Review the following sections and ensure that your environment meets all requirements before you install the Cloud Bridge Agent (CBA).
You must have administrator privileges to install the Cloud Bridge Agent. In addition, you must have the following rights:
Access to the installer of a supported Linux operating system. For more information, see Hardware and Software Requirements.
Access to the relevant repositories to install or upgrade the operating system and the Docker or Podman container.
Access to outbound TCP port 9092 to allow outbound TLS communication from the on-premises Cloud Bridge Agent to the Cloud Bridge API in the OpenText AWS cloud (*.aws.confluent.cloud).
IMPORTANT:You must use DNS filtering because OpenText cannot provide specific hosts.
Access to the AWS download site to download the Cloud Bridge package on port 443.
Access rights for each server on which you plan to install the CBA for high availability.
If you are using Identity Governance with Cloud Bridge, you must also have:
Access from your on-premises Cloud Bridge Agent to the on-premises authentication directory or directories for Advanced Authentication and other applications from which you expect to collect data as part of the Identity Governance collection processes
Internal access to your Cloud Bridge Agent using a supported browser on port 8080
IMPORTANT:Advanced Authentication can use the following user lookup attributes by default for authentication purposes to Advanced Authentication and Identity Governance:
Active Directory: mail, sAMAccountName, and userPrincipalName
eDirectory: cn and mail
Every Advanced Authentication repository has a configured Base DN. The value found on the specified Base DN for a specific user must be unique for the authentication service to work. This means that repeated values for a given user trying to authenticate will result in an authentication error.
This section provides the minimum hardware and software requirements for each server on which you install the Cloud Bridge Agent.
NOTE:We recommend hosting the CBA on a dedicated server. If your organization has a dedicated server with sufficient resources, it is possible for the CBA to co-exist with other containers. However, ensure that it does not have to compete for resources.
If you do install the Cloud Bridge Agent on the same server with another on-premises product, the installation order is not important.
Table 2-1 Cloud Bridge Agent Server Requirements
|
Category |
Minimum Requirement |
|---|---|
|
Processors |
4 CPUs |
|
Memory |
16 GB of RAM |
|
Hard disk space |
200 GB NOTE:If you are using non-standard Linux partitioning and you are partitioning /var/tmp, ensure that at least 16 GB of the required 200 GB are allocated to this partition. |
|
VM environment |
(Conditional) If you plan to install the CBA on a virtual machine, VMware ESX 6.7 or later. |
|
Operating system |
One of the following Linux operating systems:
NOTE:Ensure that wget and awk are installed before you attempt to deploy the Cloud Bridge Agent container. |
|
Container |
One of the following:
|
|
Browser |
One of the following to access the Cloud Bridge Agent console:
|
NOTE:You must configure a DNS entry for your LDAP server in order to use a secure connection. You will not be able to connect over SSL (port 636) if you are using a host file.