Table of Contents |
---|
Open-AudIT Enterprise is distributed as a self-extracting installer file; to install or upgrade you just need to download that file from the website and then run it in your shell.
BEFORE YOU DO - Read this article as there are things to know before you do it.
Requirements
Root level access to the Linux server.
...
A 64bit linux server running one of - RedHat 6, Centos 6, Debian 6 or 7, Ubuntu 12.04 or 14.04.
Perl installed on the server.
Description
As at version 1.4, the linux installer script has changed.
...
Dependencies are checked and if not present, can be installed by the installer script.
Installing / Upgrading
All commands should be run as root (you can "sudo su" on Ubuntu).
When an upgrade is performed, Your database will NOT be upgraded. You will need to log on to Open-AudIT - when you do you will be prompted to upgrade it.
CentOS / RedHat considerations
If you have a minimal install of Centos or RedHat, you will likely need to install the perl-core package to be able to run the installer.
Code Block |
---|
yum install perl-core |
SELinux
If SELinux is installed and running, you will need to disable it.
To stop SELinux run the command
Code Block | ||
---|---|---|
| ||
setenforce 0 |
To ensure it does not start after a reboot, edit the file /etc/sysconfig/config and change the line
SELINUX=enforcing
to
SELINUX=permissive
ipTables (for RedHat 6 / Centos 6)
ipTables is installed, active and blocks all ports except port 22 by default. You can disable ipTables completely or allow only port 80.
To disable ipTables completely, run the following commands:
Code Block | ||
---|---|---|
| ||
service iptables stop |
then stop it from starting with
Code Block | ||
---|---|---|
| ||
chkconfig iptables off |
To allow only port 80, run the following commands:
Code Block | ||
---|---|---|
| ||
iptables -I INPUT 5 -i eth0 -p tcp --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT |
and then save it
Code Block | ||
---|---|---|
| ||
service iptables save |
Firewall (for Redhat 7 / Centos 7)
You can disable firewalld completely or allow only port 80.
To disable firewalld completely, run the following commands:
Code Block | ||
---|---|---|
| ||
service firewalld stop |
then stop it from starting with
Code Block | ||
---|---|---|
| ||
chkconfig firewalld off |
Installing / Upgrading
All commands should be run as root (you can "sudo su" on Ubuntu).
When an upgrade is performed, Your database will NOT be upgraded. You will need to log on to Open-AudIT - when you do you will be prompted to upgrade it.
NOTE - Any commands that have <SOMETHING> NOTE - Any commands that have <SOMETHING> in them require that you substitute <SOMETHING> for the appropriate value. For example, if your server's hostname is 'vali', and the command states echo "<HOSTNAME>" >> somefile.txt you should type echo "vali" >> somefile.txt. The specific value of <HOSTNAME> refers to the hostname of your server.
<HOSTNAME> can be obtained by running the command 'hostname'.
All steps below require the tarball to be copied to /tmp, extracted and then the install script (installer) run from that directory.
Code Block | ||
---|---|---|
| ||
cd /tmp
tar xf OAE-Linux-x68_64-release_1.4.tar.gz
cd Open-AudIT-1.4.0
./installer |
"vali" >> somefile.txt. The specific value of <HOSTNAME> refers to the hostname of your server.
<HOSTNAME> can be obtained by running the command 'hostname'.
As of February 2016, Open-AudIT Enterprise is distributed as a self-extracting installer file; to install or upgrade you just need to download that file from the website and then run it in your shell.
Apache Proxy Config on RedHat
If the installer cannot find your Apache config directory (usually only on Ubuntu), you will need to manually copy the Apache proxy config file.
...