Installing the Management Server along with SQL Server using evaluation mode
If you want to evaluate
Symantec Data Center Security: Server Advanced
and don't have SQL Server installed on your computer, then you install the Management Server along with the SQL Server using evaluation mode.When you install the Management Server using this mode, Management Server and SQL Server gets installed on the same computer. You must ensure that you create a password for the SQL server database user account during the Management Server installation.
All installations allocate approximately 60 GB space for the database on SQL Server Enterprise edition. The SQL Server automatically allocates more space when it is required.
Perform the following tasks to install Management Server along with SQL Server:
Step 1: Before you begin
Before you install the Management Server, ensure that the minimum system requirements are met.
Step 2: Install Management Server and
Unified Management Console
The Management Server collects the events from agents, and provides database access to various products that are registered with Unified Management Console.
In Data Center Security: Server Advanced 6.7, Unified Management Console is integrated with the Management Server. When you install the Management Server, the Unified Management Console is also deployed on the same computer.
- To install Management Server andUnified Management Console
- Double-clickserver.exe.
- In theWelcomepanel, clickNext.
- In theLicense Agreementpanel, selectI accept the terms in the license agreement, and then clickNext.
- In theInstallation Typepanel, clickEvaluation Installationand clickInstall SQL Server 2012 Express on the Local System, and then clickNext.
- In theDestination Folderpanel, change the folder if necessary, and then clickNext.The directory name must contain printable ASCII characters only. Multi-byte, double-byte, hi-ASCII, and non-printable ASCII characters are not supported.
- In theReady to Install the Programpanel, review the settings, and clickInstall.In theSetup Statuspanel, you can view the progress of the installation.
- In theTomcat XML Configurationpanel, accept or type new port values, and then clickNext.Ensure that the port number that you enter is not in use by any other program on the computer. If you enter a port number that is in use, an error message appears.
- Step 3: Optionally, configure agent bridge to manage agents from Symantec Cloud Workload ProtectionIf you want to manage theSymantec Data Center Security: Server Advancedagents from Cloud Workload Protection portal, then you must configure agent bridge. You can manage the agents from Cloud Workload Protection without logging in to the Unified Management Console.To configure agent bridge
- In theAgent Bridgepanel, selectEnable Agent Bridge.By configuring theAgent Bridge, you can manage the agents from Cloud Workload Protection without logging in to the Unified Management Console.
- In theBridge Detailssection, enter theCustomer ID,Customer Secret Key,Domain ID, andBridge Name.To get theCustomer ID,Customer Secret Key, andDomain ID, sign in to the Cloud Workload Protection web portal. Go toSettings>Downloads>Authentication Detailsand clickShow.
- In theServer Detailssection, enter the following details.The details are populated by default if you are using Management Server 6.7 MP3.
- Server Address: Address of the Cloud Workload Protection. For examplescwp.securitycloud.symantec.com
- Server Port: The port number that you want to use for connecting to the Cloud Workload Protection server.
- Server Protocol: Select HTTPS.
- In theServer Settingspanel, do the following:
- Use FQDN Hostname for Certificate— CheckUse FQDN Hostname for Certificateto use the same logical name for each of your servers and their respective SSL certificates in a multi-server environment. You should know how to configure your DNS and load balancer to dynamically resolve the FQDN Hostname into one multi-server instance IP address at run-time.
- FQDN Hostname— Enter a FQDN Hostname if your network already resolves the server’s hostname to an IP address. External computers must be able to ping this FQDN hostname, as well as access the port services such as agent, management console,Unified Management Console, and bridge.
- Static IP Address— Enter the servers static IP address.Ensure that the IP address does not change, and your network does not use DHCP or other dynamic IP addressing schemes.
- Java Heap Size— Enter a value for the memory allocation pool. The value must be a multiple of 1024 MB and greater than 2048 MB. The default is 6144 MB.
Use FQDN Hostname for CertificateCheckUse FQDN Hostname for Certificateto use the same logical name for each of your servers and their respective SSL certificates in a multi-server environment. You should know how to configure your DNS and load balancer to dynamically resolve the FQDN Hostname into one multi-server instance IP address at run-time.FQDN HostnameEnter a FQDN Hostname if your network already resolves the server’s hostname to an IP address. External computers must be able to ping this FQDN hostname, as well as access the port services such as agent, management console,Unified Management Console, and bridge.Static IP AddressEnter the servers static IP address.Ensure that the IP address do not change, and your network does not use DHCP or other dynamic IP addressing schemes.Java Heap SizeEnter a value for the memory allocation pool. The value must be a multiple of 1024 MB and greater than 2048 MB. The default is 6144 MB.The default value for these settings is to not use the FQDN only option for certificates, and use the IP address for the server’s certificates. - In theCreate Databasepanel, specify the database parameters as follows:
- Host Name: Displays the IP address of the computer on which you install the SQL database.
- Database Instance: Type the name of the existing SQL Server instance on which you want to install the database.
- Database Port: Optionally, instead of the database name, you can specify the port for the database connection.
- sa Privileged User: The user name for the SQL Server built-in sa account.
- Password: Enter the password that is associated with the database sa account.
- Confirm Password: Re-enter the password that is associated with the database sa account.
Host NameDisplays the IP address of the computer on which you install the SQL database.Database InstanceType the name of the existing SQL Server instance on which you want to install the database.Database PortOptionally, instead of the database name, you can specify the port for the database connection.sa Privileged UserThe user name for the SQL Server built-in sa account.PasswordConfirm PasswordEnter the password that is associated with the database sa account. - ClickNext
- In theRegister with Unified Management Consolepanel, enter the following details as required:
- Hostname— Displays the same value that is specified by you in theServer Settingspage.
- Port— Displays the Port number of Unified Management Console.Unified Management Console works only on 8443 port number. You must ensure that 8443 should not be in use by any other program on the computer.
- User Name— Displays the default user namedcsadmin, who is also the Unified Management Console administrator. You cannot edit this value.When you log in to Unified Management Console for the first time, you must log in using the dcsadmin user only.
- Password— Enter a password for thedcsadminuser. You must use this password to log in to Unified Management Console as adcsadminuser.The password must not contain the characters " and %.
- Confirm Password— Re-enter the password to confirm.
HostnameDisplays the same value that is specified by you in theServer Settingspage.PortDisplays the Port number of Unified Management Console.Unified Management Console works only on 8443 port number. You must ensure that 8443 should not be in use by any other program on the machine.User NameDisplays the default user namedcsadmin, who is also the Unified Management Console administrator. You cannot edit this value.When you log in to Unified Management Console for the first time, you must log in using the dcsadmin user only.PasswordEnter a password for thedcsadminuser. You must use this password to log in to Unified Management Console as adcsadminuser.The password must not contain the characters " and %.Confirm PasswordRe-enter the password to confirm. - ClickNext.
- SelectMigrate UMC datain theRegister with Unified Management Consolepanel, and enter the following details:
- Old UMC IP— Enter the IP address of the previous Unified Management Console appliance.
- Password— Enter a password for thedcsadminuser of the previous Unified Management Console appliance.
- Confirm Password— Re-enter thedcsadminpassword of the previous Unified Management Console appliance to confirm.
Alternatively, you can also migrate the Unified Management Console data manually. - ClickNext.
- In theSummary Pagepanel, review the settings and clickConfigure.In theProgress Pagepanel, you can view the progress of the configuration.
- When the tasks are completed, clickFinish.
- In the confirmation panel, clickOK.
- Double-clickserver.exe.
- In theWelcomepanel, clickNext.
- In theLicense Agreementpanel, selectI accept the terms in the license agreement, and then clickNext.
- In theInstallation Typepanel, clickEvaluation Installationand clickInstall SQL Server 2012 Express on the Local System, and then clickNext.
- In theDestination Folderpanel, change the folder if necessary, and then clickNext.The directory name must contain printable ASCII characters only. Multi-byte, double-byte, hi-ASCII, and non-printable ASCII characters are not supported.
- In theReady to Install the Programpanel, review the settings, and clickInstall.In theSetup Statuspanel, you can view the progress of the installation.
- In theTomcat XML Configurationpanel, accept or type new port values, and then clickNext.Ensure that the port number that you enter is not in use by any other program on the computer. If you enter a port number that is in use, an error message appears.
- In theAgent Bridgepanel, selectEnable Agent Bridgeif you want to register theData Center Security: Server Advancedagents with Data Center Security cloud server.You can ignore this screen if you do not want to registerData Center Security: Server Advancedagents with Data Center Security cloud server.
- In theServer Settingspanel, do the following:Use FQDN Hostname for CertificateCheckUse FQDN Hostname for Certificateto use the same logical name for each of your servers and their respective SSL certificates in a multi-server environment. You should know how to configure your DNS and load balancer to dynamically resolve the FQDN Hostname into one multi-server instance IP address at run-time.FQDN HostnameEnter a FQDN Hostname if your network already resolves the server’s hostname to an IP address. External computers must be able to ping this FQDN hostname, as well as access the port services such as agent, management console,Unified Management Console, and bridge.Static IP AddressEnter the servers static IP address.Ensure that the IP address do not change, and your network does not use DHCP or other dynamic IP addressing schemes.Java Heap SizeEnter a value for the memory allocation pool. The value must be a multiple of 1024 MB and greater than 2048 MB. The default is 6144 MB.The default value for these settings is to not use the FQDN only option for certificates, and use the IP address for the server’s certificates.
- In theCreate Databasepanel, specify the database parameters, and then clickNext.Host NameDisplays the IP address of the computer on which you install the SQL database.Database InstanceType the name of the existing SQL Server instance on which you want to install the database.Database PortOptionally, instead of the database name, you can specify the port for the database connection.sa Privileged UserThe user name for the SQL Server built-in sa account.PasswordConfirm PasswordEnter the password that is associated with the database sa account.
- In theRegister with Unified Management Consolepanel, enter the following details as required:HostnameDisplays the same value that is specified by you in theServer Settingspage.PortDisplays the Port number of Unified Management Console.Unified Management Console works only on 8443 port number. You must ensure that 8443 should not be in use by any other program on the machine.User NameDisplays the default user namedcsadmin, who is also the Unified Management Console administrator. You cannot edit this value.When you log in to Unified Management Console for the first time, you must log in using the dcsadmin user only.PasswordEnter a password for thedcsadminuser. You must use this password to log in to Unified Management Console as adcsadminuser.The password must not contain the characters " and %.Confirm PasswordRe-enter the password to confirm.
- If you want to migrate data from an existing Unified Management Console appliance, selectMigrate UMC datain theRegister with Unified Management Consolepanel, and enter the following details:OLD UMC IPEnter the IP address of the previous Unified Management Console appliance.PasswordEnter a password for thedcsadminuser of the previous Unified Management Console appliance.Confirm PasswordRe-enter thedcsadminpassword of the previous Unified Management Console appliance to confirm.Alternatively, you can also migrate the Unified Management Console data manually. For more information, Migrating from VMware vCNS environment to VMware NSX environment
- ClickNext.
- In theSummary Pagepanel, review the settings and clickConfigure.In theProgress Pagepanel, you can view the progress of the configuration.
- When the tasks are completed, clickFinish.
- In the confirmation panel, clickOK.After the successful installation of Management Server and Unified Management Console, the Management Server is automatically registered with Unified Management Console.