Virtual Host Setup: Step 2. Configure the Network

Document created by RSA Information Design and Development on Sep 20, 2017Last modified by RSA Information Design and Development on Feb 9, 2018
Version 4Show Document
  • View in full screen mode
 

Complete the following steps to configure the network of the Virtual Appliance.

Prerequisites

Make sure that you have:

  • Network IP addresses, netmask, and gateway IP addresses for the virtual host.
  • Network names for all virtual hosts, if you are creating a cluster.
  • DNS or host information.

Procedure

Perform the following steps for all virtual hosts to get them on your network.

Review Open Firewall Ports

Review the Network Architecture and Ports topic in the Deployment Guide in the NetWitness Suite help so that you can configure NetWitness Suite services and your firewalls.

Caution: Do not proceed with the installation until the ports on your firewall are configured.

There are two main tasks that you must complete in the order shown to install NetWitness Suite 10.6

Installation Tasks

Task 1 - Install 11.0.0.0 on the NetWitness Server (Node 0)

Task 2 - Install 11.0.0.0 on Other NetWitness Suite Components (Node x's)

Task 1- Install 11.0.0.0 on the NetWitness Server (Node 0)

On the host you have deployed for the NW Server (node 0), this task installs:

  • The 11.0.0.0 NW Server environmental platform.
  • The NW Server components (that is, Admin, Config, Orchestration, Service Management, and Security services).
  • A repository with the RPM files required to install the other functional components or services.
  1. Deploy your 11.0.0.0 environment:

    1. Provision hosts.
    2. Configure storage.
    3. Set up firewalls.
  2. Run the nwsetup-tui command. This initiates the Setup program and the EULA is displayed.

    Note: 1.) When you navigate through the Setup program prompts, use the down and up arrows to move among fields, use Tab key to move to and from commands (such as <Yes>, <No>, <OK>, and <Cancel>. Press Enter to register your command response and move to the next prompt.
    2.) The Setup program adopts the color scheme of the desktop or console you use access the host.
    3.) If you specify DNS servers during Setup program (nwsetup-tui) execution, they MUST be valid (valid in this context means valid during setup) and accessible for the nwsetup-tui to proceed. Any misconfigured DNS servers cause the Setup to fail. If you need to reach DNS server after setup that unreachable during setup, (for example, to relocate a host after setup that would have a different set of DNS Servers), see Task 1. Re-Configure DNS Servers Post 11.0.0.0 in Post Installation Tasks.
    If you do not specify DNS Servers during nwsetup-tui , you must select 1 The Local Repo (on the NW Server) in the NetWitness Suite Update Repository prompt in step 12 (the DNS servers are not defined so the system cannot access the external repo).

  3. Tab to Accept and press Enter.
    The "Is this the NW Server" prompt is displayed.

  4. Tab to Yes and press Enter.
    Choose No if you already installed 11.0.0.0 on the NW Server.

    Caution: If you choose the wrong host for the NW Server and complete the Setup, you must start the Setup Program (step 3) and complete all the subsequent steps to correct this error.

    The Install or Upgrade prompt is displayed.

  5. Press Enter (Install is selected by default).
    The "Host Name" prompt is displayed.
    -
  6. Press Enter if want to keep this name. If not edit the host name, Tab to OK, and press Enter to change it.
    The "Master Password prompt" is displayed.

    The following list of characters are supported for Master Password and Deployment Password:

    • Symbols : ! @ # % ^ , +
    • Numbers :0-9
    • Lowercase Characters : a-z
    • Uppercase Characters : A-Z

    No ambiguous characters are supported for Master Password and Deployment Password (for example: space { } [ ] ( ) / \ ' " ` ~ , ; : . < > -).

  7. Down arrow to Password and type it in, down arrow to Verify and retype the password, Tab to OK, and press Enter.
    The "Deployment Password" prompt is displayed.

  8. Down arrow to Password and type it in, down arrow to Verify and retype the password, Tab to OK, and press Enter.
  9. Conditional prompts:

    • If the Setup program finds a valid IP address for this host, the following prompt is displayed.

      Press Enter if you want to use this IP and avoid changing your network settings. Tab to Yes and press Enter If you want to change the IP configuration found on the host.
    • If you are using an SSH connection, the following warning is displayed.

      Press Enter to close warning prompt.

    If the Setup Program found an IP configuration and you chose to use it, the Update Repository prompt is displayed. Go to step 12 to and complete the installation.

    If no IP configuration was found or if you chose to change the existing IP configuration, the Network Configuration prompt is displayed.

  10. Tab to OK and press Enter to use Static IP.
    If you want to use DHCP, down arrow to 2 Use DHCP and press Enter.
    The Network Configuration prompt is displayed.
  11. Down arrow to the network interface you want, Tab to OK, and press Enter. If you do not want to continue, Tab to Exit
    The Static IP Configuration prompt is displayed.

  12.  Type the configuration values (using the down arrow to move from field to field), Tab to OK, and press Enter.
    If you do not complete all the required fields, an All fields are required error message is displayed (Primary DNS Server, Secondary DNS Server, and Local Domain Name fields are not required.)
    If you use the wrong syntax or character length for any of the fields, an Invalid field-name error message is displayed.

    Caution: If you select DNS Server, make sure that the DNS Server is correct and the host can access it before proceeding with the install.

    The Update Repository prompt is displayed.

  13. Press Enter to choose the Local Repo on the NW Server.
    If you want to use an external repo, down arrow to External Repo, Tab to OK, and press Enter.
    • If you select 1 The Local Repo (on the NW Server) the setup program makes sure that you have the appropriate media attached to the host (that is, a build stick or DVD) from which it can retrieve the Install or Update the hosts to NetWitness Suite 11.0.0.0. If the program cannot find the attached media, you receive the following prompt.
    • If you select 2 An External Repo (on an externally-managed server), the UI prompts you for a URL. The repositories give you access RSA updates and CentOS updates.

      Enter the base URL of the NetWitness Suite external repo and click OK. The Start Install prompt is displayed.

      The Disable firewall prompt is displayed.
  14. To:
    • Apply the standard firewall configuration, press Enter.
    • Disable the standard configuration, Tab to Yes and press Enter.
      The disable firewall configuration confirmation prompt is displayed.

      Tab to Yes and press Enter to confirm (press Enter to use standard firewall configuration).
      The Start Install prompt is displayed.

  15. Press Enter to install 11.0.0.0 on the NW Server.
    When "Installation complete" is displayed, you have installed the 11.0.0.0 NW Server on this host.

 

Task 2 - Install 11.0 on Other NetWitness SuiteComponents (Node x's)

For a functional service host (node x) this task:

  • Installs the 11.0.0.0 environmental platform.
  • Applies the 1 RPM files to the service from the NW Server Update Repository.
  1. Attach the build stick to the host.
    See the "RSA NetWitness® Suite Build Stick" for instructions on how to create a build stick.

  2. Install the CentOS7 as the host Operating System (OS) .
    See Appendix A. Install CentOS7 on the Host for instructions.
  3. Run the nwsetup-tui command to set up the host..
    This initiates the Setup program and the EULA is displayed.

    Note: If you specify DNS servers during Setup program (nwsetup-tui) execution, they MUST be valid (valid in this context means valid during setup) and accessible for the nwsetup-tui to proceed. Any misconfigured DNS servers cause the Setup to fail. If you need to reach DNS server after setup that unreachable during setup, (for example, to relocate a host after setup that would have a different set of DNS Servers), see Re-Configure DNS Servers Post 11.0.0.0.
    If you do not specify DNS Servers during nwsetup-tui , you must select 1 The Local Repo (on the NW Server) in the NetWitness Suite Update Repository prompt in step 12 (the DNS servers are not defined so the system cannot access the external repo).

  4. Tab to Accept and press Enter.
    The "Is this the NW Server" prompt is displayed.

  5. Press Enter (No).

    The Install or Upgrade prompt is displayed.

  6. Press Enter (Install is selected by default).
    The "Host Name" prompt is displayed.

  7. Press Enter if want to keep this name. If not edit the host name, Tab to OK, and press Enter to change it.

    Caution:
    Scenario 1
    After you upgrade the NW Server to 11.0.0.0, if you change the deploy_admin user password in the NetWitness Suite User Interface (ADMIN>Security >Select deploy-admin - Reset password),

    you must:
    1. SSH to the NW Server host.
    2. Run the (/opt/rsa/saTools/bin/set-deploy-admin-password script.
    3. Use the new password when upgrading any new non-NW Server hosts.

    Scenario 2
    After you upgrade the NW Server and upgrade any number of non-NW Server hosts to 11.0.0.0, if you change the deploy_admin user password in the NetWitness Suite User Interface, you must:

    1. Run (/opt/rsa/saTools/bin/set-deploy-admin-password script on all non-NW Server hosts in your deployment.
    2. Write down the password because you may need to refer to it later in the installation.

    The "Deployment Password" prompt is displayed.

    Note: You must use the same deployment password that you used when you upgraded the NW Server.

  8. Down arrow to Password and type it in, down arrow to Verify and retype the password, Tab to OK, and press Enter.
  9. Conditional prompts:

    • If the Setup program finds a valid IP address for this host, the following prompt is displayed.

      Press Enter if you want to use this IP and avoid changing your network settings. Tab to Yes and press Enter If you want to change the IP configuration found on the host.
    • If you are using an SSH connection, the following warning is displayed.

      Press Enter to close warning prompt.

    If the Setup Program found an IP configuration and you chose to use it, the Update Repository prompt is displayed. Go to step 11 to and complete the installation.

    If no IP configuration was found or If you chose to change the existing IP configuration, the Network Configuration prompt is displayed.

  10. Tab to OK and press Enter to use Static IP.
    If you want to use DHCP, down arrow to 2 Use DHCP and press Enter.
    The Network Configuration prompt is displayed.
  11. Down arrow to the network interface you want, Tab to OK, and press Enter. If you do not want to continue, Tab to Exit
    The Static IP Configuration prompt is displayed.

  12.  Type the configuration values (using the down arrow to move from field to field), Tab to OK, and press Enter.
    If you do not complete all the required fields, an All fields are required error message is a displayed (Primary DNS Server, Secondary DNS Server, and Local Domain Name fields aren’t required.)
    If you use the wrong syntax or character length for any of the fields, an Invalid field-name error message is displayed.

    Caution: If you select DNS Server, make sure that the DNS Server is correct and the host can access it before proceeding with the install.

    The Update Repository prompt is displayed.
    Select the same repo you selected when you upgraded the NW Server Host for all hosts.

  13. Press Enter to choose the Local Repo on the NW Server.
    If you want to use an external repo, down arrow to External Repo, Tab to OK, and pres Enter.
    • If you select 1 The Local Repo (on the NW Server) the setup program makes sure that you have the appropriate media attached to the host (that is, a build stick or DVD) from which it can retrieve the Install or Update the hosts to NetWitness Suite 11.0.0.0.
    • If you select 2 An External Repo (on an externally-managed server), the UI prompts you for a URL. The repositories give you access RSA updates and CentOS updates.

      Enter the base URL of the NetWitness Suite external repo and click OK.
      The NW Server IP Address prompt is displayed.
  14. Type the NW Server IP address. Tab to OK, and press Enter.
    The Disable firewall prompt is displayed.
  15. To:
    • Apply the standard firewall configuration, press Enter.
    • Disable the standard configuration, Tab to Yes and press Enter.
      The disable firewall configuration confirmation prompt is displayed.

      Tab to Yes and press Enter to confirm (press Enter to use standard firewall configuration).

    The Start Install prompt is displayed.

  16. Press Enter to install 11.0.0.0 on the NW Server.
    When "Installation complete" is displayed, you have a generic (x node) host with an operating system compatible with NetWitness Suite 11.0.0.0.
  17. Install a component service on the x node host.
    1. Click ADMIN > Hosts.
      The New Hosts dialog is displayed with the Hosts view grayed out in the background.

      Note: If the New Hosts dialog is not displayed, click Discover in the Hosts view toolbar.

    2. Select a non-NW Server host from the Hosts view.
    3. Click on the host in the New Hosts dialog and click Enable.
      The New Hosts dialog closes and the host is displayed in the Hosts view.
    4. Select that host (for example, Event Stream Analysis) and click
      The Install Services dialog is displayed.
    5. Select the appropriate service (for example, ESA Primary) and click Install.

    You have completed the installation of the non-NW Server host in NetWitness Suite.

  18. Complete steps 1 through 15 for the rest of the NetWitness Suite non-NW Server components.
You are here
Table of Contents > Install SA Virtual Host in Virtual Environment > Step 2. Configure the Network

Attachments

    Outcomes