Scribd
Upload
86 views17 pages

Tripwire Operations Center: Provisioning Guide

Tripwire Operations Center - Provisioning Guide

Uploaded by

A
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
86 views17 pages

Tripwire Operations Center: Provisioning Guide

Tripwire Operations Center - Provisioning Guide

Uploaded by

A
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 17

TRIPWIRE OPERATIONS CENTER

PROVISIONING GUIDE

FOUNDATIONAL CONTROLS FOR SECURITY, COMPLIANCE & IT OPS
© 2017-2018 Tripwire, Inc. All rights reserved.

Tripwire is a registered trademark of Tripwire, Inc. Other brand or product names may be trademarks or
registered trademarks of their respective companies or organizations.

Contents of this document are subject to change without notice. Both this document and the software described
in it are licensed subject to Tripwire’s End User License Agreement located at https://www.tripwire.com/terms,
unless a valid license agreement has been signed by your organization and an authorized representative of
Tripwire. This document contains Tripwire confidential information and may be used or copied only in
accordance with the terms of such license.

This product may be protected by one or more patents. For further information, please visit:
https://www.tripwire.com/company/patents.

Tripwire software may contain or be delivered with third-party software components. The license agreements
and notices for the third-party components are available at: https://www.tripwire.com/terms.

Tripwire, Inc.
One Main Place
101 SW Main St., Suite 1500
Portland, OR 97204

US Toll-free: 1.800.TRIPWIRE
main: 1.503.276.7500
fax: 1.503.223.0182
https://www.tripwire.com
[email protected]
Contents
Overview 4
Hardware and Software Requirements 4
Port Requirements 5
Installing Tripwire Operations Center 6
Step 1: Create a Virtual Machine for the Operations Center Appliance 6
Step 2: Configure the Operations Center Appliance 15

Tripwire Operations Center 1.3.1 Provisioning Guide 3 Tripwire, Inc.


Overview
This document describes the process to provision the Tripwire Operations Center virtual
appliance. The Tripwire Operations Center virtual appliance is a hardened appliance that is
distributed using an OVA file (for vSphere) or a VHDX file (for Hyper-V).

For information on using Tripwire Operations Center after it is installed, see the Tripwire
Operations Center Setup Guide.

Hardware and Software Requirements


l The Operations Center can only be used to manage TE Consoles of version 8.5.3 or later.
l The Operations Center virtual appliance must be installed in one of the following
virtualization environments:
l VMware ESXi 5.0 or newer (using the OVA file), or
l Microsoft Hyper-V on Windows 2012 or newer (using the VHDX file)

Tripwire recommends at least 4 virtual processors, 8 GB of RAM, and 64 GB of hard disk


space for the virtual system where the Operations Center appliance is installed. For
large-scale deployments, we recommend 8 virtual processors and 16 GB of RAM.
l The Operations Center supports recent versions of the following modern browsers:
l Google Chrome
l Microsoft Edge
l Mozilla Firefox

Tripwire Operations Center 1.3.1 Provisioning Guide 4 Tripwire, Inc.


Port Requirements
Figure 1 shows the ports used by Tripwire Operations Center, which are listed in Table 1.

Figure 1. Tripwire Operations Center ports

Table 1. Tripwire Operations Center ports

Default
Port Description
443 Used to receive connections from the TE Supervisor installed on each monitored TE Console
system. A TE Supervisor establishes a secure connection between a TE Console and the
Operations Center, and manages communication using the TE REST API
Also used to connect with Tripwire servers to update the Operations Center software. For more
information about updates, see the Tripwire Operations Center Setup Guide.

22 Used by the Admin CLI to communicate with the Operation Center appliance over SSH.

Tripwire Operations Center 1.3.1 Provisioning Guide 5 Tripwire, Inc.


Installing Tripwire Operations Center

Step 1: Create a Virtual Machine for the Operations Center Appliance


To complete this step, you will need either the Operations Center OVA file (for vSphere
environments) or the Hyper-V file (for Hyper-V environments). Depending on the hypervisor
that you're using, complete one of the following procedures to create a virtual machine:

l Creating an Operations Center Appliance VM in vSphere below


l Creating an Operations Center Appliance VM in Hyper-V on page 12

Note Tripwire recommends that you periodically take snapshots of the virtual machine
where the Operations Center is installed for backup purposes.

Creating an Operations Center Appliance VM in vSphere

To create an Operations Center Appliance VM in vSphere:


1. From the menu at the top of the vSphere Web Client, select VMs and Templates.

2. In the Navigator panel on the left, select the location in which you want to create the new
VM (for example, a folder or datacenter).

Tripwire Operations Center 1.3.1 Provisioning Guide 6 Tripwire, Inc.


3. From the Actions menu, select Deploy OVF Template... .

4. In the 'Select source' dialog of the Deploy OVF Template wizard, complete one of the
following steps to select the Operations Center Open Virtualization Format (OVF)
package and click Next.
l Select URL and enter the URL from which the Operations Center OVA can be
downloaded and installed, OR
l Select Local file, click Browse, and select the OVF package.

The OVA file contains the OVF package and vSphere will automatically extract the OVF
file from the OVA.

Tripwire Operations Center 1.3.1 Provisioning Guide 7 Tripwire, Inc.


5. In the 'Review details' dialog, review the OVF template and click Next.
6. In the 'Select name and folder' dialog, complete the following steps:
a. In the Name field, enter a name for the template.
b. Confirm the location in which the Operations Center Appliance VM will be created.
c. Click Next.
7. In the 'Select a resource' dialog, select the cluster, host, vApp, or resource pool that will
provide the CPU and RAM for the VM, and then click Next.
8. In the 'Select storage' dialog, complete the following steps:
a. From the Select virtual disk format drop-down, select the format for the VM's
virtual disks. (Tripwire recommends Thick Provision Lazy Zeroed.)
b. In the datastore table, select a datastore for the VM's configuration files and virtual
disks.
c. Click Next.

9. In the 'Setup networks' dialog, select an appropriate VLAN for the lone network adapter,
then click Next.
10. In the 'Ready to complete' dialog:
a. Review and confirm your settings.
b. Click Finish to deploy the Operations Center appliance VM. The system will
display a progress bar indicating the progress of your deployment.

Tripwire Operations Center 1.3.1 Provisioning Guide 8 Tripwire, Inc.


11. Once deployment is complete, open the hardware properties of the Operations Center
appliance VM:
a. In the Navigator panel on the left of the vSphere Web Client, select the VM.
b. From the top of the VM properties panel, select the Manage tab.
c. Select the Settings tab.
d. In the left column of the Settings tab, select VM Hardware.

Tripwire Operations Center 1.3.1 Provisioning Guide 9 Tripwire, Inc.


12. To edit the hardware settings for the Operations Center Appliance VM:
a. Click Edit...
b. In the Edit Settings dialog, edit the settings for your virtual resources (e.g., CPU
cores, RAM, disk space, etc.). For guidance, see the user documentation from your
hypervisor vendor. Tripwire recommends starting with at least 4 CPUs, 8192 MB
memory, and 64 GB disk. For large-scale deployments, we recommend 8 CPUs and
16384 MB of memory.
c. Click OK.

Note Tripwire recommends adjusting your virtual resources before the Operations
Center Appliance VM is powered on for the first time. If you decide to add
additional disk space to the VM once it has started collecting data, you will
first need to add another disk device.

Tripwire Operations Center 1.3.1 Provisioning Guide 10 Tripwire, Inc.


13. From the Actions menu, select Power > Power On.
14. From the Actions menu, select Open Console.

Next, proceed to Step 2: Configure the Operations Center Appliance on page 15.

Tripwire Operations Center 1.3.1 Provisioning Guide 11 Tripwire, Inc.


Creating an Operations Center Appliance VM in Hyper-V

To create an Operations Center Appliance VM in Hyper-V:


1. Before creating the appliance, the VHDX file must first be resized. Using Powershell run
this command:
Resize-VHD -Path <full path to the VHDX file>.vhdx -SizeBytes 64GB

2. In the Hyper-V Manager, select Action > New > Virtual Machine.

3. In the New Virtual Machine wizard, click Next.

Tripwire Operations Center 1.3.1 Provisioning Guide 12 Tripwire, Inc.


4. In the Name field of the Specify Name and Location dialog, enter a descriptive name for
the VM and click Next.

5. In the Specify Generation dialog, select Generation 1 and click Next.


6. In the Startup memory field of the Assign Memory dialog, enter 8192 and click Next.

Note For large-scale deployments, a Startup memory value of 16384 is


recommended.

7. In the Configure Networking dialog, select a network adapter for your Operations Center
Appliance VM and click Next.
8. In the Connect Virtual Hard Disk dialog:
a. Select Use an existing virtual hard disk.
b. Extract the Operations Center Hyper-V zip file containing a VHDX file.
c. Click Browse to select the VHDX file and click Next.
9. Review your settings and click Finish to deploy the Operations Center appliance VM.
10. To configure the processors needed for the VM, right-click the virtual machine in the
Hyper-V Manager and select Settings.

Tripwire Operations Center 1.3.1 Provisioning Guide 13 Tripwire, Inc.


11. In the Settings dialog:
a. Select Hardware > Processor.
b. In the Number of virtual processors field of the Processor page, enter 4 and click
OK.

Note Tripwire recommends at least four (4) processors for each Operations Center
appliance VM. For large-scale deployments, we recommend eight (8)
processors.

12. In the Hyper-V Manager, right-click the Operations Center appliance VM and select
Start.
Once you are connected to the Operations Center appliance's command line interface, proceed
to Step 2: Configure the Operations Center Appliance on the next page.

Tripwire Operations Center 1.3.1 Provisioning Guide 14 Tripwire, Inc.


Step 2: Configure the Operations Center Appliance
In this step, you will connect the Operations Center appliance with your network by entering a
series of commands with the Operations Center command-line interface (CLI).

Configuring the Operations Center Appliance for Network Connectivity

To configure the Operations Center appliance for network connectivity:


1. If you're not already in the Operations Center CLI, access it by:
l (in Hyper-V Manager) right-clicking the Operations Center Appliance VM and
selecting Connect.
l (from the vSphere webclient) clicking Actions > Open Console.

2. In the Operations Center CLI, enter the following user credentials:


Username: admin
Password: Tripwire

3. Follow the CLI prompts to change the password.

Notes These credentials are only for the Operations Center appliance CLI and are
different from the credentials used to log in to the Operations Center UI.

Store your password in a secure location. If the password is lost, it cannot


be restored and you will need to re-deploy the Operations Center.

Tripwire Operations Center 1.3.1 Provisioning Guide 15 Tripwire, Inc.


Configuring the Operations Center Appliance for a Static IP Environment

Note If your environment is using DHCP, use the steps in Configuring the Operations
Center Appliance for a DHCP Environment on the next page instead.

To configure the Operations Center Appliance for a static IP environment:


1. To set the hostname of the Operations Center appliance, enter:
system hostname update <hostname>

where <hostname> is a fully qualified domain name (FQDN).

Note If the hostname is incorrectly set and the Operations Center has been started,
certificates will need to be regenerated after the hostname is updated with the
correct name. See the Tripwire Operations Center Setup Guide for detailed
instructions.

2. To show the list of network interfaces in your virtual environment, enter:


network interfaces read

3. To configure the network-interface properties for the Operations Center appliance, enter:
network interface update <interface> <ip_address_and_netmask>
network interface_media update <interface> <speed> <duplex>

where:
<interface> is the network interface card (NIC),
<ip_address_and_netmask> is the IP address and netmask of the Operations Center appliance,
<speed> is the speed of the network (e.g., 100BaseTX, 1000BaseTX, etc.), and
<duplex> is either half-duplex or full-duplex.

For example:
network interface update enp0s17 10.1.2.3/255.255.255.0
network interface_media update enp0s17 1000BaseT full-duplex

4. To specify the IP address of your network gateway, enter:


network route_default create <gateway_ip>

For example:
network route_default create 10.0.0.1

Tripwire Operations Center 1.3.1 Provisioning Guide 16 Tripwire, Inc.


5. To specify the IP address of the DNS Server to be used by your Operations Center
Appliance, enter:
system nameserver create <dns_ip>

For example:
system nameserver create 192.168.1.2

6. (Optional) To add a static route, enter:


network route create <interface> <network> <gateway_ip>

Where <network> is the IP address and netmask of the network hosting the Operations
Center Appliance.
For example:
network route create enp0s17 10.1.5.0/24 10.1.0.1

7. To start the Operations Center services, enter:


toc setup

Configuring the Operations Center Appliance for a DHCP Environment

To configure the Operations Center Appliance for a DHCP environment:


1. To enable DHCP on the appliance enter:
network interface_dhcp update <interface> on

where <interface> is the network interface card (NIC). For example:


network interface_dhcp update enp0s17 on

2. To start the Operations Center services, enter:


toc setup

Tripwire Operations Center 1.3.1 Provisioning Guide 17 Tripwire, Inc.

You might also like