IBM Guardium System Installation - NETSEC

Latest

NETSEC

Learning, Sharing, Creating

Cybersecurity Memo

Tuesday, May 19, 2020

IBM Guardium System Installation

This post is going to show how to install IBM Guardium system and how to install patches, updates, fixes, or DPS on  Central Manager and Collector. It will use Web GUI and Command line to complete this task.The IBM Guardium V10.1/V11 Software Appliance Technical Requirements can be found here: http://ibm.co/2gd5ZRq.  Additional installation detail can be found here: http://ibm.co/2h0exMw.




Installation


Setup Initial and Baisc Configuration:
https://www.ibm.com/support/knowledgecenter/SSMPHH_11.1.0/com.ibm.guardium.doc.install/install/step4_setup_initial_and_basic_configuration.html

  1. Load the Guardium ISO.
  2. When the system boots, you will be presented with the following screen.
    1. Choose "Standard Installation (non CM)" for the collectors
    2. Choose "Aggregator or Central Manager (CM)" for the Central Manager
    3. The installation process will take about 15 minutes.

  1. After the installation completes, login from the console as cli (password=guardium)
    1. Reset and make note of the cli password

  1. Perform the following configuration commands:
store network interface ip <ip_address>
store network interface mask <subnet_mask>
store network routes defaultroute <default_router_ip>
store system hostname <host_name>
store system domain <domain_name>
store system resolvers <DNS ip addresses>

  1. Confirm that you configured each setting correctly.
show network interface all
show network routes def
show system hostname
show system domain

  1. Enter "restart system" to reboot the VM
  1. Confirm that you can access the machine via ssh and web GUI (https://<IP>:8443)

Note: Virtual Appliance Installation Guide: 


show network interface all 
show network routes defaultroute
show network resolver all
show system hostname
show system domain
show system clock timezone
show system clock datetime
show system ntp all
show unit type

VM Clone Installation


The notes above were derived from these instructions (http://www-01.ibm.com/support/docview.wss?uid=swg21985657).  Feel free to review the link but please follow the instructions listed in the order below.
  1. On the existing collector VM, run "store network interface reset".  This instructs the collector to reset the NIC/MAC information upon reboot.
  2. Shutdown the collector by running "stop system".
  3. Clone the collector
  4. Bring up the new VM. If it asks if you moved or copied the VM, please answer with "copy", as this will enable the virtualization software to configure new parameters like MAC address for the clone.
  5. Log into the appliance as user CLI
  6. Run "show network macs". The MAC address should match the MAC address assigned by VMWare.  If this returns an empty string, the MAC address has not been properly setup for the clone.
  7. Set the IP address, defaultroute, hostname, etc. and resolver as necessary (see Appendix B)
    1. You may need to re-run the commands on the original VM because of the "store network interface reset" command.
  8. Restart the system by running "restart system"
  9. Log into the appliance again as user CLI
  10. Store the global ID by running store product gid <gid_value> 
    1. The Global ID can be any number, so long as it is unique. During the cloning process this unique number is necessary. Please obtain the Global IDs from your other appliances and arrive at a number that is unique for this clone.
  11. Verify the global ID by running show product gid
  12. Restart the system if requested


If changing backup location, change the following
- System backup
- archive (collectors)
- Results archive




Related Video:


References






Read more

Subscribe via email

Author Image

About Netsec
Netsec - Learning, Sharing, Creating!

-
Tags:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)