| Table of Contents |
|---|
Pre Requisites
Ensure that the hardware configuration for CCE is compliant with the specification. Please refer to the https://seceon.atlassian.net/l/c/8zTLvZk1 to see the hardware specification.
You need VM or Baremetal, with the required hardware configuration with Seceon customized Rocky Linux. Please refer to the link for VM https://seceon.atlassian.net/l/c/41tR05g5 and https://seceon.atlassian.net/l/c/YG1y0941 for Baremetal to see the instructions.
Ensure that the required ports are opened for the CCE to work properly. Required ports that should be opened are mentioned in the link https://seceon.atlassian.net/l/c/XVw9Fw04.
Verify hardware specification
Once you have ensured that your machine, VM or Baremetal, with the required hardware configuration and Seceon customized Rocky Linux is up,
Cross-verify hardware specification before installation (on PUTTY) by: 1.
nproc (To check no of CPU Core, should be 4
...
cores and need to increase the Power
...
to 2 Only i.e 4 Core / 8 Core)
...
free -h (To check memory, should be 4GB )
...
df -h (To check the disk size, should be 250GB SSD )
...
otmdoc -p (To check IOPS of the Storage Disk)
Installation Steps
Please follow the steps below to install the CCE on it.
Step 1. If the server has internet connectivity, then login as a “ seceon “ seceon“ user on PUTTY and download the Seceon CCE Package using “ wget -c <cce link from dropbox> “. If the server do does not possess internet connectivity, then download the Seceon CCE Package and transfer via WinSCP and then login log in as a “seceon” user. Make sure that the package is downloaded at the “/home/seceon” path (the path can be determined by the “PWD” command).
Step 2. Please check the authenticity and integrity of the shared package by verifying the md5checksum by “ md5sum <downloaded seceon cce link >” and entering.
...
Step 4 Run the install by “ ./install.sh -c “.
Input the details it prompts for:
| Code Block | ||
|---|---|---|
| ||
[seceon@localhost ~]$ ./install.sh -c
Is CCE and APE co exist ? Please confirm (yes/no): no
Please provide tenant id for CCE installation :
[Enter the tenant ID applicable for your install, for an enterprise installation]
Do you want secure communication between CCE and APE using SSH tunnel ?
Please confirm (yes/no): yes/no
What is the Public IP Address of APE ?:
[Enter the IP of the APE over which the CCE can communicate to it]
Which Port you want to use[22] ?:
[Enter the port for the CCE to connect to the APE over SSH]
id_rsa
What is the Hostname of APE[Seceon-OTM] ? :
[Hit Enter]
You configured following information:
Tenant id for CCE installation : Your tenant ID
CCE and APE co exist : no/yes
APE IP Address : Your APE's IP address
APE Hostname : Seceon-OTM
Secure communication between CCE and APE using SSH tunnel : yes or no, as appl
SSH tunnel Port : Your configured port
Please confirm (yes/no):
CCE installation started...... |
As the installation, proceeds, you will be able to see the progress bar. Once this gets over, you will see a success message confirming the completion.
...
Command to be run as “seceon” user
1. $ otmdoc -m
Expected Output
2. ps -aef | grep tunnel
Expected output:
...
Note: Each of these services, represents a necessary CCE module running inside the docker container.
...
Navigate to “Log/Flow Collection Status” under Setting/System and check CCE IP will reflect there:
...
Need Help & Support?
Please send us an email at support@seceon.com, in case of any issues or questions.
...