---
title: On-premise verification
slug: on-premise-verification
docTags: 
createdAt: 2024-05-13T22:06:56.105Z
---

You can use Custom verifiers to set the endpoints for enterprise or non-publicly accessible instances. This will allow TruffleHog to verify secrets against those domains.

Custom verifiers should be set at the root level of the `config.yaml` file such that they apply globally. Custom verifiers can be configured in your `config.yaml` file under the `customVerifiers` field.

We currently support the following verifiers:&#x20;

- Artifactory
- Bitbucket
- Confluence
- Gitlab
- Github
- Hashicorp Vault
- Jira

You can set the on-premise servers in the local config or on command line.

## Example config

Each verifier can include one or more endpoints.

:::CodeblockTabs
Basic auth

```yaml
trufflehogAddress: <instance-name>.api.c1.prod.trufflehog.org:8443
trufflehogScannerGroup: <scanner-group-name>
trufflehogScannerToken: thog-agent-<token>
...
customVerifiers:
  - name: gitlab
    endpoints:
    - https://example.gitlab.com
  - name: gitlab
    endpoints:
    - https://example.gitlab.com
# JFrog Artifactory (self-hosted) — access token (AKCp...)
  - name: ArtifactoryAccessToken
    endpoints:
      - https://artifactory.example.com

  # JFrog Artifactory (self-hosted) — reference token variant
  - name: ArtifactoryReferenceToken
    endpoints:
      - https://artifactory.example.com

  # HashiCorp Vault — AppRole auth (role_id + secret_id)
  - name: HashiCorpVaultAuth
    endpoints:
      - https://vault.example.com

  # Jira Data Center — Personal Access Token (on-prem only, NOT Jira Cloud)
  - name: JiraDataCenterPAT
    endpoints:
      - https://jira.example.com

  # Confluence Data Center — Personal Access Token (on-prem only)
  - name: ConfluenceDataCenter
    endpoints:
      - https://confluence.example.com

  # Bitbucket Data Center — Personal Access Token (BBDC- prefix, on-prem only)
  - name: BitbucketDataCenter
    endpoints:
      - https://bitbucket.example.com
...
```
:::

## Customizing via command line

You can also set custom verifiers via our open source TruffleHog tool.

In the following example, we scan the currrent directory in our filesystem and pass-in two custom verifier endpoints for Github and one custom verifier endpoint for Gitlab.

:::BlockQuote
trufflehog filesystem . --verifier github=example1.github.com,example2.github.com --verifier gitlab=example1.gitlab.com
:::