Module installation manual

1- Installation of modules

1.1- Pre-installation requirements

1.1.1- On all UTMStack servers (Master and Probe)

  • Create in / etc the folder utmstack /
  • Copy to / etc / utmstack / the configuration file config.json.dist and rename it to config.json
  • Configure the necessary parameters in /etc/utmstack/config.json. See article 1.2.

1.1.2- On the servers to which the role of Master will be assigned

  • TCP port 9200 of the Master or the port currently being used for Elasticsearch must be accessible from the Probes.
  • TCP port 50051 of the Master must be accessible from the Probes.
  • TCP port 5432 of the Master must be accessible from the Probes.
  • PostgreSQL must be correctly configured to allow connections from Probes.
  • If the Master and the Probes communicate through the Internet, they must be linked by OpenVPN.
  • Copy the folder. aws to /root/.aws.

1.1.3- On the servers to which the role of Probe will be assigned

  • TCP port 23949 must be accessible from the agents and / or servers that send data to the Probe.
  • TCP port 5044 must be accessible from the agents and / or servers that send data to the Probe.
  • TCP port 1515 must be accessible from the agents and / or servers that send data to the Probe.
  • UDP port 1514 must be accessible from the agents and / or servers that send data to the Probe.
  • TCP port 514 must be accessible from the agents and / or servers that send data to the Probe.
  • UDP port 514 must be accessible from the agents and / or servers that send data to the Probe.

1.1.4- On the servers to which the role of Master and Probe will be assigned at the same time

  • The requirements of articles 1.1.1 to 1.1.3 are applied.

1.2- File reference /etc/utmstack/config.json

Parameter Description
postgresql.host PostgreSQL Server
postgresql.user PostgreSQL User
postgresql.password PostgreSQL password
postgresql.database PostgreSQL database
postgresql.port PostgreSQL port

1.3- Steps for the installation of the modules in the masters, Probes and installations all-in- one:

  • wget -O / usr / local / bin / stack https://updates.utmstack.com/assets/stack
  • chmod + x / usr / local / bin / stack
  • stack install [master | Probe | aio]

Note: Only use one mode from the list. Example: stack install master

2- Windows Agent

2.1- Pre-installation requirements

  • Compatible with Windows Server version 2012 R2 or higher.
  • The Windows agent must have Powershell version 5 or higher installed for correct operation.
  • In the case of Active Directory servers, the ports TCP / UDP 389, TCP 636, TCP 3268, and TCP 3269 must be accessible from the Probe. A service account must also be created with permissions to read the Active Directory data.

2.2 Installation

  • Download the agent from https://updates.utmstack.com/assets/windows-agent-latest.exe
  • Run and follow the installation wizard.
  • Access the configuration panel through a browser, using the desktop shortcut (Only necessary if the panel does not run automatically when the installation is completed)
  • Configure the IP of the Probe to which the agent will connect.