CimTrak Integrity & Compliance Suite 2.0.6.19

CimTrak Integrity & Compliance Suite 2.0.6.19 Master Repository Management Console App Server File System Agent Network Device Agent Command Line Utility Ping Utility Proxy Utility FTP Repository Interface Installation Guidance

LEGAL NOTICES The software described in this document is furnished under a license agreement and may be used only in accordance with the terms of the agreement. COPYRIGHT NOTICE Copyright 2001-2015 CIMCOR, Inc. All Rights Reserved. This document may not, in whole or in part, be copied, photocopied, reproduced, translated, or reduced to any electronic medium or machine-readable form without prior consent in writing from CIMCOR Inc., 8252 Virginia Street Suite C, Merrillville, IN 46410. ALL EXAMPLES WITH NAMES, COMPANY NAMES, OR COMPANIES THAT APPEAR IN THIS DOCUMENT ARE IMAGINARY AND DO NOT REFER TO, OR PORTRAY ANY ACTUAL NAMES, COMPANIES, ENTITIES, OR INSTITUTIONS. ANY RESEMBLANCE TO ANY REAL PERSON, COMPANY, ENTITY, OR INSTITUTION IS PURELY COINCIDENTAL. Every effort has been made to ensure the accuracy of this document. However, CIMCOR Inc. makes no warranties with respect to this documentation and disclaims any implied warranties of merchantability and fitness for a particular purpose. CIMCOR Inc. shall not be liable for any errors or for incidental or consequential damages in connection with the furnishing, performance, or use of this document or the examples herein. The information in this document is subject to change without notice. TRADEMARKS CimTrak is a trademark of CIMCOR Inc. Microsoft, MS, Windows XP, Windows 2003, Windows Vista, Windows 2008, Windows 2012, Windows 7, and Windows 8 are trademarks of Microsoft Corporation in the United States and/or other countries. Macintosh and Mac OSX are registered trademarks of Apple Inc. in the USA and other countries. Netscape is a registered trademark and Netscape Communicator is a trademark of Netscape Communications Corporation. InstallShield is a registered trademark and service mark of InstallShield Software Corporation. Linux is a registered trademark of Linus Torvalds. Solaris is a registered trademark of Sun Microsystems. All other products mentioned are trademarks and/or registered trademarks of their respective owners. 2 CIMCOR CimTrak Integrity & Compliance Suite

TABLE OF CONTENTS 1. Introduction... 8 1.1. CIMCOR CimTrak Integrity & Compliance Suite Introduction... 8 1.2. CimTrak Master Repository... 8 1.3. CimTrak Management Console... 9 1.4. CimTrak File System Agent... 9 1.5. CimTrak Network Device Agent... 10 1.6. CimTrak App Server... 10 1.7. CimTrak Tools... 11 2. System Requirements... 11 2.1. CimTrak Master Repository System Requirements... 11 2.1.1. Operating System Requirements... 11 2.1.2. System Requirements... 11 2.1.3. Microsoft Windows Installation Pre-Requisites... 12 2.1.4. CimTrak Installed Component Pre-Requisites... 12 2.2. CimTrak Management Console System Requirements... 12 2.2.1. Operating System Requirements... 12 2.2.2. System Requirements... 12 2.2.3. Screen Resolution... 12 2.2.4. Microsoft Windows Installation Pre-Requisites... 12 2.2.5. CimTrak Installed Component Pre-Requisites... 13 2.3. CimTrak File System Agent System Requirements... 13 2.3.1. Operating System Requirements... 13 2.3.2. System Requirements... 13 User Guidance 3

2.3.3. Microsoft Windows Installation Pre-Requisites... 13 2.3.4. Linux Installation Pre-Requisites... 13 2.3.5. CimTrak Installed Component Pre-Requisites... 14 2.4. CimTrak Network Device Agent System Requirements... 14 2.4.1. Operating System Requirements... 14 2.4.2. System Requirements... 14 2.4.3. Microsoft Windows Installation Pre-Requisites... 14 2.4.4. Linux Installation Pre-Requisites... 15 2.4.5. CimTrak Installed Component Pre-Requisites... 15 2.5. CimTrak Tools Command Line Utility System Requirements... 15 2.5.1. Operating System Requirements... 15 2.5.2. System Requirements... 15 2.5.3. Microsoft Windows Installation Pre-Requisites... 16 2.5.4. Linux Installation Pre-Requisites... 16 2.5.5. CimTrak Installed Component Pre-Requisites... 16 2.6. CimTrak Tools FTP Repository Interface System Requirements... 16 2.6.1. Operating System Requirements... 16 2.6.2. System Requirements... 16 2.6.3. Microsoft Windows Installation Pre-Requisites... 16 2.6.4. Linux Installation Pre-Requisites... 17 2.6.5. CimTrak Installed Component Pre-Requisites... 17 2.7. CimTrak Tools Ping Utility System Requirements... 17 2.7.1. Operating System Requirements... 17 2.7.2. System Requirements... 17 2.7.3. Microsoft Windows Installation Pre-Requisites... 17 2.7.4. Linux Installation Pre-Requisites... 17 2.7.5. CimTrak Installed Component Pre-Requisites... 18 2.8. CimTrak Tools Proxy Utility System Requirements... 18 2.8.1. Operating System Requirements... 18 2.8.2. System Requirements... 18 2.8.3. Microsoft Windows Installation Pre-Requisites... 18 4 CIMCOR CimTrak Integrity & Compliance Suite

2.8.4. Linux Installation Pre-Requisites... 19 2.8.5. CimTrak Installed Component Pre-Requisites... 19 3. CimTrak Master Repository Installation... 19 3.1. CimTrak Master Repository Pre-Installation Worksheet... 19 3.2. CimTrak Master Repository Pre-Installation Integrity Verification... 19 3.3. CimTrak Master Repository Installation Windows Graphical... 20 3.4. CimTrak Master Repository Installation Windows Command Line... 36 3.5. CimTrak Master Repository Installation Windows Silent... 48 3.6. CimTrak Master Repository Installation LINUX... 56 4. CimTrak File System Agent Installation... 62 4.1. CimTrak File System Agent Pre-Installation Integrity Verification... 62 4.2. CimTrak File System Agent Installation Windows Graphical... 62 4.2.1. Agent-Level Private Keys Explained... 70 4.3. CimTrak File System Agent Installation Windows Command Line... 73 4.4. CimTrak File System Agent Installation UNIX/Linux Command Line (PERL)... 81 4.4.1. Unpack and Load Software... 89 4.4.2. Configure Agent... 91 4.4.3. Configure the Agent: Setup Method... 92 4.4.4. Configure the Agent: Configure Method... 94 4.4.5. Install rc (Start/Stop) Services... 96 4.4.6. Start Agent... 98 4.5. CimTrak File System Agent Installation UNIX/Linux Graphical... 100 4.6. CimTrak File System Agent Installation UNIX/Linux Command Line... 110 4.7. CimTrak File System Agent Installation Windows Silent... 116 4.8. CimTrak File System Agent Installation UNIX/Linux Silent... 119 5. CimTrak Network Device Agent Installation... 122 5.1. CimTrak Network Device Agent Pre-Installation Integrity Verification... 122 5.2. CimTrak Network Device Agent Installation Windows Graphical... 122 5.3. CimTrak Network Device Installation Windows Command Line... 131 5.4. CimTrak Network Device Installation UNIX/Linux Command Line (PERL) 138 User Guidance 5

5.4.1. Unpack and Load Softare... 145 5.4.2. Configure the Network Device Agent... 148 5.4.3. Configure the Network Device Agent: Setup Method... 149 5.4.4. Configure the Network Device Agent: Configure Method... 150 5.4.5. Install rc (Start/Stop) Services... 152 5.4.6. Start Network Device Agent... 155 5.5. CimTrak Network Device Agent Installation UNIX/Linux Graphical... 156 5.6. CimTrak Network Device Agent Installation UNIX/Linux Command Line 166 5.7. CimTrak Network Device Agent Installation Windows Silent... 173 5.8. CimTrak Network Device Agent Installation UNIX/Linux Silent... 177 6. CimTrak Management Console Installation... 179 6.1. CimTrak Management Console Pre-Installation Integrity Verification... 179 6.2. CimTrak Management Console Installation Windows Graphical... 179 6.3. CimTrak Management Console Installation Windows Command Line... 188 6.4. CimTrak Management Console Installation Windows Silent... 192 7. CimTrak App Server... 194 7.1. CimTrak App Server Pre-Installation Integrity Verification... 194 7.2. CimTrak App Server Installation Windows GUI... 195 7.3. CimTrak App Server Installation Windows Silent... 200 7.4. CimTrak App Server Installation Linux GUI... 201 7.5. CimTrak App Server Installation Linux Command Line... 206 7.6. CimTrak App Server Installation Linux Silent... 208 8. CimTrak Command Line Utility Installation... 209 8.1. CimTrak Command Line Utility Pre-Installation Integrity Verification... 209 8.2. CimTrak Command Line Utility Installation Windows Graphical... 209 8.3. CimTrak Command Line Utility Installation Windows Command Line.. 216 8.4. CimTrak Command Line Utility Installation Windows Silent... 220 8.5. CimTrak Command Line Utility Installation UNIX/Linux Silent... 222 9. CimTrak FTP Repository Interface Installation... 224 9.1. CimTrak FTP Repository Interface Pre-Installation Integrity Verification. 224 9.2. CimTrak FTP Repository Interface Installation Windows Graphical... 224 6 CIMCOR CimTrak Integrity & Compliance Suite

9.3. CimTrak FTP Repository Interface Installation Windows Command Line 232 9.4. CimTrak FTP Repository Interface Installation Windows Silent... 237 10. CimTrak Ping Installation... 240 10.1. CimTrak Ping Pre-Installation Integrity Verification... 240 10.2. CimTrak Ping Installation Windows Graphical... 240 10.3. CimTrak Ping Installation Windows Command Line... 247 10.4. CimTrak Ping Utility Installation Windows Silent... 252 10.5. CimTrak Ping Utility Installation UNIX/Linux Silent... 254 11. CimTrak Proxy Installation... 256 11.1. CimTrak Proxy Pre-Installation Integrity Verification... 256 11.2. CimTrak Proxy Installation Windows Graphical... 256 11.3. CimTrak Proxy Installation Windows Command Line... 263 11.4. CimTrak Proxy Installation Windows Silent... 268 11.5. CimTrak Proxy Installation UNIX/Linux Silent... 270 12. Appendix A Documentation History... 273 12.1. CimTrak Installation Guidance Documentation History... 273 13. Appendix B Technical Support Information... 274 13.1. CimTrak Technical Support Services... 274 13.2. Support via Electronic Mail... 274 13.3. Support via Fax... 274 13.4. Support via Phone... 274 14. Appendix C Available Encryption Types... 276 15. Appendix D Key Exchange and Encryption Ciphers... 277 16. Appendix E Enterprise Worksheet... 278 17. Appendix F International Worksheet... 281 18. Appendix G FIPS Worksheet... 283 User Guidance 7

1. INTRODUCTION 1.1. CIMCOR CIMTRAK INTEGRITY & COMPLIANCE SUITE INTRODUCTION The CIMCOR CimTrak Integrity & Compliance Suite application provides a flexible file-based security solution that allows Administrators the capability to protect selected files, operating system components, and network device configurations against unauthorized changes from a centralized location within the network. CimTrak immediately identifies the change, determines if it is authorized and then institutes corrective action based on the application configuration. Since CimTrak maintains a master set of protected files, unauthorized changes can immediately be reversed to mitigate malicious activity or human error. The CimTrak Integrity Suite presents a multifaceted approach to protecting key information system resources and provides comprehensive change control tracking. The application consists of three required components: CimTrak Management Console 1.3 CimTrak File System Agent 1.4 Additionally the CimTrak Integrity Suite has a combination of multiple (optional) components including: CimTrak Network Device Agent - 1.5 CimTrak App Server (required for the Web Management Console) 1.6 CimTrak Tools - 1.7 These required and optional components will be discussed in subsequent sections of the documentation. Note: Additional CimTrak optional components may exist based on your region. Please contact an authorized CimTrak sales representative for details. 1.2. CIMTRAK MASTER REPOSITORY The CimTrak Master Repository component maintains a centralized store of protected files and change history within a centralized server. This store provides an isolated, compressed, and encrypted copy of critical files that allows for restoration in the event of unauthorized change and provides a basis for identifying changes made to protected files and configurations within the network. Additionally, the application supports a rollback capability which allows previous versions of a 8 CIMCOR CimTrak Integrity & Compliance Suite

protected file or configuration to be restored at a later date. For more information on installing the CimTrak Master Repository, please refer to section 3. 1.3. CIMTRAK MANAGEMENT CONSOLE The CimTrak Integrity Suite includes a Management Console which features a Graphic User Interface (GUI) that allows Administrators the capability to manage and configure the application from a separate Administrator management workstation within the network. The Management Console supports the selection of files and configurations on attached components to lock and configure an action to take in the event a change is detected. The Management Console provides access to a series of reports that detail changes made based on a series of saved baselines stored in the Master Repository. This capability can be used to superimpose changes over the stored baselines to immediately identify what aspects of the locked file were changed. For more information on the CimTrak installing Management Console, please refer to section 6. 1.4. CIMTRAK FILE SYSTEM AGENT The CimTrak File System Agent is installed on protected resources within the Operational Environment. The File System Agent provides real-time or poll based monitoring of protected files and configurations and identifies changes made to protected files. When a change is detected, the File System Agent communicates with the CimTrak Master Repository to report change status and (when configured) transfer the master file (Authoritative Copy) from the Master Repository to the File System Agent server to overwrite unauthorized changes. The File System Agent utilizes CimTrak configuration data to determine if the change is allowed based on Administrator policy settings for the subject file or configuration. The File System Agent can then institute one of the following actions on the change: Allow the change and log the event, update the master file baseline stored within the Master Repository, disallow the change and immediately overwrite the change with the master file copy from the Master Repository, or Prompt the authorized user to either allow or disallow the file change attempt. Additionally the CimTrak File System Agent can be configured to allow a combination of remediation settings. For more information on installing the CimTrak File System Agent, please refer to section 4. In addition to file change detection and remediation, the File System Agent provides configuration monitoring remediation. 1 Windows file system configuration monitoring includes: Read Access monitoring 1 Monitoring of the Windows registry allows for remediation when changes are detected. All other configuration monitoring features only provide monitoring capabilities. User Guidance 9

Monitoring and remediation of the Windows Registry Monitoring of Windows Local User accounts Monitoring of Windows Local Groups Monitoring of Windows Local Security Policy settings Monitoring of Windows Local Services Monitoring of Windows Local Device Drivers Monitoring of Windows Local Installed Software Monitoring of Windows Network Share Settings 1.5. CIMTRAK NETWORK DEVICE AGENT The CimTrak Network Device Agent component is installed on device monitoring resources within the Operational Environment. The CimTrak Network Device Agent provides real-time (SNMPv3) or poll based (SSHv1, SSHv2, Telnet) monitoring of protected files and identifies changes made to protected files. When a change is detected, the CimTrak File System Agent communicates with the CimTrak Master Repository to report change status and/or transfer the master file (authoritative copy) from the Master Repository to the Agent Network Host server to overwrite unauthorized changes. The CimTrak Network Device Agent utilizes CimTrak configuration data to determine if the change is allowed based on Administrator policy settings for the subject file. The Agent can then institute one of the following actions on the change: Allow the change and log the event, Update the master file baseline stored within the Master Repository, Disallow the change and immediately overwrite the change with the master file copy from the Master Repository, or Prompt the authorized user to either allow or disallow the file change attempt. For more information on installing the CimTrak Network Device Agent, please refer to section 5. 1.6. CIMTRAK APP SERVER The CimTrak App Server is a host for web-based applications which allow Administrators the capability to manage and configure the application from a separate Administrator management workstation from virtually anywhere. As various management applications are developed, these applications will be made available through the App Server for use at any workstation. Of the applications for the App Server, the Web Management Console acts as a web-based version of the classical Management Console which supports all of the features of the classical Management Console. The Web Management Console supports the selection of files and configurations on attached components to lock and configure an action to take in the event a change is detected. The Web Management Console provides access to a series of reports that detail changes made based on a series of saved baselines stored in the Master Repository. This capability can be used to superimpose changes over the stored baselines to immediately identify what aspects of the locked file were changed. For more information of how to use the Web Management Console, please review the Web Management Console User 10 CIMCOR CimTrak Integrity & Compliance Suite

Guide. For more information on installing the CimTrak App Server, please refer to section 7. 1.7. CIMTRAK TOOLS Optional CimTrak applications and command line tools exist allowing CimTrak Administrators to automate common CimTrak procedures. These tools include: CimTrak Command Line Utility CimTrak FTP Repository Interface CimTrak Ping Utility CimTrak Proxy Utility 2. SYSTEM REQUIREMENTS 2.1. CIMTRAK MASTER REPOSITORY SYSTEM REQUIREMENTS The following categories indicate the System Requirements necessary for the proper configuration and operation of the CimTrak Master Repository component. 2.1.1. OPERATING SYSTEM REQUIREMENTS Microsoft Windows XP SP2 or SP3 Microsoft Windows Server 2003 R1 Release, SP1, or SP2 Microsoft Windows Server 2003 R2 Release, SP1, or SP2 Microsoft Windows Vista Release, SP1, or SP2 Microsoft Windows Server 2008 R1 Release, SP1, or SP2 Microsoft Windows Server 2008 R2 Release, SP1, or SP2 Microsoft Windows 7 Release, SP1 Microsoft Windows 8.x Microsoft Windows Server 2012 Linux Kernel 2.6.32 and Above (Red Hat & CentOS Distributions) 2.1.2. SYSTEM REQUIREMENTS Personal computer or server with Pentium-compatible processor Pentium 3 1.2 GHz or greater 512 MB RAM available 220 MB hard disk space 10/100/1000 Mbps Network Interface User Guidance 11

2.1.3. MICROSOFT WINDOWS INSTALLATION PRE-REQUISITES None 2.1.4. CIMTRAK INSTALLED COMPONENT PRE-REQUISITES None 2.2. CIMTRAK MANAGEMENT CONSOLE SYSTEM REQUIREMENTS The following categories indicate the System Requirements necessary for the proper configuration and operation of the CimTrak Management Console component. 2.2.1. OPERATING SYSTEM REQUIREMENTS Microsoft Windows XP SP2 or SP3 Microsoft Windows Server 2003 R1 Release, SP1, or SP2 Microsoft Windows Server 2003 R2 Release, SP1, or SP2 Microsoft Windows Vista Release, SP1, or SP2 Microsoft Windows Server 2008 R1 Release, SP1, or SP2 2 Microsoft Windows Server 2008 R2 Release, SP1, or SP2 3 Microsoft Windows 7 Release, SP1 Microsoft Windows 8.x Microsoft Windows Server 2012 2.2.2. SYSTEM REQUIREMENTS Personal computer or server with Pentium-compatible processor Pentium 3 1.2 GHz or greater 512 MB RAM available 200 MB hard disk space 2.2.3. SCREEN RESOLUTION 800x600 pixels 2.2.4. MICROSOFT WINDOWS INSTALLATION PRE-REQUISITES None 2 Non-core version only 3 Non-core version only 12 CIMCOR CimTrak Integrity & Compliance Suite

2.2.5. CIMTRAK INSTALLED COMPONENT PRE-REQUISITES None 2.3. CIMTRAK FILE SYSTEM AGENT SYSTEM REQUIREMENTS The following categories indicate the System Requirements necessary for the proper configuration and operation of the CimTrak File System Agent component. 2.3.1. OPERATING SYSTEM REQUIREMENTS Microsoft Windows XP SP3 Microsoft Windows Server 2003 R1 Release, SP1, or SP2 Microsoft Windows Server 2003 R2 Release, SP1, or SP2 Microsoft Windows Vista Release, SP1, or SP2 Microsoft Windows Server 2008 R1 Release, SP1, or SP2 Microsoft Windows Server 2008 R2 Release, SP1, or SP2 Microsoft Windows 7 Release, SP1 Microsoft Windows 8.x Microsoft Windows Server 2012 Sun SPARC/x86 Solaris 10 Update 8 and above** OpenSolaris 2008.05 and above ** Linux Kernel 2.4.21 to 2.6.31 ** Linux Kernel 2.6.32 and above AIX 6.1 and above ** HP-UX Itanium 11i V2 (11.23) and above ** HP-UX PA-RISC 11i V2 (11.23) and above ** Mac Intel OS 10.4.4 and above 2.3.2. SYSTEM REQUIREMENTS Personal computer or server with Pentium-compatible processor Pentium 3 1.2 GHz or greater 512 MB RAM available 200 MB hard disk space 2.3.3. MICROSOFT WINDOWS INSTALLATION PRE-REQUISITES None 2.3.4. LINUX INSTALLATION PRE-REQUISITES TAR archiving utility GREP line and pattern matching utility STRINGS character string printer utility User Guidance 13

AWK pattern scanning and text processing language BC arbitrary precision calculator language 2.3.5. CIMTRAK INSTALLED COMPONENT PRE-REQUISITES CimTrak Master Repository 2.4. CIMTRAK NETWORK DEVICE AGENT SYSTEM REQUIREMENTS The following categories indicate the System Requirements necessary for the proper configuration and operation of the CimTrak Network Device Agent component. 2.4.1. OPERATING SYSTEM REQUIREMENTS Microsoft Windows XP SP2 or SP3 Microsoft Windows Server 2003 R1 Release, SP1, or SP2 Microsoft Windows Server 2003 R2 Release, SP1, or SP2 Microsoft Windows Vista Release, SP1, or SP2 Microsoft Windows Server 2008 R1 Release, SP1, or SP2 Microsoft Windows Server 2008 R2 Release, SP1, or SP2 Microsoft Windows 7 Release, SP1 Microsoft Windows 8.x Microsoft Windows Server 2012 Sun SPARC/x86 Solaris 10 Update 8 OpenSolaris 2008.05 and above Linux 2.4.21 and above AIX 6.1 and above HP-UX Itanium 11i V2 (11.23) and above HP-UX PA-RISC 11i V2 (11.23) and above Mac Intel OS 10.4.4 and above 2.4.2. SYSTEM REQUIREMENTS Personal computer or server with Pentium-compatible processor Pentium 3 1.2 GHz or greater 512 MB RAM available 200 MB hard disk space 2.4.3. MICROSOFT WINDOWS INSTALLATION PRE-REQUISITES None 14 CIMCOR CimTrak Integrity & Compliance Suite

2.4.4. LINUX INSTALLATION PRE-REQUISITES TAR archiving utility GREP line and pattern matching utility STRINGS character string printer utility AWK pattern scanning and text processing language BC arbitrary precision calculator language 2.4.5. CIMTRAK INSTALLED COMPONENT PRE-REQUISITES CimTrak Master Repository 2.5. CIMTRAK TOOLS COMMAND LINE UTILITY SYSTEM REQUIREMENTS The following categories indicate the System Requirements necessary for the proper configuration and operation of the CimTrak Tools component. 2.5.1. OPERATING SYSTEM REQUIREMENTS Microsoft Windows XP SP2 or SP3 Microsoft Windows Server 2003 R1 Release, SP1, or SP2 Microsoft Windows Server 2003 R2 Release, SP1, or SP2 Microsoft Windows Vista Release, SP1, or SP2 Microsoft Windows Server 2008 R1 Release, SP1, or SP2 Microsoft Windows Server 2008 R2 Release, SP1, or SP2 Microsoft Windows 7 Release, SP1 Microsoft Windows 8.x Microsoft Windows Server 2012 Sun SPARC/x86 Solaris 10 Update 8 OpenSolaris 2008.05 and above Linux 2.4.21 and above AIX 6.1 and above HP-UX Itanium 11i V2 (11.23) and above HP-UX PA-RISC 11i V2 (11.23) and above Mac Intel OS 10.4.4 and above 2.5.2. SYSTEM REQUIREMENTS Personal computer or server with Pentium-compatible processor Pentium 3 1.2 GHz or greater 512 MB RAM available 5 MB hard disk space User Guidance 15

2.5.3. MICROSOFT WINDOWS INSTALLATION PRE-REQUISITES None 2.5.4. LINUX INSTALLATION PRE-REQUISITES TAR archiving utility GREP line and pattern matching utility STRINGS character string printer utility AWK pattern scanning and text processing language BC arbitrary precision calculator language 2.5.5. CIMTRAK INSTALLED COMPONENT PRE-REQUISITES None 2.6. CIMTRAK TOOLS FTP REPOSITORY INTERFACE SYSTEM REQUIREMENTS The following categories indicate the System Requirements necessary for the proper configuration and operation of the CimTrak Tools component. 2.6.1. OPERATING SYSTEM REQUIREMENTS Microsoft Windows XP SP2 or SP3 Microsoft Windows Server 2003 Release, SP1, or SP2 Microsoft Windows Vista Release, SP1, or SP2 Microsoft Windows Server 2008 R1 Release, SP1, or SP2 Microsoft Windows Server 2008 R2 Release, SP1, or SP2 Microsoft Windows 7 Release, SP1 Microsoft Windows 8.x Microsoft Windows Server 2012 2.6.2. SYSTEM REQUIREMENTS Personal computer or server with Pentium-compatible processor Pentium 3 1.2 GHz or greater 512 MB RAM available 5 MB hard disk space 2.6.3. MICROSOFT WINDOWS INSTALLATION PRE-REQUISITES None 16 CIMCOR CimTrak Integrity & Compliance Suite

2.6.4. LINUX INSTALLATION PRE-REQUISITES Not Supported 2.6.5. CIMTRAK INSTALLED COMPONENT PRE-REQUISITES CimTrak Master Repository 2.7. CIMTRAK TOOLS PING UTILITY SYSTEM REQUIREMENTS The following categories indicate the System Requirements necessary for the proper configuration and operation of the CimTrak Tools component. 2.7.1. OPERATING SYSTEM REQUIREMENTS Microsoft Windows XP SP2 or SP3 Microsoft Windows Server 2003 R1 Release, SP1, or SP2 Microsoft Windows Server 2003 R2 Release, SP1, or SP2 Microsoft Windows Vista Release, SP1, or SP2 Microsoft Windows Server 2008 R1 Release, SP1, or SP2 Microsoft Windows Server 2008 R2 Release, SP1, or SP2 Microsoft Windows 7 Release, SP1 Microsoft Windows 8.x Microsoft Windows Server 2012 Sun SPARC/x86 Solaris 10 Update 8 OpenSolaris 2008.05 and above Linux 2.4.21 and above AIX 6.1 and above HP-UX Itanium 11i V2 (11.23) and above HP-UX PA-RISC 11i V2 (11.23) and above Mac Intel OS 10.4.4 and above 2.7.2. SYSTEM REQUIREMENTS Personal computer or server with Pentium-compatible processor Pentium 3 1.2 GHz or greater 512 MB RAM available 5 MB hard disk space 2.7.3. MICROSOFT WINDOWS INSTALLATION PRE-REQUISITES None 2.7.4. LINUX INSTALLATION PRE-REQUISITES TAR archiving utility User Guidance 17

GREP line and pattern matching utility STRINGS character string printer utility AWK pattern scanning and text processing language BC arbitrary precision calculator language 2.7.5. CIMTRAK INSTALLED COMPONENT PRE-REQUISITES None 2.8. CIMTRAK TOOLS PROXY UTILITY SYSTEM REQUIREMENTS The following categories indicate the System Requirements necessary for the proper configuration and operation of the CimTrak Tools component. 2.8.1. OPERATING SYSTEM REQUIREMENTS Microsoft Windows XP SP2 or SP3 Microsoft Windows Server 2003 R1 Release, SP1, or SP2 Microsoft Windows Server 2003 R2 Release, SP1, or SP2 Microsoft Windows Vista Release, SP1, or SP2 Microsoft Windows Server 2008 R1 Release, SP1, or SP2 Microsoft Windows Server 2008 R2 Release, SP1, or SP2 Microsoft Windows 7 Release, SP1 Microsoft Windows 8.x Microsoft Windows Server 2012 Sun SPARC/x86 Solaris 10 Update 8 OpenSolaris 2008.05 and above Linux 2.4.21 and above AIX 6.1 and above HP-UX Itanium 11i V2 (11.23) and above HP-UX PA-RISC 11i V2 (11.23) and above Mac Intel OS 10.4.4 and above 2.8.2. SYSTEM REQUIREMENTS Personal computer or server with Pentium-compatible processor Pentium 3 1.2 GHz or greater 512 MB RAM available 5 MB hard disk space 2.8.3. MICROSOFT WINDOWS INSTALLATION PRE-REQUISITES None 18 CIMCOR CimTrak Integrity & Compliance Suite

2.8.4. LINUX INSTALLATION PRE-REQUISITES TAR archiving utility GREP line and pattern matching utility STRINGS character string printer utility AWK pattern scanning and text processing language BC arbitrary precision calculator language 2.8.5. CIMTRAK INSTALLED COMPONENT PRE-REQUISITES CimTrak Master Repository 3. CIMTRAK MASTER REPOSITORY INSTALLATION 3.1. CIMTRAK MASTER REPOSITORY PRE-INSTALLATION WORKSHEET Prior to installing the CimTrak Master Repository, CIMCOR recommends the installing user fill out the Pre-installation Worksheet located in the Appendix of this guide. Filling out the Pre-Installation Worksheet will provide the installing user with valuable configuration data necessary for completing installation dialogs. CIMCOR recommends installing the CimTrak Master Repository on a secured server or personal computer with all current operating system patches in place. This secured server or personal computer should be dedicated to only hosting the CimTrak Master Repository. The CimTrak Master Repository is not designed to be installed on a server or personal computer running Microsoft Active Directory or delegated to function as a Domain Controller. Note: The installing user must have local or domain administrative privileges to successfully complete the installation. Failure to have appropriate privileges during the installation process may result in incorrect functionality of the product. 3.2. CIMTRAK MASTER REPOSITORY PRE-INSTALLATION INTEGRITY VERIFICATION Before beginning the installation process CIMCOR recommends verifying the authenticity of the Installation file(s). Each CimTrak component has an associated SHA1 hash value calculated on installation components. The associated SHA1 hash value can be obtained from the CIMCOR website located at http://cimcor.com/downloads. User Guidance 19

3.3. CIMTRAK MASTER REPOSITORY INSTALLATION WINDOWS GRAPHICAL Navigate to the where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. Once the CimTrak Installation has initiated a dialog will appear providing the installing user the opportunity to select their language. 4 Please select the preferred language for the installation process and then click OK to continue the CimTrak Installation Wizard. Figure 1: Language selection dialog The CimTrak End User License dialog will appear. Please read through the agreement in its entirety. Once you have completed reading the CimTrak End User License agreement it is necessary to indicate whether or not you agree with the terms and conditions. It is necessary to accept the terms of the CimTrak license agreement in order to continue with the CimTrak Installation Wizard. To accept the terms and conditions click the I accept the terms of the license agreement radio button followed by clicking Next. To reject the terms and conditions click the I do not accept the terms of the license agreement radio button and then contact your CIMCOR sales representative immediately. 4 Language selection does not apply to the FIPS version. 20 CIMCOR CimTrak Integrity & Compliance Suite

Figure 2: CimTrak End User License Agreement dialog The CimTrak Installation Welcome dialog will appear. Please verify the installation version is consistent with your purchase order and then click Next to continue the installation process. Figure 3: CimTrak Installation Welcome dialog The installation location dialog will appear. CIMCOR recommends leaving the installation path as its default to facilitate with any future support needs or product update requirements. Changing the installation directory is possible by either manually typing the installation directory path in the Directory Name text box or User Guidance 21

graphically selecting the installation location by clicking the Browse button. Select the intended installation destination and then click Next to continue the installation process. Note: The installation directory will contain the supporting components necessary for the functionality of the CimTrak Integrity Suite components. The installing user will be prompted with the Master Repository authoritative copy and intrusion storage location in a subsequent dialog. Note: Clicking Back on any CimTrak Installation Wizard dialog will return the installing user to the previous page of the installation. Figure 4: CimTrak supporting component installation location dialog The CimTrak Features dialog will appear prompting the installing user to select the desired CimTrak component(s) to install. CIMCOR recommends installing the File System Agent, Master Repository, and Management Console on separate systems. However, it is possible to install all the components on a single system if desired. To install the CimTrak Master Repository click CimTrak Repository followed by clicking Next to continue the installation process. 22 CIMCOR CimTrak Integrity & Compliance Suite

Figure 5: CimTrak component selection dialog The component installation conformation dialog will appear. Confirm the displayed features correspond with your selection and that your system has suitable disk space to facilitate the installation. To make changes to installation options click the Back button. Click Install to being the installation process. A progress screen will display while the selected component(s) are being installed. Figure 6: Component installation confirmation dialog Once the supporting components have installed the Master Repository Database User dialog will display. This dialog provides the installing user the opportunity to User Guidance 23

customize the user-level service account required to run the integrated PostgreSQL database. This account is intended to add additional security to the Master Repository operating system by limiting the privileges available to the account in the event the account has been compromised. This account does not have Administrator, Auditor, or Standard User privileges granted for access to the CimTrak Management Console. To accept the defaults leave the CimTrak username, click the No, I would like to have the password automatically generated radio button, and then click Next to continue the installation process. To modify the username click into the Username text box and enter a unique username. To generate a custom password click the Yes, I would like to enter my own password radio button and then enter a password in the Please enter password and Please confirm password text boxes. Note: Randomly entered passwords may not conform to your organization s password complexity requirements. When entering a custom password please make sure to take into consideration any password complexity requirements enforced by your organization. You will be prompted if the password s complexity does not meet organizational requirements. Note: If an existing username is entered you will be prompted to create a new account. The installer must create a new user on the system to continue the installation process. Figure 7: Master Repository Database User dialog The Backup Master Repository Database key dialog will display. The installing user has the option to save a backup of the Master Repository Database Key. This key can be used by CIMCOR CimTrak Technical Support Services to decrypt the 24 CIMCOR CimTrak Integrity & Compliance Suite

contents of the Master Repository database in the event of a CimTrak Master Repository host failure. This password key should be saved in a secure location. If the key is not saved and a CimTrak Master Repository host failure occurs the protected data will be irreversibly lost. To create a backup Master Repository key enter a password in both the Please enter password key and Please confirm password key text boxes, select the location to save the backup key to, and then click Next to continue the installation process. To decline creating a backup key (not recommended) leave all text boxes empty, click the No, I would not like to store a backup of the Repository key radio button, and then click Next to continue the installation process. Figure 8: Master Repository Database Backup Key dialog Once the PostgreSQL database user-level service account and optional backup Master Repository key have been created the CimTrak Master Repository will initialize. The CimTrak Installation Wizard will prompt the installing user for approval to create a firewall rule to allow external required and optional CimTrak components the capability to communicate with the Master Repository through a Windows firewall. The opened port will correspond to the Port number specified in the following dialog. To approve the creation of the firewall rule click Yes. Click No to deny the creation of the firewall rule. Note: Failing to create a firewall rule to facilitate communications with the Master Repository will prevent the CimTrak Integrity Suite from functioning properly. CIMCOR recommends creating the firewall rule. The creation of firewall rules only applies to a Windows firewall. If a third-party firewall is used it must be manually configured to allow communications between the CimTrak Master Repository and external components. User Guidance 25

Figure 9: Repository firewall rule dialog The CimTrak Installation Wizard will display the Master Repository Configuration dialog. This dialog allows the installing user to indicate the following configurations: TCP/IP port number used for Master Repository communications Data Storage Directory used to store authoritative copy and intrusion files Master Repository Auto-Restart toggle and associated interval Encryption, Key Length, and HMAC method used for Master Repository encryption and decryption Toggle to enable/disable WebTrends log generation It is necessary to configure the Master Repository to match the needs of your organization. Specify the TCP/IP port number (default is 3749) on which the Master Repository will communicate, the directory where the Master Repository authoritative copy and intrusion files will reside, the type of encryption used for encryption and decryption of data stored in the Master Repository (see Appendix for available cryptology settings for your version of CimTrak ), whether or not to automatically restart the Master Repository in the event of unexpected service termination, and whether or not to enable WebTrends Logging to use WebTrends with CimTrak log files. When finished, click Next continue the installation process. The Password Validation Requirements dialog will display. Note: WebTrends logging is an output file format that is used by WebTrends specific file analysis programs. By default output for WebTrends Logging is stored in C:\Program Files\Cimcor\CimTrak \CimTrak Server\WTLogs. 26 CIMCOR CimTrak Integrity & Compliance Suite

Figure 10: CimTrak Master Repository configuration dialog The Password Validation dialog allows the installing user to customize CimTrak password requirements to meet the needs of their organization. Available options for password validation requirements include: None No password complexity requirements Advanced Password Policy (AR 25-2 Compliant) User-entered password User supplied password requiring the following: Require 2 lower case, 2 upper case, 2 numbers, and 2 special characters Check against password dictionary Require minimum password length of t10 characters Passwords expire after 30 days Prevent the use of the last 10 passwords Lock out the account after 10 password failures Lock out failed user for 60 minutes Advanced Password Policy (AR 25-2 Compliant) Randomly-generated password CimTrak supplied password requiring the following: Require 2 lower case, 2 upper case, 2 numbers, and 2 special characters Random password generation Check against password dictionary Require minimum password length of 10 characters Passwords expire after 30 days Prevent the use of the last 10 passwords Lock out the account after 10 password failures User Guidance 27

Lock out failed user for 60 minutes Custom Settings Combination of any or all of the following requirements: Require 2 lower case, 2 upper case, 2 numbers, and 2 special characters Random password generation Check against password dictionary Require minimum password length of t10 characters Passwords expire after 30 days Prevent the use of the last 10 passwords Lock out the account after 10 password failures Lock out failed user for 60 minutes Select your password validation requirements and then click Next to continue the installation process. The Repository SSL communication settings dialog will display. Note: If an account is locked, the account can be locked for a specified number of minutes or locked out indefinitely. All communications between CimTrak components are encrypted using userspecified key exchange and encryption ciphers. It is necessary for the installing user to specify the encryption cipher to use for communications. Please note that available cipher types vary for differing CimTrak releases. Please see the Appendix for a complete list of available key exchange and encryption ciphers for CimTrak releases. When completed, click Next to continue the installation process. Figure 11: CimTrak Master Repository SSL communication settings 28 CIMCOR CimTrak Integrity & Compliance Suite

CimTrak provides various forms of external event alerting. These forms include WebTrends, Syslog, SNMP, and SMTP. The following instructions detail configuring Syslog, SNMP, and SMTP notifications. Please note that it is possible to configure these notifications after the installation has completed using the CimTrak Management Console. Syslog is a method and standard for logging message output from applications. CimTrak can be configured to send alerts to a Syslog manager. On the Syslog Configuration dialog enter the IP Address, Protocol, and Port number of a Syslog manager. Leave the Syslog IP Address text box empty if you do not have or do not wish to integrate with a Syslog manager. When finished click Next to continue the installation process. Figure 12: Syslog Configuration dialog SNMP (Simple Network management Protocol) is a networking protocol used with network management systems to monitor emergency conditions that may require administrative action. CimTrak allows alerts to be sent to a SNMP network management system (manager). On the SNMP Configuration dialog enter the IP Address, Port number, and SNMP Community name of a valid SNMP manager. Leave the SNMP IP Address text box empty if you do not have or do not wish to integrate with a SNMP manager. When finished click Next to continue the installation process. User Guidance 29

Figure 13: SNMP Configuration Dialog SMTP is a communication standard for sending electronic mail (e-mail). CimTrak provides support for SMTP communications. If you would like to configure e-mail alerts, enter the SMTP server IP Address, Port number, authenticating SMTP server username, authenticating SMTP server password, originating address, display name, and email transmission interval. Please note that the originating address (i.e. CimTrak Repository@YourCompany.com) and display name (i.e. CimTrak Server) do not need to be valid accounts on the associated SMTP server. Leave the SMTP IP Address text box empty if you do not have or do not wish to transmit SMTP messages. If your email server require TLS please make sure to select the TLS checkbox at the bottom of the SMTP configuration dialog. When finished click Next to continue the installation process. Note: The originating address and display name do not need to exist on the transmitting SMTP server. This information is simply appended to the e-mail header so that the receiving account can easily recognize the e-mail s purpose and origination point. Note: In order for CimTrak to send e-mail alerts, the Master Repository must be configured with additional information. This additional configuration is discussed in subsequent sections. 30 CIMCOR CimTrak Integrity & Compliance Suite

Note: Multiple alerts are grouped into a single e-mail message that is sent at the specified interval. Grouping messages prevents multiple emails to be sent that may represent a single change event. Figure 14: SMTP configuration dialog The CimTrak Serial Number dialog will display. Enter a valid CimTrak serial number to authenticate your copy of CimTrak. Serial numbers may be obtained from your purchased License Certificate or an authorized CimTrak sales representative. If you are testing CimTrak or do not yet wish to enter your serial number it is possible to use CimTrak in limited trial mode 5. It is possible to enter additional serial numbers through the CimTrak Management Console. When completed, click Next to continue the installation process. Once the serial number has been entered the CimTrak Installation Wizard will attempt to communicate with the CimTrak Activation server to activate the serial number. 5 Limited trial mode allows CimTrak to function for 30 days with a single File System Agent attached. After the 30 days you will no longer be able to use CimTrak. User Guidance 31

Figure 15: CimTrak Serial Number dialog In the event the installer cannot communicate with the Activation Server additional activation steps may be necessary to activate CimTrak. The CimTrak Installation Wizard will display a dialog providing your entered Serial Number, Activation Key, and activation URL. It will be necessary to use a Web Browser to navigate to the URL listed in the dialog. Figure 16: CimTrak activation dialog 32 CIMCOR CimTrak Integrity & Compliance Suite

Complete the Serial, Activation Key, First Name, Last Name, Company, Address, City, State/Province, Zip/Postal Code, Country, Phone, and Email Address text boxes using the information provided when purchasing CimTrak and then click Submit on the webpage. Figure 17: http://activation.cimcor.com CimTrak will process the submitted information and then generate a unique Activation Code. Please note the Activation Code and then enter it in the Activation Code text box in the CimTrak Activation dialog. Click Next to continue. The CimTrak Serial Number is now activated. The Management Console user account setup dialog will appear. It is necessary to set up the default administrator username and password for the CimTrak Management Console. Ensure that your password matches the validation requirements selected earlier. User Guidance 33

Figure 18: CimTrak User Account Dialog Note: The account you create is your first CimTrak Management Console administrative account. Do not lose this username/password as it is currently the only account capable of connecting to your CimTrak Management Console. Note: All CimTrak user accounts are case sensitive. Click Next to continue. 34 CIMCOR CimTrak Integrity & Compliance Suite

When the components have been completely installed, the installer will take you to the Summary Information Screen. Figure 19 Summary Information Screen Click Finish to complete the installation. Installation of the CimTrak Master Repository is complete. User Guidance 35

3.4. CIMTRAK MASTER REPOSITORY INSTALLATION WINDOWS COMMAND LINE The way in which the non-graphical installation of the CimTrak Master Repository is started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. NOTE: Agents, or object groups that have spaces in their names will require the use of double quotes in order to properly execute. This will start the InstallShield Wizard. 36 CIMCOR CimTrak Integrity & Compliance Suite

The first screen is language selection. Enter a 1 or 2 and press Enter to submit your selection. Then type 0 and press Enter to move to the next screen. Figure 20 Language Selection NOTE: After every screen in which the user inputs configuration settings, the user is given the option to go to the previous screen, cancel the installation, redisplay the current page, as well as continue to the next page. Figure 21 Options after every screen User Guidance 37

The next screen is the End User License Agreement. You will need to read and accept the EULA to continue the installation and use CimTrak. When done, type 1 and press Enter to accept the agreement, then type 0 and press Enter to move to the next screen. Figure 22 EULA 38 CIMCOR CimTrak Integrity & Compliance Suite

A Welcome screen will appear. Press the Enter key to continue past this screen. Figure 23 CimTrak Welcome Screen The next screen shows the directory where CimTrak will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 24 Installation Directory Now you can select the components to be installed. To select the components, enter the corresponding number of the component. When done, type 0 to move to the next screen. Figure 25 Choose to install CimTrak Master Repository User Guidance 39

The next screen will confirm your installation selections. Select Next to begin the install. Figure 26 Confirmation Screen The installation of the CimTrak Master Repository will proceed. Figure 27 Installing CimTrak Master Repository 40 CIMCOR CimTrak Integrity & Compliance Suite

The installer will ask the user if a firewall rule can be added to the Windows Firewall (see image below.) This allows communication between the CimTrak Master Repository and other components on different computers. Figure 28 Add Firewall Rule If Yes is chosen, the CimTrak installer will set up an Exception in the Windows Firewall: all communication to and from the CimTrak Master Repository and the other CimTrak components will be allowed by the Windows Firewall, regardless of the port number used. This way any port number can be chosen during installation. NOTE: This only affects the built-in Windows Firewall. If a third-party firewall package is used, that firewall must be configured so that communication between the CimTrak Master Repository and the other CimTrak components will be allowed. User Guidance 41

Now that the files are installed, CimTrak must set up the CimTrak Master Repository database. CimTrak must create a user on the system. This user must have User Level privileges only. CimTrak can create a generic user with a default username of CimTrak. By default, the password must be entered at this point. The password can also be randomly generated (However, in some cases the random password may not meet the password policies of certain networks or systems. In these cases, the password should be entered at this point.) NOTE: If an existing username is entered, the installation cannot continue. The installer must create a new user on the system to continue the installation process; the user must enter a non-existing username. Figure 29 New Windows User 42 CIMCOR CimTrak Integrity & Compliance Suite

Optional encryption may additionally be added to the CimTrak Database by entering a password. This password should be saved in a secure manner. In the event that Cimcor, Inc. Support Technicians are asked to access the CimTrak Database, the password entered on this screen will be needed by Support. If no additional encryption is desired, then leave the password field blank. Also, the administrator has the option to save a backup of the CimTrak Master Repository key. This key, separate from the above password, can be used to decrypt the data in the CimTrak Master Repository in the event of a system failure. Figure 30 Create Password for Repository database and Repository Key Once the files have been installed and the CimTrak Master Repository initialization is complete, the CimTrak Master Repository will need to be configured. You will select the port that the CimTrak Master Repository will use to communicate with CimTrak File System Agents. The default port is 3749. Figure 31 TCP/IP Port for Repository Next, the location of the CimTrak Master Repository must be chosen. You may use the default directory (recommended) or select a directory based on your specific needs. Figure 32 Set Data Storage Directory User Guidance 43

You then have the option to automatically restart CimTrak Master Repository in the event of program termination. Figure 33 Automatic Restart of Repository Then, the encryption of the CimTrak Master Repository data will need to be determined. Figure 34 Encryption of Repository Lastly, you may select whether WebTrends Logging will be used. Figure 35 Set WebTrends Logging (WebTrends logging is an output file format that is used by WebTrends-specific file analysis programs. If you are not sure if you are using WebTrends logging, ask your system administrator. In a default installation, output for WebTrends Logging is stored in C:\Program Files\Cimcor\CimTrak \CimTrak Server\WTLogs) 44 CIMCOR CimTrak Integrity & Compliance Suite

The CimTrak Master Repository now needs to know what properties will be required for the user passwords. There are four basic choices: 1. No requirements 2. AR 25-2 Standard with a user-entered password 3. AR 25-2 Standard with a randomly-generated password 4. Custom Password settings: Require 2 lower case, 2 upper case, 2 numbers, and 2 special characters. Random Password Generation. Check against password dictionary. This prevents easy-to-crack passwords. Require minimum password length of a specified number of characters. Passwords expire after specified number of days. Prevent use of the last specified number of passwords. Lock out account after specified number of logon failures. If an account is locked, the account can be locked for a specified number of minutes (or locked out indefinitely.) NOTE: If Custom settings are chosen, then the Administrator will define the following settings. Figure 36 Password validation settings User Guidance 45

Next, you must determine how the data will be encrypted between the CimTrak components and the CimTrak Master Repository. Once you make this selection, click on Enter. Figure 37 Encryption information The Communication Encryption settings can be changed at any time. 46 CIMCOR CimTrak Integrity & Compliance Suite

The next screen allows you to set up Syslog alerts. If you will not use Syslog alerts, leave the IP Address blank. Figure 38 Syslog Information Now, you will be asked to set up SNMP alerts. If you will not use SNMP alerts, leave the IP Address blank. Figure 39 SNMP Information Next, you can set up email alerts. If you will not use the Email server to send alerts, leave the IP Address blank. See the User Guide for information on how to configure CimTrak to send Email alerts. Figure 40 Email Information User Guidance 47

In order to use CimTrak, you must enter a Serial number. If you do not enter a Serial number, CimTrak will only work as a 30-day trial version. Serial numbers may be obtained from your License Certificate or Sales Representative. Figure 41 Serial Number Lastly, you will need to set-up the primary administrator account. Be sure that the password follows the rules you established earlier. Make sure you keep the password stored in a safe location. Figure 42 Create Administrator CimTrak User This completes the set up process of the CimTrak Master Repository. Figure 43 Summary Information Screen 3.5. CIMTRAK MASTER REPOSITORY INSTALLATION WINDOWS SILENT The way in which the silent installation of the CimTrak Master Repository is started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. NOTE: It is necessary to run the command prompt in administrator mode for Windows Vista operating systems and later. 48 CIMCOR CimTrak Integrity & Compliance Suite

Modifications have been made in this version of CimTrak to simplify the deployment of CimTrak components using a software deployment tool such as Microsoft SMS, Symantec/Altris Deployment Manager, IBM Tivoli, and others. There is multiple platform support for the silent installer. The silent installer simplifies the deployment process of CimTrak to multiple servers. It reduces the time for deployment and allows administrators to more time to concentrate on policy and configuration tasks. To install the Repository in silent mode, it must be called in this manner: setupwin32.exe -silent -V InstallRepository="1" -V Username="[username]" -V Password="[password]" Parameters: - InstallationDirectory The base directory for the installation (optional, default is "C:\Program Files\Cimcor\CimTrak ", must not exceed 4096 characters) - LogFile The path where log messages will be written (optional, default is no Log File)) - DBUsername The name of the user that will be created on the operating system to run the Repository database process (must not exceed 20 characters, default is product name ("CimTrak ")) - DBUserPassword The password for the above user (must not exceed 127 characters, must adhere to your Network password policy, a password will be randomly generated if one isn't provided) - DBKey The password key for the Repository database (must not exceed 20 characters, default is no database key). - DBKeyBackupPath The directory where a file containing the above password key will be written (must not exceed 4096 characters, will be ignored if DBKey isn't provided) - AddRepositoryFirewallRule Whether to add a firewall rule for the Repository, if necessary ("0" for no, "1" for yes, default is "1") - Port User Guidance 49

The port the Repository will use for communication (must be between "1" & "65535", default is "3749") - DataStoragePath The directory where the data pertaining to watched files and well as intrusions will be stored (must not exceed 4096 characters, default is "[base installation path]\cimtrak Server\Storage") - AutoRestartRepository The amount of seconds to wait before automatically restarting the Repository, if necessary (must be between "0" and "86400", "0" to not automatically restart, default is "0") - RepositoryEncryption The type of encryption used for the Repository data (must be one of the available encryptions, defaults are listed below) - RepositoryKeyLength The key length of the encryption used for the Repository data (must be one of the available key lengths for the selected encryption, defaults are listed below) - RepositoryHMAC The HMAC type used for the Repository data (must be one of the available HMACs, defaults are listed below) - OpenSSLCommunication The OpenSSL type used for Repository communication (must be one of the available OpenSSL communication types, defaults are listed below) - WebTrendsLogging Whether to add a firewall rule for the Repository, if necessary ("0" for no, "1" for yes, default is "0") - PasswordPolicy The set of password polices to use ("0" for none, "1" for AR 25-2 compliant policy, "2" for custom) - no AR 25-2 for Ether, "1" is custom (default is "0") - RequireCharacters Whether to require 2 uppercase, lowercase, numbers & special characters (won't be evaluated unless PasswordPolicy is custom, "0" for no, "1" for yes, default is "1") - PasswordDictionary Whether to use a password dictionary (won't be evaluated unless PasswordPolicy is custom, "0" for no, "1" for yes, default is "1") 50 CIMCOR CimTrak Integrity & Compliance Suite

- PasswordLength The minimum password length requirement (won't be evaluated unless PasswordPolicy is custom, must be between "0" and "50", "0" for no length requirement, default is "10") - PasswordAging The amount of days that a password can be used before it expires (won't be evaluated unless PasswordPolicy is custom, must be between "0" and "365", "0" to have passwords never expire, default is "30") - PasswordReuse The amount of previous passwords that can't be reused (won't be evaluated unless PasswordPolicy is custom, must be between "0" and "30", "0" to be able to reuse all passwords, default is "10") - PasswordLockout The amount of failed logons that occur before the account will be locked out (won't be evaluated unless PasswordPolicy is custom, must be between "0" and "10", "0" to never lock out, default is "10") - PasswordLockoutTime The amount of minutes that a user will be locked out in the event that the maximum number of logon failures was exceeded (won't be evaluated unless PasswordPolicy is custom, must be between "0" and "4320", "0" to never lock out, default is "60") - SyslogAddress The IP address of the Syslog server (must not exceed 50 characters, default is no address) - SyslogProtocol The protocol of the Syslog server (won't be evaluated unless SyslogAddress is provided, must be either "UDP" or "TCP", default is "UDP") - SyslogPort The port of the Syslog server (won't be evaluated unless SyslogAddress is provided, must be between "1" & "65535", default is "514" for "UDP" protocol, "1465" for "TCP") - SNMPAddress The address of the SNMP server (must not exceed 50 characters, default is no address) - SNMPPort The port of the SNMP server (won't be evaluated unless SNMPAddress is provided, must be between "1" & "65535", default is "162") User Guidance 51

- SNMPCommunity The community of the SNMP server (must not exceed 100 characters, default is "Public") - SMTPAddress The address of the SMTP server (must not exceed 50 characters, default is no address) - SMTPPort The port of the SMTP server (won't be evaluated unless SMTPAddress is provided, must be between "1" & "65535", default is "25") - SMTPUsername The username used to log in to the SMTP server (won't be evaluated unless SMTPAddress is provided, must not exceed 50 characters, required if SMTPPassword is provided) - SMTPPassword The password used to log in to the SMTP server (won't be evaluated unless SMTPAddress is provided, must not exceed 50 characters, required if SMTPUsername is provided) - SMTPEmail The e-mail address from which the e-mail messages transmitted by the Repository originates (won't be evaluated unless SMTPAddress is provided, must not exceed 100 characters, required) - SMTPDisplayName The display name for the e-mail address from which the e-mail messages transmitted by the Repository originates (won't be evaluated unless SMTPAddress is provided, must not exceed 100 characters, required) - SMTPInterval The interval (in minutes) in which the Repository will transmit e-mail messages, if necessary (must be between "1" and "1440", default is "2") - SMTPRequireTLS An optional feature that when activated grants compatibility with TLS required email servers. ("0" for does not require TLS, "1" for Requires TLS, default is "0") - Serial The serial number for the Repository (not required. If not provided, the Repository will begin in evaluation mode) - Username 52 CIMCOR CimTrak Integrity & Compliance Suite

The username of the first Repository user (must not exceed 19 characters, required) - Password The password of the first Repository user (must not exceed 31 characters, required) Encryptions (if specifying the encryption): ENTERPRISE Defaults: AES, 256, SHA1, DHE-RSA-AES256-SHA Encryptions AES: 128, 192, 256 CAST256: 128, 256 IDEA: 128 DES: 64 DES_EDE3: 192 DES_EDE2: 192 RC2: 64, 128, 256, 512, 1024 BlowFish: 64, 128, 160, 192, 224, 256, 288, 320, 352, 384, 416, 448 CAST128: 64, 128 RC4: 64, 128, 256, 512, 1024, 2048 HMACs MD4 MD5 RIPEMD160 SHA1 SHA256 SHA384 SHA512 OpenSSL Communications DHE-RSA-AES256-SHA AES256-SHA DHE-RSA-AES128-SHA AES128-SHA EDH-RSA-DES-CBC3-SHA EDH-RSA-DES-CBC-SHA EXP-EDH-RSA-DES-CBC-SHA DES-CBC3-SHA DES-CBC-SHA IDEA-CBC-SHA RC4-SHA RC4-MD5 User Guidance 53

FIPS Defaults: AES, 256, SHA1, DHE-RSA-AES256-SHA Encryptions AES: 128, 192, 256 DES_EDE3: 192 HMACs SHA1 OpenSSL Communications DHE-RSA-AES256-SHA AES256-SHA DHE-RSA-AES128-SHA AES128-SHA EDH-RSA-DES-CBC3-SHA DES-CBC3-SHA INTERNATIONAL/ETHER Defaults: DES, 64, SHA1, EXP-EDH-RSA-DES-CBC-SHA Encryptions DES: 64 RC2: 64 BlowFish: 64 CAST128: 64 RC4: 64 HMACs MD4 MD5 RIPEMD160 SHA1 SHA256 SHA384 SHA512 OpenSSL Communications EXP-EDH-RSA-DES-CBC-SHA EXP-DES-CBC-SHA EXP-RC2-CBC-MD5 EXP-RC4-MD5 54 CIMCOR CimTrak Integrity & Compliance Suite

Example for installing the Repository on Windows, logging messages to "c:\log.txt": setupwin32 -silent -V LogFile="C:\log.txt" -V InstallRepository="1" - V Username="user" V Password="password" NOTE: - If you wish to check the return value of the installation programmatically in Windows, you must run the installer with "start /w". The "start" command in DOS runs the command that follows in a new DOS window. The "/w" flag means to start the command and wait until it terminates before allowing the user to execute any more commands. An example of how to use this would be: start /w setupwin32 -silent -V InstallationDirectory="c:\test"... which would execute, then provide the user with the command prompt when it was finished, where the user could type: echo %errorlevel% to see the result of the installation. 0 is success and -1 is a failure (a failure exists if the user inputs an invalid command or parameter. The installer can still fail even with correct parameters, this error will be explained in the log file). - If the Encryption is not specified, the default Encryption settings will be used. - The "V" in "-V" in the command-line must be capitalized. - The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes. - The parameter values must be enclosed in double-quotes. - If you wish to not provide a parameter, do not specify it with an empty value (for instance, RepositoryEncryption=""). Otherwise, errors will occur that will prevent the installation from continuing. - Entering an invalid parameter name will cause the installer to exit immediately. - If an invalid installation directory is used, an error message ( ERROR: The InstallationDirectory parameter isn't a valid directory. ) will be inserted at the end of the Log File. This error will not be present at the command prompt. User Guidance 55

- Default values will be used for InstallationDirectory ("C:\Program Files\Cimcor\CimTrak "), LogFile ("", meaning no messages will be logged). For all the parameters with default values, see the list of parameters for the Repository. - If specifying the DBUserPassword when installing the Repository with the silent installer, the DBUserPassword (password for the Windows account that is used to run CimTrak ) *must* meet the Windows Password complexity requirements on the computer that the Repository will be installed. Make sure the desired DBUserPassword meets the Windows Password complexity requirements before installing the Repository. - If the silent installer is run and the Repository has been previously installed, the Repository will be upgraded regardless of the InstallRepository parameter value. If the Repository is being upgraded, the parameters pertaining to the Repository will be ignored and and a log file entry will be added stating that the Repository will be upgraded. NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak Communications. You will not be prompted for permission to open this port. 3.6. CIMTRAK MASTER REPOSITORY INSTALLATION LINUX The following libraries are installation prerequisites for the CimTrak Master Repository on a LINUX system. The required packages or libraries are as follows: 1. 2. expect 3. readline.i686 zlib.i686 Once the libraries are installed, the standard CimTrak installation can be performed. Navigate to the CimTrak installer Installshield directory and enter: There are several prompts during the installation process where you may get a question stating directory does not exist - create? Prompts like this are not detailed in the instructions below, but should be responded to accordingly. For any support issues, please contact the CimTrak Support group. For more information about the CimTrak Support group, please refer to section 13.1. 56 CIMCOR CimTrak Integrity & Compliance Suite

Figure 44: Extracting the CimTrak Installation file(s) Extract the downloaded file(s) to a specified directory as shown in Figure 45. Figure 45: Launching CTSInstall User Guidance 57

Navigate to the specified directory where the file(s) was extracted to, locate the installation script./ctsinstall, and run the installation script as shown in Figure 46. Figure 46: CimTrak Master Repository UNIX/LINUX installer language selection Upon launching the CimTrak Master Repository Installer, you will be prompted to select the language which you will install the CimTrak Master Repository in as shown in Figure 47. 58 CIMCOR CimTrak Integrity & Compliance Suite

Figure 47: CimTrak Master Repository Installer EULA After selecting the desired language, you will then be prompted by the CimTrak Master Repository End User License Agreement as shown in Figure 48. Please read and accept the terms and conditions in order to continue. Figure 48: CimTrak Master Repository Shell Script Installer Welcome Screen User Guidance 59

Next, you will be prompted by the CimTrak Master Repository Shell Script Installer Welcome screen as shown in Figure 49. Please read the important notes on this screen. These notes detail specific interactions with the installer. Figure 49: CimTrak Master Repository Installer Option Menu Upon agreeing to the CimTrak Master Repository End User License Agreement you will me prompted by the menu screen as shown above in Figure 50. To select the CimTrak Master Repository install, select option 0. To continue, please confirm your selection. You will then be prompted by the menu screen. 60 CIMCOR CimTrak Integrity & Compliance Suite

Within this menu will be a series of six steps which will need to be followed in order. If you encounter any errors while performing these steps, please contact support@cimcor.com regarding how to proceed. 1. Setup install directories and load software (Menu Option #1) 1.1. The repository file should be configured to be 'owned' by the root user account. If the root account has a different name on your system than the one shown, please input the user name of the root user. Once this has been completed, please select option 9 to 'Configure ownership of files'. 2. Initialize database (Menu Option #2) 2.1. Database User and Password - This is the PostgreSQL database user. The 'password' is not the actual password, but a key used to generate the password. Select 0 when you are done with these entries 2.2. Storage Area Setup Menu - The storage area is where file content will be stored (if you select that option in your policies) and the encryption method used to store that data securely. Select 0 when you are done with these settings 3. Load option default values (Menu Option #3) User Guidance 61

3.1. This is to select the SSL encryption method to be used in communication across a network between CimTrak components (Repository, Clients, Agents). To set, select 0 when done. 4. Enter client/agent user login and password (Menu Option #5) 4.1. Use this option to create the first administrator account. Select 0 when the user and password are set how you want them. 5. Install services (auto restart, run time control scripts) (Menu Option #7) 6. Start CimTrak Master Repository (Menu Option #8) 6.1. You can do this, or control the process with the service command ('service CimTrak Server [stop start status]') You are now done and can select the appropriate options to exit the install menus. You will likely need to configure your firewall to allow traffic on the port that CimTrak is configured to use (default 3749). 4. CIMTRAK FILE SYSTEM AGENT INSTALLATION 4.1. CIMTRAK FILE SYSTEM AGENT PRE-INSTALLATION INTEGRITY VERIFICATION Before beginning the installation process CIMCOR recommends verifying the authenticity of the Installation file(s). Each CimTrak component has an associated SHA1 hash value calculated on installation components. The associated SHA1 hash value can be obtained from the CIMCOR website located at http://cimcor.com/downloads. 4.2. CIMTRAK FILE SYSTEM AGENT INSTALLATION WINDOWS GRAPHICAL The steps taken to begin the graphical installation of the CimTrak File System Agent will depend on the operating system on which the installation will occur. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. NOTE: Ensure that the CimTrak Master Repository is installed prior to CimTrak File System Agent installation and if the Agent is being installed on a remote system, make sure that both systems are set to the same UTC. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: 62 CIMCOR CimTrak Integrity & Compliance Suite

X\setupwin32.exe where X is the path to the CimTrak Install file s directory. The first screen you will see, allows you to pick the language for the installation. Figure 50 Language Selection Screen Select the language and click Next. User Guidance 63

The next screen will have the CimTrak End User License Agreement. You must read and accept the terms of the agreement to continue installation. Figure 51 EULA Once you accept the agreement, click Next. 64 CIMCOR CimTrak Integrity & Compliance Suite

The next screen will be the CimTrak Installation Welcome Screen. Figure 52 CimTrak Welcome Screen Click Next to continue. User Guidance 65

Now you will see the directory where the CimTrak File System Agent will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. (It is recommended to leave the default directory in place, to simplify future upgrades.) Figure 53 Installation Directory Once you have selected the directory path, click Next. 66 CIMCOR CimTrak Integrity & Compliance Suite

The following screen allows you to determine which components of CimTrak you can install. Figure 54 Choose to install the CimTrak File System Agent Place a check mark in the box next to CimTrak File System Agent and click Next. User Guidance 67

When Next is clicked, you are given the option to install the optional driver for the Agent. Figure 55 Install Optional Driver for File System Agent This driver will allow you to have a more detailed view of user and process information from detections: The Windows user that created the intrusion The Windows process The Process ID number The Thread ID number After making the choice to install the driver, the installer will continue. 68 CIMCOR CimTrak Integrity & Compliance Suite

The confirmation screen will now be displayed. Figure 56 Confirmation Screen Confirm the settings and then click Install to start the installation. A progress screen will appear while the components are being installed. User Guidance 69

After the CimTrak File System Agent is installed, the Private Key screen is now displayed. Figure 57 Choose to create Private Key If an Agent should have a Private Key applied to it: make sure Yes is chosen, enter the desired Private Key in both text boxes, then press Next. Make sure that the Private Key is unique (it should not be the same as a Repository login name or password). If an Agent does not need to have a Private Key applied to it: choose No, and then press Next. 4.2.1. AGENT-LEVEL PRIVATE KEYS EXPLAINED The Private Key is a secondary layer of security for the information stored within CimTrak. If an Agent has a Private Key applied to it, all Object Groups within the Agent are protected by an additional layer of encryption, which is only accessible by entering the Private Key. If a user tries to view, compare, or change files within an Object Group, the user is prompted to enter the Private Key. Only by entering the Private Key can these files be viewed, compared, or changed. If a Private Key is set for an Agent, all Object Groups within that particular Agent inherit this Private Key. However, any Object Group or Document Control created still can have its own specific Private Key, overriding the Private Key of the Agent. When an Object Group or Document Control is created, the CimTrak Admin has the option to create a Private Key for that particular object. 70 CIMCOR CimTrak Integrity & Compliance Suite

This is true for all Object Groups and Document Controls, whether or not the parent Agent has a Private Key. If a Private Key is specified for an Object Group or Document Control, the Private Key applied for that object is the one that was specified during the creation of the object; the Private Key for that object is *not* inherited by the Agent. If a Private Key is not applied to an Agent during install and it is desired for all Object Groups and Document Controls within that Agent to have Private Keys. When an Object Group or Document Control is created, a Private Key *must* be set for every object created. NOTE: The Private Key only protects viewing of files within CimTrak. If an unauthorized user is able to gain access to the computer that is being protected by CimTrak, he or she can still view the files watched by Object Groups, even if they are protected by CimTrak. Proper security measures are still necessary to prevent unauthorized access of computers and data. NOTE: If a Document Control is placed within an Agent, and that Agent has a Private Key, the Document Control will not inherit the Private Key from its parent agent. If a Document Control requires a Private Key, the Private Key must be set at the time of Document Control creation. NOTE: If a Private Key is applied to an object, the FTP interface and certain global Reports will not be able to access files within any object protected by a Private Key. NOTE: Once a Private Key has been assigned to an Agent or an Object Group, the Private Key cannot be altered. In addition, if an Agent is configured without a Private Key, a Private Key cannot be assigned to it after it has been configured. NOTE: In the event that the Private Key is lost, it can *not* be recovered. You must configure the Agent to communicate with the CimTrak Master Repository. On the CimTrak File System Agent configuration screen, you will need to enter the following information: IP Address where the CimTrak Master Repository is located Port used (if other than the default 3749) A descriptive name for this CimTrak File System Agent Automatically Restart the Service in the event of program termination (default restart is after 300 seconds) CimTrak Master Repository Username CimTrak Master Repository Password Select the License Type for this CimTrak File System Agent. If an Agent has a Standard License, intrusions are only logged by User Guidance 71

CimTrak. If an Agent has a Professional License, intrusions can also be removed as well as logged by CimTrak. Figure 58 Enter Repository information for File System Agent The descriptive name for the CimTrak File System Agent allows the user to easily identify which Agent they are viewing in the Management Console, in the case that multiple Agents are installed. Click Next to continue. 72 CIMCOR CimTrak Integrity & Compliance Suite

When the components have been completely installed, the installer will take you to the last screen. Figure 59 Summary Information Screen Click Finish to complete the installation. Installation of the CimTrak File System Agent is complete. 4.3. CIMTRAK FILE SYSTEM AGENT INSTALLATION WINDOWS COMMAND LINE The way in which the non-graphical installation of the CimTrak File System Agent is started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. NOTE: Ensure that the CimTrak Master Repository is installed prior to CimTrak File System Agent installation and if the Agent is being installed on a remote system, make sure that both systems are set to the same UTC. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. NOTE: When including the greater-than (>) symbol as part of an object name or path it will be necessary to use quotations around the entire expression, (as shown.) Example: -object= Agent-name->object-Name. User Guidance 73

This will start the InstallShield Wizard. 74 CIMCOR CimTrak Integrity & Compliance Suite

The first screen is language selection. Enter a 1 or 2 and press Enter to submit your selection. Then type 0 and press Enter to move to the next screen. Figure 60 Language Selection NOTE: After every screen in which the user inputs configuration settings, the user is given the option to go to the previous screen, cancel the installation, redisplay the current page, as well as continue to the next page. Figure 61 Options after every screen User Guidance 75

The next screen is the End User License Agreement. You will need to read and accept the EULA to continue the installation and use CimTrak. When done, enter a one (1) and press Enter to accept the agreement, then type 0 and press Enter to move to the next screen. Figure 62 EULA 76 CIMCOR CimTrak Integrity & Compliance Suite

NOTE: After every screen in which the user inputs configuration settings, the user is given the option to go to the previous screen, cancel the installation, redisplay the current page, as well as continue to the next page. Figure 63 Options after every screen A Welcome screen will appear. Press the Enter key to continue. Figure 64 CimTrak Welcome Screen The next screen shows the directory where CimTrak will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 65 Installation Directory Now you can select the components to be installed. To select the components, enter the corresponding number of the component. When done, type 0 to move to the next screen. Figure 66 Choose to install CimTrak File System Agent User Guidance 77

On the next screen you are given the option to install the optional driver for the Agent. This driver will allow you to have a more detailed view of user and process information from detections: The Windows user that created the intrusion The Windows process The Process ID number The Thread ID number Figure 67 Install Optional Driver for File System Agent The next screen will confirm your installation selections. Select Next to begin the install. Figure 68 Confirmation Screen The installation of the CimTrak File System Agent will proceed. Figure 69 Installing CimTrak File System Agent 78 CIMCOR CimTrak Integrity & Compliance Suite

After the CimTrak File System Agent is installed, the Private Key screen is now displayed. Figure 70 Choose to create Private Key If an Agent should have a Private Key applied to it, type 1 and Enter. Type in the Private Key twice, and then press Enter. Make sure that the Private Key is unique (it should not be the same as a Repository login name or password.) If an Agent does not need to have a Private Key applied to it, type 0 and Enter. User Guidance 79

Now you will have to configure the CimTrak File System Agent to communicate with the CimTrak Master Repository. You will provide the IP Address or Fully Qualified Domain Name of the CimTrak Master Repository. You will then specify the port number being used by the CimTrak Master Repository as well as the name that you will call the CimTrak File System Agent. The next step is to specify if the agent will automatically restart if it stops communicating with the repository. If the agent is set to restart, you must specify the interval between the time the agent stops and the restarting of the agent process, the default time is 300 seconds. Lastly, you will submit the username and password to connect the CimTrak File System Agent to the CimTrak Master Repository. Figure 71 Enter Repository information for File System Agent This completes the CimTrak File System Agent installation. Figure 72 Summary Information Screen 80 CIMCOR CimTrak Integrity & Compliance Suite

4.4. CIMTRAK FILE SYSTEM AGENT INSTALLATION UNIX/LINUX COMMAND LINE (PERL) The Installer for the UNIX / Linux CimTrak File System Agent is located in the Perl directory of the zip file and is currently available for the following platforms: UNIX / Linux System Mac OS X (Darwin) Fedora, CentOS, Ubuntu, SuSE HPUX PARISC x86 HPUX Itanium Sun Sparc Sun Solaris x86 Table 1: UNIX/Linux Perl Installers Install Package mac_osx_agent_pkg.gz linux_agent_pkg.gz hp_pa_agent_pkg.tar.gz hp_ia64_agent_pkg.tar.gz sun_sp_agent_pkg.tar.gz sun_x86_agent_pkg.tar.gz The following packages or libraries are prerequisites to the installation of the CimTrak File System Agent on a 64 bit Linux System: For Redhat, CentOS, and Fedora: glibc.i686 zlib.i686 For Ubuntu 13.04 and below: Ia32-libs For Ubuntu 13.10 and above: bc binutils lib32z1 lib32ncurses5 lib32bz2-1.0 The Root user or someone with Root privileges must install and run the CimTrak File System Agent in a UNIX / Linux environment. These installation scripts utilize the shell programs tar, grep, strings, awk, and bc, which must be installed before installing the Agent. It also may be helpful to install the GNU binutils package on some Linux systems before installing. Navigate to the path for your system. Copy the appropriate install package from the zip file to a location on the system hard drive, such as the /tmp directory. Un-tar the install package file (i.e. tar zxvf install_pkg.tar where install_pkg is the correct package name for your system.) User Guidance 81

Generally, several files will be extracted into this directory. Start the installation by running the bash script CTAInstall. (i.e../ctainstall.) The installer may ask the user for the language used. Choose the appropriate language. In this screenshot, English is the only language listed, so press Enter to accept the default choice. Note: For international character sets, use UTF8 fonts on your terminal settings. UTF8 fonts work best for TERM variable settings such as ""linux"" or ""xterm"". For plain ASCII characters, set your shell TERM variable and your terminal to ""vt100"" or equivalent (example: ""vt220""). The correct terminal settings are needed for the ""-Setup"" option and for those using international character sets. 82 CIMCOR CimTrak Integrity & Compliance Suite

NOTE: If installing on Ubuntu, the installer must be ran with the sudo Command. NOTE: If you recieve a "tar: This does not look like a tar archive." error message, commonly experienced in older version of Linux OS's, please us the "gunzip filename.gz" command first, then the tar command again. NOTE: On 64-bit Linux machines the CimTrak agent requires the necessary runtime libraries for the ia32/i386 architecture. Information on the libraries can be found here: http://packages.ubuntu.com/jaunty/ia32-libs On 64-bit Ubuntu machines, the libraries can be obtained by typing the following at the command line: apt-get install ia32-libs On 64-bit Fedora 12 machines, the libraries can be obtained by typing the following at the command line: sudo yum install ld-linux.so.2 gtk2-devel.i686 NOTE: On Linux machines with SELinux, the Enforcing Mode must be set to Permissive (This is true for both "System Default Enforcing Mode" and "Current Enforcing Mode"). NOTE: Mac OSX real time detection/recovery is only supported on regular files in Mac OSX (10.4.0) and above. No real time handling is performed on special (device, symbolic links, pipe/fifo or socket) files. Special file handling for Mac OSX is supported in polling mode. NOTE: For all Unix/Linux, hard links are recovered as a regular file. The hard link is not restored. User Guidance 83

Figure 73 Choose Language 84 CIMCOR CimTrak Integrity & Compliance Suite

After choosing the language for the installer, the user is required to confirm the language used. Type 0 and press Enter to continue to the next screen. Figure 74 Choose Language User Guidance 85

The next few pages consist of the License Agreement. You must agree to the Agreement to continue installation. Figure 75 EULA After you agree to the License Agreement, the CimTrak File System Agent Shell Script Installer will display the Welcome screen. Read the instructions and then press the Enter key when ready. Figure 76 CimTrak Welcome Screen 86 CIMCOR CimTrak Integrity & Compliance Suite

A menu appears asking the user what action to perform. Since we are installing a fresh installation of the CimTrak File System Agent, type 1 and press Enter. Figure 77 Agent Install Option menu User Guidance 87

The Installation menu appears. There are six options in this menu: 1. Unpack and load software 2. Configure Agent: -setup method 3. Configure Agent: -configure method 4. Install rc (start/stop) services 5. Start agent 6. Exit this script, configure and start the agent manually Figure 78 Installation menu Option 1 is required since it actually installs the agent software. To configure the agent within the installer, you can choose Option 2 or 3. Option 2 selects the -setup method. This allows you to enter the Agent information through the Agent s internal setup utility. 88 CIMCOR CimTrak Integrity & Compliance Suite

Option 3 selects the -configure method. If you want the agent to start automatically when the Linux computer is started, as well as restart the agent if it were to stop unexpectedly, choose Option 4. This is optional, but recommended. Choosing Option 5 will start the agent from within the installer. Again, this is optional, but recommended. Option 6 quits the installer program, allowing you to configure and start the agent manually. This is optional, but recommended only for experienced Linux users. 4.4.1. UNPACK AND LOAD SOFTWARE Choose option 1 to install the agent to the computer. Choose the directory where the CimTrak File System Agent files are to be installed. Press Enter when done. Figure 79 Installation directory User Guidance 89

If the install directory does not exist on the computer, the installer will ask the user to automatically create the directory. Typing n and pressing Enter will abort the install script and send you back to the command line. If the user accepts the default answer of yes, the installer will create the directory and continue. Figure 80 Installer will create directory if it does not exist 90 CIMCOR CimTrak Integrity & Compliance Suite

The user is asked to set the owner and group ownership for the Agent files. By default, the user root and group root are the owners of the Agent. By pressing 1 or 2, the user can specify the user or group which will own the Agent files. When the user and group names have been chosen, type 9 and press Enter to continue. Figure 81 User and Group name ownership for Agent files 4.4.2. CONFIGURE AGENT The Installation menu will appear again. You will need to configure the Agent. There are two options to accomplish this: the setup method and the configure method. User Guidance 91

Figure 82 Installation menu (Agent is installed) Press 2 and Enter to configure the Agent via the Setup method. Press 3 and Enter to configure the Agent via the Configure method. 4.4.3. CONFIGURE THE AGENT: SETUP METHOD The setup screen allows you to enter the Agent information through the Agent s internal setup utility. Navigate to each field and type in the Username, Password, Server (Repository) IP Address, Port, Agent Name, Language File (if English, type LanguagePacks/English.lng,) License Type, and Private Key (optional.) 92 CIMCOR CimTrak Integrity & Compliance Suite

Figure 83 Setup method After the Repository information has been filled, navigate to the OK button and press Enter. The Agent will connect to and attach itself to the Repository. If the Agent successfully attaches itself to the server, the Agent will appear in the Management Console, and the Installation menu will appear. User Guidance 93

4.4.4. CONFIGURE THE AGENT: CONFIGURE METHOD In this menu, select the number of the settings to be changed. Enter the appropriate information. Once all of the correct information has been entered, select number 10 to finish the configuration and start the CimTrak File System Agent. Figure 84 Configure method 94 CIMCOR CimTrak Integrity & Compliance Suite

If there is an issue and the agent cannot logon to the server, a warning screen will appear. If a setting for the agent is incorrect (such as an incorrect IP address,) press n and then Enter to go back to the previous menu. Figure 85 Installer could not detect Repository If the settings are correct, but there is a problem with the connection, (i.e. the server is not running or there is a network issue,) after the problem is repaired: press y and then Enter to connect the agent to the server. User Guidance 95

If the Agent successfully attaches itself to the server, installation and start-up scripts similar to these will appear below. Figure 86 Agent successfully attaches itself to Repository Once all of the automated scripts have run, the Agent will appear in the Management Console, and after you hit Enter, the Installation menu (Figure 82) will appear again. At this point, the Agent should be configured to connect to a Repository. Note that the Agent is not running at this time. 4.4.5. INSTALL RC (START/STOP) SERVICES The Installation menu (Figure 78) should appear on screen. If you wish to start the agent when Linux boots, press 4 and then Enter. The installer will ask you if you want to load rc startup/shutdown services for the agent. If you do press y and then Enter. 96 CIMCOR CimTrak Integrity & Compliance Suite

Figure 87 Install rc startup/shutdown services User Guidance 97

If you do decide to load the startup values, you will be asked the auto restart value. This value is, in the event the agent stops, the number of seconds after the agent becomes nonresponsive, it will restart automatically. The default number of seconds is 30. Changing this value is possible, if more or less time is needed after a system or program cause an interruption of service. (In case of slower/older computers, more time may be needed to complete the startup cycle.) Figure 88 Set the auto restart value The Installation menu will appear again. 4.4.6. START AGENT If you have installed the agent and have configured the settings to your specifications, the agent can now be started. Press 5 and then Enter. Installation and start-up scripts similar to these will appear on the console. The agent is now attached to the server. 98 CIMCOR CimTrak Integrity & Compliance Suite

Figure 89 Start the Agent Once all of the automated scripts have run, press Enter when prompted and the Installation menu screen will appear again. Select 0 to exit the menu. Select 0 again to exit the installer. Installation of the software is now complete. User Guidance 99

4.5. CIMTRAK FILE SYSTEM AGENT INSTALLATION UNIX/LINUX GRAPHICAL If you have installed the agent and have configured the settings to your specifications, the agent can now be started. Press 5 and then Enter. The following packages or libraries are prerequisites to the installation of the CimTrak File System Agent on a 64 bit Linux System: For Redhat, CentOS, and Fedora: glibc.i686 zlib.i686 For Ubuntu 13.04 and below: Ia32-libs For Ubuntu 13.10 and above: bc binutils lib32z1 lib32ncurses5 lib32bz2-1.0 Installation and start-up scripts similar to these will appear on the console. The agent is now attached to the server. 100 CIMCOR CimTrak Integrity & Compliance Suite

Figure 90 Start the Agent Once all of the automated scripts have run, press Enter when prompted and the Installation menu screen will appear again. Select 0 to exit the menu. Select 0 again to exit the installer. Installation of the software is now complete. User Guidance 101

There is another installer (setuplinux.bin) for the Linux agent. There are two ways to run the program; running it in GUI mode or in text-based mode. The Root user or someone with Root privileges must install and run the CimTrak File System Agent in a UNIX / Linux environment. Navigate to the path for your system, and then navigate to the InstallShield directory on the zip file and type./setuplinux.bin. The user must be in an X Windows terminal session to run the program in graphical mode. NOTE: If an X Windows environment is not available, or you are not sure, see the section entitled Alternate Console UNIX/Linux Installation of CimTrak File System Agent. NOTE: If using the Graphical Installer on Solaris, the Delete and Backspace Keys can only be used if Num Lock is turned off. The first screen allows you to pick the language for the installation. Select the language and click OK. Figure 91 Language Selection Screen 102 CIMCOR CimTrak Integrity & Compliance Suite

The next screen will have the CimTrak End User License Agreement. You must read and accept the terms of the agreement to continue installation. Figure 92 EULA Once you accept the agreement,click Next. User Guidance 103

The next screen will be the CimTrak Installation Welcome Screen. Figure 93 CimTrak Welcome Screen You may click Next to continue. 104 CIMCOR CimTrak Integrity & Compliance Suite

Now you will see the directory where the CimTrak File System Agent will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 94 Installation Directory In order to ease the process of future updates to the program it is recommended that the installation path not be changed. Once you have selected the directory path, click Next. User Guidance 105

The following screen allows you to determine which components of CimTrak you want to install. Figure 95 Choose to install the CimTrak File System Agent Place a check mark in the box next to the CimTrak File System Agent and click Next. 106 CIMCOR CimTrak Integrity & Compliance Suite

The confirmation screen will now be displayed. Confirm the settings and then click Install to start the installation. Figure 96 Confirmation Screen A progress screen will appear while the components are being installed. User Guidance 107

After the CimTrak File System Agent is installed, the Private Key screen is now displayed. Figure 97 Choose to create Private Key If an Agent should have a Private Key applied to it: make sure Yes is chosen, enter the desired Private Key in both text boxes, then press Next. Make sure that the Private Key is unique (it should not be the same as a Repository login name or password.) If an Agent does not need to have a Private Key applied to it: choose No, and then press Next. For an explanation on Private Keys, see Private Keys Explained. 108 CIMCOR CimTrak Integrity & Compliance Suite

Lastly, you must configure the CimTrak File System Agent to communicate with the CimTrak Master Repository. On the CimTrak File System Agent configuration screen, you will need to enter the following information: IP Address where the CimTrak Master Repository is located Port used (if other than the default 3749) A descriptive name for this CimTrak File System Agent Restart Agent Automatically in the event of program termination (default restart is after 300 seconds) CimTrak Master Repository Username CimTrak Master Repository Password Select the License Type for this CimTrak File System Agent. Figure 98 Enter Repository information for File System Agent Click on Next to continue. User Guidance 109

When the components have been completely installed, the installer will take you to the Summary Information Screen. Figure 99 Summary Information Screen Click Finish to complete the installation. Installation of the CimTrak File System Agent is complete. 4.6. CIMTRAK FILE SYSTEM AGENT INSTALLATION UNIX/LINUX COMMAND LINE If an X Windows environment is not available, the setuplinux.bin Linux installer also can be used in console mode. The following packages or libraries are prerequisites to the installation of the CimTrak File System Agent on a 64 bit Linux System: For Redhat, CentOS, and Fedora: glibc.i686 zlib.i686 For Ubuntu 13.04 and below: Ia32-libs 110 CIMCOR CimTrak Integrity & Compliance Suite

For Ubuntu 13.10 and above: bc binutils lib32z1 lib32ncurses5 lib32bz2-1.0 The Root user or someone with Root privileges must install and run the CimTrak File System Agent in a UNIX / Linux environment. Navigate to the path for your system, then navigate to the InstallShield directory on the zip file and type./setuplinux.bin -console. The first screen allows you to pick the language for the installation. Select the language by entering its number, and click OK. Figure 100 Language Selection Screen Note: For international character sets, use UTF8 fonts on your terminal settings. UTF8 fonts work best for TERM variable settings such as ""linux"" or ""xterm"". For plain ASCII characters, set your shell TERM variable and your terminal to ""vt100"" or equivalent (example: ""vt220""). The correct terminal settings are needed for the ""-Setup"" option and for those using international character sets. User Guidance 111

Next you must read and accept the End User License Agreement to continue the installation and use CimTrak. Figure 101 EULA A Welcome screen will appear. Press the Enter key to continue past this screen. Figure 102 CimTrak Welcome Screen The next screen shows the directory where CimTrak will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. 112 CIMCOR CimTrak Integrity & Compliance Suite

Figure 103 Installation Directory The following screen allows you to determine which components of CimTrak you can install. Press 1 to choose the CimTrak File System Agent, then press 0 and then Enter to move to the next page. ure 104 Choose to install the CimTrak File System Agent Fig The confirmation screen will now be displayed. Confirm the settings and then press Enter to start the installation. A progress screen will appear while the components are being installed. User Guidance 113

Figure 105 Confirmation Screen After the CimTrak File System Agent is installed, the Private Key screen is now displayed. Figure 106 Choose to create Private Key If an Agent should have a Private Key applied to it: type 1 and Enter, enter the Private Key twice, and then press Enter. Make sure that the Private Key is unique 114 CIMCOR CimTrak Integrity & Compliance Suite

(it should not be the same as a Repository login name or password.) If an Agent does not need to have a Private Key applied to it: type 0 and Enter. Lastly, you must configure the CimTrak File System Agent to communicate with the CimTrak Master Repository. On the CimTrak File System Agent configuration screen you will need to enter the following information: IP Address where the CimTrak Master Repository is located Port used (if other than the default 3749) A descriptive name for this CimTrak File System Agent Restart Agent Automatically in the event of program termination (default restart is after 300 seconds) CimTrak Master Repository Username CimTrak Master Repository Password Select the License Type for this CimTrak File System Agent. Figure 107 Enter Repository information for File System Agent User Guidance 115

Figure 108 Enter Repository information for File System Agent (continued) When the components have been completely installed, the installer will take you to the last screen. Press Enter to quit the installer. Figure 109 Summary Information Screen Installation of CimTrak File System Agent is now complete. 4.7. CIMTRAK FILE SYSTEM AGENT INSTALLATION WINDOWS SILENT The way in which the silent installation of the CimTrak Agent is started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. NOTE: It is necessary to run the command prompt in administrator mode for Windows Vista operating systems and later. 116 CIMCOR CimTrak Integrity & Compliance Suite

To install the Agent in silent mode, it must be called in this manner: setupwin32.exe -silent V InstallAgent="1" -V RepositoryAddress="[IP of Repository]" -V RepositoryUsername="[username]" -V RepositoryPassword="[password]" Parameters: - InstallationDirectory The base directory for the installation (optional, default is "C:\Program Files\Cimcor\CimTrak ", must not exceed 4096 characters) - LogFile The path where log messages will be written (optional, default is no Log File) - RepositoryAddress The address of the CimTrak Master Repository to which the CimTrak File System Agent will connect (required) - RepositoryPort The port of the CimTrak Master Repository to which the CimTrak File System Agent will connect (must be between 1 & 605535, default is "3749") - AgentName The unique identifier of CimTrak File System Agent that is being installed (required, must not exceed 20 characters, default is computer's host name) - IncludeDriver The CimTrak File System Agent forensic driver is only available for Windows Agents. The optional Agent driver must be installed in order for the Forensic tool to work. ("0" for do not install, "1" for include during install, default is "0") - AutoRestartAgent The amount of seconds to wait before automatically restarting the CimTrak Agent, if necessary (must be between "0" and "86400", "0" to not automatically restart, default is "0") - RepositoryUsername The username used to log in to the CimTrak Master Repository (required) - RepositoryPassword The password used to log in to the CimTrak Master Repository (required) - RepositoryLicenseType User Guidance 117

The license type of the CimTrak Master Repository to which the CimTrak File System Agent will connect ("0" for professional, "1" for standard, default is "0") - AgentPrivateKey Provides further encryption for the CimTrak File System Agent, requiring the user to provide this key in order to perform specific operations (optional, default is no key) - TemplateName This parameter is the name of the existing template you want to use to create this Agent's first object group. This option can only be used after the template has been created on the repository. (default is no value) Example for installing the File System Agent on Windows: setupwin32 -silent -V InstallationDirectory="c:\test" -V LogFile="C:\log.txt" -V InstallAgent="1" -V RepositoryAddress="192.168.1.1" -V RepositoryUsername="user" -V RepositoryPassword="password" -V AgentName="Windows Agent" -V AgentPrivateKey="key" NOTE: If you wish to check the return value of the installation programmatically in Windows, you must run the installer with "start /w". The "start" command in DOS runs the command that follows in a new DOS window. The "/w" flag means to start the command and wait until it terminates before allowing the user to execute any more commands. An example of how to use this would be: start /w setupwin32 -silent -V InstallationDirectory="c:\test"... which would execute, then provide the user with the command prompt when it was finished, where the user could type: echo %errorlevel% to see the result of the installation. 0 is success and -1 is a failure (a failure exists if the user inputs an invalid command or parameter. If the installer cannot connect to a Repository, this error will be explained in the log file). - The "V" in "-V" in the command-line must be capitalized. - The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes. - The parameter values must be enclosed in double-quotes. 118 CIMCOR CimTrak Integrity & Compliance Suite

- If you wish to not provide a parameter, do not specify it with an empty value (for instance, RepositoryPort=""). Otherwise, errors will occur that will prevent the installation from continuing. - Entering an invalid parameter name will cause the installer to exit immediately. - If an invalid installation directory is used, an error message ( ERROR: The InstallationDirectory parameter isn't a valid directory. ) will be inserted at the end of the Log File. This error will not be present at the command prompt. - Default values will be used for InstallationDirectory ("C:\Program Files\Cimcor\CimTrak "), LogFile ("", meaning no messages will be logged), RepositoryPort ("3749"), AgentName (computer's host name), RepositoryLicenseType ("0", meaning professional) & AgentPrivateKey ("", meaning no private key will be used). For all the parameters with default values, see the list of parameters for the Windows File System Agent. - If the silent installer is run and the Windows File System Agent has been previously installed, the Windows File System Agent will be upgraded regardless of the InstallAgent parameter value. If the Windows File System Agent is being upgraded, the parameters pertaining to the Windows File System Agent will be ignored and and a log file entry will be added stating that the Windows File System Agent will be upgraded. NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak Communications. You will not be prompted for permission to open this port. 4.8. CIMTRAK FILE SYSTEM AGENT INSTALLATION UNIX/LINUX SILENT The way in which the silent installation of the CimTrak Agent is started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. The following packages or libraries are prerequisites to the installation of the CimTrak File System Agent on a 64 bit Linux System: For Redhat, CentOS, and Fedora: glibc.i686 zlib.i686 For Ubuntu 13.04 and below: User Guidance 119

Ia32-libs For Ubuntu 13.10 and above: bc binutils lib32z1 lib32ncurses5 lib32bz2-1.0 The "Root" user or someone with "Root" privileges must install and run the CimTrak File System Agent in a UNIX / Linux environment. Navigate to the path for your system, and then navigate to the InstallShield directory on the zip file. To install the Agent in silent mode, it must be called in this manner:./setuplinux.bin -silent -V InstallAgent="1" -V RepositoryAddress="[IP of Repository]" -V RepositoryUsername="[username]" -V RepositoryPassword="[password]" Parameters: - InstallationDirectory The base directory for the installation (default is "/opt/cimcor/cimtrak ", must not exceed 4096 characters) - LogFile The path where log messages will be written (optional, default is no Log File) - RepositoryAddress The address of the CimTrak Master Repository to which the CimTrak File System Agent will connect (required) - RepositoryPort The port of the CimTrak Master Repository to which the CimTrak File System Agent will connect (must be between 1 & 605535, default is "3749") - AgentName The unique identifier of CimTrak File System Agent that is being installed (must not exceed 20 characters, default is computer's host name) - AutoRestartAgent The amount of seconds to wait before automatically restarting the CimTrak Agent, if necessary (must be between "0" and "86400", "0" to not automatically restart, default is "0") 120 CIMCOR CimTrak Integrity & Compliance Suite

- RepositoryUsername The username used to log in to the CimTrak Master Repository (required) - RepositoryPassword The password used to log in to the CimTrak Master Repository (required) - RepositoryLicenseType The license type of the CimTrak Master Repository to which the CimTrak File System Agent will connect ("0" for professional, "1" for standard, default is "0") - AgentPrivateKey Provides further encryption for the CimTrak File System Agent, requiring the user to provide this key in order to perform specific operations (optional, default is no key) Example for installing the File System Agent on Linux, logging messages to "c:\log.txt":./setuplinux.bin -silent -V LogFile="log.txt" -V InstallAgent="1" -V RepositoryAddress="192.168.1.1" -V RepositoryUsername="user" -V RepositoryPassword="password" -V AgentName="Linux Agent" -V AgentPrivateKey="key" NOTE: - The "V" in "-V" in the command-line must be capitalized. - The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes. - The parameter values must be enclosed in double-quotes. - If you wish to not provide a parameter, do not specify it with an empty value (for instance, RepositoryPort=""). Otherwise, errors will occur that will prevent the installation from continuing. - Entering an invalid parameter name will cause the installer to exit immediately. - If an invalid installation directory is used, an error message ( ERROR: The InstallationDirectory parameter isn't a valid directory. ) will be inserted at the end of the Log File. This error will not be present at the command prompt. - Default values will be used for InstallationDirectory ("/opt/cimcor/cimtrak "), LogFile ("", meaning no messages will be logged), RepositoryPort ("3749"), AgentName (computer's host name), RepositoryLicenseType ("0", meaning professional) & AgentPrivateKey ("", meaning no private key will be used). For all User Guidance 121

the parameters with default values, see the list of parameters for the Linux File System Agent. - If the silent installer is run and the Linux File System Agent has been previously installed, a log file entry will be added stating that the Linux File System Agent will be upgraded regardless of the InstallAgent parameter value. If the Linux File System Agent is being upgraded, the parameters pertaining to the Linux File System Agent will be ignored. NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak Communications. You will not be prompted for permission to open this port. 5. CIMTRAK NETWORK DEVICE AGENT INSTALLATION 5.1. CIMTRAK NETWORK DEVICE AGENT PRE-INSTALLATION INTEGRITY VERIFICATION Before beginning the installation process CIMCOR recommends verifying the authenticity of the Installation file(s). Each CimTrak component has an associated SHA1 hash value calculated on installation components. The associated SHA1 hash value can be obtained from the CIMCOR website located at http://cimcor.com/downloads. 5.2. CIMTRAK NETWORK DEVICE AGENT INSTALLATION WINDOWS GRAPHICAL The steps taken to begin the graphical installation of the CimTrak Network Device Agent will depend on the operating system on which the installation will occur. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. NOTE: In order for the Network Device Agent to function, two-way communication must exist between the Network Device and the computer the Network Device Agent will be installed on. To check if two-way communication is possible, the computer with the Network Device Agent must be able to successfully ping the Network Device, and vice versa (while logged into the Network Device, the user must be able to successfully ping the computer the Agent will be installed on.) NOTE: Ensure that the CimTrak Master Repository is installed prior to CimTrak Network Device Agent installation. For Windows Platforms: Navigate to the location where the CimTrak Install file is 122 CIMCOR CimTrak Integrity & Compliance Suite

located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. User Guidance 123

The first screen you will see will have the CimTrak End User License Agreement. You must read and accept the terms of the agreement to continue installation. Figure 110 EULA Once you accept the agreement, click Next. 124 CIMCOR CimTrak Integrity & Compliance Suite

The next screen will be the CimTrak Installation Welcome Screen. Figure 111 CimTrak Welcome Screen You may click Next to continue. User Guidance 125

Now you will see the directory where the CimTrak Network Device Agent will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. (It is recommended to leave the default directory in place, to simplify future upgrades.) Figure 112 Installation Directory Once you have selected the directory path, click Next. 126 CIMCOR CimTrak Integrity & Compliance Suite

The confirmation screen will now be displayed. Figure 113 Confirmation Screen Confirm the settings and then click Install to start the installation. A progress screen will appear while the components are being installed. User Guidance 127

After the CimTrak Network Device Agent is installed, the Private Key screen is now displayed. Figure 114 Choose to create Private Key If a Network Device Agent should have a Private Key applied to it: make sure Yes is chosen, enter the desired Private Key in both text boxes, then press Next. Make sure that the Private Key is unique (it should not be the same as a Repository login name or password.) If a Network Device Agent does not need to have a Private Key applied to it: choose No, and then press Next. 128 CIMCOR CimTrak Integrity & Compliance Suite

You must configure the Network Device Agent to communicate with the CimTrak Master Repository. On the CimTrak Network Device Agent configuration screen, you will need to enter the following information: IP Address where the CimTrak Master Repository is located Port used (if other than the default 3749) A descriptive name for this CimTrak Network Device Agent Automatically Restart the Service in the event of program termination (default restart is after 300 seconds) CimTrak Master Repository Username CimTrak Master Repository Password Select the License Type for this CimTrak Network Device Agent. If an Agent has a Standard License, intrusions are only logged by CimTrak. If an Agent has a Professional License, intrusions can also be removed as well as logged by CimTrak. Figure 115 Enter Repository information for Network Device Agent The descriptive name for the CimTrak Network Device Agent allows the user to easily identify which Agent they are viewing in the Management Console, in the case that multiple Agents (a Repository can have multiple File System and/or Network Device Agents) are installed. Click Next to continue. User Guidance 129

The installer will ask the user if a firewall rule can be added to the Windows Firewall (see image below.) This allows communication between the CimTrak Master Repository and other components on different computers. Figure 116 Add Firewall Rule If Yes is chosen, the CimTrak installer will set up an Exception in the Windows Firewall: all communication to and from the CimTrak Master Repository and the other CimTrak components will be allowed by the Windows Firewall, regardless of the port number used. This way any port number can be chosen during installation. NOTE: This only affects the built-in Windows Firewall. If a third-party firewall package is used, that firewall must be configured so that communication between the CimTrak Master Repository and the other CimTrak components will be allowed. When the components have been completely installed, the installer will take you to the Summary Information screen. Figure 117 Summary Information Screen 130 CIMCOR CimTrak Integrity & Compliance Suite

Click Finish to complete the installation. Installation of the CimTrak Network Device Agent is complete. 5.3. CIMTRAK NETWORK DEVICE INSTALLATION WINDOWS COMMAND LINE The way in which the non-graphical installation of the CimTrak Network Device Agent is started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. NOTE: In order for the Network Device Agent to function, two-way communication must exist between the Network Device and the computer the Agent will be installed on. To check if two-way communication is possible, the computer with the Network Device Agent must be able to successfully ping the Network Device, and vice versa (while logged into the Network Device, the user must be able to successfully ping the computer the Agent will be installed on.) NOTE: Ensure that the CimTrak Master Repository is installed prior to CimTrak Network Device Agent installation. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. This will start the InstallShield Wizard. User Guidance 131

The first screen is language selection. Enter a 1 or 2 and press Enter to submit your selection. Then type 0 and press Enter to move to the next screen. Figure 118 Language Selection NOTE: After every screen in which the user inputs configuration settings, the user is given the option to go to the previous screen, cancel the installation, redisplay the current page, as well as continue to the next page. Figure 119 Options after every screen 132 CIMCOR CimTrak Integrity & Compliance Suite

The next screen is the End User License Agreement. You will need to read and accept the EULA to continue the installation and use CimTrak. When done, enter a one (1) and press Enter to accept the agreement, then type 0 and press Enter to move to the next screen. Figure 120 EULA NOTE: After every screen in which the user inputs configuration settings, the User Guidance 133

user is given the option to go to the previous screen, cancel the installation, redisplay the current page, as well as continue to the next page. Figure 121 Options after every screen A Welcome screen will appear. Press the Enter key to continue past this screen. Figure 122 CimTrak Welcome Screen The next screen shows the directory where the CimTrak Network Device Agent will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 123 Installation Directory The next screen will confirm the Network Device Agent Installation settings. Select Continue to begin the install. Figure 124 Confirmation Screen The installation of the CimTrak Network Device Agent will proceed. 134 CIMCOR CimTrak Integrity & Compliance Suite

Figure 125 Installing CimTrak Network Device Agent User Guidance 135

After the CimTrak Network Device Agent is installed, the Private Key screen is now displayed. Figure 126 Choose to create Private Key If the Network Device Agent should have a Private Key applied to it: type 1 and Enter. Type the Private Key twice, and then press Enter. Make sure that the Private Key is unique (it should not be the same as a Repository login name or password.) If the Network Device Agent does not need to have a Private Key applied to it: type 0 and Enter. 136 CIMCOR CimTrak Integrity & Compliance Suite

Now it is necessary to configure the CimTrak Network Device Agent to communicate with the CimTrak Master Repository. You will provide the IP Address or Fully Qualified Domain Name of the CimTrak Master Repository. You will then specify the port number being used by the CimTrak Master Repository as well as the name that you will call the CimTrak Network Device Agent. The next step is to specify if the Network Device Agent will automatically restart if it stops communicating with the repository. If the Agent is to restart, you must specify the interval between the time the Agent stops and the restarting of the Agent process the default time is 300 seconds. Lastly, you will submit the username and password to connect the CimTrak Network Device Agent to the CimTrak Master Repository. Figure 127 Enter Repository information for Network Device Agent This completes the CimTrak Network Device Agent installation. Figure 128 Summary Information Screen User Guidance 137

5.4. CIMTRAK NETWORK DEVICE INSTALLATION UNIX/LINUX COMMAND LINE (PERL) The Linux (Fedora, CentOS, Ubuntu, SuSE) CimTrak Agent is installed from the install package with the filename of linux_netdev_pkg.gz. This file is located within the Perl directory of the zip file. The following packages or libraries are prerequisites to the installation of the CimTrak Network Device Agent on a 64 bit Linux System: For Redhat, CentOS, and Fedora: glibc.i686 zlib.i686 For Ubuntu 13.04 and below: Ia32-libs For Ubuntu 13.10 and above: bc binutils lib32z1 lib32ncurses5 lib32bz2-1.0 The Root user or someone with Root privileges must install and run the CimTrak Network Device Agent in a Linux environment. These installation scripts utilize the shell programs tar, grep, strings, awk, and bc, which must be installed before installing the Agent. It also may be helpful to install the GNU binutils package on some Linux systems before installing. NOTE: In order for the Network Device Agent to function, two-way communication must exist between the Network Device and the computer the Network Device Agent will be installed on. To check if two-way communication is possible, the computer with the Network Device Agent must be able to successfully ping the Network Device, and vice versa (while logged into the Network Device, the user must be able to successfully ping the computer the Agent will be installed on.) Navigate to the path for your system. Copy the appropriate install package from the zip file to a location on the system hard drive, such as the /tmp directory. Un-tar the install package file, (i.e. tar zxvf linux_netdev_pkg.tar. ) Generally, several files will be extracted into this directory. Start the installation by running the bash script CTNInstall. (i.e.. /CTNInstall. ) 138 CIMCOR CimTrak Integrity & Compliance Suite

NOTE: For international character sets, use UTF8 fonts on your terminal settings. UTF8 fonts work best for TERM variable settings such as ""linux"" or ""xterm"". For plain ASCII characters, set your shell TERM variable and your terminal to ""vt100"" or equivalent (example: ""vt220""). The correct terminal settings are needed for the ""-Setup"" option and for those using international character sets. User Guidance 139

The installer may ask the user for the language used. Choose the appropriate language. In this screenshot, English is the only language listed, so press Enter to accept the default choice. Figure 129 Choose Language 140 CIMCOR CimTrak Integrity & Compliance Suite

After choosing the language for the installer, the user is required to confirm the language used. Type 0 and press Enter to continue to the next screen. Figure 130 Accept Language NOTE: For every configuration option, the CimTrak Installer will have a confirmation screen. User Guidance 141

The next few pages consist of the License Agreement. You must agree to the Agreement to continue installation. Figure 131 EULA After you agree to the License Agreement, the CimTrak Network Device Agent Shell Script Installer will display the Welcome screen. Read the instructions and then press the Enter key when ready. Figure 132 CimTrak Welcome Screen 142 CIMCOR CimTrak Integrity & Compliance Suite

A menu appears asking the user what action to perform. Since we are installing a fresh installation of the CimTrak Network Device Agent, type 1 and press Enter. Figure 133 Agent Install Option menu User Guidance 143

The Installation menu appears. There are six options in this menu: 7. Unpack and load software 8. Configure Agent: -setup method 9. Configure Agent: -configure method 10. Install rc (start/stop) services 11. Start agent 12. Exit this script, configure and start the agent manually Figure 134 Installation menu Option 1 is required since it actually installs the agent software. To configure the Network Device Agent within the installer, you can choose Option 2 or 3. Option 2 selects the -setup method. This allows you to enter the Network Device Agent information through the Agent s internal setup utility. 144 CIMCOR CimTrak Integrity & Compliance Suite

Option 3 selects the -configure method. If you want the agent to start automatically when the Linux computer is started, as well as restart the agent if it looses its connection, choose Option 4. This is optional, but recommended. Choosing Option 5 will start the agent from within the installer. Again, this is optional, but recommended. Option 6 quits the installer program, allowing you to configure and start the Network Device Agent manually. This is optional, but recommended only for experienced Linux users. 5.4.1. UNPACK AND LOAD SOFTARE Choose option 1 to install the Network Device Agent to the computer. Choose the directory where the CimTrak Network Device Agent files are to be installed. Press Enter when done. Figure 135 Installation directory User Guidance 145

If the install directory does not exist on the computer, the installer will ask the user to automatically create the directory. Typing n and pressing Enter will abort the install script and send you back to the command line. If the user accepts the default answer of yes, the installer will create the directory and continue. Figure 136 Installer will create directory if it does not exist 146 CIMCOR CimTrak Integrity & Compliance Suite

The user is asked to set the owner and group ownership for the Network Device Agent files. By default, the user root and group root are the owners of the Agent. By pressing 1 or 2, the user can specify the user or group which will own the Agent files. When the user and group names have been chosen, type 9 and press Enter to continue. Figure 137 User and Group name ownership for Network Device Agent files User Guidance 147

5.4.2. CONFIGURE THE NETWORK DEVICE AGENT The Installation menu will appear again. Note that the text (DONE) is now next to Option 1; this means the Network Device Agent has been successfully installed. You will need to configure the Network Device Agent. There are two options to accomplish this: the setup method and the configure method. Figure 138 Installation menu (Network Device Agent is installed) Press 2 and Enter to configure the Network Device Agent via the Setup method. Press 3 and Enter to configure the Network Device Agent via the Configure method. 148 CIMCOR CimTrak Integrity & Compliance Suite

5.4.3. CONFIGURE THE NETWORK DEVICE AGENT: SETUP METHOD The setup screen allows you to enter the Network Device Agent information through the Agent s internal setup utility. Navigate to each field and type in the Username, Password, Server (Repository) IP Address, Port, Agent Name, Language File (if English, type LanguagePacks/English.lng,) License Type, and Private Key (optional.) Figure 139 Setup Method After the Repository information has been filled, navigate to the OK button and press Enter. The Network Device Agent will connect to and attach itself to the Repository. If the Agent successfully attaches itself to the server, the Agent will appear in the Management Console, and the Installation menu will appear again. User Guidance 149

5.4.4. CONFIGURE THE NETWORK DEVICE AGENT: CONFIGURE METHOD In this menu, select the number of the settings to be changed. Enter the appropriate information. Once all of the correct information has been entered, select number 10 to finish the configuration and start the CimTrak Network Device Agent. Figure 140 Configure method 150 CIMCOR CimTrak Integrity & Compliance Suite

If there is an issue and the Network Device Agent cannot logon to the server, a warning screen will appear. If a setting for the Agent is incorrect (such as an incorrect IP address,) press n and then Enter to go back to the previous menu. Figure 141 Installer could not detect Repository If the settings are correct, but there is a problem with the connection (the server is not running or there is a network issue,) after the problem is repaired: press y and then Enter to connect the Network Device Agent to the server. User Guidance 151

If the Network Device Agent successfully attaches itself to the server, installation and start-up scripts similar to those listed below. Figure 142 Network Device Agent successfully attaches itself to Repository Once all of the automated scripts have run, the Network Device Agent will appear in the Management Console, and after you hit Enter, the Installation menu (Figure 138) will appear again. At this point, the Network Device Agent should be configured to connect to a Repository. Note that the Network Device Agent is not running at this time. 5.4.5. INSTALL RC (START/STOP) SERVICES The Installation menu should appear on screen. If you wish to start the Agent when Linux boots, press 4 and then Enter. The installer will ask you if you want to load rc startup/shutdown services for the Agent. If you do press y and then Enter. 152 CIMCOR CimTrak Integrity & Compliance Suite

Figure 143 Install rc startup/shutdown services User Guidance 153

If you decide to load the startup values, you will be asked the auto restart value. This value is, in the event of a Network Device Agent looses connection with the repository, the number of seconds after the connection is lost, the Agent will restart automatically. The default number of seconds is 30. Changing this value is possible, if more or less time is needed after a system or program looses its connection. (In case of slower/older computers, more time may be needed to complete the startup cycle.) Figure 144 Set the auto restart value The Installation menu (Figure 138) will appear again. 154 CIMCOR CimTrak Integrity & Compliance Suite

5.4.6. START NETWORK DEVICE AGENT If you have installed the Network Device Agent and have configured the settings to your specifications, the Agent can now be started. Press 5 and then Enter. Installation and start-up scripts similar to these will appear on the console. The Agent is now attached to the server. Figure 145 Start the Network Device Agent Once all of the automated scripts have run, press Enter when prompted and the Installation menu screen will appear again. Select 0 to exit the menu. Select 0 again to exit the installer. Installation of the CimTrak Network Device Agent is now complete. User Guidance 155

5.5. CIMTRAK NETWORK DEVICE AGENT INSTALLATION UNIX/LINUX GRAPHICAL If you have installed the Network Device Agent and have configured the settings to your specifications, the Agent can now be started. Press 5 and then Enter. The following packages or libraries are prerequisites to the installation of the CimTrak Network Device Agent on a 64 bit Linux System: For Redhat, CentOS, and Fedora: glibc.i686 zlib.i686 For Ubuntu 13.04 and below: Ia32-libs For Ubuntu 13.10 and above: bc binutils lib32z1 lib32ncurses5 lib32bz2-1.0 Installation and start-up scripts similar to these will appear on the console. The Agent is now attached to the server. 156 CIMCOR CimTrak Integrity & Compliance Suite

Figure 146 Start the Network Device Agent Once all of the automated scripts have run, press Enter when prompted and the Installation menu screen will appear again. Select 0 to exit the menu. Select 0 again to exit the installer. Installation of the CimTrak Network Device Agent is now complete. User Guidance 157

There is another installer (setuplinux.bin) for the Linux Network Device Agent. There are two ways to run the program; running it in GUI mode or in text-based mode. NOTE: In order for the Network Device Agent to function, two-way communication must exist between the Network Device and the computer the Network Device Agent will be installed on. To check if two-way communication is possible, the computer with the Network Device Agent must be able to successfully ping the Network Device, and vice versa (while logged into the Network Device, the user must be able to successfully ping the computer the Agent will be installed on.) The Root user or someone with Root privileges must install and run the CimTrak Network Device Agent in a Linux environment. Navigate to the path for your system, and then navigate to the zip file and type./setuplinux.bin. The user must be in an X Windows terminal session to run the program in graphical mode. NOTE: If an X Windows environment is not available, or you are not sure, see the next section, entitled Alternate Console Linux Installation of CimTrak Network Device Agent. 158 CIMCOR CimTrak Integrity & Compliance Suite

The first screen will have the CimTrak End User License Agreement. You must read and accept the terms of the agreement to continue installation. Figure 147 EULA Once you accept the agreement, click Next. User Guidance 159

The next screen will be the CimTrak Installation Welcome Screen. Figure 148 CimTrak Welcome Screen You may click Next to continue. 160 CIMCOR CimTrak Integrity & Compliance Suite

Now you will see the directory where the CimTrak Network Device Agent will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. ure 149 Installation Directory Fig In order to ease the process of future updates to the program it is recommended that the installation path not be changed. Once you have selected the directory path, click Next. User Guidance 161

The confirmation screen will now be displayed. Confirm the settings and then click Install to start the installation. Figure 150 Confirmation Screen A progress screen will appear while the components are being installed. 162 CIMCOR CimTrak Integrity & Compliance Suite

After the CimTrak Network Device Agent is installed, the Private Key screen is now displayed. Figure 151 Choose to create Private Key If a Network Device Agent should have a Private Key applied to it: make sure Yes is chosen, enter the desired Private Key in both text boxes, then press Next. Make sure that the Private Key is unique (it should not be the same as a Repository login name or password.) If a Network Device Agent does not need to have a Private Key applied to it: choose No, and then press Next. User Guidance 163

Lastly, you must configure the CimTrak Network Device Agent to communicate with the CimTrak Master Repository. On the CimTrak Network Device Agent configuration screen, you will need to enter the following information: IP Address where the CimTrak Master Repository is located Port used (if other than the default 3749) A descriptive name for this CimTrak Network Device Agent Restart Agent Automatically in the event of program termination (default restart is after 300 seconds) CimTrak Master Repository Username CimTrak Master Repository Password Select the License Type for this CimTrak Network Device Agent. Figure 152 Enter Repository information for Network Device Agent Click on Next to continue. 164 CIMCOR CimTrak Integrity & Compliance Suite

When the components have been completely installed, the installer will take you to the Summary Information Screen. Figure 153 Summary Information Screen Click Finish to complete the installation. Installation of the CimTrak Network Device Agent is complete. User Guidance 165

5.6. CIMTRAK NETWORK DEVICE AGENT INSTALLATION UNIX/LINUX COMMAND LINE If an X Windows environment is not available, the setuplinux.bin Linux installer also can be used in console mode. The following packages or libraries are prerequisites to the installation of the CimTrak Network Device Agent on a 64 bit Linux System: For Redhat, CentOS, and Fedora: glibc.i686 zlib.i686 For Ubuntu 13.04 and below: Ia32-libs For Ubuntu 13.10 and above: bc binutils lib32z1 lib32ncurses5 lib32bz2-1.0 NOTE: In order for the Network Device Agent to function, two-way communication must exist between the Network Device and the computer the Network Device Agent will be installed on. To check if two-way communication is possible, the computer with the Network Device Agent must be able to successfully ping the Network Device, and vice versa (while logged into the Network Device, the user must be able to successfully ping the computer the Agent will be installed on.) The Root user or someone with Root privileges must install and run the CimTrak Network Device Agent in a Linux environment. Navigate to the path for your system, then navigate to the zip file and type./setuplinux.bin -console. On the first screen, you must read and accept the End User License Agreement to continue the installation and use CimTrak. 166 CIMCOR CimTrak Integrity & Compliance Suite

Figure 154 EULA User Guidance 167

NOTE: For international character sets, use UTF8 fonts on your terminal settings. UTF8 fonts work best for TERM variable settings such as ""linux"" or ""xterm"". For plain ASCII characters, set your shell TERM variable and your terminal to ""vt100"" or equivalent (example: ""vt220""). The correct terminal settings are needed for the ""-Setup"" option and for those using international character sets. A Welcome screen will appear. Press the Enter key to continue past this screen. ure 155 CimTrak Welcome Screen Fig The next screen shows the directory where CimTrak will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 156 Installation Directory 168 CIMCOR CimTrak Integrity & Compliance Suite

The confirmation screen will now be displayed. Confirm the settings and then press Enter to start the installation. A progress screen will appear while the components are being installed. Figure 157 Confirmation Screen After the CimTrak Network Device Agent is installed, the Private Key screen is now displayed. User Guidance 169

Figure 158 Choose to create Private Key If a Network Device Agent should have a Private Key applied to it: type 1 and Enter, enter the Private Key twice, and then press Enter. Make sure that the Private Key is unique (it should not be the same as a Repository login name or password.) If a Network Device Agent does not need to have a Private Key applied to it: type 0 and Enter. Lastly, you must configure the CimTrak Network Device Agent to communicate with the CimTrak Master Repository. On the CimTrak Network Device Agent configuration screen you will need to enter the following information: IP Address where the CimTrak Master Repository is located Port used (if other than the default 3749) A descriptive name for this CimTrak Network Device Agent Restart Agent Automatically in the event of program termination (default restart is after 300 seconds) CimTrak Master Repository Username CimTrak Master Repository Password 170 CIMCOR CimTrak Integrity & Compliance Suite

Select the License Type for this CimTrak Network Device Agent. Figure 159 Enter Repository information for File System Agent Figure 160 Enter Repository information for File System Agent (continued) User Guidance 171

172 CIMCOR CimTrak Integrity & Compliance Suite

When the components have been completely installed, the installer will take you to the last screen. Press Enter to quit the installer. Figure 161 Summary Information Screen Installation of the CimTrak Network Device Agent is now complete. 5.7. CIMTRAK NETWORK DEVICE AGENT INSTALLATION WINDOWS SILENT The way in which the silent installation of the CimTrak Network Device Agent is started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. NOTE: It is necessary to run the command prompt in administrator mode for Windows Vista operating systems and later. To install the Network Device Agent in silent mode, it must be called in this manner: setupwin32.exe -silent -V RepositoryAddress="[IP of Repository]" -V RepositoryUsername="[username]" -V RepositoryPassword="[password]" Parameters: - InstallationDirectory The base directory for the installation (optional, default is "C:\Program Files\Cimcor\CimTrak ", must not exceed 4096 characters) - LogFile The path where log messages will be written (optional, default is no Log File) User Guidance 173

- RepositoryAddress The address of the CimTrak Master Repository to which the CimTrak Network Device Agent will connect (required) - RepositoryPort The port of the CimTrak Master Repository to which the CimTrak Network Device Agent will connect (must be between 1 & 605535, default is "3749") - AgentName The unique identifier of CimTrak Network Device Agent that is being installed (must not exceed 20 characters, default is computer's host name) - AutoRestartAgent The amount of seconds to wait before automatically restarting the CimTrak Network Device Agent, if necessary (must be between "0" and "86400", "0" to not automatically restart, default is "0") - RepositoryUsername The username used to log in to the CimTrak Master Repository (required) - RepositoryPassword The password used to log in to the CimTrak Master Repository (required) - RepositoryLicenseType The license type of the CimTrak Master Repository to which the CimTrak Network Device Agent will connect ("0" for professional, "1" for standard, default is "0") - AgentPrivateKey Provides further encryption for the CimTrak Network Device Agent, requiring the user to provide this key in order to perform specific operations (optional, default is no key) Example for installing the Network Device Agent on Windows: setupwin32 -silent -V LogFile="C:\log.txt" -V RepositoryAddress="192.168.1.1" -V RepositoryUsername="user" -V RepositoryPassword="password" -V AgentName="Windows Network" -V AgentPrivateKey="key" NOTE: If you wish to check the return value of the installation programmatically in Windows, you must run the installer with "start /w". The "start" command in DOS runs the command that follows in a new DOS window. The "/w" flag means to start the command and wait until it terminates before allowing the user to execute any more commands. 174 CIMCOR CimTrak Integrity & Compliance Suite

An example of how to use this would be: start /w setupwin32 -silent V InstallationDirectory="c:\test"... which would execute, then provide the user with the command prompt when it was finished, where the user could type: echo %errorlevel% to see the result of the installation. 0 is success and -1 is a failure (a failure exists if the user inputs an invalid command or parameter. If the installer cannot connect to a Repository, this error will be explained in the log file). - The "V" in "-V" in the command-line must be capitalized. - The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes. - The parameter values must be enclosed in double-quotes. - If you wish to not provide a parameter, do not specify it with an empty value (for instance, RepositoryPort=""). Otherwise, errors will occur that will prevent the installation from continuing. - Entering an invalid parameter name will cause the installer to exit immediately. - If an invalid installation directory is used, an error message ( ERROR: The InstallationDirectory parameter isn't a valid directory. ) will be inserted at the end of the Log File. This error will not be present at the command prompt. - Default values will be used for InstallationDirectory ("C:\Program Files\Cimcor\CimTrak "), LogFile ("", meaning no messages will be logged), RepositoryPort ("3749"), AgentName (computer's host name), RepositoryLicenseType ("0", meaning professional) & AgentPrivateKey ("", meaning no private key will be used). For all the parameters with default values, see the list of parameters for the Windows Network Device Agent. - If the silent installer is run and the Windows Network Device Agent has been previously installed, a log file entry will be added stating that the Windows Network Device Agent will be upgraded. If the Windows Network Device Agent is being upgraded, the parameters pertaining to the Windows Network Device Agent will be ignored. - If the silent installer is run and the Windows Network Device Agent has been previously installed, the Windows Network Device Agent will be upgraded. If User Guidance 175

the Windows Network Device Agent is being upgraded, the parameters pertaining to the Windows Network Device Agent will be ignored and and a log file entry will be added stating that the Windows File System Agent will be upgraded. NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak Communications. You will not be prompted for permission to open this port. 176 CIMCOR CimTrak Integrity & Compliance Suite

5.8. CIMTRAK NETWORK DEVICE AGENT INSTALLATION UNIX/LINUX SILENT The way in which the silent installation of the CimTrak Network Device Agent is started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. The following packages or libraries are prerequisites to the installation of the CimTrak Network Device Agent on a 64 bit Linux System: For Redhat, CentOS, and Fedora: glibc.i686 zlib.i686 For Ubuntu 13.04 and below: Ia32-libs For Ubuntu 13.10 and above: bc binutils lib32z1 lib32ncurses5 lib32bz2-1.0 The "Root" user or someone with "Root" privileges must install and run the CimTrak Network Device Agent in a UNIX / Linux environment. Navigate to the path for your system, and then navigate to the InstallShield directory on the zip file. To install the Network Device Agent in silent mode, it must be called in this manner:./setuplinux.bin -silent -V RepositoryAddress="IP of Repository" -V RepositoryUsername="[username]" -V RepositoryPassword="[password]" Parameters: - InstallationDirectory The base directory for the installation (default is "/opt/cimcor/cimtrak ", must not exceed 4096 characters) - LogFile The path where log messages will be written (optional, default is no Log File) - RepositoryAddress The address of the CimTrak Master Repository to which the CimTrak Network Device Agent will connect (required) User Guidance 177

- RepositoryPort The port of the CimTrak Master Repository to which the CimTrak Network Device Agent will connect (must be between 1 & 605535, default is "3749") - AgentName The unique identifier of CimTrak Network Device Agent that is being installed (must not exceed 20 characters, default is computer's host name) - AutoRestartAgent The amount of seconds to wait before automatically restarting the CimTrak Network Device Agent, if necessary (must be between "0" and "86400", "0" to not automatically restart, default is "0") - RepositoryUsername The username used to log in to the CimTrak Master Repository (required) - RepositoryPassword The password used to log in to the CimTrak Master Repository (required) - RepositoryLicenseType The license type of the CimTrak Master Repository to which the CimTrak Network Device Agent will connect ("0" for professional, "1" for standard, default is "0") - AgentPrivateKey Provides further encryption for the CimTrak Network Device Agent, requiring the user to provide this key in order to perform specific operations (optional, default is no key) Example for installing the Network Device Agent on Linux:./setupLinux.bin -silent -V LogFile="log.txt" -V RepositoryAddress="192.168.1.1" -V RepositoryUsername="user" -V RepositoryPassword="password" -V AgentName="Linux Network" -V AgentPrivateKey="key" NOTE: - The "V" in "-V" in the command-line must be capitalized. - The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes. - The parameter values must be enclosed in double-quotes. 178 CIMCOR CimTrak Integrity & Compliance Suite

- If you wish to not provide a parameter, do not specify it with an empty value (for instance, RepositoryPort=""). Otherwise, errors will occur that will prevent the installation from continuing. - Entering an invalid parameter name will cause the installer to exit immediately. - If an invalid installation directory is used, an error message ( ERROR: The InstallationDirectory parameter isn't a valid directory. ) will be inserted at the end of the Log File. This error will not be present at the command prompt. - Default values will be used for InstallationDirectory ("/opt/cimcor/cimtrak "), LogFile ("", meaning no messages will be logged), RepositoryPort ("3749"), AgentName (computer's host name), RepositoryLicenseType ("0", meaning professional) & AgentPrivateKey ("", meaning no private key will be used). For all the parameters with default values, see the list of parameters for the Linux Network Device Agent. - If the silent installer is run and the Linux Network Device Agent has been previously installed, a log file entry will be added stating that the Linux Network Device Agent will be upgraded. If the Linux Network Device Agent is being upgraded, the parameters pertaining to the Linux Network Device Agent will be ignored. NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak Communications. You will not be prompted for permission to open this port. 6. CIMTRAK MANAGEMENT CONSOLE INSTALLATION 6.1. CIMTRAK MANAGEMENT CONSOLE PRE-INSTALLATION INTEGRITY VERIFICATION Before beginning the installation process CIMCOR recommends verifying the authenticity of the Installation file(s). Each CimTrak component has an associated SHA1 hash value calculated on installation components. The associated SHA1 hash value can be obtained from the CIMCOR website located at http://cimcor.com/downloads. 6.2. CIMTRAK MANAGEMENT CONSOLE INSTALLATION WINDOWS GRAPHICAL The CimTrak Management Console is only available on the Windows Platform. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command User Guidance 179

prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. The first screen you will see allows you to pick the language for the installation. Figure 162 Language Selection Screen Select the language and click Next. 180 CIMCOR CimTrak Integrity & Compliance Suite

The next screen will have the CimTrak End User License Agreement. You must read and accept the terms of the agreement to continue installation. Figure 163 EULA Once you accept the agreement, click Next. User Guidance 181

The next screen will be the CimTrak Installation Welcome Screen. Figure 164 CimTrak Welcome Screen You may click Next to continue. 182 CIMCOR CimTrak Integrity & Compliance Suite

Click Next again to get to the screen which will show the directory where the CimTrak Management Console will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 165 Installation Directory In order to ease the process of future updates to the program it is recommended that the installation path not be changed. Once you have selected the directory path, click Next. User Guidance 183

The following screen allows you to determine which components of CimTrak you can install. Place a check mark in the box next to CimTrak Management Console Figure 166 Choose to install the CimTrak Management Console Click Next to continue. 184 CIMCOR CimTrak Integrity & Compliance Suite

The confirmation screen will now be displayed. Figure 167 Confirmation Screen Confirm the settings and then click Install to start the installation. A progress screen will appear while the components are being installed. User Guidance 185

When the base components are installed, a screen showing the installation of the Microsoft.NET components will appear. Figure 168 Installing.NET Framework This installation uses version 2.0 of the Microsoft.NET Framework. NOTE: Uninstalling the.net Framework will prevent the Management Console from launching. DO NOT UNINSTALL THE.NET FRAMEWORK. 186 CIMCOR CimTrak Integrity & Compliance Suite

When the components have been completely installed, the installer will take you to the last screen. Figure 169 Summary Information Screen Click Finish to complete the installation. Installation of the CimTrak Management Console is now complete. NOTE: If the Management Console is installed on a Server Operating System (such as Windows 2003,) some screens on the Management Console will not work correctly unless two additional changes are made: The site about:security_cimtrak Client.exe (without the quotes) must be added to the list of Trusted Sites. JavaScript must be enabled for the Trusted Sites. In order to add about:security_cimtrak Client.exe and turn on JavaScript (for IE 5.x,6.x,7.x): 1. Navigate to the Control Panel. 2. Open Internet Options. 3. Navigate to the Security Tab. 4. Open the list of Trusted Sites 5. Add the site about:security_cimtrak Client.exe to the list of Trusted Sites. 6. Close the Trusted Sites window. 7. Bring up the Security Settings window for the Trusted Sites 8. Scroll down to Scripting, near the bottom of the list. User Guidance 187

9. Under Active scripting, choose Enable. This enables JavaScript for the Trusted Sites. 10. Click OK to leave Security Settings. Click OK to leave Internet Options. These settings can be changed at any time. 6.3. CIMTRAK MANAGEMENT CONSOLE INSTALLATION WINDOWS COMMAND LINE The CimTrak Management Console is currently only available on Windows Platform. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. This will start the InstallShield Wizard. 188 CIMCOR CimTrak Integrity & Compliance Suite

The first screen is language selection. Enter a 1 or 2 and press Enter to submit your selection. Then type 0 and press Enter to move to the next screen. Figure 170 Language Selection NOTE: After every screen in which the user inputs configuration settings, the user is given the option to go to the previous screen, cancel the installation, redisplay the current page, as well as continue to the next page. Figure 171 Options after every screen User Guidance 189

The next screen is the End User License Agreement. You will need to read and accept the EULA to continue the installation and use CimTrak. When done, enter a one (1) and press Enter to accept the agreement, then type 0 and press Enter to move to the next screen. Figure 172 EULA 190 CIMCOR CimTrak Integrity & Compliance Suite

NOTE: After every screen in which the user inputs configuration settings, the user is given the option to go to the previous screen, cancel the installation, redisplay the current page, as well as continue to the next page. Figure 173 Options after every screen A Welcome screen will appear. Press the Enter key to continue past this screen. Figure 174 CimTrak Welcome Screen The next screen shows the directory where CimTrak will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 175 Installation Directory Now you can select the components to be installed. To select the components, enter the corresponding number of the component. When done, type 0 to move to the next screen. Figure 176 Choose to install CimTrak Management Console User Guidance 191

The next screen will confirm your installation selections. Select Continue to begin the install. Figure 177 Confirmation Screen Now the CimTrak Management Console will be installed. You will see the following screens (see next two figures below) while this occurs. Figure 178 Installing CimTrak Management Console Figure 179 Installing.NET Framework This will complete the CimTrak Management Console installation. Figure 180 Summary Information Screen 6.4. CIMTRAK MANAGEMENT CONSOLE INSTALLATION WINDOWS SILENT The CimTrak Management Console is only available on the Windows Platform. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. NOTE: It is necessary to run the command prompt in administrator mode for Windows Vista operating systems and later. 192 CIMCOR CimTrak Integrity & Compliance Suite

To install the Management Console in silent mode, it must be called in this manner: setupwin32 -silent -V InstallationDirectory="[installation directory]" -V InstallManagementConsole="1" Parameters: - InstallationDirectory The base directory for the installation (optional, default is "C:\Program Files\Cimcor\CimTrak ", must not exceed 4096 characters) - LogFile The path where log messages will be written (optional) Example for installing the Management Console on Windows, logging messages to "c:\log.txt": setupwin32 -silent -V InstallationDirectory="c:\test" -V LogFile="c:\log.txt" -V InstallManagementConsole="1" NOTE: If you wish to check the return value of the installation programmatically in Windows, you must run the installer with "start /w". The "start" command in DOS runs the command that follows in a new DOS window. The "/w" flag means to start the command and wait until it terminates before allowing the user to execute any more commands. An example of how to use this would be: start /w setupwin32 -silent -V InstallManagementConsole="1"... which would execute, then provide the user with the command prompt when it was finished, where the user could type: echo %errorlevel% to see the result of the installation. 0 is success and -1 is a failure (a failure exists if the user inputs an invalid command or parameter. The installer can still fail even with correct parameters, this error will be explained in the log file). - The "V" in "-V" in the command-line must be capitalized. - The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes. - The parameter values must be enclosed in double-quotes. User Guidance 193

- If you wish to not provide a parameter, do not specify it with an empty value (for instance, LogFile=""). Otherwise, errors will occur that will prevent the installation from continuing. - Entering an invalid parameter name will cause the installer to exit immediately. - If an invalid installation directory is used, an error message ( ERROR: The InstallationDirectory parameter isn't a valid directory. ) will be inserted at the end of the Log File. This error will not be present at the command prompt. - Default values will be used for InstallationDirectory ("C:\Program Files\Cimcor\CimTrak "), LogFile ("", meaning no messages will be logged). - If the silent installer is run and the Management Console has been previously installed, a log file entry will be added stating that the Management Console will be upgraded regardless of the InstallManagementConsole parameter value. If the Management Console is being upgraded, the parameters pertaining to the Management Console will be ignored. - If the silent installer is run and the Management Console has been previously installed, the Management Console will be upgraded regardless of the InstallManagementConsole parameter value. If the Management Console is being upgraded, the parameters pertaining to the Management Console will be ignored and and a log file entry will be added stating that the Management Console will be upgraded. NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak Communications. You will not be prompted for permission to open this port. 7. CIMTRAK APP SERVER 7.1. CIMTRAK APP SERVER PRE-INSTALLATION INTEGRITY VERIFICATION Before beginning the installation process CIMCOR recommends verifying the authenticity of the Installation file(s). Each CimTrak component has an associated SHA1 hash value calculated on installation components. The associated SHA1 hash value can be obtained from the CIMCOR website located at http://cimcor.com/downloads. 194 CIMCOR CimTrak Integrity & Compliance Suite

7.2. CIMTRAK APP SERVER INSTALLATION WINDOWS GUI Right click on the CimTrak App Server file and select Run as Administrator. This will be sure to allow the CimTrak App Server complete access to all necessary files and directories on the local computer. You will be prompted by the CimTrak App Server Installer. Figure 181: CimTrak App Server Installer Click Next to continue with you install. You will then be prompted by the CimTrak App Server End User License Agreement (EULA). User Guidance 195

Figure 182: CimTrak App Server End User License Agreement (EULA) Please agree to the Terms and Conditions by selecting I accept the agreement in order to continue with the installation. Failure to agree with the Terms and Conditions will prevent installation of the CimTrak App Server. You will then be prompted by the CimTrak App Server s Installation Directory screen. 196 CIMCOR CimTrak Integrity & Compliance Suite

The default installation path for the CimTrak App Server is: C:\ProgramFiles(x86)\Cimcor\CimTrak \CimTrak AppServer You may change the installation path as you wish. Once your installation path has been decided, click Next to continue to the CimTrak App Server Ready To Install screen. User Guidance 197

Figure 183: CimTrak App Server Ready to Install screen The CimTrak App Server is now ready to be installed on your local machine. Please click Next to continue with the installation. 198 CIMCOR CimTrak Integrity & Compliance Suite

Figure 184: CimTrak App Server (Installing) A prompt will appear on the screen once the CImtrak App Server has completed installation. You may then run the application. User Guidance 199

Figure 185: CimTrak App Server (Installation Complete) 7.3. CIMTRAK APP SERVER INSTALLATION WINDOWS SILENT To begin the silent installation of the CimTrak App Server, open a command prompt window. Within the command prompt window, navigate to the location of the CimTrak App Server setup executable. In order to launch the CimTrak App Server setup installation executable as a silent installer, you will need to navigate to the CimTrak App Server executable file and type the following parameters followed by their values: --unattendedmodeui none --mode unattended Upon pressing Enter the CimTrak App Server executable will launch and silently perform the installation. For a list of parameters, you may enter the parameter help. Following is a list of the available parameters for the CimTrak App Sever Setup executable. Parameter: Description: --help Display the list of valid options 200 CIMCOR CimTrak Integrity & Compliance Suite

Parameter: Description: Parameter: Description: Default Value: Allowed Values: Parameter: Description: --version Display product information --unattendedmodeui <unattendedmodeui> Unattended Mode UI none none minimal minimalwithdialogs --optionfile <optionfile> Installation option file Parameter: --debuglevel <debuglevel> Description: Debug information level of verbosity Default Value: 2 Allowed Values: 0 1 2 3 4 Parameter: Description: Default Value: Allowed Values: --mode <mode> Installation mode win32 win32 unattended Parameter: Description: Parameter: Descripton: Default Value: Allowed Values: --debugtrace <debugtrace> Debug filename --installer-language <installer-language> Language selection en en Parameter: --prefix <prefix> Description: Installation Directory Default Value: C:\ProgramFiles(x86)/Cimcor/CimTrak /CimTrak AppServer 7.4. CIMTRAK APP SERVER INSTALLATION LINUX GUI 1. Right click on the CimTrak App Server file and select Run as Administrator. This will be sure to allow the CimTrak App Server complete access to all necessary files and directories on the local computer. The following packages or libraries are prerequisites to the installation of the CimTrak App Server on a 64 bit Linux System: User Guidance 201

gtk2.x86_64 gtk2.i686 gtk2-engines.i686 PackageKit-gtk-module.i686 libcanberra-gtk2.i686 2. 3. You will be prompted by the CimTrak App Server Installer. 4. 5. 6. Figure 186: CimTrak App Server Installer 7. 8. Click Next to continue with you install. You will then be prompted by the CimTrak App Server End User License Agreement (EULA). 9. 202 CIMCOR CimTrak Integrity & Compliance Suite

10. 11. Figure 187: CimTrak App Server End User License Agreement (EULA) 12. 13. Please agree to the Terms and Conditions by selecting I accept the agreement in order to continue with the installation. Failure to agree with the Terms and Conditions will prevent installation of the CimTrak App Server. 14. 15. You will then be prompted by the CimTrak App Server s Installation Directory screen. 16. User Guidance 203

17. 18. 19. The default installation path for the CimTrak App Server is: 20. 21. C:\ProgramFiles(x86)\Cimcor\CimTrak \CimTrak AppServer 22. 23. You may change the installation path as you wish. Once your installation path has been decided, click Next to continue to the CimTrak App Server Ready To Install screen. 204 CIMCOR CimTrak Integrity & Compliance Suite

24. 25. Figure 188: CimTrak App Server Ready to Install screen 26. 27. The CimTrak App Server is now ready to be installed on your local machine. Please click Next to continue with the installation. A prompt will appear on the screen once the CimTrak App Server has completed installation. You may then run the application. 28. User Guidance 205

29. 30. Figure 189: CimTrak App Server (Installation Complete) 7.5. CIMTRAK APP SERVER INSTALLATION LINUX COMMAND LINE The following packages or libraries are prerequisites to the installation of the CimTrak App Server on a 64 bit Linux System: gtk2.x86_64 gtk2.i686 gtk2-engines.i686 PackageKit-gtk-module.i686 libcanberra-gtk2.i686 To begin the silent installation of the CimTrak App Server, pleae navigate to the directory where the CimTrak App Server Setup file installer is located and run the installer. After running the CimTrak App Server Installer, you will be prompted by the following. 206 CIMCOR CimTrak Integrity & Compliance Suite

After pressing Enter, you will be prompted by the CimTrak App Server End User License Agreement EULA. Please read the EULA carefully and agree to the End User License Agreement. Failure to agree to the End User License Agreement will result in closure of the CimTrak App Server Installer and will not continue with the install. Upon agreement to the End User License Agreement you will be prompted for the location in which you would like the CimTrak App Server to be installed. The default install directory is as shown before the colon. If you wish to specify a directory different than the default directory shown, please type the desired directory User Guidance 207

and press Enter. If you wish to install the CimTrak App Server in the recommended default directory, please press Enter. If your chosen directory is passes validation, a prompt will appear stating that the install is ready to begin. If you encounter any issues along the way, please contact our technical support group. For more information regarding our technical support group, please refer to section 13.1. To continue with the installation of the CimTrak App Server, please enter a Y and press Enter. You installation will begin. You will be prompted upon completion of the installation. 7.6. CIMTRAK APP SERVER INSTALLATION LINUX SILENT The following packages or libraries are prerequisites to the installation of the CimTrak App Server on a 64 bit Linux System: gtk2.x86_64 gtk2.i686 gtk2-engines.i686 PackageKit-gtk-module.i686 libcanberra-gtk2.i686 To begin the silent installation of the CimTrak App Server, please navigate to the directory where the CimTrak App Server Setup file installer is located and run the installer with the parameter unattended. The CimTrak App Server will now complete an installation without additional prompting. If you encounter any issues along the way, please contact our technical support group. For more information regarding our technical support group, please refer to section 13.1. 208 CIMCOR CimTrak Integrity & Compliance Suite

8. CIMTRAK COMMAND LINE UTILITY INSTALLATION 8.1. CIMTRAK COMMAND LINE UTILITY PRE-INSTALLATION INTEGRITY VERIFICATION Before beginning the installation process CIMCOR recommends verifying the authenticity of the Installation file(s). Each CimTrak component has an associated SHA1 hash value calculated on installation components. The associated SHA1 hash value can be obtained from the CIMCOR website located at http://cimcor.com/downloads. 8.2. CIMTRAK COMMAND LINE UTILITY INSTALLATION WINDOWS GRAPHICAL For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. The first screen you will see allows you to pick the language for the installation. Figure 190 Language Selection Screen Select the language and click Next. User Guidance 209

The next screen will have the CimTrak End User License Agreement. You must read and accept the terms of the agreement to continue installation. Figure 191 EULA Once you accept the agreement, click Next. 210 CIMCOR CimTrak Integrity & Compliance Suite

The next screen will be the CimTrak Installation Welcome Screen. Figure 192 CimTrak Welcome Screen You may click Next to continue. User Guidance 211

Now you will see the directory where the CimTrak Tools will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 193 Installation Directory In order to ease future updates to the software, it is recommended to leave the installation directory at the default. Once you have selected the directory path, click Next. 212 CIMCOR CimTrak Integrity & Compliance Suite

The following screen allows you to determine which components of CimTrak you can install. Figure 194 Choose to install the CimTrak Tools Place a check mark in the box next to CimTrak Command Line Utility and click Next. User Guidance 213

The confirmation screen will now be displayed. Figure 195 Confirmation Screen Confirm the settings and then click Install to start the installation. A progress screen will appear while the components are being installed. 214 CIMCOR CimTrak Integrity & Compliance Suite

When the components have been completely installed, the installer will take you to the last screen. Figure 196 Summary Information Screen Click Finish to complete the installation. User Guidance 215

8.3. CIMTRAK COMMAND LINE UTILITY INSTALLATION WINDOWS COMMAND LINE For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. This will start the InstallShield Wizard. The first screen is language selection. Use a 1 or 2 and press Enter to submit your selection. Then type 0 and press Enter to move to the next screen. Figure 197 Language Selection NOTE: After every screen in which the user inputs configuration settings, the user is given the option to go to the previous screen, cancel the installation, redisplay the current page, as well as continue to the next page. Figure 198 Options after every screen 216 CIMCOR CimTrak Integrity & Compliance Suite

The next screen is the End User License Agreement. You will need to read and accept the EULA to continue the installation and use CimTrak. When done, enter a one (1) and press Enter to accept the agreement, then type 0 and press Enter to move to the next screen. Figure 199 EULA User Guidance 217

A Welcome screen will appear. Press the Enter key to continue past this screen. Figure 200 CimTrak Welcome Screen The next screen shows the directory where CimTrak will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 201 Installation Directory Now you can select the components to be installed. To select the Tools, enter the corresponding number of the components. Figure 202 CimTrak Selection Menu A sub-menu appears. This menu allows the user to select the CimTrak Tools for installation or view the CimTrak Tools sub features. Figure 203 Select all or specific CimTrak Tools 218 CIMCOR CimTrak Integrity & Compliance Suite

If the list of sub features is chosen, the user can pick and choose the specific CimTrak Tool to install. Figure 204 Select all CimTrak Tools Type the specific number and then Enter to select that particular tool. Repeat this process for all desired features. Type in -1 and then Enter to return to the main selection menu. Type in 0 and then Enter to continue the installation process. If the installation process is continued, the next screen will confirm your installation selections. Select Continue to begin the install. Figure 205 Confirmation Screen User Guidance 219

Now the CimTrak Tools will be installed. You will see the following screen while this occurs. Figure 206 Installing CimTrak Tools This will complete the CimTrak Tools installation. Figure 207 Summary Information Screen 8.4. CIMTRAK COMMAND LINE UTILITY INSTALLATION WINDOWS SILENT The way in which the silent installation of the CimTrak Tools is started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. NOTE: It is necessary to run the command prompt in administrator mode for Windows Vista operating systems and later. To install the Tools in silent mode, it must be called in this manner: setupwin32.exe -silent -V [Parameter 1 Name]="Parameter 1 Value" -V [Parameter 2 Name]="Parameter 2 Value..." Parameters: - InstallationDirectory The base directory for the installation (optional, default is "C:\Program Files\Cimcor\CimTrak ", must not exceed 4096 characters) - InstallCommandLineUtility 220 CIMCOR CimTrak Integrity & Compliance Suite

Whether to install the CimTrak Command Line Utility ("0" for no, "1" for yes, default is "0") - InstallFTPRepositoryInterface Whether to install the CimTrak FTP Repository Interface ("0" for no, "1" for yes, default is "0") - InstallPing Whether to install the CimTrak Ping ("0" for no, "1" for yes, default is "0") - InstallProxy Whether to install the CimTrak Proxy ("0" for no, "1" for yes, default is "0") If InstallFTPRepositoryInterface is "1", you must consider the following parameters: - FTPRepositoryAddress The address of the CimTrak Master Repository to which the CimTrak FTP Repository Interface will connect (required, must not exceed 1024 characters) - FTPRepositoryPort The port of the CimTrak Master Repository to which the CimTrak FTP Repostiory Interface will connect (must be between "1" & "65535", default is "3749") - FTPListenPort The listen port of the FTP server (must be between "1" & "65535", default is "21") - FTPDataPort The data port of the FTP server (must be between "1" & "65535", default is "20") - FTPLocalIPAddress The address of the FTP server (must not exceed 1024 characters, default is computer's host address) Example for installing the Tools on Windows: setupwin32.exe -silent -V LogFile="C:\log.txt" -V InstallCommandLineUtility="1" -V InstallPing="1" -V InstallFTPRepositoryInterface="1" -V FTPRepositoryAddress="127.0.0.1" NOTE: If you wish to check the return value of the installation programmatically in Windows, you must run the installer with "start /w". The "start" command in DOS runs the command that follows in a new DOS window. The "/w" flag means to start the command and wait until it terminates before allowing the user to execute any more commands. An example of how to use this would be: User Guidance 221

start /w setupwin32 -silent -V InstallationDirectory="c:\test"... which would execute, then provide the user with the command prompt when it was finished, where the user could type: echo %errorlevel% to see the result of the installation. 0 is success and -1 is a failure (a failure exists if the user inputs an invalid command or parameter. The installer can still fail even with correct parameters, this error will be explained in the log file). - The "V" in "-V" in the command-line must be capitalized. - The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes. - The parameter values must be enclosed in double-quotes. - If you wish to not provide a parameter, do not specify it with an empty value (for instance, RepositoryEncryption=""). Otherwise, errors will occur that will prevent the installation from continuing. - Entering an invalid parameter name will cause the installer to exit immediately. - If an invalid installation directory is used, an error message ( ERROR: The InstallationDirectory parameter isn't a valid directory. ) will be inserted at the end of the Log File. This error will not be present at the command prompt. - Default values will be used for InstallationDirectory ("C:\Program Files\Cimcor\CimTrak "), LogFile ("", meaning no messages will be logged). For all the parameters with default values, see the list of parameters for the Repository. - If the silent installer is run and a Tool has been previously installed, the Tool will be upgraded. NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak Communications. You will not be prompted for permission to open this port. 8.5. CIMTRAK COMMAND LINE UTILITY INSTALLATION UNIX/LINUX SILENT The way in which the silent installation of the CimTrak Tools are started, will depend on what operating system you are installing it on. After the installation is 222 CIMCOR CimTrak Integrity & Compliance Suite

started, the process is the same for all operating systems. Determine which operating system you are using. The "Root" user or someone with "Root" privileges must install and run the CimTrak Tools in a UNIX / Linux environment. Navigate to the path for your system, and then navigate to the InstallShield directory on the zip file. To install the Tools in silent mode, it must be called in this manner:./setuplinux.bin -silent -V [Parameter 1 Name]="Parameter 1 Value" -V [Parameter 2 Name]="Parameter 2 Value..." Parameters: - InstallationDirectory The base directory for the installation (default is "/opt/cimcor/cimtrak ", must not exceed 4096 characters) - InstallCommandLineUtility Whether to install the CimTrak Command Line Utility ("0" for no, "1" for yes, default is "0") - InstallPing Whether to install the CimTrak Ping ("0" for no, "1" for yes, default is "0") - InstallProxy Whether to install the CimTrak Proxy ("0" for no, "1" for yes, default is "0") Example for installing the Tools on Linux:./setupLinux.bin -silent -V LogFile="log.txt" -V InstallCommandLineUtility="1" -V InstallPing="1" -V InstallProxy="1" NOTE: - The "V" in "-V" in the command-line must be capitalized. - The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes. - The parameter values must be enclosed in double-quotes. - If you wish to not provide a parameter, do not specify it with an empty value (for instance, RepositoryPort=""). Otherwise, errors will occur that will prevent the installation from continuing. User Guidance 223

- Entering an invalid parameter name will cause the installer to exit immediately. - If an invalid installation directory is used, an error message ( ERROR: The InstallationDirectory parameter isn't a valid directory. ) will be inserted at the end of the Log File. This error will not be present at the command prompt. - Default values will be used for InstallationDirectory ("/opt/cimcor/cimtrak "), LogFile ("", meaning no messages will be logged). - If the silent installer is run and a Tool has been previously installed, the Tool will be upgraded. NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak Communications. You will not be prompted for permission to open this port. 9. CIMTRAK FTP REPOSITORY INTERFACE INSTALLATION 9.1. CIMTRAK FTP REPOSITORY INTERFACE PRE-INSTALLATION INTEGRITY VERIFICATION Before beginning the installation process CIMCOR recommends verifying the authenticity of the Installation file(s). Each CimTrak component has an associated SHA1 hash value calculated on installation components. The associated SHA1 hash value can be obtained from the CIMCOR website located at http://cimcor.com/downloads. 9.2. CIMTRAK FTP REPOSITORY INTERFACE INSTALLATION WINDOWS GRAPHICAL The FTP repository is designed to allow access to the files that become locked by a CimTrak Master Repository. With this Interface installed it is possible to copy any locked and monitored file without installing the management console. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. The first screen you will see allows you to pick the language for the installation. 224 CIMCOR CimTrak Integrity & Compliance Suite

Figure 208 Language Selection Screen Select the language and click Next. User Guidance 225

The next screen will have the CimTrak End User License Agreement. You must read and accept the terms of the agreement to continue installation. Figure 209 EULA Once you accept the agreement, click Next. 226 CIMCOR CimTrak Integrity & Compliance Suite

The next screen will be the CimTrak Installation Welcome Screen. Figure 210 CimTrak Welcome Screen You may click Next to continue. User Guidance 227

Now you will see the directory where the CimTrak Tools will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 211 Installation Directory In order to ease future updates to the software, It is recommended to leave the installation directory at the default. Once you have selected the directory path, click Next. 228 CIMCOR CimTrak Integrity & Compliance Suite

The following screen allows you to determine which components of CimTrak you can install. Figure 212 Choose to install the CimTrak Tools Place a check mark in the box next to CimTrak FTP Repository Interface and click Next. User Guidance 229

The confirmation screen will now be displayed. Figure 213 Confirmation Screen Confirm the settings and then click Install to start the installation. A progress screen will appear while the components are being installed. 230 CIMCOR CimTrak Integrity & Compliance Suite

The Repository Interface screen will be displayed. Figure 214 FTP Repository Interface NOTE: In order for CimTrak to use the FTP Repository Interface it must be configured with additional information, such as the IP address where the repository is located. See the User Guide for information on how to use the FTP repository interface. Click on Next to continue. User Guidance 231

When the components have been completely installed, the installer will take you to the last screen. Figure 215 Summary Information Screen Click Finish to complete the installation. 9.3. CIMTRAK FTP REPOSITORY INTERFACE INSTALLATION WINDOWS COMMAND LINE For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. This will start the InstallShield Wizard. The first screen is language selection. Use a 1 or 2 and press Enter to submit your selection. Then type 0 and press Enter to move to the next screen. Figure 216 Language Selection NOTE: After every screen in which the user inputs configuration settings, the 232 CIMCOR CimTrak Integrity & Compliance Suite

user is given the option to go to the previous screen, cancel the installation, redisplay the current page, as well as continue to the next page. Figure 217 Options after every screen User Guidance 233

The next screen is the End User License Agreement. You will need to read and accept the EULA to continue the installation and use CimTrak. When done, enter a one (1) and press Enter to accept the agreement, then type 0 and press Enter to move to the next screen. Figure 218 EULA 234 CIMCOR CimTrak Integrity & Compliance Suite

A Welcome screen will appear. Press the Enter key to continue past this screen. Figure 219 CimTrak Welcome Screen The next screen shows the directory where CimTrak will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 220 Installation Directory Now you can select the components to be installed. To select the Tools, enter the corresponding number of the components. Figure 221 CimTrak Selection Menu A sub-menu appears. This menu allows the user to select the CimTrak Tools for installation or view the CimTrak Tools subfeatures. Figure 222 Select all or specific CimTrak Tools User Guidance 235

If the list of subfeatures is chosen, the user can pick and choose the specific CimTrak Tool to install. Figure 223 Select all CimTrak Tools Type the specific number and then Enter to select that particular tool. Repeat this process for all desired features. Type in -1 and then Enter to return to the main selection menu. Type in 0 and then Enter to continue the installation process. If the installation process is continued, the next screen will confirm your installation selections. Select Continue to begin the install. Figure 224 Confirmation Screen 236 CIMCOR CimTrak Integrity & Compliance Suite

Now the CimTrak Tools will be installed. You will see the following screen while this occurs. Figure 225 Installing CimTrak Tools Figure 226 FTP Repository Information This will complete the CimTrak Tools installation. Figure 227 Summary Information Screen 9.4. CIMTRAK FTP REPOSITORY INTERFACE INSTALLATION WINDOWS SILENT The way in which the silent installation of the CimTrak Tools is started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. User Guidance 237

NOTE: It is necessary to run the command prompt in administrator mode for Windows Vista operating systems and later. To install the Tools in silent mode, it must be called in this manner: setupwin32.exe -silent -V [Parameter 1 Name]="Parameter 1 Value" -V [Parameter 2 Name]="Parameter 2 Value..." Parameters: - InstallationDirectory The base directory for the installation (optional, default is "C:\Program Files\Cimcor\CimTrak ", must not exceed 4096 characters) - InstallCommandLineUtility Whether to install the CimTrak Command Line Utility ("0" for no, "1" for yes, default is "0") - InstallFTPRepositoryInterface Whether to install the CimTrak FTP Repository Interface ("0" for no, "1" for yes, default is "0") - InstallPing Whether to install the CimTrak Ping ("0" for no, "1" for yes, default is "0") - InstallProxy Whether to install the CimTrak Proxy ("0" for no, "1" for yes, default is "0") If InstallFTPRepositoryInterface is "1", you must consider the following parameters: - FTPRepositoryAddress The address of the CimTrak Master Repository to which the CimTrak FTP Repository Interface will connect (required, must not exceed 1024 characters) - FTPRepositoryPort The port of the CimTrak Master Repository to which the CimTrak FTP Repostiory Interface will connect (must be between "1" & "65535", default is "3749") - FTPListenPort The listen port of the FTP server (must be between "1" & "65535", default is "21") - FTPDataPort The data port of the FTP server (must be between "1" & "65535", default is "20") - FTPLocalIPAddress 238 CIMCOR CimTrak Integrity & Compliance Suite

The address of the FTP server (must not exceed 1024 characters, default is computer's host address) Example for installing the Tools on Windows: setupwin32.exe -silent -V LogFile="C:\log.txt" -V InstallCommandLineUtility="1" -V InstallPing="1" -V InstallFTPRepositoryInterface="1" -V FTPRepositoryAddress="127.0.0.1" NOTE: If you wish to check the return value of the installation programmatically in Windows, you must run the installer with "start /w". The "start" command in DOS runs the command that follows in a new DOS window. The "/w" flag means to start the command and wait until it terminates before allowing the user to execute any more commands. An example of how to use this would be: start /w setupwin32 -silent -V InstallationDirectory="c:\test"... which would execute, then provide the user with the command prompt when it was finished, where the user could type: echo %errorlevel% to see the result of the installation. 0 is success and -1 is a failure (a failure exists if the user inputs an invalid command or parameter. The installer can still fail even with correct parameters, this error will be explained in the log file). - The "V" in "-V" in the command-line must be capitalized. - The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes. - The parameter values must be enclosed in double-quotes. - If you wish to not provide a parameter, do not specify it with an empty value (for instance, RepositoryEncryption=""). Otherwise, errors will occur that will prevent the installation from continuing. - Entering an invalid parameter name will cause the installer to exit immediately. - If an invalid installation directory is used, an error message ( ERROR: The InstallationDirectory parameter isn't a valid directory. ) will be inserted at the end of the Log File. This error will not be present at the command prompt. User Guidance 239

- Default values will be used for InstallationDirectory ("C:\Program Files\Cimcor\CimTrak "), LogFile ("", meaning no messages will be logged). For all the parameters with default values, see the list of parameters for the Repository. - If the silent installer is run and a Tool has been previously installed, the Tool will be upgraded. NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak Communications. You will not be prompted for permission to open this port. 10. CIMTRAK PING INSTALLATION 10.1. CIMTRAK PING PRE-INSTALLATION INTEGRITY VERIFICATION Before beginning the installation process CIMCOR recommends verifying the authenticity of the Installation file(s). Each CimTrak component has an associated SHA1 hash value calculated on installation components. The associated SHA1 hash value can be obtained from the CIMCOR website located at http://cimcor.com/downloads. 10.2. CIMTRAK PING INSTALLATION WINDOWS GRAPHICAL The Ping Command Line Utility is used to diagnose connectivity issues between CimTrak components. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. The first screen you will see allows you to pick the language for the installation. Figure 228 Language Selection Screen 240 CIMCOR CimTrak Integrity & Compliance Suite

Select the language and click Next. User Guidance 241

The next screen will have the CimTrak End User License Agreement. You must read and accept the terms of the agreement to continue installation. Figure 229 EULA Once you accept the agreement, click Next. 242 CIMCOR CimTrak Integrity & Compliance Suite

The next screen will be the CimTrak Installation Welcome Screen. Figure 230 CimTrak Welcome Screen Click Next to continue. User Guidance 243

Now you will see the directory where the CimTrak Tools will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 231 Installation Directory In order to ease future updates to the software, it is recommended to leave the installation directory at the default. Once you have selected the directory path, click Next. 244 CIMCOR CimTrak Integrity & Compliance Suite

The following screen allows you to determine which components of CimTrak you can install. Figure 232 Choose to install the CimTrak Tools Place a check mark in the box next to CimTrak Tools and click Next. User Guidance 245

The confirmation screen will now be displayed. Figure 233 Confirmation Screen Confirm the settings and then click Install to start the installation. A progress screen will appear while the components are being installed. 246 CIMCOR CimTrak Integrity & Compliance Suite

When the components have been completely installed, the installer will take you to the last screen. Figure 234 Summary Information Screen Click Finish to complete the installation. 10.3. CIMTRAK PING INSTALLATION WINDOWS COMMAND LINE The Ping Command Line Utility is used to diagnose connectivity issues between CimTrak components. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. This will start the InstallShield Wizard. The first screen is language selection. Use a 1 or 2 and press Enter to submit your selection. Then type 0 and press Enter to move to the next screen. Figure 235 Language Selection User Guidance 247

NOTE: After every screen in which the user inputs configuration settings, the user is given the option to go to the previous screen, cancel the installation, redisplay the current page, as well as continue to the next page. Figure 236 Options after every screen 248 CIMCOR CimTrak Integrity & Compliance Suite

The next screen is the End User License Agreement. You will need to read and accept the EULA to continue the installation and use CimTrak. When done, enter a one (1) and press Enter to accept the agreement, then type 0 and press Enter to move to the next screen. Figure 237 EULA User Guidance 249

A Welcome screen will appear. Press the Enter key to continue past this screen. Figure 238 CimTrak Welcome Screen The next screen shows the directory where CimTrak will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 239 Installation Directory Now you can select the components to be installed. To select the Tools, enter the corresponding number of the components. Figure 240 CimTrak Selection Menu A sub-menu appears. This menu allows the user to select the CimTrak Tools for installation or view the CimTrak Tools sub features. Figure 241 Select all or specific CimTrak Tools 250 CIMCOR CimTrak Integrity & Compliance Suite

If the list of subfeatures is chosen, the user can pick and choose the specific CimTrak Tool to install. Figure 242 Select all CimTrak Tools Type the specific number and then Enter to select that particular tool. Repeat this process for all desired features. Type in -1 and then Enter to return to the main selection menu. Type in 0 and then Enter to continue the installation process. If the installation process is continued, the next screen will confirm your installation selections. Select Continue to begin the install. Figure 243 Confirmation Screen User Guidance 251

Now the CimTrak Tools will be installed. You will see the following screen while this occurs. Figure 244 Installing CimTrak Tools This will complete the CimTrak Tools installation. Figure 245 Summary Information Screen 10.4. CIMTRAK PING UTILITY INSTALLATION WINDOWS SILENT The way in which the silent installation of the CimTrak Tools is started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. NOTE: It is necessary to run the command prompt in administrator mode for Windows Vista operating systems and later. To install the Tools in silent mode, it must be called in this manner: setupwin32.exe -silent -V [Parameter 1 Name]="Parameter 1 Value" -V [Parameter 2 Name]="Parameter 2 Value..." Parameters: - InstallationDirectory The base directory for the installation (optional, default is "C:\Program Files\Cimcor\CimTrak ", must not exceed 4096 characters) - InstallCommandLineUtility Whether to install the CimTrak Command Line Utility ("0" for no, "1" for yes, default is "0") 252 CIMCOR CimTrak Integrity & Compliance Suite

- InstallFTPRepositoryInterface Whether to install the CimTrak FTP Repository Interface ("0" for no, "1" for yes, default is "0") - InstallPing Whether to install the CimTrak Ping ("0" for no, "1" for yes, default is "0") - InstallProxy Whether to install the CimTrak Proxy ("0" for no, "1" for yes, default is "0") If InstallFTPRepositoryInterface is "1", you must consider the following parameters: - FTPRepositoryAddress The address of the CimTrak Master Repository to which the CimTrak FTP Repository Interface will connect (required, must not exceed 1024 characters) - FTPRepositoryPort The port of the CimTrak Master Repository to which the CimTrak FTP Repostiory Interface will connect (must be between "1" & "65535", default is "3749") - FTPListenPort The listen port of the FTP server (must be between "1" & "65535", default is "21") - FTPDataPort The data port of the FTP server (must be between "1" & "65535", default is "20") - FTPLocalIPAddress The address of the FTP server (must not exceed 1024 characters, default is computer's host address) Example for installing the Tools on Windows: setupwin32.exe -silent -V LogFile="C:\log.txt" -V InstallCommandLineUtility="1" -V InstallPing="1" -V InstallFTPRepositoryInterface="1" -V FTPRepositoryAddress="127.0.0.1" NOTE: If you wish to check the return value of the installation programmatically in Windows, you must run the installer with "start /w". The "start" command in DOS runs the command that follows in a new DOS window. The "/w" flag means to start the command and wait until it terminates before allowing the user to execute any more commands. An example of how to use this would be: start /w setupwin32 -silent -V InstallationDirectory="c:\test"... User Guidance 253

which would execute, then provide the user with the command prompt when it was finished, where the user could type: echo %errorlevel% to see the result of the installation. 0 is success and -1 is a failure (a failure exists if the user inputs an invalid command or parameter. The installer can still fail even with correct parameters, this error will be explained in the log file). - The "V" in "-V" in the command-line must be capitalized. - The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes. - The parameter values must be enclosed in double-quotes. - If you wish to not provide a parameter, do not specify it with an empty value (for instance, RepositoryEncryption=""). Otherwise, errors will occur that will prevent the installation from continuing. - Entering an invalid parameter name will cause the installer to exit immediately. - If an invalid installation directory is used, an error message ( ERROR: The InstallationDirectory parameter isn't a valid directory. ) will be inserted at the end of the Log File. This error will not be present at the command prompt. - Default values will be used for InstallationDirectory ("C:\Program Files\Cimcor\CimTrak "), LogFile ("", meaning no messages will be logged). For all the parameters with default values, see the list of parameters for the Repository. - If the silent installer is run and a Tool has been previously installed, the Tool will be upgraded. NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak Communications. You will not be prompted for permission to open this port. 10.5. CIMTRAK PING UTILITY INSTALLATION UNIX/LINUX SILENT The way in which the silent installation of the CimTrak Tools are started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. 254 CIMCOR CimTrak Integrity & Compliance Suite

The "Root" user or someone with "Root" privileges must install and run the CimTrak Tools in a UNIX / Linux environment. Navigate to the path for your system, and then navigate to the InstallShield directory on the zip file. To install the Tools in silent mode, it must be called in this manner:./setuplinux.bin -silent -V [Parameter 1 Name]="Parameter 1 Value" -V [Parameter 2 Name]="Parameter 2 Value..." Parameters: - InstallationDirectory The base directory for the installation (default is "/opt/cimcor/cimtrak ", must not exceed 4096 characters) - InstallCommandLineUtility Whether to install the CimTrak Command Line Utility ("0" for no, "1" for yes, default is "0") - InstallPing Whether to install the CimTrak Ping ("0" for no, "1" for yes, default is "0") - InstallProxy Whether to install the CimTrak Proxy ("0" for no, "1" for yes, default is "0") Example for installing the Tools on Linux:./setupLinux.bin -silent -V LogFile="log.txt" -V InstallCommandLineUtility="1" -V InstallPing="1" -V InstallProxy="1" NOTE: - The "V" in "-V" in the command-line must be capitalized. - The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes. - The parameter values must be enclosed in double-quotes. - If you wish to not provide a parameter, do not specify it with an empty value (for instance, RepositoryPort=""). Otherwise, errors will occur that will prevent the installation from continuing. - Entering an invalid parameter name will cause the installer to exit immediately. User Guidance 255

- If an invalid installation directory is used, an error message ( ERROR: The InstallationDirectory parameter isn't a valid directory. ) will be inserted at the end of the Log File. This error will not be present at the command prompt. - Default values will be used for InstallationDirectory ("/opt/cimcor/cimtrak "), LogFile ("", meaning no messages will be logged). - If the silent installer is run and a Tool has been previously installed, the Tool will be upgraded. NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak Communications. You will not be prompted for permission to open this port. 11. CIMTRAK PROXY INSTALLATION 11.1. CIMTRAK PROXY PRE-INSTALLATION INTEGRITY VERIFICATION Before beginning the installation process CIMCOR recommends verifying the authenticity of the Installation file(s). Each CimTrak component has an associated SHA1 hash value calculated on installation components. The associated SHA1 hash value can be obtained from the CIMCOR website located at http://cimcor.com/downloads. 11.2. CIMTRAK PROXY INSTALLATION WINDOWS GRAPHICAL Redirecting of the CimTrak Master Repository communication port can be accomplished using the CimTrak Proxy Utility. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. The first screen you will see allows you to pick the language for the installation. 256 CIMCOR CimTrak Integrity & Compliance Suite

Figure 246 Language Selection Screen Select the language and click Next. User Guidance 257

The next screen will have the CimTrak End User License Agreement. You must read and accept the terms of the agreement to continue installation. Figure 247 EULA Once you accept the agreement, click Next. 258 CIMCOR CimTrak Integrity & Compliance Suite

The next screen will be the CimTrak Installation Welcome Screen. Figure 248 CimTrak Welcome Screen You may click Next to continue. User Guidance 259

Now you will see the directory where the CimTrak Tools will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 249 Installation Directory In order to ease future updates to the software, it is recommended to leave the installation directory at the default. Once you have selected the directory path, click Next. 260 CIMCOR CimTrak Integrity & Compliance Suite

The following screen allows you to determine which components of CimTrak you can install. Figure 250 Choose to install the CimTrak Tools Place a check mark in the box next to CimTrak Tools and click Next. User Guidance 261

The confirmation screen will now be displayed. Figure 251 Confirmation Screen Confirm the settings and then click Install to start the installation. A progress screen will appear while the components are being installed. 262 CIMCOR CimTrak Integrity & Compliance Suite

When the components have been completely installed, the installer will take you to the last screen. Figure 252 Summary Information Screen Click Finish to complete the installation. 11.3. CIMTRAK PROXY INSTALLATION WINDOWS COMMAND LINE Redirecting of the CimTrak Master Repository communication port can be accomplished using the CimTrak Proxy Utility. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. This will start the InstallShield Wizard. The first screen is language selection. Use a 1 or 2 and press Enter to submit your selection. Then type 0 and press Enter to move to the next screen. Figure 253 Language Selection User Guidance 263

NOTE: After every screen in which the user inputs configuration settings, the user is given the option to go to the previous screen, cancel the installation, redisplay the current page, as well as continue to the next page. Figure 254 Options after every screen 264 CIMCOR CimTrak Integrity & Compliance Suite

The next screen is the End User License Agreement. You will need to read and accept the EULA to continue the installation and use CimTrak. When done, enter a one (1) and press Enter to accept the agreement, then type 0 and press Enter to move to the next screen. Figure 255 EULA User Guidance 265

A Welcome screen will appear. Press the Enter key to continue past this screen. Figure 256 CimTrak Welcome Screen The next screen shows the directory where CimTrak will be installed. You may leave the default directory in place (recommended) or change the path to meet your specifications. Figure 257 Installation Directory Now you can select the components to be installed. To select the Tools, Enter the corresponding number of the components. Figure 258 CimTrak Selection Menu A sub-menu appears. This menu allows the user to select the CimTrak Tools for installation or view the CimTrak Tools sub-features. Figure 259 Select all or specific CimTrak Tools 266 CIMCOR CimTrak Integrity & Compliance Suite

If the list of sub features is chosen, the user can pick and choose the specific CimTrak Tool to install. Figure 260 Select all CimTrak Tools Type the specific number and then Enter to select that particular tool. Repeat this process for all desired features. Type in -1 and then Enter to return to the main selection menu. Type in 0 and then Enter to continue the installation process. If the installation process is continued, the next screen will confirm your installation selections. Select Continue to begin the install. Figure 261 Confirmation Screen User Guidance 267

Now the CimTrak Tools will be installed. You will see the following screen while this occurs. Figure 262 Installing CimTrak Tools This will complete the CimTrak Tools installation. Figure 263 Summary Information Screen 11.4. CIMTRAK PROXY INSTALLATION WINDOWS SILENT The way in which the silent installation of the CimTrak Tools is started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. For Windows Platforms: Navigate to the location where the CimTrak Install file is located and run setupwin32.exe. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command: X\setupwin32.exe where X is the path to the CimTrak Install file s directory. NOTE: It is necessary to run the command prompt in administrator mode for Windows Vista operating systems and later. To install the Tools in silent mode, it must be called in this manner: setupwin32.exe -silent -V [Parameter 1 Name]="Parameter 1 Value" -V [Parameter 2 Name]="Parameter 2 Value..." Parameters: - InstallationDirectory The base directory for the installation (optional, default is "C:\Program Files\Cimcor\CimTrak ", must not exceed 4096 characters) - InstallCommandLineUtility 268 CIMCOR CimTrak Integrity & Compliance Suite

Whether to install the CimTrak Command Line Utility ("0" for no, "1" for yes, default is "0") - InstallFTPRepositoryInterface Whether to install the CimTrak FTP Repository Interface ("0" for no, "1" for yes, default is "0") - InstallPing Whether to install the CimTrak Ping ("0" for no, "1" for yes, default is "0") - InstallProxy Whether to install the CimTrak Proxy ("0" for no, "1" for yes, default is "0") If InstallFTPRepositoryInterface is "1", you must consider the following parameters: - FTPRepositoryAddress The address of the CimTrak Master Repository to which the CimTrak FTP Repository Interface will connect (required, must not exceed 1024 characters) - FTPRepositoryPort The port of the CimTrak Master Repository to which the CimTrak FTP Repostiory Interface will connect (must be between "1" & "65535", default is "3749") - FTPListenPort The listen port of the FTP server (must be between "1" & "65535", default is "21") - FTPDataPort The data port of the FTP server (must be between "1" & "65535", default is "20") - FTPLocalIPAddress The address of the FTP server (must not exceed 1024 characters, default is computer's host address) Example for installing the Tools on Windows: setupwin32.exe -silent -V LogFile="C:\log.txt" -V InstallCommandLineUtility="1" -V InstallPing="1" -V InstallFTPRepositoryInterface="1" -V FTPRepositoryAddress="127.0.0.1" NOTE: If you wish to check the return value of the installation programmatically in Windows, you must run the installer with "start /w". The "start" command in DOS runs the command that follows in a new DOS window. The "/w" flag means to start the command and wait until it terminates before allowing the user to execute any more commands. An example of how to use this would be: User Guidance 269

start /w setupwin32 -silent -V InstallationDirectory="c:\test"... which would execute, then provide the user with the command prompt when it was finished, where the user could type: echo %errorlevel% to see the result of the installation. 0 is success and -1 is a failure (a failure exists if the user inputs an invalid command or parameter. The installer can still fail even with correct parameters, this error will be explained in the log file). - The "V" in "-V" in the command-line must be capitalized. - The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes. - The parameter values must be enclosed in double-quotes. - If you wish to not provide a parameter, do not specify it with an empty value (for instance, RepositoryEncryption=""). Otherwise, errors will occur that will prevent the installation from continuing. - Entering an invalid parameter name will cause the installer to exit immediately. - If an invalid installation directory is used, an error message ( ERROR: The InstallationDirectory parameter isn't a valid directory. ) will be inserted at the end of the Log File. This error will not be present at the command prompt. - Default values will be used for InstallationDirectory ("C:\Program Files\Cimcor\CimTrak "), LogFile ("", meaning no messages will be logged). For all the parameters with default values, see the list of parameters for the Repository. - If the silent installer is run and a Tool has been previously installed, the Tool will be upgraded. NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak Communications. You will not be prompted for permission to open this port. 11.5. CIMTRAK PROXY INSTALLATION UNIX/LINUX SILENT The way in which the silent installation of the CimTrak Tools are started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using. 270 CIMCOR CimTrak Integrity & Compliance Suite

The "Root" user or someone with "Root" privileges must install and run the CimTrak Tools in a UNIX / Linux environment. Navigate to the path for your system, and then navigate to the InstallShield directory on the zip file. To install the Tools in silent mode, it must be called in this manner:./setuplinux.bin -silent -V [Parameter 1 Name]="Parameter 1 Value" -V [Parameter 2 Name]="Parameter 2 Value..." Parameters: - InstallationDirectory The base directory for the installation (default is "/opt/cimcor/cimtrak ", must not exceed 4096 characters) - InstallCommandLineUtility Whether to install the CimTrak Command Line Utility ("0" for no, "1" for yes, default is "0") - InstallPing Whether to install the CimTrak Ping ("0" for no, "1" for yes, default is "0") - InstallProxy Whether to install the CimTrak Proxy ("0" for no, "1" for yes, default is "0") Example for installing the Tools on Linux:./setupLinux.bin -silent -V LogFile="log.txt" -V InstallCommandLineUtility="1" -V InstallPing="1" -V InstallProxy="1" NOTE: - The "V" in "-V" in the command-line must be capitalized. - The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes. - The parameter values must be enclosed in double-quotes. - If you wish to not provide a parameter, do not specify it with an empty value (for instance, RepositoryPort=""). Otherwise, errors will occur that will prevent the installation from continuing. - Entering an invalid parameter name will cause the installer to exit immediately. User Guidance 271

- If an invalid installation directory is used, an error message ( ERROR: The InstallationDirectory parameter isn't a valid directory. ) will be inserted at the end of the Log File. This error will not be present at the command prompt. - Default values will be used for InstallationDirectory ("/opt/cimcor/cimtrak "), LogFile ("", meaning no messages will be logged). - If the silent installer is run and a Tool has been previously installed, the Tool will be upgraded. NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak Communications. You will not be prompted for permission to open this port. 272 CIMCOR CimTrak Integrity & Compliance Suite

12. APPENDIX A DOCUMENTATION HISTORY 12.1. CIMTRAK INSTALLATION GUIDANCE DOCUMENTATION HISTORY The following table outlines the history of this documentation. Date Version Editor Modification 5 May 2011 1.0 David Wheeler, Document CIMCOR Technical Support Creation User Guidance 273

13. APPENDIX B TECHNICAL SUPPORT INFORMATION 13.1. CIMTRAK TECHNICAL SUPPORT SERVICES CimTrak Technical Support Services are here to help. Should you have any problems or questions please contact us using one of the following contact methods. 13.2. SUPPORT VIA ELECTRONIC MAIL CimTrak Technical Support electronic mail: support@cimcor.com Please be sure to include the following information in your message: Product name, version, and serial number Operating system, version, and service pack number Description of what you were doing when the error message occurred and exactly what the error message stated. Any other pertinent information 13.3. SUPPORT VIA FAX Should you choose this method, fax the same information as above to: CIMCOR, Inc. (219) 736-4401 In addition to the above information please be sure to include the following: Your name and organization Return phone number Return fax number Your E-mail address 13.4. SUPPORT VIA PHONE Call CimTrak Technical Support at (877) 424-6267 Ext. 2 Hours: Monday thru Friday 9 AM 5 PM Central Standard Time Voice Mail: Leave a voice mail during off hours Include in your voice mail: Your name and organization Your phone number Your question or a description of the problem 274 CIMCOR CimTrak Integrity & Compliance Suite

Your E-mail address Our technical support staff will contact you with an answer as soon as possible. User Guidance 275

14. APPENDIX C AVAILABLE ENCRYPTION TYPES The following tables list available encryption types, key lengths, and HMAC types available for all CimTrak releases. Encryption Key Length CimTrak Release Version FIPS Enterprise International AES 128 X X AES 192 X X AES 256 X X CAST256 128 X CAST256 256 X IDEA 128 X DES 64 X X DES_EDE3 192 X X DES_EDE2 192 X RC2 64 X X RC2 128 X RC2 256 X RC2 512 X RC2 1024 X BlowFish 64 X X BlowFish 128 X BlowFish 160 X BlowFish 192 X BlowFish 224 X BlowFish 256 X BlowFish 288 X BlowFish 320 X BlowFish 352 X BlowFish 384 X BlowFish 416 X BlowFish 448 X CAST128 64 X X CAST128 128 X RC4 64 X X RC4 128 X RC4 256 X RC4 512 X RC4 1024 X RC4 2048 X Table 2: Available encryption types for CimTrak releases 276 CIMCOR CimTrak Integrity & Compliance Suite

HMAC Type CimTrak Release Version FIPS Enterprise International SHA1 X X X MD4 X X MD5 X X RIPEMD160 X X SHA1 X X SHA256 X X SHA384 X X SHA512 X X Table 3: Available HMAC types for CimTrak releases 15. APPENDIX D KEY EXCHANGE AND ENCRYPTION CIPHERS The following table lists all available key exchange and encryption ciphers for CimTrak releases. Cipher AES128-SHA X X AES256-SHA X X DES-CBC3-SHA X X DES-CBC-SHA X DHE-RSA-AES128-SHA X X DHE-RSA-AES256-SHA X X EDH-RSA-DES-CBC3-SHA X X EDH-RSA-DES-CBC-SHA X EXP-DES-CBC-SHA CimTrak Release Version FIPS Enterprise International X EXP-EDH-RSA-DES-CBC-SHA X X EXP-RC2-CBC-MD5 X EXP-RC4-MD5 X IDEA-CBC-SHA X RC4-MD5 X RC4-SHA X Figure 264: Available key exchange and encryption ciphers User Guidance 277

16. APPENDIX E ENTERPRISE WORKSHEET TCP/IP Port CimTrak Master Repository will use this port for network communication: (Default: 3749) Determine Repository Location: (i.e. C:\Program Files\Cimcor\CimTrak \CimTrak Repository\Repository) Select Repository Encryption: Encryption Type: (Available Encryption Types: AES, CAST256, IDEA, DES, DES_EDE3, DES_EDE2, RC2, BlowFish, CAST128, SKIPJACK, RC4) Key Length: (Key Length will depend on Encryption Type) HMAC Method: (Available HMAC Methods: MD2, MD4, MD5, RIPEMD160, SHA1, SHA256, SHA384, SHA512, Tiger) Password Settings: None AR 25-2 Standard User entered password AR 25-2 Standard Randomly generated password Custom settings: Require two lowercase, two uppercase, two numbers, and two special characters Random Password Generation Check against password dictionary Require minimum password length of characters (0 for no minimum) Password expires after days (0 to never expire) Prevent use of last passwords (0 to allow all) Lock out user after password failures (0 for never) Lock out failed user for minutes (0 for indefinite) Select Agent Data Encryption: Encryption Type: (Available Encryption Types: AES, CAST256, IDEA, DES, DES_EDE3, DES_EDE2, RC2, BlowFish, CAST128, SKIPJACK, RC4) 278 CIMCOR CimTrak Integrity & Compliance Suite

Key Length: (Key Length will depend on Encryption Type) HMAC Method: (Available HMAC Methods: MD2, MD4, MD5, RIPEMD160, SHA1, SHA256, SHA384, SHA512, Tiger) Reset key every seconds (Default: 90) Select Management Console Data Encryption: Encryption Type: (Available Encryption Types: AES, CAST256, IDEA, DES, DES_EDE3, DES_EDE2, RC2, BlowFish, CAST128, SKIPJACK, RC4) Key Length: (Key Length will depend on Encryption Type) HMAC Method: (Available HMAC Methods: MD2, MD4, MD5, RIPEMD160, SHA1, SHA256, SHA384, SHA512, Tiger) Reset key every seconds (Default: 90) Syslog Server IP Address: IP Address of Syslog Server: Protocol (TCP/UDP): Port (Default Protocol/Port: [TCP: 1465][UDP: 514]) SNMP Server IP Address: IP Address of SNMP Server: SNMP Community: (Default: Public) Port (Default: 162) SMTP Server IP Address: IP Address of SMTP Server: Port (Default: 25) Email From Address: Email Display Name: If needed, send email alerts every minutes (Default: 2) CimTrak Serial Number: Your CimTrak Serial Number: Repository Username and Password: Username: User Guidance 279

Password: (NOTE: for security reasons, you may not wish to write these down!) 280 CIMCOR CimTrak Integrity & Compliance Suite

17. APPENDIX F INTERNATIONAL WORKSHEET TCP/IP Port CimTrak Master Repository will use this port for network communication: (Default: 3749) Determine Repository Location: (i.e. C:\Program Files\Cimcor\CimTrak \CimTrak Repository\Repository) Select Repository Encryption: Encryption Type: (Available Encryption Types: DES, RC2, BlowFish, CAST128, RC4) Key Length: (Key Length will depend on Encryption Type) HMAC Method: (Available HMAC Methods: MD2, MD4, MD5, RIPEMD160, SHA1, SHA256, SHA384, SHA512, Tiger) Password Settings: None AR 25-2 Standard User entered password AR 25-2 Standard Randomly generated password Custom settings: Require two lowercase, two uppercase, two numbers, and two special characters Random Password Generation Check against password dictionary Require minimum password length of characters (0 for no minimum) Password expires after days (0 to never expire) Prevent use of last passwords (0 to allow all) Lock out user after password failures (0 for never) Lock out failed user for minutes (0 for indefinite) Select Agent Data Encryption: Encryption Type: (Available Encryption Types: DES, RC2, BlowFish, CAST128, RC4) Key Length: (Key Length will depend on Encryption Type) HMAC Method: User Guidance 281

(Available HMAC Methods: MD2, MD4, MD5, RIPEMD160, SHA1, SHA256, SHA384, SHA512, Tiger) Reset key every seconds (Default: 90) Select Management Console Data Encryption: Encryption Type: (Available Encryption Types: DES, RC2, BlowFish, CAST128, RC4) Key Length: (Key Length will depend on Encryption Type) HMAC Method: (Available HMAC Methods: MD2, MD4, MD5, RIPEMD160, SHA1, SHA256, SHA384, SHA512, Tiger) Reset key every seconds (Default: 90) Syslog Server IP Address: IP Address of Syslog Server: Protocol (TCP/UDP): Port (Default Protocol/Port: [TCP: 1465][UDP: 514]) SNMP Server IP Address: IP Address of SNMP Server: SNMP Community: (Default: Public) Port (Default: 162) SMTP Server IP Address: IP Address of SMTP Server: Port (Default: 25) Email From Address: Email Display Name: If needed, send email alerts every minutes (Default: 2) CimTrak Serial Number: Your CimTrak Serial Number: Repository Username and Password: Username: Password: (NOTE: for security reasons, you may not wish to write these down!) 282 CIMCOR CimTrak Integrity & Compliance Suite

18. APPENDIX G FIPS WORKSHEET TCP/IP Port CimTrak Master Repository will use this port for network communication: (Default: 3749) Determine Repository Location: (i.e. C:\Program Files\Cimcor\CimTrak \CimTrak Repository\Repository) Select Repository Encryption: Encryption Type: (Available Encryption Types: AES, DES_EDE3) Key Length: (Key Length will depend on Encryption Type) HMAC Method: (Available HMAC Methods: SHA1) Password Settings: None AR 25-2 Standard User entered password AR 25-2 Standard Randomly generated password Custom settings: Require two lowercase, two uppercase, two numbers, and two special characters Random Password Generation Check against password dictionary Require minimum password length of characters (0 for no minimum) Password expires after days (0 to never expire) Prevent use of last passwords (0 to allow all) Lock out user after password failures (0 for never) Lock out failed user for minutes (0 for indefinite) Select Agent Data Encryption: Encryption Type: (Available Encryption Types: AES, DES_EDE3) Key Length: (Key Length will depend on Encryption Type) HMAC Method: (Available HMAC Methods: SHA1) Reset key every seconds (Default: 90) User Guidance 283

Select Management Console Data Encryption: Encryption Type: (Available Encryption Types: AES, DES_EDE3) Key Length: (Key Length will depend on Encryption Type) HMAC Method: (Available HMAC Methods: SHA1) Reset key every seconds (Default: 90) Syslog Server IP Address: IP Address of Syslog Server: Protocol (TCP/UDP): Port (Default Protocol/Port: [TCP: 1465][UDP: 514]) SNMP Server IP Address: IP Address of SNMP Server: SNMP Community: (Default: Public) Port (Default: 162) SMTP Server IP Address: IP Address of SMTP Server: Port (Default: 25) Email From Address: Email Display Name: If needed, send email alerts every minutes (Default: 2) CimTrak Serial Number: Your CimTrak Serial Number: Repository Username and Password: Username: Password: (NOTE: for security reasons, you may not wish to write these down!) 284 CIMCOR CimTrak Integrity & Compliance Suite

User Guidance 285