Physical Host Installation: Installation Tasks

Document created by RSA Information Design and Development on Apr 10, 2019
Version 1Show Document
  • View in full screen mode
 

This topic contains the tasks you must complete to install NetWitness Platform 11.3 on physical hosts.

Complete the major installation tasks in the following order.

Task 1 - Install 11.3 on the NetWitness Server (NW Server) Host

Task 2 - Install 11.3 on All Other Component Hosts

Task 3 - (Optional) - Install Warm Standby NW Server Host

Task 1 - Install 11.3 on the NetWitness Server (NW Server) Host

Complete the following steps to install the 11.3 NW Server host.

  1. Create a base image on the host:
    1. Attach media (ISO) to the host.
      See the USB Build Stick Instructions for RSA NetWitness 11.3 and Later for more information.
      • Hypervisor installations - use the ISO image.

      • Physical media - use the ISO to create bootable flash drive media the Etcher® or another suitable imaging tool etch an Linux file system on the USB drive.Etcher is available at: https://etcher.io.
      • iDRAC installations - the virtual media type is:
        • Virtual Floppy for mapped flash drives.
        • Virtual CD for mapped optical media devices or ISO file.
    2. Log in to the host and reboot it.
    3. Select F11 (boot menu) during reboot to select a boot device and boot to the connected media.
      After some system checks during booting, the following Welcome to RSA NetWitness Platform 11.3 installation menu is displayed. The menu graphics will render differently if you use a physical USB flash media.

    4. Select Install RSA Netwitness Platform 11.3 (default selection) and press Enter.
      The Installation program runs and stops at the Enter (y/Y) to clear drives prompt that asks you to format the drives.

    5. Type Y to continue.
      The default action is No, so if you ignore the prompt and it will select No in 30 seconds and will not clear the drives. The Press enter to reboot prompt is displayed.

    6. Press Enter to reboot the host.
      The Installation program asks you to clear the drives again.

    7. Type N because you already cleared the drives.
      The Enter Q (Quit) or R (Reinstall) prompt is displayed.

    8. Type R to install the base image.
      The installation program displays the components as they are installed, which varies depending on the appliance, and reboots.

      Do not reboot the attached media (media that contains the ISO file, for example a build stick).

    9. Log in to the host with the root credentials.
  2. Run the nwsetup-tui command to set up the host.

    This initiates the nwsetup-tui (Setup program) and the EULA is displayed.

    1.) When you navigate through the Setup program prompts, use the down and up arrows to move among fields, use the Tab key to move to and from commands (such as <Yes>, <No>, <OK>, and <Cancel>. Press Enter to register your command response and move to the next prompt.
    2.) The Setup program adopts the color scheme of the desktop or console you use to access the host.
    3.) If you specify DNS servers during Setup program (nwsetup-tui) execution, they MUST be valid (valid in this context means valid during setup) and accessible for the nwsetup-tui to proceed. Any misconfigured DNS servers cause the Setup to fail. If you need to reach a DNS server after setup that is unreachable during setup, (for example, to relocate a host after setup that would have a different set of DNS Servers), see "(Optional) Task 1 - Re-Configure DNS Servers Post 11.3" in Post Installation Tasks.
    If you do not specify DNS Servers during setup (nwsetup-tui), you must select 1 The Local Repo (on the NW Server) in the NetWitness Platform Update Repository prompt in step 12 (the DNS servers are not defined so the system cannot access the external repo).

  3. Tab to Accept and press Enter.
    The Is this the host you want for your 11.3 NW Server prompt is displayed.

  4. Tab to Yes and press Enter.
    Choose No if you already installed 11.3 on the NW Server.

    If you choose the wrong host for the NW Server and complete the Setup, you must restart the Setup Program and complete (steps 2 -14) to correct this error.

    The Install or Upgrade prompt is displayed (Recover does not apply to the installation. It is for 11.3 Disaster Recovery.).

  5. Press Enter. Install (Fresh Install) is selected by default.
    The Host Name prompt is displayed.

    If you include "." in a host name, the host name must also include a valid domain name.

  6. Press Enter if want to keep this name. If not edit the host name, tab to OK, and press Enter to change it.
    The Master Password prompt is displayed.

    The following list of characters are supported for Master Password and Deployment Password:

    • Symbols : ! @ # % ^ +
    • Numbers : 0-9
    • Lowercase Characters : a-z
    • Uppercase Characters : A-Z

    No ambiguous characters are supported for Master Password and Deployment Password. For example:

    space { } [ ] ( ) / \ ' " ` ~ ; : .< > -

  7. Type in the Password, down arrow to Verify, retype the password, tab to OK, and press Enter.
    The Deployment Password prompt is displayed.

  8. Type in the Password, down arrow to Verify, retype the password, tab to OK, and press Enter.
    One of the following conditional prompts is displayed.
  9.  

    • If the Setup program finds a valid IP address for this host, the following prompt is displayed.

      Press Enter if you want to use this IP and avoid changing your network settings. Tab to Yes and press Enter if you want to change the IP configuration on the host.
    • If you are using an SSH connection, the following warning is displayed.

      If you connect directly from the host console, the following warning will not be displayed.


      Press Enter to close warning prompt.

    • If the Setup Program finds an IP configuration and you choose to use it, the Update Repository prompt is displayed. Go to step 12 to and complete the installation.
    • If the Setup Program did not find an IP configuration or if you choose to change the existing IP configuration, the Network Configuration prompt is displayed.
     
  10. Tab to OK and press Enter to use Static IP.
    If you want to use DHCP, down arrow to 2 Use DHCP and press Enter.
    The Network Configuration prompt is displayed.
  11. Down arrow to the network interface you want, tab to OK, and press Enter. If you do not want to continue, tab to Exit.
    The following Static IP Configuration prompt is displayed.
  12. Type the configuration values, tab to OK, and press Enter. If you do not complete all the required fields, an All fields are required error message is displayed (Secondary DNS Server and Local Domain Name fields are not required). If you use the wrong syntax or character length for any of the fields, an Invalid <field-name> error message is displayed.

    If you select DNS Server, make sure that the DNS Server is correct and the host can access it before proceeding with the installation.

    The Update Repository prompt is displayed.

  13. Press Enter to choose the Local Repo on the NW Server.
    If you want to use an external repo, down arrow to External Repo, tab to OK, and press Enter.
    • If you select 1 The Local Repo (on the NW Server) in the Setup program, make sure that you have the appropriate media attached to the host (media that contains the ISO file, for example a build stick) from which it can install NetWitness Platform 11.3.0.0. If the program cannot find the attached media, you receive the following prompt.
    • If you select 2 An External Repo (on an externally-managed server), the UI prompts you for a URL. The repositories give you access to RSA updates and CentOS updates. Refer to Appendix B. Create an External Repository for instructions on how to create this repo and its external repo URL so you can enter it in the following prompt.

      Enter the base URL of the NetWitness Platform external repo and click OK. The Start Install prompt is displayed.
      See "Set Up an External Repository with RSA and OS Updates" under "Hosts and Services Procedures" in the Hosts and Services Getting Started Guide for RSA NetWitness Platform 11.3 for instructions.
      The Disable firewall prompt is displayed.
  14. Tab to No (default), and press Enter to use the standard firewall configuration. Tab to Yes, and press Enter to disable the standard firewall configuration.
    If you select Yes, confirm your selection(select Yes again) or select No to use the standard firewall configuration.

    The Start Install/Upgrade prompt is displayed.

  15. Press Enter to install 11.3 on the NW Server.
    When Installation complete is displayed, you have installed the 11.3 NW Server on this host.

    Ignore the hash code errors similar to the errors shown in the following figure that are displayed when you initiate the nwsetup-tui command. Yum does not use MD5 for any security operations so they do not affect the system security.

Task 2 - Install 11.3 on Other Component Hosts

For a non-NW Server host this task:

  • Creates a base image.
  • Sets up the 11.3 non-NW Server host.

For ESA hosts:

  • Install your primary ESA host and install the ESA Primary service on it after you finish the Set Up program in the UI on the ADMIN > Hosts view.
  • (Conditional) If you have a secondary ESA host, install it and install the ESA Secondary service on it after you finish the Set Up program in the UI on the ADMIN > Hosts view.

Complete the following steps to install NetWitness Platform 11.3 on a non-NW Server host.

  1. Create a base image on the host:
    1. Attach media (media that contains the ISO file, for example a build stick) to the host.
      See the USB Build Stick Instructions for RSA NetWitness 11.3 and Later for more information.
      • Hypervisor installs - use the ISO image.

      • Physical media - use the ISO to create bootable flash drive media the Etcher® or another suitable imaging tool etch an Linux file system on the USB drive. Etcher is available at: https://etcher.io.
      • iDRAC installations - the virtual media type is:
        • Virtual Floppy for mapped flash drives.
        • Virtual CD for mapped optical media devices or ISO file.
    2. Log in to the host and reboot it.
    3. Select F11 (boot menu) during reboot to select a boot device and boot to the connected media.
      After some system checks during booting, the following Welcome to RSA NetWitness Platform 11.3 installation menu is displayed. The menu graphics will render differently if you use a physical USB flash media.

    4. Select Install RSA Netwitness Platform 11.3 (default selection) and press Enter.
      The Installation program runs and stops at the Enter (y/Y) to clear drives prompt that asks you to format the drives.
    5. Type Y to continue.
      The default action is No, so if you ignore the prompt and it will select No in 30 seconds and will not clear the drives.

      (Conditional) If the host is a RSA Hybrid physical host, the Series 5 - 6 Hybrid Image Selection Menu is displayed next.

      Tab to the Hybrid type you are installing (that is Endpoint Hybrid, Log Hybrid, or Network Hybrid - indicated by the underscore “_”), and press Enter.

    6. The Press enter to reboot prompt is displayed.

    7. Press Enter to reboot the host.
      The Installation program asks you to clear the drives again.

    8. Type N because you already cleared the drives.
      The Enter Q (Quit) or R (Reinstall) prompt is displayed.

    9. Type R to install the base image.
      The installation program displays the components as they are installed, which varies depending on the appliance, and reboots.

      Do not reboot the attached media (media that contains the ISO file, for example a build stick).

    1. Log in to the host with the root credentials.
  2. Run the nwsetup-tui command to set up the host..
    This initiates the nwsetup-tui (Setup program) and the EULA is displayed.

    If you specify DNS servers during Setup program (nwsetup-tui) execution, they MUST be valid (valid in this context means valid during setup) and accessible for the nwsetup-tui to proceed. Any misconfigured DNS servers cause the Setup to fail. If you need to reach a DNS server after setup that is unreachable during setup, (for example, to relocate a host after setup that would have a different set of DNS Servers), see "(Optional) Task 1 - Re-Configure DNS Servers Post 11.3" in Post Installation Tasks.
    If you do not specify DNS servers during nwsetup-tui, you must select 1 The Local Repo (on the NW Server) in the NetWitness Platform Update Repository prompt in step 11 (the DNS servers are not defined so the system cannot access the external repo).

  3. Tab to Accept and press Enter.
    The Is this the host you want for your 11.3 NW Server prompt is displayed.

    If you choose the wrong host for the NW Server and complete the installation, you must restart the step up program and complete (steps 2 - 14) of Task 1 - Install 11.3 on the NetWitness Server (NW Server) Host to correct this error.

  4. Press Enter (No).

    The Install or Upgrade prompt is displayed (Recover does not apply to the installation. It is for 11.3 Disaster Recovery).

  5. Press Enter. Install (Fresh Install) is selected by default.
    The Host Name prompt is displayed.

    If you include "." in a host name, the host name must also include a valid domain name.

  6. If want to keep this name, press Enter. If you want to change this name, edit it, tab to OK, and press Enter.

    If you change the deploy_admin user password in the NetWitness Platform User Interface (ADMIN > Security > Select deploy-admin - Reset password),

    you must:
    1. SSH to the NW Server host.
    2. Run the (/opt/rsa/saTools/bin/set-deploy-admin-password script.
    3. Use the new password when installing any new non-NW Server hosts.
    4. Run (/opt/rsa/saTools/bin/set-deploy-admin-password script on all non-NW Server hosts in your deployment.
    5. Write down the password because you may need to refer to it later in the installation.

    The Deployment Password prompt is displayed.

    You must use the same deployment password that you used when you installed the NW Server.

  7. Type in the Password, down arrow to Verify, retype the password, tab to OK, and press Enter.
  8.  

    • If the Setup program finds a valid IP address for this host, the following prompt is displayed.

      Press Enter if you want to use this IP and avoid changing your network settings. Tab to Yes and press Enter If you want to change the IP configuration found on the host.
    • If you are using an SSH connection, the following warning is displayed.

      If you connect directly from the host console, the following warning will not be displayed.


      Press Enter to close warning prompt.

    • If the Setup Program found an IP configuration and you chose to use it, the Update Repository prompt is displayed. Go to step 11 to and complete the installation.
    • If the Setup Program could not find an IP configuration or if you chose to change the existing IP configuration, the Network Configuration prompt is displayed.

     
  9. Tab to OK and press Enter to use a Static IP.
    If you want to use DHCP, down arrow to 2 Use DHCP and press Enter.
    The Network Configuration prompt is displayed.

  10. Down arrow to the network interface you want, tab to OK, and press Enter. If you do not want to continue, tab to Exit.
    The following Static IP Configuration prompt is displayed.

  11. Type the configuration values (using the down arrow to move from field to field), tab to OK, and press Enter.
    If you do not complete all the required fields, an All fields are required error message is displayed (Secondary DNS Server and Local Domain Name fields are not required).
    If you use the wrong syntax or character length for any of the fields, an Invalid <field-name> error message is displayed.

    If you select DNS Server, make sure that the DNS Server is correct and the host can access it before proceeding with the installation.

    The Update Repository prompt is displayed.
    Select the same repo you selected when you installed the NW Server Host for all hosts.

  12. Press Enter to choose the Local Repo on the NW Server.
    If you want to use an external repo, down arrow to External Repo, tab to OK, and press Enter.
    • If you select 1 The Local Repo (on the NW Server) in the setup program, make sure that you have the appropriate media attached to the host (media that contains the ISO file, for example a build stick) from which it can install NetWitness Platform 11.3.0.0.
    • If you select 2 An External Repo (a server managed externally - not on the NW Server), the UI prompts you for a URL. The repositories give you access to RSA updates and CentOS updates. Refer to Appendix B. Create an External Repository for instructions on how to create this repo and its external repo URL so you can enter it in the following prompt.

      Enter the base URL of the NetWitness Platform external repo, tab to OK and press Enter.
      The NW Server IP Address prompt is displayed.

  13. Type the NW Server IP address. Tab to OK and press Enter.
    The Disable Firewall prompt is displayed.
  14. Tab to No (default), and press Enter to use the standard firewall configuration. Tab to Yes, and press Enter to disable the standard firewall configuration.
    • If you select Yes, confirm your selection or No to use the standard firewall configuration.

      The Start Install prompt is displayed.

  15. Press Enter to install 11.3 on the non-NW Server.
    When Installation complete is displayed, you have a generic non-NW Server host with an operating system compatible with NetWitness Platform 11.3.
  16. Install a component service on the host.
    1. Log into NetWitness Platform and go to ADMIN > Hosts.
      The New Hosts dialog is displayed with the Hosts view grayed out in the background.

      If the New Hosts dialog is not displayed, click Discover in the Hosts view toolbar.

    2. Select the host in the New Hosts dialog and click Enable.
      The New Hosts dialog closes and the host is displayed in the Hosts view.
    3. Select that host in the Hosts view (for example, Event Stream Analysis) and click .
      The Install Services dialog is displayed.
    4. Select the appropriate host type (for example, ESA Primary) in Host Type and click Install.

    You have completed the installation of the non-NW Server host in NetWitness Platform.

  17. Complete steps 1 through 15 for the rest of the NetWitness Platform non-NW Server components.
  18. Complete licensing requirements for installed services.
    See the NetWitness Platform 11.3 Licensing Management Guide for more information. Go to the Master Table of Contents to find all NetWitness Platform Logs & Network 11.x documents.

 

Task 3 - (Optional) Install Warm Standby NW Server

Refer to "Warm Standby NW Server Host" under "Deployment Option Setup Procedures" in the Deployment Guide for RSA NetWitness Platform 11.3 for instructions on how to set up a Warm Standby NW Server.




 

You are here
Table of Contents > Installation Tasks

Attachments

    Outcomes