Installing the Security Analytics Engine in a multi-server environment
Installing the Security Analytics Engine in a multi-server environment
|
|
NOTE: The Security Analytics Engine can also be installed in a single-server environment. For more information, see Installing the Security Analytics Engine in a single-server environment. |
To install the Security Analytics Engine in a multi-server environment
|
|
NOTE: The Security Analytics Engine must be installed on every server in the environment. |
- Open the Windows Command Prompt (Start | All Programs | Accessories | Command Prompt).
- Run the Security Analytics Engine.msi from the command line with the following required parameters:
SQLSERVER="<SQL server name>"- Use this parameter to specify the SQL Server instance. The default is “.”, the local SQL Server instance.-
SQLDATABASE="<Name of SQL database>"- Use this parameter to indicate the name of the SQL database.
The following command line parameters are also supported and may be required depending on your environment:
XIDP=1- Use this parameter to indicate that the product will use an external identity provider and the internal RSTS will not be deployed.PwdResetHidden=true- Use this parameter to indicate that the product will be responsible for managing the fallback password rather than the Security Analytics Engine.WEBSITE="<external web site>"- Use this parameter to indicate that the installer should create the Security Analytics Engine application in the specified external web site.APPPOOL="<pool>"- Use this parameter to instruct the installer not to create the default pool for the Security Analytics Engine. Instead the specified pool will be used.MAKE_CONFIG_WRITABLE=1- Use this parameter to specify that permissions will be given to IIS accounts to update configuration files.-
MALWAREPROVIDERKEY="<shared key>"- Use this parameter to specify an encrypted shared key which will be stored in the configuration file. When installing the SonicWALL Processor service, this same key must be provided using the REPORTERKEY parameter.IMPORTANT: Copying encrypted key values from configuration files on different computers is NOT supported. NOTE: If you are unable to provide the key used in the installation of the Security Analytics Engine during the installation of the SonicWALL Processor, you can reset the key post-install without needing to uninstall the Security Analytics Engine.
To reset the key for the SonicWALL Processor and the Security Analytics Engine
- Run the Dell.SecurityAnalyticsEngine.SonicWALL.Processor.Utility.exe (Dell | SecurityAnalyticsEngine | SonicWALLProcessor).
- In the Key Generator section, use one of the following methods to reset the key:
- In the Provider Key field, enter your preferred key.
- Click the Generate button to generate a random key.
- An encrypted key is automatically generated. Click the Update button to update the configuration file with the new key.
IMPORTANT: Resetting a key when the SonicWALL Processor and the Security Analytics Engine are installed in different systems requires that the utility is run in both systems individually. In that case, enter the same key into the Provider Key field.
WEBHOSTNAME="<host name portion of URL>"- Use this parameter to specify a URL that is not machine-based. This parameter should only be used to enable non-local SSO, when SSO support is required in a multi-server environment or if the machine name does not match the SSL certificate used for the web site. Before using this parameter, see URL configuration for more information.
- Once the installation has finished, exit the Command Prompt.