manualshive.com logo in svg

One Identity SPS T1, Руководство по установке

Поделиться
Скачать
One Identity SPS T1 Скачать руководство пользователя страница 21

Installing SPS under Hyper-V

The following describes how to install a new SPS under 

Hyper-V

.

To install a new SPS under Hyper-V

 1.  Create the virtual machine for SPS using the following settings. Note that these 

settings are suitable for evaluation purposes. To test SPS under significant load, 
contact One Identity for recommendations.

 

l

Choose 

Generation 1

 for the virtual machine.

 

l

Allocate memory for the virtual machine. SPS requires a minimum of 4 GiB (8 
GiB is recommended) of memory. The recommended size for the memory 
depends on the exact environment, but consider the following:

 

l

The base system requires 4 GiB of memory.

 

l

SPS requires about 1-5 MiB of memory for every active connection, 
depending on the type of the connection — graphical protocols require 
more memory.

 

l

Do not use RAID for the hard disk, use the data duplication features of your 
virtual environment instead. That way, a single hard disk is sufficient for the 
system. If you need to use the built-in RAID support of SPS for some reason, 
use two hard disks, and SPS will automatically use them in software RAID.

CAUTION: 

Hazard of data loss When you install or reinstall SPS in a virtual 
environment, always create new hard disks. Using existing hard 
disks can cause unexpected behavior and operational problems.

 

l

Configure a fixed size disk with at least 20 GiB space. About 10 GiB is 
required for the base system, the remaining disk space is used to store 
data. To increase the initial disk size, see 

Modifying the disk size of a SPS 

virtual appliance

.

NOTE: 

SPS will use the network card with the lowest PCI ID as eth0 (

Physical 

interface 1

), the card with the second lowest PCI ID as eth1 (the 

Physical interface 2

), and so on. In some cases, this might differ from 

the labels in the Hyper-V management interface, for example, it is 
possible that eth0 will be labeled as 

Network adapter 4

, and as a result, 

the SPS Welcome Wizard will not be available on 

Network adapter 1

.

 

l

SPS requires at least one network card to function. Configurations can use up 
to 6 network cards. 

SPS 6.0 Installation Guide

One Identity Safeguard for Privileged Sessions Hyper-V Installation Guide

21

Содержание SPS T1

Страница 1: ...One Identity Safeguard for Privileged Sessions 6 0 Installation Guide...

Страница 2: ...TY TO USE THIS DOCUMENT EVEN IF ONE IDENTITY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES One Identity makes no representations or warranties with respect to the accuracy or completeness of the...

Страница 3: ...SX 17 Limitations of SPS under VMware 18 One Identity Safeguard for Privileged Sessions Hyper V Installation Guide 20 Limitations of SPS under Hyper V 20 Installing SPS under Hyper V 21 Installing One...

Страница 4: ...High Availability 31 Virtual appliance maintenance 32 Modifying the disk size of a SPS virtual appliance 32 About us 34 Contacting us 34 Technical support resources 34 SPS 6 0 Installation Guide 4...

Страница 5: ...e hardware specifications of the SPS appliance One Identity Safeguard for Privileged Sessions Software Installation Guide describes how to install SPS on certified hardware One Identity Safeguard for...

Страница 6: ...the re installation of the product Note that the contents of this document were previously included in the Administration Guide This standalone guide was created to l Improve how information is organi...

Страница 7: ...nstalled with the latest One Identity Safeguard for Privileged Sessions firmware l One Identity Safeguard for Privileged Sessions accessory kit including the following l One Identity Safeguard for Pri...

Страница 8: ...install a single SPS unit see Installing the SPS hardware l For details on how to install a two SPS units in high availability mode see Installing two SPS units in HA mode Installing the SPS hardware...

Страница 9: ...ccess to all data stored on the SPS appliance Data on the appliance can be unencrypted or encrypted and can include sensitive information for example passwords decryption keys private keys and so on F...

Страница 10: ...te console add the DNS name or the IP address of the IPMI interface to the exception list whitelist of the Java console For details on how to do this see the Java FAQ entry titled How can I configure...

Страница 11: ...4 4 Power on the second unit 5 Change the BIOS and IPMI passwords on the second unit The default password is ADMIN or changeme depending on your hardware 6 Connect to the SPS web interface of the fir...

Страница 12: ...R Xeon R E5 2630V2 2 6GHz 8 x 4 GB 13 x 1 TB LSI 2208 1GB cache Yes Safeguard Sessions Appliance 3000 Yes 1x Intel Xeon E3 1275 3 60GHz 8Core 2 x 16 GB 4x2 TB NLSAS LSI MegaRAID SAS 9361 4i Single Ye...

Страница 13: ...ster communication for example in case of high data load you can connect up to two 10Gbit network cards These cards are not shipped with the original package and have to be purchased separately SPS 6...

Страница 14: ...isites When installing SPS on a physical hardware make sure that you use a One Identity supported appliance and that every hard disk required for the particular appliance is inserted Installing SPS wi...

Страница 15: ...Depending on the size of the disks the installation process takes from a few minutes to an hour to complete CAUTION Hazard of data loss All data on the disks will be deleted 8 The installer displays t...

Страница 16: ...0 24 subnet for example 192 168 1 10 see The initial connection to One Identity Safeguard for Privileged Sessions SPS in the Administration Guide NOTE For details on the supported web browsers and ope...

Страница 17: ...bit l Allocate memory for the virtual machine SPS requires a minimum of 4 GiB 8 GiB is recommended of memory The recommended size for the memory depends on the exact environment but consider the follo...

Страница 18: ...de by default Therefore make sure you enable but do not attach the fourth eth3 network card to a network 2 After creating the virtual machine edit the settings of the machine Set the following options...

Страница 19: ...ncrease the size of the virtual disk see Modifying the disk size of a SPS virtual appliance on page 32 l If High Availability HA operation mode is required in a virtual environment use the HA function...

Страница 20: ...may display inaccurate information for example display degraded RAID status l When running SPS under Microsoft Hyper V ensure that the network interfaces are actually connected to the network When run...

Страница 21: ...t in RAID support of SPS for some reason use two hard disks and SPS will automatically use them in software RAID CAUTION Hazard of data loss When you install or reinstall SPS in a virtual environment...

Страница 22: ...ou have to use more than one NICs we recommend using only Legacy NICs 2 Login to your support portal and download the latest One Identity Safeguard for Privileged Sessions installation ISO file Note t...

Страница 23: ...S under significant load contact One Identity for recommendations l Guest operating system Linux Ubuntu 64 bit l Allocate memory for the virtual machine SPS requires a minimum of 4 GiB 8 GiB is recomm...

Страница 24: ...figure unused network cards at least the fourth eth3 to use internal NAT l To index connections without significant delay add two CPU cores to the virtual machine Note that these settings are suitable...

Страница 25: ...k space assigned to the virtual host it is not possible to use on demand disk allocation scenarios l If High Availability HA operation mode is required in a virtual environment use the HA function pro...

Страница 26: ...ons license When deployed from the Microsoft Azure Marketplace the One Identity Safeguard for Privileged Sessions uses the Bring your own license model Note that to deploy two active SPS nodes as an a...

Страница 27: ...ces in SPS For details see VM with multiple NICs l The Seal the box functionality is not available l The High Availability support of SPS was designed to work between two physical SPS appliances This...

Страница 28: ...s are compromised you still have an authentic copy of the original logs l For security reasons disable SSH access to SPS when it is not needed Accessing the SPS host directly using SSH is not recommen...

Страница 29: ...onfigure in the SPS Welcome Wizard c Choose a size for the VM If you want to use this machine in production and need help about sizing or architecture design contact your One Identity sales representa...

Страница 30: ...S VM can access even public ones 3 Configure SPS Login to SPS and configure it a Configure backups for SPS For backup and archiving purposes One Identity recommends the built in file shares of Azure F...

Страница 31: ...is stored in 3 copies For details see Locally redundant storage in the Azure Storage replication document and Service Healing Auto recovery of Virtual Machines High Availability If a hardware failure...

Страница 32: ...isk size of a SPS virtual appliance 1 Hazard of data loss Modifying the disk size is a risky operation Create a full system backup configuration and data backup to avoid data loss For detailed instruc...

Страница 33: ...fix the GPT to use all of the space an extra 4194304 blocks or continue with the current setting Fix Ignore fix Partition number 4 Warning Partition dev sda4 is being used Are you sure you want to co...

Страница 34: ...ble to One Identity customers with a valid maintenance contract and customers who have trial versions You can access the Support Portal at https support oneidentity com The Support Portal provides sel...

Отзывы:

Нет отзывов

Бренды по названию

Популярные бренды

Загрузить еще бренды