ConnectSecure V4 On-Premise Setup
Panel | ||
---|---|---|
| ||
ConnectSecure's on-Premise VM setup is appealing for many businesses with specific data security, privacy, and compliance needs and priorities. |
...
Topic - Table of Contents
Table of Contents | ||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
Prerequisites
Note |
---|
Thick Provisioning should be used for storage space; otherwise, you may need to manually expand disk space/storage. For help on expanding the disk space, please see the section below: https://cybercns.atlassian.net/wiki/spaces/CVB/pages/edit-v2/2232844301#How-to-grow-disk-size |
...
Network | Access |
Ports Required | 80, 443, 4222, 4505 & 4506 |
207.246.91.196 | ports 8433, 5, 90 & 8422, For pushing the patch update to the appliance |
IP | A static Internal IP assigned to a VM and mapped to a Public IP/External IP |
Note |
---|
Ensure that SSH access (Port-5) is enabled to the specific IP address (45.32.217.250) until the sign-up, installation, and replication process is complete. |
...
Installation Methods
Server OS used is Ubuntu 22.04 - No need to download the server OS separately.
VM Install with VMware 5.5 - OVA file
Download the OVA file from here.
Create a Virtual Machine with the configuration provided under Prerequisites.
...
VM will be ready as show in the following screenshot.
...
VM Install with VMware ESXi 7.0 - OVA file
Download the OVA file from here.
Navigate to Virtual Machine option and select to Create a new virtual machine under VMWare ESXi 7.0.
...
Under Select creation type, choose Deploy a virtual machine from an OVF or OVA file.
...
Select the downloaded OVA file location to attach the OVA.
...
Select standard required storage as per prerequisites.
...
Navigate to Deployment options and select appropriate Network mappings, Disk Provisioning as Thin and select a checkbox for Power on automatically.
...
Click on Finish as VM is ready.
...
Once the VM is ready, it will power up automatically.
...
VM Install with Azure - VHD
Info |
---|
This is a 32GB image and needs to be uploaded to your Microsoft Azure Storage Account. |
...
Select the created Virtual Machine and verify the Public IP and Internal Static IP assigned to it.
...
VM Install with HyperV - VHDX
Download the VHDX from here.
Login to your Hyper-V Manager.
...
Once the VM is ready, start the VM.
Select the created Virtual Machine and verify the Internal Static IP assigned to it which has to be mapped to a Public IP.
VM Install under AWS using VHDX
Download the VHDX from here.
Login to your AWS account.
Please upload VHDX to S3 bucket.( Copy bucket name, token key and security key to be used later)
Follow below steps to create AMI using VHDX file.
Open the terminal
Configure AWS using CLI
aws configure
AWS Access Key ID [None]: Use your accesskey
AWS Secret Access Key [None]: Use your secretkey
Default region name [None]: us-west-2 (Any region of your choice)
Default output format [None]:
blank
...
Run below command on the terminal window:
Info |
---|
|
>>aws ec2 import-image --description "onPremCS" --disk-container "Format=VMDK,UserBucket={S3Bucket=onprem-v4,S3Key=Onprem VHDX.vhdx}"
...
If this import is not working follow the below steps as there might be an issue with the policy
Create a file named trust-policy.json with the following content:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": { "Service": "vmie.amazonaws.com" },
"Action": "sts:AssumeRole",
"Condition": {
"StringEquals":{
"sts:Externalid": "vmimport"
}
}
}
]
}
Use AWS CLI to create the role using below command:
>> aws iam create-role --role-name vmimport --assume-role-policy-document file://trust-policy.json
Create a file named role-policy.json with the following content (replace your-bucket-name with your actual S3 bucket name):
{
"Version":"2012-10-17",
"Statement":[
{
"Effect": "Allow",
"Action": [
"s3:GetBucketLocation",
"s3:GetObject",
"s3:ListBucket"
],
"Resource": [
"arn:aws:s3:::your-bucket-name",
"arn:aws:s3:::your-bucket-name/*"
]
},
{
"Effect": "Allow",
"Action": [
"ec2:ModifySnapshotAttribute",
"ec2:CopySnapshot",
"ec2:RegisterImage",
"ec2:Describe*"
],
"Resource": "*"
}
]
}
Attach the policy to the role used.
>> aws iam put-role-policy --role-name vmimport --policy-name vmimport --policy-document file://role-policy.json
After the steps are done rerun the first command in the point no. 5. The status can be checked using
>>aws ec2 describe-import-image-tasks
Few pointers:
Allow SSH, https and https for the security group attached.
...
AMI will be created successfully.
...
Launch the AMI using EC2 instance under the tier of your requirement.
...
10. Once this is ready, please let the support team know to proceed further.
...
On Premise Sign up Setup
Info |
---|
On Premise Setup continues with Sign Up Process. |
...
Further Agent installation could be managed at Company level>Overview>Agents
...
Start Using ConnectSecure V4
Login URL: Portal.myconnectsecure.com
Tenant name: “mytestdomain” ( Please use your configured tenant name here)
...
Follow our V4 Documentation here:https://cybercns.atlassian.net/wiki/x/3ABueg
...
Help
How to grow disk size
For VM with VMWare
Edit VM
Click HDD and select the size in GB to increase to.
Click Thick Provision and Finish.
...
lsblk (to list the disk details)
resize2fs /dev/sda2 (resize for sda2)
growpart /dev/sda 2 (Grow disk size for sda 2)
reboot (reboot the VM)
df -h (Verify the disk size)
How to assign a Static IP to a VM
Log in to the vCenter Server from the vSphere Client.
Select the host in the inventory.
On the Configure tab, expand Networking.
Select VMkernel adapters.
Select vmk0 Management Network and click the edit icon.
Select IPv4 settings.
Select Use static IPv4 settings.
Enter or change the static IPv4 address settings.
(Optional) Set static IPv6 addresses.
Select IPv6 settings.
Select Static IPv6 addresses.
Click the add icon.
Type the IPv6 address and click OK.
Click OK
...
Info
Tap to view the Getting Started info; see the link below for additional information.
V4 Getting Started In App Info
...
Need Support?
Contact our support team by sending an email to support@connectsecure.com or by visiting our Partner Portal, where you can create, view, and manage your tickets.
...