Installation Altprobe


Requirements

Installation Altprobe was tested under Ubuntu version 16.04, 18.04, 20.04, Centos 7, Amazon Linux 2 and Docker image. Memory at a computer/virtual machine must be not less than 2GB, Hard disk not less 20GB.

Before starting this procedure, please install Cnode, after this you need to get file Broker.pem and value of project id, that is required for installation altprobe (see section “Post-installation” of configuration cnode).


Installation

  • Login to Alertflex Collector via Linux terminal and download installation files.

git clone https://github.com/alertflex/altprobe.git
cd ./altprobe
  • Fill in Altprobe specific parameters in the env.sh file, as an example use the file env_example.sh. If you are planning to install Altprobe on the Cnode compute (Appliance configuration) use as example file env_local.sh.

  • Start installation.

chmod u+x install_ubuntu.sh
./install_ubuntu.sh
  • After finish a software installation, make a copy of file Broker.pem to directory /etc/altprobe/

  • Reboot system and after that check status of Altprobe

root@host:~# altprobe-status
  • Open in the Management console the Alerts>Search panel and check if alerts from security sensors are presented.

../_images/ids-alerts.png