Prerequisites for Addition of SecureData Client to Multiple Containers
The following are prerequisites for the addition of the SecureData client to multiple containers.
-
The process should be performed by an account with which the Connector was installed.
Note: If this user was a non-root user, that user must have access to the directory on the destination host with all permissions.
The process must have a dedicated port numbered higher than 1024.
Bulk SecureData client install is supported for accounts using SSH key authentication, but not supported for SSH with passphase authentication. To enable SSH key authentication, the SSH key needs to be set up between a non-root user of ArcMC and a user of the remote host.
- You should consult and review the Format Preserving Encryption Environment Setup Guide for proxy settings.
-
All the selected container hosts need to have same SSH credentials (username:password).
-
The voltage client install path on all the selected containers hosts must be the same.
-
You can only push voltage client in bulk to all the container hosts that are on the same platform e.g. all Linux, or all Windows.
- The below prerequisites are not present by default on RHEL 8.x, unlike in previous RHEL versions (e.g. RHEL 7.x). Perform the following steps for RHEL on the host where the ArcMC is or will be installed, and in the target RHEL host (the VM where the Connector/Collector will be deployed):
- Install python2:
- Create a symlink:
- Install libselinux-python package:
For RHEL:sudo yum install -y python2
For RHEL:sudo dnf install -y python2
sudo ln -s /usr/bin/python2 /usr/bin/python
For RHEL:sudo yum install -y libselinux-python
For RHEL:sudo dnf install -y libselinux-python
yum/dnf
command fails when installing libselinux-python
on RHEL, follow the steps below: - Download
libselinux-python-2.8-6.module_el8.0.0+111+16bc5e61.x86_64.rpm
- Install the package:
rpm -i libselinux-python-2.8-6.module_el8.0.0+111+16bc5e61.x86_64.rpm
Additional Requirements For Windows Platforms
For Windows platforms, only the local admin account is supported for the bulk-addition of the SecureData client.
In addition, the following preparatory steps are required when deploying on a Windows VM.
1. Enable PowerShell 4.0 or later.
https://www.microsoft.com/en-us/download/details.aspx?id=40855
2. Enable and configure PowerShell Remoting, with CredSSP authentication.
- Download the "ConfigureRemotingForAnsible.ps1" file:
https://github.com/ansible/ansible/blob/devel/examples/scripts/ConfigureRemotingForAnsible.ps1
-
Open Power Shell as Administrator and run the following command:
-
ConfigureRemotingForAnsible.ps1 -EnableCredSSP
-
3. Enable TLS 1.2.