Here I am going to tell you how to install DualShiled by console installation, which is quite common in linux, as some linux servers(especially appliances) don’t install X11.
The linux installation package is supposed to work on the popular Linux distributions. We have tested it on Fedora 10, Ubuntu 9.04, Ubuntu JEOS, CentOS 5.2.
After downloading the package onto your linux system, the first thing you need to do is to change the file attribute to make it executable,
chmod a+x setupdualshield.bin
chmod a+x setupdualradius.bin
The installer needs to be run under the root privileges. On some system you can use sudo command, here I just use root account.
Look at the full command, it is
./setupdualshield.bin -- -console
If you only type ./setupdualshield.bin (without any arguments), it will be run as GUI mode installation
First it shows a simple welcome text, then asks you to “press 1 to accept, 2 to reject, 3 to redisplay”.
Next, it will show you the license agreement. Fancy about the terms and conditions? read them carefully, otherwise, just press a couple of enter keys to reach the end.
The default installation destination is “/usr/local/dualshield” , if you are happy with the default setting, just press enter. I usually install the software to /opt/dualshield folder.
Now you are going to define the settings for management server. The most important one in this step is the FQDN.
This step is to give some information for SSO server. Along with the management server FQDN, the SSO server FQDN will be used later in HOSTS file or on DNS server. Without them, your browser on LAN won’t know where to access them.
Check the official document for the meanings and purposes of these ports defined in this step. Leave them alone and just take the default ones if you decide to learn them later.
You’d better adjust the JVM switches based on the free memory of your machine to optimize the system performance.
Currently, the beta version only supports software encryption.
Install a copy of MySQL. Alternatively, you can connect to an existing SQL server. Here you basically need to specify server address, port, also a database for storing the DualShield data. Apart from MySQL, it is believed that Dualshield at least support Microsoft SQL server, Oracle.
That is all. After that, the installer no longer accept any user input, it will copy files and configure the services etc according to your previous settings.
You should see the following output if everything goes well.
Double check if the installation is successful with the command
ps aux | grep mysqld
Under normal circumstances, you would expect the following result
Also the jsvc processes
ps aux | grep jsvc
Don’t forget to modify the firewall(if iptables service is running) to allow the tcp ports for management console and SSO server, they are 8443 and 9443 assume you choose the default settings. For testing purpose or you are lazy like me, just stop the iptables service.
Now you can access the DualShield Management Console by typing the following URL in your browser
https://dualshield.nanoart.local:8443
Assume you are using the same FQDN and port as mine
Mind you, don’t use IP in this URL, also make sure your machine on where your browser is running can resolve the FQDN correctly. Based on your own taste, you can add it into your HOSTS file or DNS server.
At this stage, I strong recommend you to read the official “Quick Start Guide” for further information.
Finally, you might want to remove this product from your machine, then check the details of the shell script file “removedualshield.sh” provided in the sub folder “tools”.
No comments:
Post a Comment