Page 5
IBM Internet Security Systems (IBM ISS). Use of this information constitutes acceptance for use in an “AS IS” condition, without warranties of any kind, and any use of this information is at the user’s own risk. IBM Internet Security Systems disclaims all warranties, either expressed or implied, including the warranties of merchantability and fitness for a particular purpose.
Overview Introduction The SiteProtector SP1001 Hardware Configuration Guide contains the information you need to configure the IBM Proventia Management SiteProtector SP1001 appliance hardware. Scope This guide provides procedures for configuring the SiteProtector SP1001 appliance hardware and Windows administration options. This guide is designed to be a companion to the SiteProtector documentation suite.
How to Use the SP1001 Appliance Documentation This topic explains how the information in the SiteProtector SP1001 Hardware Configuration Guide is organized and lists other documents in the SiteProtector documentation suite that you may use to configure SiteProtector. Document organization This document is organized into logical units, as described in the following table: Chapter Description...
Page 11
(PDF) files in the following places: v the IBM ISS Web site at http://www.iss.net/support/documentation v the Deployment Manager, if installed at your Site Licensing agreement For licensing information on IBM Internet Security System products, download the IBM Licensing Agreement from:http://www-935.ibm.com/services/us/iss/html/ contracts_landing.html Overview...
Getting Technical Support IBM Internet Security Systems (ISS) provides technical support through its Web site and by email or telephone. The IBM ISS Web site The IBM Internet Security Customer Support Web page (http://www- 935.ibm.com/services/us/index.wss/offerfamily/iss/a1029129) provides direct access to online user documentation, current versions listings, detailed product literature, white papers, and the Technical Support Knowledgebase.
Safety, Environmental, and Electronic Emissions Notices Safety notices may be printed throughout this guide. DANGER notices warn you of conditions or procedures that can result in death or severe personal injury. CAUTION notices warn you of conditions or procedures that can cause personal injury that is neither lethal nor extremely hazardous.
Page 14
Electrical voltage and current from power, telephone, and communication cables are hazardous. To avoid a shock hazard: v Connect power to this unit only with the IBM ISS provided power cord. Do not use the IBM ISS provided power cord for any other product.
Page 15
Repair or disassemble Exchange only with the IBM ISS-approved part. Recycle or discard the battery as instructed by local regulations. In the United States, IBM ISS has a process for the collection of this battery. For information, call 1-800-426-4333. Have the IBM ISS part number for the battery unit available when you call.
Page 16
The booklet contains the safety information in your national language with references to the US English source. Before using a US English publication to install, operate, or service this IBM ISS product, you must first become familiar with the related safety information in the booklet. You should also refer to the booklet any time you do not clearly understand any safety information in the US English publications.
Page 17
(TI) que reciclen responsablemente sus equipos cuando éstos ya no les sean útiles. IBM dispone de una serie de programas y servicios de devolución de productos en varios países, a fin de ayudar a los propietarios de equipos a reciclar sus productos de TI.
Page 18
EEE on the environment and human health due to the potential presence of hazardous substances in EEE. For proper collection and treatment, contact your local IBM representative. Remarque: Cette marque s’applique uniquement aux pays de l’Union Européenne et à...
Page 19
In the United States, IBM has established a return process for reuse, recycling, or proper disposal of used IBM sealed lead acid, nickel cadmium, nickel metal hydride, and other battery packs from IBM equipment. For information on proper disposal of these batteries, contact IBM at 1-800-426- 4333.
Page 20
Note: Properly shielded and grounded cables and connectors must be used in order to meet FCC emission limits. IBM is not responsible for any radio or television interference caused by using other than recommended cables and...
Page 21
Klasse A ein. Um dieses sicherzustellen, sind die Geräte wie in den Handbüchern beschrieben zu installieren und zu betreiben. Des Weiteren dürfen auch nur von der IBM empfohlene Kabel angeschlossen werden. IBM übernimmt keine Verantwortung für die Einhaltung der Schutzanforderungen, wenn das Produkt ohne Zustimmung der...
Page 22
This product is a Class A Information Technology Equipment and conforms to the standards set by the Voluntary Control Council for Interference by Information Technology Equipment (VCCI). In a xviii IBM Internet Security Systems domestic environment, this product may cause radio interference in which case the user may be required to take adequate measures.
Page 23
Korean Class A Compliance Statement: Overview...
Note: SecurityFusion module is not preinstalled on the SiteProtector SP1001 appliance. You must install this component on a separate computer. v IBM Proventia Server Intrusion Prevention System (IPS) for Windows, which provides host security protection for the SiteProtector SP1001 appliance.
Console and the SiteProtector database. v The X-Press Update Server stores X-Press Updates (XPUs) downloaded from the IBM ISS Download center and makes them available to the agents and components on the network. The Update Server eliminates the need to download...
Page 28
SiteProtector Component Description Standalone XPress Update Servers (optional) In addition to the X-Press Update Server that is installed with the SP Core, you can install standalone X-Press Update Servers on separate computers. Event Archiver (optional) Store event data and improve performance by reducing the number of events the database must store.
Proventia Server IPS for Windows An embedded version of the Proventia Server IPS is installed and configured on the SiteProtector SP1001 appliance hardware and is delivered with a security policy that is predefined for the SiteProtector SP1001 appliance’s operating system and configuration.
Product Key. See “Restoring Factory Defaults” on page 30. Unsupported configurations IBM ISS does not support customized configurations. To avoid putting the SiteProtector SP1001 appliance in an unsupported state, do not do the following: v install, reinstall, or remove applications from the SiteProtector SP1001 appliance...
Page 33
Ensure that the SiteProtector SP1001 appliance has the latest firmware and intrusion prevention updates installed. The SiteProtector SP1001 appliance retrieves updates from the IBM ISS Download Center, which is accessible over the Internet. For more information about product issues and updates, see the IBM ISS Download Center at http://www.iss.net/.
Pre-configuration Checklists Review the checklists in this topic to ensure that you have the items you need before you proceed with the configuration process. This topic includes the following checklists: v Information required v Cables required Information required checklist To establish network connectivity, you must enter specific information about your network.
SiteProtector SP1001 Appliance Configuration Checklist The process of configuring the SiteProtector SP1001 appliance hardware requires that you perform tasks in a certain order. Follow the steps in this topic when you configure the SiteProtector SP1001 appliance. Prerequisites Before you configure your SiteProtector SP1001 appliance, you must have completed the following tasks: v Ensure that you meet the requirements for configuring the SiteProtector SP1001 appliance.
The SiteProtector SP1001 Appliance Front Panel The SiteProtector SP1001 appliance front panel consists of three features: v LCD controller module v Management port v USB ports SiteProtector SP1001 appliance front panel The following figure shows the SiteProtector SP1001 appliance front panel: Figure 1.
The SiteProtector SP1001 Appliance Back Panel The SiteProtector SP1001 appliance back panel includes several different features related to the power source, connections, and internal components. SP1001 back panel The following figure shows the SiteProtector SP1001 appliance back panel: Figure 2. SP1001 back panel Back panel features The following table describes the features of the back panel: Feature...
2. Connect the Ethernet cable from the network to the management port. 3. Turn on the SiteProtector SP1001 appliance. “IBM ISS Proventia SP1001” appears on the LCD panel. Note: It may take several minutes for this screen to appear.
Procedure 1. Locate the LCD panel at the front of the SiteProtector SP1001 appliance, and then make sure that “IBM ISS Proventia SP1001” appears on the screen. 2. Press the ENTER button. The Appliance PIN screen appears. Note: If you want to require that users enter a personal identification number (PIN) to use the LCD panel, see.“Securing the SiteProtector SP1001 Appliance...
3. Click Yes to accept the security certificate. 4. Read the IBM ISS License Agreement, and then click Accept. Note: The IBM ISS License Agreement appears only when you access this Web site for the first time. 5. Click the Install SiteProtector Console link.
Starting the SiteProtector Console and logging on Procedure 1. On your computer, open the SiteProtector Console. 2. Right-click the My Sites node in the left pane. 3. Select New → Site. 4. Log in using the SiteProtector SP1001 appliance’s IP address that you entered when you performed the procedure on 26.
SiteProtector Console Configuration Checklist This topic provides a checklist that lists the tasks you should perform to configure the Console. Follow the steps in this topic when you configure the SiteProtector SP1001 appliance. Note: This checklist provides the recommended order that the tasks in this chapter should be performed.
Installing License Files Now that you have logged on from the SiteProtector Console, you must install the new license files so that you can begin using the reporting, correlation, and security features that are installed on the SiteProtector SP1001 appliance. The SiteProtector SP1001 appliance requires properly configured licenses to run at full capability.
ISSADMIN Windows administrator Administrator ISSADMIN Important: For the best security practices, IBM ISS recommends that you use strong passwords and change these passwords frequently. See the Microsoft Windows Server 2003 documentation regarding the criteria required for creating strong passwords. SiteProtector System: SP1001 Hardware Configuration...
Setting the Database Administrator password Procedure 1. Select the System view. 2. In the left pane, expand the site node for the SiteProtector SP1001 appliance site, and then click the.Appliance icon. 3. Click OK to accept the security certificate. The Appliance Configuration interface appears in the right pane.
Starting and Shutting Down the SiteProtector SP1001 About this task To ensure that the SiteProtector SP1001 appliance is properly maintained, you may need to restart or stop the SiteProtector SP1001 appliance hardware. The topic provides procedures for manually restarting and shutting down the SiteProtector SP1001 appliance and scheduling these tasks so that they can occur automatically.
Scheduling a server shut down or restart Procedure 1. Select the System view. 2. In the left pane, expand the Site Node for the SiteProtector SP1001 appliance Site, and then click the Appliance icon. The Appliance Configuration interface appears in the right pane. 3.
Securing the SiteProtector SP1001 Appliance Hardware About this task If you want to secure the SiteProtector SP1001 appliance LCD settings, you can require that users specify a PIN to access the LCD panel. Procedure 1. On the LCD panel, press the ENTER button. The Appliance PIN screen appears.
5. When the Windows Setup window appears, type the Product Key in the boxes provided. 6. Click Next, and then verify that the “IBM ISS Proventia SP1001” is displayed on the LCD. Note: It may take several minutes for this to appear.
Issue Related to the LCD Panel This topic provides a solution to an issue that you may encounter when you use the SiteProtector SP1001 appliance’s LCD panel. Change to network settings fails Description: If you are trying to change the network settings in the LCD panel while a window that contains the network configuration options is open on the SiteProtector Console, the configuration change will fail.
Configuration Options This topic provides descriptions of the SiteProtector SP1001 appliance configuration options. These options are displayed in the Console’s System Administration tab. Local configuration options The following table describes the local configuration options: Select this menu option... To do this... Set Server Name Set the server name, DNS Suffix, and Domain information.
Page 59
Select this menu option... To do this... Users Create, edit, or delete local users on the server, and edit properties. Create, edit, or delete local groups on the server, and edit properties. Shares Create folders, manage attributes, and set permissions. Create, delete, and edit the properties of each share.