Installing the Sensor component on a standalone server

To install the Sensor component on a physical server, you need to run a disk image with the Central Node and Sensor components.

To install the Sensor component on a virtual server, you need to connect the disk image with the Central Node and Sensor components to the selected virtual machine and run it. The installation starts immediately after the virtual machine is turned on. You can manage the installation process using the console of the virtual machine.

Step 1. Viewing the End User License Agreement and Privacy Policy

To continue the installation, you must read the End User License Agreement and Privacy Policy and accept their terms and conditions. Installation will not continue until you accept the terms of the End User License Agreement and Privacy Policy.

To accept the terms and conditions of the End User License Agreement and the Privacy Policy when installing the components based on the Ubuntu operating system:

1. Select the language for viewing the AO Kaspersky Lab End User License Agreement and Privacy Policy in the list and press Enter.

   This opens a window with the text of the AO Kaspersky Lab End User License Agreement.

2. Read the AO Kaspersky Lab End User License Agreement.

   To move up and down, you can use the keys: ↑, ↓, PageUp, and PageDown.

3. If you accept the AO Kaspersky Lab End User License Agreement, select the I accept button and press Enter.

   This opens a window with the text of the AO Kaspersky Lab Privacy Policy.

4. Read the AO Kaspersky Lab Privacy Policy.
5. If you accept the terms and conditions of the AO Kaspersky Lab Privacy Policy, select the I accept button and press Enter.

The Setup Wizard proceeds to the next step.

To accept the terms and conditions of the End User License Agreement and the Privacy Policy when installing the components based on the Astra Linux operating system:

1. Select the language for viewing the End User License Agreement for Astra Linux operating systems from the list by pressing the F1 key and press Enter.

   This opens a window with the text of the Astra Linux End User License Agreement.

2. Read the End User License Agreement of the Astra Linux operating systems.

   To move up and down, you can use the keys: ↑, ↓, PageUp, and PageDown.

3. If you accept the terms and conditions of the End User License Agreement of Astra Linux operating systems, select Yes and press Enter.

   This opens a window in which you can select the language for viewing the AO Kaspersky Lab End User License Agreement and Privacy Policy.

4. Select the language for viewing the AO Kaspersky Lab End User License Agreement and Privacy Policy in the list and press Enter.

   This opens a window with the text of the AO Kaspersky Lab End User License Agreement.

5. Read the AO Kaspersky Lab End User License Agreement.

   To move up and down, you can use the keys: ↑, ↓, PageUp, and PageDown.

6. If you accept the terms and conditions of the AO Kaspersky Lab End User License Agreement, select the I accept button and press Enter.

   This opens a window with the text of the AO Kaspersky Lab Privacy Policy.

7. Read the AO Kaspersky Lab Privacy Policy.
8. If you accept the terms and conditions of the AO Kaspersky Lab Privacy Policy, select the I accept button and press Enter.

The Setup Wizard proceeds to the next step.

Step 2. Selecting a server role

To select a server role:

1. Select one of the following options:
   • storage.

     This role is for installing a storage server for deploying the Central Node component as a cluster.

   • processing.

     This role is for installing a processing server for deploying the Central Node component as a cluster.

     The role also includes the installation and configuration of the Sensor component.

   • single.

     This role is for installing the Central Node and Sensor components on the same server.

   • sensor.

     This role is for installing the Sensor component on a standalone server.

2. Press Enter.

The Setup Wizard proceeds to the next step.

Step 3. Selecting a disk for installing the component

You need at least 150 GB of disk space. If less than 150 GB of disk space is available, installation finishes with an error.

To select a disk for installing the component:

1. Select one of the suggested drives for installing the component and press Enter.

   The confirmation window is displayed.

2. Select Yes and press Enter.

The Setup Wizard proceeds to the next step.

Step 4. Selecting a network mask for server addressing

We recommend using the default value.

The netmask may not match netmasks used in the organization's infrastructure.

To specify the network mask for server addressing:

• If you want to use the predefined value for the network mask, select the Ok button and press Enter.

  Default value: 198.18.0.0/16.

• If you want to specify a different network mask, in the Subnet field, enter your value, select the Ok button, and press Enter.

  The mask must match the template: x.x.0.0/16.

The Setup Wizard proceeds to the next step.

Step 5. Selecting a network mask for addressing of application components

We recommend using the default value.

The network for application component addressing must not overlap with the network for server addressing.

To specify the network mask for addressing the main components of the application:

• If you want to use the predefined value for the network mask, select the Ok button and press Enter.

  Default value: 198.19.0.0/16.

• If you want to specify a different network mask, in the Bridge/overlay subnets field, enter your value, select the Ok button, and press Enter.

  The mask must match the template: x.x.0.0/16.

The Setup Wizard proceeds to the next step.

Step 6. Selecting the external network interface

The external network interface is used for SSH access to the server, managing the web interface of Kaspersky Anti Targeted Attack Platform, and other external connections.

To select the external network interface:

1. Select the row containing the network interface that is used for the external network.

   To select a row, you can use the ↑, ↓, PageUp, and PageDown keys. The selected row is highlighted in red.

2. Press Enter.

The Setup Wizard proceeds to the next step.

Step 7. Selecting the method of obtaining IP addresses for network interfaces

To select a method for obtaining an IP address for network interfaces:

1. Select the row containing the Configuration type: and press Enter.

   To select a row, you can use the ↑, ↓, PageUp, and PageDown keys. The selected row is highlighted in red.

2. In the opened window, select one of the following options:
   • dhcp.
   • static.
3. If you selected static:
   1. Select the row containing the parameter and press the Enter key.
   2. In the opened window, enter the required data and press Enter twice.

      You need to specify a value for each parameter.

4. Select the row containing Save.
5. Press Enter.

The Setup Wizard proceeds to the next step.

Step 8. Creating the administrator account

The administrator account is used for managing the web interface of the application, the administrator menu of the application, and for managing the application in Technical Support Mode.

By default, the user name of the administrator account is admin. You must enter a password for that user account.

To enter a password for the administrator user account:

1. This opens a window; in that window, in the min length field, enter the minimum password length. You must enter a value of 8 or greater.
2. Select Ok and press Enter.

   This opens the password creation window.

3. This opens a window; in that window, in the password field, enter the password for the administrator account.

   To select a row, you can use the ↑, ↓, PageUp, and PageDown keys. The selected row is highlighted in red.

4. In the confirm field, enter the password again.
5. Select Ok and press Enter.

The Setup Wizard proceeds to the next step.

Step 9. Adding DNS server addresses

Configure the DNS settings for the operation of servers with application components.

To add DNS server addresses:

1. Select the Add field and press Enter.
2. Enter the IP address of the DNS server in the IPv4 format.
3. If you want to add the IP address of an additional DNS server, select the Add field, press Enter and enter the address of the server.
4. Having added all DNS servers, select the Continue field and press Enter.

The Setup Wizard proceeds to the next step.

Step 10. Configuring time synchronization with an NTP server

Configure synchronization of the server time with the NTP server.

1. Select the Add field and press Enter.
2. Enter the IP address or name of the NTP server.
3. If you want to add the IP address or name of an additional NTP server, select the Add field, press Enter, and enter the IP address or name of the NTP server.
4. Having added all NTP servers, select the Continue field and press Enter.

The Setup Wizard proceeds to the next step.

Step 11. Configuring receipt of mirrored traffic from SPAN ports

To turn on receipt of mirrored traffic from SPAN ports:

1. In the displayed list, select the network interfaces from which you want to capture network traffic.
2. Select the line containing Apply and finish and press Enter.

The configuration may take some time. Then the installation is complete.