CyberArk PSMP - PSM for SSH Installation - NETSEC

Latest

NETSEC

Learning, Sharing, Creating

Cybersecurity Memo

Wednesday, June 17, 2020

CyberArk PSMP - PSM for SSH Installation

This post is to present the installation steps for PSMP. 

Pre-requisites

1 Minimum installation CentOS7

 2 SSHD Service installed



Installation Steps


1 Copy the PSM for SSH servers software to the server which you downloaded from CyberArk Secure File Exchange (SFE) site.



unzip Privileged\ Session\ Manager\ SSH\ Proxy-Rls-v11.4.1.zip 



2 Create administrative users on the PSM for SSH servers machine for future administrative access.


useradd proxymng
passwd proxymng

 3 Edit the vault.ini file to set your vault ip

vi vault.ini
address = 192.168.2.21

4 Create a credential file user.cred for the built-in Administrator user to do installation.

chmod 755 CreateCredFile
./CreateCredFile user.cred


 5 Edit the PSMPparms file to define the installation path and accept the Software License Agreement

mv psmpparms.sample /var/tmp/psmpparms
vi /var/tmp/psmpparms
ParameterDescription
InstallationFolder
The full path of the installation folder that you created previously, and to where you copied the content of the PSM for SSH installation package.
InstallCyberArkSSHD
Whether or not the PSM for SSH installation installs the CyberArk SSHD service or is integrated with the original service.

The default value is Yes.

For details, see InstallCyberArkSSHD parameter.
AcceptCyberArkEULA
Whether or not you accept all the terms of the PSM for SSH end user license agreement. This agreement is on the installation package in the PSM installation package. Open this agreement and read it carefully, then set this parameter to Yes.
 
You will not be able to install the PSM for SSH until you accept all the terms of the license agreement
Hardening
Whether or not the PSM for SSH hardening settings will be applied.
CreateVaultEnvironment
Whether or not installation creates the PSM for SSH environment in the Vault.
By default, this parameter is set to Yes.
For a standard installation set to Yes.
For an installation in stages set to No.


 6 Install software RPM package


rpm -ivh CARKpsmp-11.04.1.7.x86_64.rpm
  •  -v – Displays additional information while installing.
  •  -h – Prints hash marks (#) as installation progresses.
PSM for SSH is installed in /etc/init.d/.

The installation runs automatically and does not require any interactive response from the user. When the installation is complete, the following message appears:

 "Installation process completed successfully."

 If there is any issue to troubleshooting, you can find the details at https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PAS%20INST/Installing-the-PSMP.htm
7 Test


System Check


System Health

New PSMP Connection Components






YouTube Video:



References

1 Before Installing PSM for SSH

2 Install PSM for SSH.












Read more

Subscribe via email

Author Image

About Netsec
Netsec - Learning, Sharing, Creating!

-
Tags:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)