Install PTA
You can install PTA from the disk image, or install PTA as a software.
Import the PTA Disk Image
This topic describes how to import the disk image. Perform the relevant procedure for your type of software.
From the installation package, extract the PTA-Img-VMWare.zip file.
To Import the Image to VM Player:
|
1.
|
From the main screen, click Open Virtual Machine; the Open Virtual Machine window appears. |
|
2.
|
In the Files of Type list, select Open Virtual Machine Format Images (*.ovf, *.ova). |
|
3.
|
Browse to the location of the PTA-Img-Server.ovf file, select it and then click Open. |
|
4.
|
Specify a name and choose a storage path for the new VM Image, or keep the default values. |
|
5.
|
Click Import to begin the import process. |
Progress is indicated in the progress window. When the import process is completed, you can start using the VM Image from the main screen.
To Import the Image to VMWare Workstation:
|
1.
|
In the main screen, from the File menu, select Open; the Open window appears. |
|
2.
|
In the Files of Type list, select Open Virtual Machine Format Images (*.ovf, *.ova). |
|
3.
|
Browse to the location of the PTA-Img-Server.ovf file, select it and then click Open. |
|
4.
|
Specify a name and choose a storage path for the new VM Image, or keep the default values. |
|
5.
|
Click Import to begin the import process. |
Progress is indicated in the progress window. When the import process is completed, you can start using the VM Image from the main screen.
To Import the Image to VM ESX:
|
1.
|
Connect to the ESX host using a VI Client such as VMware vSphere Client. |
|
2.
|
In the main screen, from the File menu, select Deploy OVF Template. |
|
■
|
(Optional) Deploy PTA without its full allocation. Do this to reduce the space that PTA uses when installed, by deploying PTA with thin provisioning so as not to use its full allocation of 500GB. |
|
3.
|
Browse to the location of the PTA-Img-Server.ovf file, select it and then click Next. |
|
4.
|
Make sure the displayed information is correct, then click Next. |
|
5.
|
Specify a name for the new VM Image, then click Next. |
|
6.
|
Select the resource pool where the template will be installed, then click Next. |
| |
To be able to perform this action, you must have root permission on the resource pool.
|
|
7.
|
Select the datastore where the VM Image files will be stored, then click Next. |
|
8.
|
Select the storage format for the VM Image files, then click Next. |
| |
It is recommended to select the thick provisioned format, for maximum storage capacity.
|
|
9.
|
Click Finish to begin the import process. |
Progress is indicated in the progress window. When the import process is completed, you can start using the VM Image from the main screen.
To Import the Image to Hyper-V:
|
1.
|
Log on to the Hyper-V machine. |
|
2.
|
From the installation package, extract the PTA-Img-HyperV.zip file. |
|
3.
|
Open the Hyper-V Manager and, in the list of Hyper-V servers, select the Hyper-V server to which you will import the image. |
|
4.
|
From the Action menu, select New and then Virtual Machine…; the New Virtual Machine wizard appears. |
|
5.
|
In the Specify Name and Location page, in the Name field, specify the name of the new virtual machine. |
|
6.
|
In the Assign Memory page, in the Startup memory, specify the size of required RAM memory in MB. For more information, see PTA Server System Requirements. |
|
7.
|
In the Configure Networking page, select the network connection to use. |
|
8.
|
In the Connect Virtual Hard Disk page, select Use an existing virtual hard disk, then click Browse and select the unzipped *.vhd file. |
|
9.
|
Click Finish to create the new virtual machine and import the PTA image; the new virtual machine appears in the list of virtual machines. |
|
10.
|
Select the new virtual machine, then from the Action menu, select Settings …; the Settings window for the selected virtual machine appears. |
|
11.
|
In the Hardware list, select Processor; the Processor details appear. |
Install PTA as a Software
For successful PTA installation as a software, perform these procedures.
Use the following guidelines:
|
■
|
No Internet access is required. |
|
■
|
PTA must be the only application installed on the machine. |
|
■
|
On completion of the PTA installation, a reboot of the PTA machine is required. |
Prerequisites
Apply the following prerequisites on your virtual machine.
|
1.
|
Use one of the following approved operating systems: |
- CentOS 7.2 minimal - CentOS 7.6 minimal
- RedHat 7.2 minimal - RedHat 7.6 minimal
|
2.
|
Set the following resources on your virtual machine: |
- 8 Core-CPU
- 16 GB RAM memory
- 500 GB hard disk storage thin provisioned
- 1 network card
- VMXNET3 for VMWare
- Qlogic BCM5709C Gigabit Ethernet for Microsoft Hyper-V
| |
Do not install additional software on this machine that is not related to PTA.
|
Installing the PTA Application
Use the following procedure to install the PTA Application on the virtual machine.
To Install the PTA Application:
|
1.
|
From the PTA installation package that you received from your CyberArk representative, access the following file: |
|
2.
|
Log on to the PTA machine as root user, and enter the password which you entered during the operating system installation. |
|
3.
|
Unzip and upload the following installation files using any SCP utility to the PTA machine. |
|
4.
|
In the command line, change the directory to the path where the PTA installation files were saved. |
|
5.
|
To verify that the installation can be executed, run the following command: |
chmod +x *.sh
|
6.
|
Execute the installation by running the following command: |
./pta_installer.sh
| |
The installation may take some time. When the installation finishes, you must reboot the Server.
|
See the following example:
[root@localhost tmp]# ./pta_installer.sh
Extracting installation files...
Welcome to Privileged Threat Analytics version 11.1 installation tool.
CyberArk Privileged Threat Analytics may include certain third-party components. Their licenses and acknowledgments are listed in the About window in the CyberArk Privileged Threat Analytics dashboard.
Taking a snapshot before performing an installation is highly recommended.
Do you want to continue?[Y/N]Y
Starting, please wait...
Verifying that you are logged on as 'root' user... [ OK ]
Verifying Linux OS version, expecting 'Centos 7 64 bit'... [ OK ]
Verifying Hard drive free space... [ OK ]
Verifying that SELinux is disabled... [ OK ]
Extracting repository... [ OK ]
Creating third-party repository... [ OK ]
Installing Java... [ OK ]
Installing OS packages... [ OK ]
Configuring PTA users and groups... [ OK ]
Installing ActiveMQ... [ OK ]
Installing Tomcat... [ OK ]
Installing Monit... [ OK ]
Removing local repository... [ OK ]
Enabling JVM capabilities... [ OK ]
Changing machine hostname... [ OK ]
Updating kernel parameters... [ OK ]
Installing MongoDB... [ OK ]
Deploying PTA components... [ OK ]
Hardening PTA server... [ OK ]
Configuring firewall rules... [ OK ]
You must run the PTA wizard, by running the '/opt/tomcat/prepwiz/run.sh' command, to complete the PTA installation process.
Installation completed. The log is available at: /tmp/pta_upgrade.log
We recommend that you install VMware Tools on the PTA Server.
Reboot the PTA Server.
Modify the PTA server hostname
You can modify the default PTA server hostname either before or after installation. To modify the hostname, do the following:
-
On the PTA server machine, run the following command to update the server name.
| |
hostnamectl –-static set-hostname <name>
|
-
To apply the name, run the following to restart the system-hostnamed service
-
| |
systemctl restart system-hostnamed
|
-
Edit the /etc/hosts file to modify the hostname to the new name. Modify each line that begins with 127.0.0.1 and ::1.
