1. Manuals
  2. Brands
  3. Alcatel-Lucent Manuals
  4. Software
  5. Alcatel-Lucent Security Management Server...
  6. Installation manual

Alcatel-Lucent Security Management Server (SMS) Installation Manual

Release 9.4
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
Alcatel-Lucent Security Management Server
(SMS)
Release 9.4

Installation Guide

060274-00 REV B
CC109735423
260-100-018R9.4 Issue 2, July 2009
Alcatel-Lucent - Proprietary
This document contains proprietary information of Alcatel-Lucent and
is not to be disclosed or used except in accordance with applicable agreements.
Copyright © 2009 Alcatel-Lucent
Unpublished and Not for Publication
All Rights Reserved

Advertisement

Table of Contents
loading

Related Manuals for Alcatel-Lucent Alcatel-Lucent Security Management Server (SMS)

Summary of Contents for Alcatel-Lucent Alcatel-Lucent Security Management Server (SMS)

  • Page 1: Installation Guide

    060274-00 REV B CC109735423 260-100-018R9.4 Issue 2, July 2009 Alcatel-Lucent - Proprietary This document contains proprietary information of Alcatel-Lucent and is not to be disclosed or used except in accordance with applicable agreements. Copyright © 2009 Alcatel-Lucent Unpublished and Not for Publication...
  • Page 2 In such an event, applicable tariffs require the customer to pay all network charges for traffic. Alcatel-Lucent cannot be responsible for such charges and will not make any allowance or give any credit for charges that result from unauthorized access.

  • Page 3: Table Of Contents

    Contents About this information product Purpose ..................................How to use this information product ......................Supported Brick devices ............................ Related information ............................. How to order ................................. Safety information .............................. How to comment ..............................Safety Information Structure of hazard statements ......................... ® ®...
  • Page 4 Contents ® To Install the SMS Application (Clean Installations With Server Running Microsoft ® Vista ................................... To Manually Un-Install SMS ......................... To Upgrade the SMS Software ........................What To Do Next ..............................® ® SMS on a Sun Solaris Server Platform Overview .................................
  • Page 5 Overview ................................License terms for third party software ..................... Index ..............

  • Page 7: List Of Figures

    List of figures VPN Firewall Product Registration and Support Login Page ............Registration Web Page for New Users (Step 1: Verify Registration Keys) ....... Verify Registration Keys Information (Example) .................. Registration Web Page for New Users (Step 2: Enter Customer & Contact Info) ....

  • Page 9: About This Information Product

    About this information product About this information product Purpose This preface provides an overview of this information product, which is the Alcatel-Lucent Security Management Server (SMS) Installation Guide. The purpose of the Alcatel-Lucent Security Management Server (SMS) Installation Guide is to explain how to install the Alcatel-Lucent Security Management Server (SMS) application.
  • Page 10 About this information product Chapter Title Description ® ® Chapter 3, “SMS on a Microsoft Vista Describes how to install the SMS application ® ® Server Platform” on a host running Microsoft Vista Includes hardware and software requirements, pre-installation requirements, and detailed installation procedures for a new and upgrade installation for both a Primary SMS and redundant SMS...

  • Page 11: Supported Brick Devices

    Some of the above Brick device models require a specific patch of the current SMS release in order to be fully supported. For details about the SMS patch release required for a specific Brick device model, refer to the User’s Guide for the Brick device model or contact your Alcatel-Lucent customer support team representative for more information.

  • Page 12: How To Order

    Alcatel-Lucent VPN Firewall solution. How to order To order SMS information products, contact your Alcatel-Lucent Technologies customer team representative or contact Alcatel-Lucent at one of the following telephone numbers: • From the United States, call 888-582-3688, prompt 1.

  • Page 13: Safety Information

    Structure of hazard statements ......................................Overview Hazard statements describe the safety risks relevant while performing tasks on Alcatel-Lucent products during deployment and/or use. Failure to avoid the hazards may have serious consequences. General structure Hazard statements include the following structural elements:...
  • Page 14 Safety Information Item Structure element Purpose Hazard type Describes the source of the risk of damage or injury Damage statement Consequences if protective measures fail Avoidance message Protective measures to take to avoid the hazard Identifier The reference ID of the hazard statement (optional) Signal words The signal words identify the hazard severity levels as follows:...

  • Page 15: S Ms On A Microsoft Windows Server Platform

    ® ® S MS on a Microsoft Windows Server Platform Overview ......................................Purpose This chapter explains how to install or upgrade the SMS application on a ® ® Microsoft Windows server platform. It also includes a procedure for manually un-installing the SMS as needed. Contents Introduction Hardware Requirements...

  • Page 16: Introduction

    ® ® SMS on a Microsoft Windows Server Platform Introduction ......................................Overview ® ® The SMS application can be installed on a host running Microsoft Windows Professional or Server 2003. Release 9.4 can be installed as a first time (clean) installation or as an upgrade. This chapter provides step-by-step instructions for installing the SMS application as: •...
  • Page 17 Introduction number of Brick devices and total log traffic that can be handled. Each Brick device managed by the SMS can be homed to one of the associated CSs or the managing SMS for logging purposes. Up to five CSs can be configured for a Primary or Secondary SMS. Implementing Primary SMS/Secondary SMS configurations During the installation of the Secondary SMS, there is a point at which the Secondary SMS attempts to contact the Primary SMS to replicate the Primary SMS database on the...

  • Page 18: Hardware Requirements

    3.5 inch floppy drive, USB port, or serial port. For information on the hardware required to boot specific Lucent Brick device models, consult the User’s Guide for the specific Brick or contact your Alcatel-Lucent customer support team representative. • Ethernet interface card •...

  • Page 19: Software Requirements

    Software Requirements ......................................Required software components ® The following software is required to run the SMS application on a Microsoft Windows platform: ® ® • Windows XP Professional and Service Pack 1 2, or 3, or Windows Server 2003 and Service Pack 4 or higher.

  • Page 20: Pre-Installation Requirements (Clean Installations)

    ® ® SMS on a Microsoft Windows Server Platform Pre-Installation Requirements (Clean Installations) ......................................Overview Before you proceed with the actual installation of the SMS application for the first time on a host, some pre-installation steps are required: 1. Install the service pack. 2.
  • Page 21 Software patches and documentation updates It is a good idea to check the VPN Firewall Product Registration and Support website (https://vpn-firewall-brick.alcatel-lucent.com) periodically for patches and documentation updates issued since you purchased the product. If you are installing the SMS application for the first time, the installation keys that you will receive are only for an initial installation of the current software release.

  • Page 22: To Install The Sms Application (Clean Installation)

    Scroll through the Software License Agreement, and if it is acceptable, click proceed. Result: The Installation Key window is displayed..................................Enter the installation key applicable to this SMS that you obtained from the VPN Firewall Product Registration and Support website (https://vpn-firewall-brick.alcatel-lucent.com) and ..............
  • Page 23 The program verifies the key, and then displays the Choose Destination Result: Location window..................................The Root Directory for the Alcatel-Lucent Security Management Server window allows you to specify where the SMS software will be installed. The default is: c:\isms Click Next...
  • Page 24 ® ® SMS on a Microsoft Windows Server Platform Installation of the files will now begin. While the files are being installed, a Result: progress screen will indicate the status of the installation..................................When the installation is complete, click Result: The SMS Web Server Configuration window is displayed.
  • Page 25 To Install the SMS Application (Clean Installation) ..................................If the installation is a Primary SMS, the installation will proceed immediately to Step If the installation is either a Secondary SMS or a Compute Server installation, you will be asked to enter the IP address for either the Primary SMS or the SMS to which the Compute Server will home.
  • Page 26 ® ® SMS on a Microsoft Windows Server Platform ..................................Click to accept your choice. When the initial installation is complete, the Result: Initial Installation Complete notification is displayed. You must click at the bottom of the dialog box for the installation to proceed. Continue The SMS services are initialized.
  • Page 27 To Install the SMS Application (Clean Installation) By default, the box labeled I would like to run the Configuration Assistant checked. If you leave the box checked and click , the Configuration Assistant is Finish displayed. If you un-check the box before clicking , the Configuration Assistant is not Finish ®...

  • Page 28: To Manually Un-Install Sms

    The SMS can be un-installed via the utility of the Windows Add or Remove Programs Control Panel by selecting Alcatel-Lucent Security Management Server and clicking Remove ..................................For final removal, you can move to backup or delete the contents of the SMS directory (Example: c:\isms\lmf\).

  • Page 29: To Upgrade The Sms Software

    Scroll through the Software License Agreement, and if it is acceptable, click proceed. The Installation Key window is displayed. Result: ..................................Enter the installation key applicable to this SMS that you obtained from the VPN Firewall Product Registration and Support website (https://vpn-firewall-brick.alcatel-lucent.com) and ..............
  • Page 30 Select the folder in which the SMS application will appear on the Windows Start menu. The default is Alcatel-Lucent Security Management Server . It is recommended that you accept the default. Click to accept the default, or type a Next...
  • Page 31 To Upgrade the SMS Software The SMS Web Server Configuration window is displayed. Result: ..................................The SMS Web Server Configuration window allows you to select the type of web server to be installed and the port to be used: • Type .
  • Page 32 ® ® SMS on a Microsoft Windows Server Platform The Upgrade Options window is displayed. Result: ..................................Select one of the following upgrade types (this prompt is displayed only if you are upgrading a Primary SMS): • Normal upgrade . If you know an Admin ID and password from the previous version of the SMS, click the radio button for this option.
  • Page 33 To Upgrade the SMS Software If the installation is successful, a window similar to the following is displayed. Result: The URL of the SMS is shown at the top of the window. It consists of the IP address and port entered, and the directory that contains the SMS software. You will need this URL in order for your administrators to download the SMS Remote Navigator from a browser to their remote machines (see the Remote Administration section in the SMS Administration Guide).
  • Page 34 ® ® SMS on a Microsoft Windows Server Platform S T E P S ....................................................

  • Page 35: What To Do Next

    Congratulations! You have successfully installed or upgraded the required software and have a working SMS running the current software release. The installation accomplished the following: 1. It placed an entry called in the Programs Alcatel-Lucent Security Management Server ® folder on the Windows Start menu. This entry enables you to: •...

  • Page 37: S Ms On A Microsoft Vista Server Platform

    ® ® S MS on a Microsoft Vista Server Platform Overview ......................................Purpose ® ® This chapter explains how to install or upgrade the SMS application on a Microsoft Vista server platform. It also includes a procedure for manually un-installing the SMS as needed. Contents Introduction Hardware Requirements...

  • Page 38: Introduction

    ® ® SMS on a Microsoft Vista Server Platform Introduction ......................................Overview ® ® The SMS application can be installed on a host running Microsoft Vista ® ® On Microsoft Vista hosts, Release 9.4 is can be installed as a first time (clean) ®...
  • Page 39 2. Once the Primary SMS is operational, use it to configure two Bricks and assign the pre-configured ruleset administrativezone to the ports that will be connected to the SMS. Refer to the Configuring Alcatel-Lucent VPN Firewall Brick™ Security Appliance Ports section in the SMS Administration Guide for instructions on how to do this.
  • Page 40 ® ® SMS on a Microsoft Vista Server Platform 4. To ensure that the Primary SMS and remote host can communicate, add a ping rule (dir=both, source=*, dest=*, service=ping_request,action=pass) to the administrativezone ruleset, and then ping the host from the SMS. Once the ping is successful, remove the rule for security reasons.

  • Page 41: Hardware Requirements

    3.5 inch floppy drive, USB port, or serial port. For information on the hardware required to boot specific Lucent Brick device models, consult the User’s Guide for the specific Brick or contact your Alcatel-Lucent customer support team representative. • Ethernet interface card •...

  • Page 42: Software Requirements

    ® ® SMS on a Microsoft Vista Server Platform Software Requirements ......................................Required software components ® ® The following software is required to run the SMS application on a Microsoft Vista platform: ® ® • Windows Vista with Service Pack 1 or 2 •...

  • Page 43: Pre-Installation Requirements (Clean Installations)

    Pre-Installation Requirements (Clean Installations) ......................................Overview Before you proceed with the actual installation of the SMS application for the first time on a host, some pre-installation steps are required: 1. Resolve potential web server port conflicts. 2. Install Adobe Acrobat Reader. 3.
  • Page 44 Software patches and documentation updates It is a good idea to check the VPN Firewall Product Registration and Support website (https://vpn-firewall-brick.alcatel-lucent.com) periodically for patches and documentation updates issued since you purchased the product. If you are installing the SMS application for the first time, the installation keys that you will receive are only for an initial installation of the current software release.

  • Page 45: To Install The Sms Application (Clean Installations With Server Running Microsoft ® Vista ® )

    To Install the SMS Application (Clean Installations With Server ® ® Running Microsoft Vista ......................................When to use Use this procedure to install the SMS application for the first time on a host that is already ® ® running Microsoft Vista Before you begin Before you begin this task, if you are installing a Secondary or Compute Server SMS, you...
  • Page 46 The program verifies the key, and then displays the Choose Destination Result: Location window..................................The Root Directory for the Alcatel-Lucent Security Management Server window allows you to specify where the SMS software will be installed. The default is: c:\isms Click Next...
  • Page 47 To Install the SMS Application (Clean Installations With Server Running ® ® Microsoft Vista Result: The What You Should Know about this Release window is displayed..................................Read the Release Notes, which gives important information regarding this release. When finished, click Next Result: Installation of the files will now begin.
  • Page 48 ® ® SMS on a Microsoft Vista Server Platform ..................................The Select SMS Type window shows the following information: • . The application is able to detect all of the available IP addresses SMS IP Address configured on the machine. Choose the desired address from the drop down box. •...
  • Page 49 To Install the SMS Application (Clean Installations With Server Running ® ® Microsoft Vista Result: The installation program displays the Enter Admin ID window so that you may create an SMS Administrator ID and password..................................Create an Administrator ID and password by entering information into the following fields: •...
  • Page 50 ® ® SMS on a Microsoft Vista Server Platform If the installation is successful, a window similar to the following is displayed. Result: The URL of the SMS is shown at the top of the window. It consists of the IP address and port entered, and the directory that contains the SMS software.

  • Page 51: To Manually Un-Install Sms

    Add or Remove Programs ® Vista Control Panel by selecting Alcatel-Lucent Security Management Server clicking Remove ..................................For final removal, you can move to backup or delete the contents of the SMS directory (Example: c:\isms\lmf\). S T E P S ......................................

  • Page 52: To Upgrade The Sms Software

    ® ® SMS on a Microsoft Vista Server Platform To Upgrade the SMS Software ......................................When to use Use this procedure to upgrade to the current SMS software on a host that is already ® ® running Microsoft Vista Before you begin Before you begin this task, if you are upgrading a Secondary or Compute Server SMS, you must first upgrade the Primary SMS using this procedure.
  • Page 53 To Upgrade the SMS Software The Installation Key window is displayed. Result: ..................................Enter the installation key applicable to this SMS that you obtained from the VPN Firewall Product Registration and Support web site (https://www.lucent-ipsec.com) and click Next Refer to the “Obtain the SMS installation keys”...
  • Page 54 ® ® SMS on a Microsoft Vista Server Platform The SMS Web Server Configuration window is displayed. Result: ..................................Select one of the following upgrade types (this prompt is displayed only if you are upgrading a Primary SMS): • Normal upgrade .
  • Page 55 To Upgrade the SMS Software If the installation is successful, a window similar to the following is displayed. Result: The URL of the SMS is shown at the top of the window. It consists of the IP address and port entered, and the directory that contains the SMS software. You will need this URL in order for your administrators to download the SMS Remote Navigator from a browser to their remote machines (see the Remote Administration chapter in the SMS Administration Guide).

  • Page 56: What To Do Next

    Congratulations! You have successfully installed or upgraded the required software and have a working SMS running the current software release. The installation accomplished the following: 1. It placed an entry called in the Programs Alcatel-Lucent Security Management Server ® folder on the Vista Start menu. This entry enables you to: •...

  • Page 57: S Ms On A Sun Solaris Server Platform

    ® ® S MS on a Sun Solaris Server Platform Overview ......................................Purpose ® ® This chapter explains how to install or upgrade the SMS application on a Sun Solaris server platform. It also includes a procedure for manually de-installing the application if necessary.

  • Page 58: Introduction

    ® ® SMS on a Sun Solaris Server Platform Introduction ......................................Overview CAUTION Service-disruption hazard SMS only supported on SPARC processors. ® The SMS is only supported on SPARC processors that are running Solaris Release 9 or 10. For additional requirements, refer to the “Hardware Requirements”...
  • Page 59 Introduction managed by the SMS can be homed to one of the associated CSs or the managing SMS for logging purposes. Up to five Compute Servers can be configured for a Primary or Secondary SMS. Implementing Primary SMS/Secondary SMS configurations During the installation of the Secondary SMS, there is a point at which the Secondary SMS attempts to contact the Primary SMS to replicate the Primary SMS database on the Secondary SMS.

  • Page 60: Hardware Requirements

    • 3.5 inch floppy drive, USB port, or serial port. For information on the hardware required to boot specific Brick models, consult the User’s Guide for the specific Brick model or contact your Alcatel-Lucent customer support team representative. ™ •...

  • Page 61: Software Requirements

    Software Requirements ......................................Required software components ® ® To run the SMS application on a Solaris platform, you need Solaris Release 9 or 10. In order to ensure that all the necessary libraries have been loaded, the machine must be ®...

  • Page 62: Pre-Installation Requirements (Clean Installations)

    ® ® SMS on a Sun Solaris Server Platform Pre-Installation Requirements (Clean Installations) ......................................Overview Before you proceed with the actual installation of the SMS application for the first time on a host, some pre-installation steps are required: 1. Install the patch cluster. 2.
  • Page 63 Software patches and documentation updates It is a good idea to check the VPN Firewall Product Registration and Support website (https://vpn-firewall-brick.alcatel-lucent.com) periodically for patches and documentation updates issued since you purchased the product. If you are installing the SMS application for the first time, the installation keys that you will receive are only for an initial installation of the current software release.
  • Page 64 ® ® SMS on a Sun Solaris Server Platform components in the Alcatel-Lucent VPN Firewall Solution, refer to the VPN Firewall Solution Ports appendix in the SMS Administration Guide..............

  • Page 65: To Install The Sms Application (Clean Installation)

    To Install the SMS Application (Clean Installation) ......................................When to use Use this procedure to install the SMS application for the first time on a host. Before you begin Before you begin this task, if you are installing a Secondary or Compute Server SMS, you must first: 1.
  • Page 66 ® ® SMS on a Sun Solaris Server Platform ..................................Press to install the SMS application in the default directory (/opt/isms), or enter a [Enter] different directory and press [Enter] ..................................Press [Enter] to store the SMS log files in the default directory (/opt/isms/lmf), or enter a different directory and press [Enter] After completing the installation, you may elect to redefine the location of the log directory...
  • Page 67 To Install the SMS Application (Clean Installation) ..................................® Depending on whether the system is already running the Solaris SNMP Agent, accept the default port for the SMS SNMP Agent or define another port, as needed. Result: The installation program prompts you to define an SNMP Read Community..................................
  • Page 68 ® ® SMS on a Sun Solaris Server Platform If you are installing a Secondary SMS or Compute Server, skip to Step ..................................For Primary SMS installations, the installation program begins to initialize the database. This process will take several minutes. For Primary SMS installations, a master key is generated and displayed in the lower half of the SMS Setup screen.
  • Page 69 To Install the SMS Application (Clean Installation) The remaining files are installed and all SMS services are started. Result: ® When the installation is completed, the Solaris command prompt is displayed. S T E P S ..................................Configuration Assistant The Configuration Assistant is a utility that allows you to set or modify certain system-wide parameters which affect the SMS application’s operation and performance.

  • Page 70: To Manually Un-Install Sms

    ® ® SMS on a Sun Solaris Server Platform To Manually Un-Install SMS ......................................When to use This procedure is not required or recommended for upgrading to the current “official” SMS release that you purchased. As part of its software upgrade program, the SMS automatically installs, upgrades to the current release, and un-installs the previous SMS release.

  • Page 71: To Upgrade The Sms Software

    To Upgrade the SMS Software ......................................When to use Use this procedure to upgrade the SMS to the current software release. Before you begin Before you begin this procedure, it is recommended that you perform a manual backup of the Primary SMS database in the event of a system failure during the upgrade installation. For instructions on how to perform a manual backup of the SMS database, refer to the Manual Backup section of the SMS Administration Guide.
  • Page 72 ® ® SMS on a Sun Solaris Server Platform ..................................Press to display the installation notes and type to accept the terms of the notes. [Enter] ..................................Enter the installation key as provided after registering the license key. The installation program displays a message indicating a previous version of the Result SMS is installed, and prompts you to upgrade.
  • Page 73 To Upgrade the SMS Software ..................................The installation program defaults to the value that was entered during the initial installation of the SMS. Press to accept the default, or manually enter another port value and [Enter] press [Enter] is the standard port for HTTP; is the standard port for HTTPS.
  • Page 74 ® ® SMS on a Sun Solaris Server Platform ..................................If you are upgrading a Primary SMS, the installation program prompts you to select the type of upgrade: • 1 - Normal Upgrade • 2 - If you forgot the Admin password •...
  • Page 75 To Upgrade the SMS Software Configuration Assistant The Configuration Assistant allows you to set certain system-wide parameters. You can open the Configuration Assistant now to change SMS system parameters now, or keep the default parameter settings and modify them at a later point. For additional details about the Configuration Assistant, refer to the SMS Administration Guide.

  • Page 76: What To Do Next

    SMS running the current software release. The installation accomplished the following: 1. It placed an entry called in the Alcatel-Lucent Security Management Server Application menu of the Common Desktop Environment (CDE). This menu is accessed by right-clicking on the desktop, and it enables you to: •...

  • Page 77: Sms On A Linux Server Platform

    S MS on a Linux Server Platform Overview ......................................Purpose This chapter explains how to install or upgrade the SMS application on a Linux server platform. It also includes a procedure for manually de-installing the application if necessary. Contents Introduction Minimum Hardware/Software Requirements Pre-Installation Requirements (Clean Installations) To Install the SMS Application (Clean Installation)

  • Page 78: Introduction

    SMS on a Linux Server Platform Introduction ......................................Overview The SMS application can be installed on a host running Red Hat Enterprise Linux 4 (RHEL4) or Red Hat Enterprise Linux 5 (RHEL5). ® ® Important! If you are migrating from a Windows or Solaris server platform to a Linux host running SMS Release 9.4, and want to use the configuration database from...
  • Page 79 Introduction managed by the SMS can be homed to one of the associated CSs or the managing SMS for logging purposes. Up to five Compute Servers can be configured for a Primary or Secondary SMS. Implementing Primary SMS/Secondary SMS configurations During the installation of the Secondary SMS, there is a point at which the Secondary SMS attempts to contact the Primary SMS to replicate the Primary SMS database on the Secondary SMS.

  • Page 80: Minimum Hardware/Software Requirements

    • 1GB or greater free disk space in the partition where the SMS application is to be installed • USB 2.0 port. Alcatel-Lucent approved USB floppy drives are supported for hosts with only USB ports. • Ethernet interface card •...

  • Page 81: Pre-Installation Requirements (Clean Installations)

    Pre-Installation Requirements (Clean Installations) ......................................Overview Before you proceed with the actual installation of the SMS application for the first time on a host, some pre-installation steps are required: 1. Resolve potential web server port conflicts. 2. Install Adobe Acrobat Reader 3.
  • Page 82 Software patches and documentation updates It is a good idea to check the VPN Firewall Product Registration and Support website (https://vpn-firewall-brick.alcatel-lucent.com) periodically for patches and documentation updates issued since you purchased the product. If you are installing the SMS application for the first time, the installation keys that you will receive are only for an initial installation of the current software release.
  • Page 83 Pre-Installation Requirements (Clean Installations) components in the Alcatel-Lucent VPN Firewall Solution, refer to the VPN Firewall Solution Ports appendix in the SMS Administration Guide..............

  • Page 84: To Install The Sms Application (Clean Installation)

    SMS on a Linux Server Platform To Install the SMS Application (Clean Installation) ......................................When to use Use this procedure to install the SMS application for the first time on a host. Pre-installation steps for Linux installations Before proceeding with the actual installation, some preliminary steps must be taken to prepare the host environment: ®...
  • Page 85 To Install the SMS Application (Clean Installation) ..................................With the CD-ROM in the drive, locate this directory on the CD-ROM: Linux ..................................Enter , where is the build number of the software, to start the ./lsms-9.4.xxx.bin installation program. The installation program is started. The first in a series of screens is displayed, Result with an introduction to the InstallAnywhere installation program and some general tips about how to use the program.
  • Page 86 SMS on a Linux Server Platform After entering the destination directory/folder for where the log files will be stored, click to proceed to the next installation screen. Next The next screen displays the installation release notes about the major features Result and enhancements in the release.
  • Page 87 To Install the SMS Application (Clean Installation) The next screen asks if the operating system is already running the SNMP Result Agent on the Linux machine..................................An SMS SNMP Agent will be installed as part of the application. If there is already a Linux OS SNMP Agent or some other third party SNMP Agent software installed on this machine, you must specify the port so SMS can communicate with this agent.
  • Page 88 SMS on a Linux Server Platform The installation of the SMS commences as a background process. Result An SMS Setup screen is displayed, which prompts you for the IP address and name of the SMS host to be used. The program defaults to installing a Primary SMS for the first time on a new host.
  • Page 89 To Install the SMS Application (Clean Installation) Configuration Assistant The Configuration Assistant is a utility that allows you to set or modify certain system-wide parameters which affect the SMS application’s operation and performance. You can open the Configuration Assistant after the SMS installation has completed to change SMS parameters now, or keep the default parameter settings and modify them at a later point.

  • Page 90: Post-Installation Steps

    SMS on a Linux Server Platform Post-Installation Steps ......................................® ® Post-installation steps for migrating SMS database from Windows or Solaris server If you performed a manual backup of the SMS database that was migrated from a ® ® Windows or Solaris server from a previous SMS release (following the instructions in “Pre-installation steps for Linux installations”...

  • Page 91: To Manually Un-Install Sms

    To Manually Un-Install SMS ......................................When to use This procedure is not required or recommended for upgrading to the current “official” SMS release that you purchased. As part of its software upgrade program, the SMS automatically installs, upgrades to the current release, and un-installs the previous SMS release. However, if you have installed an Evaluation copy of the SMS software, you should manually un-install the Evaluation copy using this procedure before upgrading to an “official”...

  • Page 92: To Upgrade The Sms Software

    SMS on a Linux Server Platform To Upgrade the SMS Software ......................................When to use Use this procedure to upgrade the SMS to the current software release. Before you begin Before you begin this procedure, it is recommended that you perform a manual backup of the Primary SMS database in the event of a system failure during the upgrade installation.
  • Page 93 To Upgrade the SMS Software The next screen displays the directory/folder where the SMS is currently Result installed. If the installer is unable to determine the current installation directory/folder, the default installation directory/folder is displayed..................................If the displayed directory/folder for installing the SMS application is not correct, click to display a Browse window and the directory/folder where the SMS application is Choose currently installed.
  • Page 94 SMS on a Linux Server Platform The next screen displays a message that a previous version of SMS was found Result and asks if you would like to continue with the upgrade..................................Choose and click Next to proceed with the upgrade. Result The uninstaller is launched.
  • Page 95 To Upgrade the SMS Software ..................................Select one of the following upgrade types (this prompt is displayed only if you are upgrading a Primary SMS) and click • Normal upgrade. If you know the Admin ID and password from the previous version of the SMS, click the radio button for this option.

  • Page 96: What To Do Next

    Congratulations! You have successfully installed the required software and have a working SMS running the current software release. The installation accomplished the following: 1. It placed an entry called in the Linux Alcatel-Lucent Security Management Server menus. This entry enables you to: •...

  • Page 97: A Registering Sms Software License Keys And Obtaining Installation Keys

    A Registering SMS Software License Keys and Obtaining Installation Keys Overview ......................................Purpose This appendix provides instructions on how to register the SMS product and software license key, and obtain an installation key, which is needed to install a new or upgraded SMS release or feature option.

  • Page 98: To Register A Software License Key And Obtain An Installation Key

    VPN Firewall Product Registration and Support website, https://vpn-firewall-brick.alcatel-lucent.com. Before you begin Before you begin any of these procedures, make sure that you have the software license key that you received with the SMS software or feature option.

  • Page 99: Vpn Firewall Product Registration And Support Login Page

    To Register a Software License Key and Obtain an Installation Key The VPN Firewall Product Registration and Support Login page is displayed Result (Figure A-1, “VPN Firewall Product Registration and Support Login Page” (p. 87)). Figure A-1 VPN Firewall Product Registration and Support Login Page ..................................

  • Page 100: Registration Web Page For New Users (Step 1: Verify Registration Keys)

    Registering SMS Software License Keys and Obtaining Installation Keys The first in a series of registration web pages is displayed for new users (Figure Result A-2, “Registration Web Page for New Users (Step 1: Verify Registration Keys)” (p. 88) Figure A-2 Registration Web Page for New Users (Step 1: Verify Registration Keys) This web page is for entering the software license key that was provided when you purchased the product.

  • Page 101: Verify Registration Keys Information (Example)

    To Register a Software License Key and Obtain an Installation Key ..................................Enter the software license key information for the Primary SMS (and Secondary SMS, if desired). In the Description (optional) field, enter any descriptive information that would help identify the machine or software version for which the installation key is being obtained. field is optional.
  • Page 102 Registering SMS Software License Keys and Obtaining Installation Keys The Customer Contact Information web page is displayed (Figure A-4, Result “Registration Web Page for New Users (Step 2: Enter Customer & Contact Info)” 90)). Figure A-4 Registration Web Page for New Users (Step 2: Enter Customer & Contact Info) ..............
  • Page 103 To Register a Software License Key and Obtain an Installation Key This web page is for entering key customer contact information. Fields that are marked with an asterisk (*) require an entry..................................Enter your customer information and key contact information if a specific person should be contacted about this product installation.

  • Page 104: Customer Information And Key Contact Information (Example)

    Registering SMS Software License Keys and Obtaining Installation Keys Figure A-5, “Customer Information and Key Contact Information (Example)” (p. 92) shows a sample entry. Figure A-5 Customer Information and Key Contact Information (Example) ..............
  • Page 105 To Register a Software License Key and Obtain an Installation Key ..................................Click Continue to proceed to the next registration web page..............

  • Page 106: Registration Web Page For New Users (Step 3: Enter Product Info)

    Registering SMS Software License Keys and Obtaining Installation Keys The Product Information registration web page is displayed (Figure A-6, Result “Registration Web Page for New Users (Step 3: Enter Product Info)” (p. 94)). Figure A-6 Registration Web Page for New Users (Step 3: Enter Product Info) ..............
  • Page 107 To Register a Software License Key and Obtain an Installation Key This page is for recording the Bricks (by model and serial number) associated with this SMS or CS installation and information about the vendor where the Brick(s) were purchased..................................

  • Page 108: Brick Hardware And Vendor Information (Example)

    Registering SMS Software License Keys and Obtaining Installation Keys Figure A-7, “Brick Hardware and Vendor Information (Example)” (p. 96) shows a sample entry. Figure A-7 Brick Hardware and Vendor Information (Example) ..............

  • Page 109: Registration Web Page For New Users (Step 4: Enter Username & Password)

    To Register a Software License Key and Obtain an Installation Key ..................................Click Continue to proceed to the next registration web page. Result The Username and Password registration web page is displayed (Figure A-8, “Registration Web Page for New Users (Step 4: Enter Username & Password)” (p. 97) Figure A-8 Registration Web Page for New Users (Step 4: Enter Username &...

  • Page 110: Username And Password Information (Example)

    Registering SMS Software License Keys and Obtaining Installation Keys Figure A-9, “Username and Password Information (Example)” (p. 98) shows a sample entry. Figure A-9 Username and Password Information (Example) ..................................Click to proceed to the next registration web page. Continue ..............
  • Page 111 To Register a Software License Key and Obtain an Installation Key The Verify Information and Submit registration web page is displayed (Figure Result A-10, “Registration Web Page for New Users (Step 5: Verify & Submit)” (p. 99)). Figure A-10 Registration Web Page for New Users (Step 5: Verify & Submit) ..............

  • Page 112: Registration Completed Page Showing Registered Software License Key And Installation Key Obtained (Example)

    Registering SMS Software License Keys and Obtaining Installation Keys ..................................Verify that all of the previously entered registration information is correct. To change any of the previously entered registration information on any web page, click key and then click the bullet item hyperlink at the top left portion of the web Re-Edit page to return to the page where the change(s) must be made.

  • Page 113: Vpn Firewall Product Registration And Support Login Page

    ..................................Go to https://vpn-firewall-brick.alcatel-lucent.com The VPN Firewall Product Registration and Support Login page is displayed Result (Figure A-12, “VPN Firewall Product Registration and Support Login Page”...
  • Page 114 Registering SMS Software License Keys and Obtaining Installation Keys Tip: if you completed the “To register a software license key and obtain an installation key as a new user” (p. 86) procedure and are on the Registration Completed page (Figure A-11, “Registration Completed Page Showing Registered Software License Key and Installation Key Obtained (Example)”...

  • Page 115: Vpn Firewall Registration Web Page

    To Register a Software License Key and Obtain an Installation Key The VPN Firewall Registration web page is displayed (Figure A-13, “VPN Result Firewall Registration Web Page” (p. 103) shows a sample page). Figure A-13 VPN Firewall Registration Web Page ..............

  • Page 116: Registered Keys Web Page

    Registering SMS Software License Keys and Obtaining Installation Keys ..................................Click on Registered Keys to display a list of previously registered keys. Result The Registered Keys web page is displayed, showing a list of previously registered keys (Figure A-14, “Registered Keys Web Page” (p. 104)).

  • Page 117: Sms Help > About Window

    To Register a Software License Key and Obtain an Installation Key are currently logged in (Figure A-15, “SMS Help > About Window” (p. 105) shows a sample window). Figure A-15 SMS Help > About Window Click to close this window..................................

  • Page 118: Register New Keys Web Page

    Registering SMS Software License Keys and Obtaining Installation Keys The Register New Keys web page is displayed (Figure A-16, “Register New Result Keys Web Page” (p. 106)). Figure A-16 Register New Keys Web Page ..................................In the New License Key field, enter the software license key of the upgrade or feature option.

  • Page 119: Register New Keys Upgrade License Key Entry (Example)

    To Register a Software License Key and Obtain an Installation Key Figure A-17, “Register New Keys Upgrade License Key Entry (Example)” (p. 107) shows a sample entry. Figure A-17 Register New Keys Upgrade License Key Entry (Example) ..................................Click the Submit button.

  • Page 120: Register New Keys Confirmation Window

    Registering SMS Software License Keys and Obtaining Installation Keys A Register New Keys confirmation window is displayed (Figure A-18, Result “Register New Keys Confirmation Window” (p. 108)). Figure A-18 Register New Keys Confirmation Window This window is for associating the previously registered license key that was used to obtain the installation key for the prior SMS release with the software license key for the software upgrade.

  • Page 121: Register New Key Confirmation Window, Selecting Associated License Key From Previous Release (Example)

    To Register a Software License Key and Obtain an Installation Key Figure A-19, “Register New Key Confirmation Window, Selecting Associated License Key From Previous Release (Example)” (p. 109) shows an example of selecting an associated license key. Figure A-19 Register New Key Confirmation Window, Selecting Associated License Key From Previous Release (Example) ..................................

  • Page 122: Registration Completed Page, Successful Registration Of Upgrade License Key And Installation Key Obtained (Example)

    Registering SMS Software License Keys and Obtaining Installation Keys A Registration Completed web page is displayed, showing that the upgrade Result license key was successfully registered and an installation key was obtained for installing the SMS software upgrade. Figure A-20, “Registration Completed Page, Successful Registration of Upgrade License Key and Installation Key Obtained (Example)”...

  • Page 123: Bsms Hardening Guidelines

    The Alcatel-Lucent Security Management Server (SMS) platform is the centralized management platform that is required in order to configure, monitor, and manage the Alcatel-Lucent ™ VPN Firewall Brick Security Appliances.

  • Page 124: Sms And Operating System Hardening Guidelines

    ......................................General SMS hardening recommendations For maximum security, Alcatel-Lucent recommends that the management platform (SMS) be placed on its own server in a secure zone protected by an Alcatel-Lucent VPN Firewall ® Brick Security Appliance. The administrator would then utilize the Alcatel-Lucent SMS platform to configure the administrativezone using the pre-defined rulesets (refer to the Pre-Configured VPN Firewall Brick®...
  • Page 125 The following table provides a listing of the services that are required for operating the Alcatel-Lucent SMS and Remote Navigator products. Port Service...
  • Page 126 Port Service Type Port Usage 8161-User Used by the Alcatel-Lucent SMS for Configurable SNMP traffic - changed from default port of 161 during local installation of the system as system agent is using SNMP port 161. The SMS agent is configured to use 8161 port.
  • Page 127 It is recommended that you install the latest patches for all applications that may be installed on the operating system. This includes patches to the Alcatel-Lucent SMS and Remote Navigator products, which are available at the VPN Firewall Product Registration and Support website, https://vpn-firewall-brick.alcatel-lucent.com...
  • Page 128 5. Modify the community string on the SNMP management station to match the new community string that you set for the Alcatel-Lucent SMS application For the operating system and other applications that may be running on the management platform, consult the appropriate guides.

  • Page 129: C License Terms For Third Party Software

    C License Terms for Third Party Software Overview ......................................Purpose This appendix contains information about licensing terms and agreements for third party software..............
  • Page 130 License Terms for Third Party Software License terms for third party software ......................................IPMI Copyright 2006 IronPort Systems, Inc. All Rights Reserved Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: •...
  • Page 131 License terms for third party software of California not be used in advertising or publicity pertaining to distribution of the software without specific written permission. CMU AND THE REGENTS OF THE UNIVERSITY OF CALIFORNIA DISCLAIM ALL WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS.
  • Page 132 License Terms for Third Party Software Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: • Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
  • Page 133 License terms for third party software MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS;...
  • Page 134 License Terms for Third Party Software Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: • Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
  • Page 135 License terms for third party software LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

  • Page 137: Index

    Index ....................................Brick devices Manually un-install SMS supported, Linux server platform, ® Solaris server platform, ..................® Vista server platform, Clean installation ® Windows server platform, ® Solaris server platform, ® ..................Vista server platform, ® New Feature Setup utility, 8, 31, 50, Windows server platform, Compute servers, 4, 27, 46,...
  • Page 138 Index ® Vista server platform, ® Windows server platform, ® Solaris server platform clean installation, hardware requirements, manually un-install SMS, post-installation steps, pre-installation requirements, software requirements, upgrade SMS software, ..................See: User Account Control (UAC) Upgrade SMS software Linux server platform, ®...

This manual is also suitable for:

Security management server 9.4

Table of Contents