User management, RBAC, LDAP/SAML. Backup and disaster recovery. Monitoring. Cleanup policies.
Capstone: Artifact Supply Chain — Build a complete artifact pipeline: Maven → Artifactory → Xray scan → promotion → deployment.

Hands-on Labs (14 total)

Configure Maven, Docker, and npm repositories. Set up virtual repositories for unified access. Build a Jenkins pipeline that publishes to Artifactory and promotes artifacts. Configure Xray policies and block downloads of vulnerable artifacts. Implement cleanup policies for snapshot retention.

Enterprise Use Cases

Central artifact repository for 500+ engineers across 30+ package types with RBAC per team
Automated artifact promotion from dev → staging → production with Xray vulnerability gates
High-availability Artifactory deployment serving 50,000+ requests/day with 99.9% uptime

CURRICULUM

Covers: Jenkins, Bamboo, TeamCity, GitHub Actions, GitLab CI, Azure DevOps. Hands-on labs and real-world scenarios.

Covers: Apache Maven, Gradle, Apache Ant, MSBuild, Makefile, NAnt, Grunt. Hands-on labs and real-world scenarios.

Covers: Nexus, Artifactory, NuGet, Chocolatey, APT, YUM, RPM, Apache Archiva. Hands-on labs and real-world scenarios.

Covers: Jira, Zendesk. Hands-on labs and real-world scenarios.

Covers: Python, Bash, PowerShell, Groovy, Ruby, Perl. Hands-on labs and real-world scenarios.