Chronograf is configured by passing command line options when starting the Chronograf service. However, it is also possible to set custom default configuration options in the filesystem so they don’t have to be passed in when starting Chronograf.
Starting the Chronograf service
Chronograf can be started using the default configuration options, but environment variables and command line options let you configure OAuth 2.0 authentication and other options based on your requirements.
sudo systemctl start chronograf [OPTIONS]
[OPTIONS] are any of the available Chronograf command line options, separated by spaces. See the Chronograf configuration options documentation for details about configuration options, including command line options and corresponding environment variables.
Setting custom default Chronograf config options
Custom default Chronograf configuration settings can be defined in
This file consists of key-value pairs – the key being the environment variable for each configuration option outlined in the Chronograf configuration options documentation and the value being the desired setting for that option.
HOST=0.0.0.0 PORT=8888 TLS_CERTIFICATE=/path/to/cert.pem TOKEN_SECRET=MySup3rS3cretT0k3n LOG_LEVEL=info
/etc/default/chronografis only created in Linux-based operating systems. It is neither created nor used in macOS.
Enabling security, multi-organization, and multi-user support
See Managing security for details on configuring authentication options for Chronograf using the JWT and OAuth 2.0 authentication protocols.
After you configure OAuth 2.0 authentication in Chronograf, you can use the multi-organization and multi-user support described in detail here: