Some notes saved in this post for installing an IBM Guardium collector and registering into Central manager.
https://www.ibm.com/support/knowledgecenter/SSMPHH_11.1.0/com.ibm.guardium.doc.install/install/step4_setup_initial_and_basic_configuration.html
- Load the Guardium ISO.
- When the system boots, you will be presented with the following screen.
- Choose “Standard Installation (non CM)” for the collectors
- Choose “Aggregator or Central Manager (CM)” for the Central Manager
- The installation process will take about 15 minutes.
- After the installation completes, login from the console as cli (password=guardium)
- Reset and make note of the cli password
- Perform the following configuration commands:
store network interface mask <subnet_mask>
store network routes defaultroute <default_router_ip>
store system hostname <host_name>
store system domain <domain_name>
- Confirm that you configured each setting correctly.
- Enter “restart system” to reboot the VM
- Confirm that you can access the machine via ssh and web GUI (https://<IP>:8443)
show network interface all
show network routes defaultroute
show network resolver all
show system hostname
show system domain
show system clock timezone
show system clock datetime
show system ntp all
show unit typeUsers
1 Root Users
CLI -> support show passkey root
CLI -> support reset-password root (password is ‘t0Tach’)
Note: Keep the ‘Root Passkey’ in a safe place
2 CLI Users
CLI access is an administrative tool that allows configuration, troubleshooting, and management of the
Guardium system.
• To change the cli password: ‘store user password’
• To change the cli expiration password:
‘show password expiration cli n’
‘store password expiration cli n’
• show password disable and store password disable .
̶ Sets the number of days of inactivity, after which user accounts will be disabled. When set to 0 (zero), no accounts will be disabled by inactivity.
• show password validation and store password validation [ON|OFF].
̶ When password validation is enabled, the password must be eight or more characters in length, and must include at least one uppercase alphabetic character (A-Z), one lowercase alphabetic character (a-z), one digit (0-9), and one special character from the table. When disabled (not recommended), any length or combination of characters is allowed.
3 GUI Users – Accessmgr user
Accessmgr user is used to manage user accounts/access to the Guardium application, consisting of four tasks: Default password is guardium.
̶ Account administration
̶ Maintenance
̶ Monitoring
̶ Revocation
CLI -> support show passkey accessmgr
note: If the admin password is lost, accessmgr account can reset it.
4 GUI Users – Admin user
Reset CLI User Account
- Shutdown the appliance
- Mount the V10 ISO image to the appliance and boot the appliance from the V10 ISO.
- As soon as the appliance boots from the ISO, below screen displays. Use the “Rescue Mode”
- Select the appropriate Language.
- Select the appropriate keyboard layout.
- Do Not Setup Networking. Hit the “No” button.
- Hit the “Continue” button as SAN activation OR Read-Only mode won’t be required for mere password reset.
- Hit the “OK” button after reading the message.
- Hit the “OK” button after reading the message of the mounted directory as /mnt/sysimage.
- Select the “shell Start shell” option and hit “OK” button.
- CAUTION – You will land on to a minroot shell
- CAUTION – execute the command “chroot /mnt/sysimage” and hit the “Return” key on the keyboard to
- get the root command prompt to modify the cli password. Execute the command “passwd cli” in order to
- input the new password.
- Further it will ask for re-typing of the new password.
- Remember the new cli password that was set. Execute the command “poweroff” to shutdown the appliance.
- Unmount the V10 ISO image and start the appliance.
- Login with the new cli password.
Integrate Collector with Aggregator
Central Management Registration
1 Registering from a Managed Unit
On a managed unit, you can use the GUI to register the unit with the Central Manager. Otherwise, you can use the CLI register command as described in Registering a Managed Unit with the CLI.
- Click to open Central Management Registration.
- For Host IP, enter the IP address of the Central Manager.
- For Port, enter the https port for the Central Manager (usually 8443).
- Click Register.
After you register on the managed unit, it initiates communication with the Central Manager, and nothing more needs to be done.
2 Registering a Managed Unit with the CLI
- On the managed unit, log in to the CLI.
- Type register management <Manager IP> <Manager Port>
After you register on the managed unit, it initiates communication with the Central Manager, and nothing more needs to be done.
3 Registering units from the Central Manager
You can register units that are not currently accessible.
- Navigate to to open Central Management.
- Click Register New. The unit Registration page opens.
- Enter the Unit IP and port, and click Save. The Central Management page refreshes with the new unit.
4 Error Message : Unit returned Invalid Shared Secret
from Blogger http://blog.51sec.org/2020/08/ibm-guardium-112-installation-notes.html