See you at TechNet Indo-Pacific 2025 | October 28-30, 2025, Honolulu, HI

Supported Platforms & Integrations

Cloud providers, infrastructure types, compliance frameworks, and key integrations.

See Comparisons Roadmap Supported Thunderdome Ready
Get Started

What’s New

Recent capabilities added to Forge

Terramate Orchestration (Phases 1–6)

Cross-project dependencies, approval gates, drift detection, and auto-remediation.

Golden Image Catalog (v1)

Packer builds with catalog browsing and Terraform variable injection.

OpenSCAP Remote Runner

Remote SCAP scans with STIG PDF/CSV and screenshot ZIP exports.

SCC Report Generation & Viewer

Generate SCC reports and view results with drilldowns directly in the UI.

Integrated HashiCorp Vault Installation

Guided install for Vault/OpenBao with secure defaults, unseal options, and secret engines.

Manual Remediation Task Linking

Link manual remediation and evidence to STIG findings and Forge tasks for full traceability and audits.

Cloud Providers

Validated via Terraform, Ansible, and native tooling.

AWS

  • Commercial & GovCloud
  • EC2, VPC, IAM, S3, RDS, EKS
  • Secrets Manager integration

Azure

  • Commercial & Azure Government
  • VM, VNet, ACR/AKS, Key Vault
  • Azure Key Vault integration

Google Cloud (GCP)

  • Compute Engine, VPC, GKE
  • Cloud SQL, Artifact Registry
  • Secret Manager integration

VMware

  • vSphere (vCenter, ESXi)
  • VCF (VMware Cloud Foundation)
  • Packer image build + Terraform deploy

Infrastructure Types

Operate in any environment with full data sovereignty.

On-Prem & Private Cloud

  • Air-gapped datacenters
  • PostgreSQL or zero-config SQLite
  • STIG-hardened containers

Kubernetes

  • OpenShift, RKE2, K8s on IL5/IL6
  • Non-root, read-only, FIPS-enabled
  • Network/pod security policies

VMware vSphere / VCF

  • Golden Image Catalog + Packer
  • Terraform provisioning workflows
  • Ansible configuration and validation

Edge & Hybrid

  • 512MB RAM minimum footprint
  • Disconnected operations
  • Multi-cloud/Hybrid orchestration

Compliance Frameworks

Scan, report, and remediate with policy packs and exports.

DoD STIG / SRG

OpenSCAP & DoD SCC driven scanning and reporting. STIG Viewer built-in with CKL/CSV/PDF exports.

RHEL/Rocky/Alma Ubuntu LTS Windows Server

CIS Benchmarks

Industry-standard hardening with curated policy packs and automatic remediation playbooks.

NIST 800-53

Control mappings and evidence capture for audits and ATO packages.

HIPAA & PCI-DSS

Templates and reporting to support regulated workloads and audits.

Integrations

First-class support for tools, identity, secrets, and ecosystem partners.

Infrastructure-as-Code & Runtimes

System Tools
  • Ansible
  • Terraform / OpenTofu
  • Terragrunt / Terramate / Terraformer
  • Packer / QEMU
  • Bash / PowerShell / Python
  • Pulumi (via CLI)

Identity & Access

  • LDAP / Active Directory
  • OIDC, SAML 2.0
  • MFA (TOTP)

Secrets & Key Management

  • HashiCorp Vault / OpenBao
  • AWS Secrets Manager
  • Azure Key Vault
  • GCP Secret Manager
  • Ansible Vault

SCM & Dev Platforms

  • GitHub
  • GitLab
  • Bitbucket

Hardware & Ecosystem Partners

  • GigaIO (composable infrastructure)
  • VMware (vSphere / VCF)
  • Red Hat UBI base images