TECHNICAL NOTE SETTING UP A STRM UPDATE SERVER. Configuring your Update Server



Similar documents
After you have created your text file, see Adding a Log Source.

By default, STRM provides an untrusted SSL certificate. You can replace the untrusted SSL certificate with a self-signed or trusted certificate.

Unless otherwise noted, all references to STRM refer to STRM, STRM Log Manager, and STRM Network Anomaly Detection.

This technical note provides information on how to customize your notifications. This section includes the following topics:

Unless otherwise noted, all references to STRM refer to STRM, STRM Log Manager, and STRM Network Anomaly Detection.

Unless otherwise noted, all references to STRM refer to STRM, STRM Log Manager, and STRM Network Anomaly Detection.

Migrating Log Manager to JSA

Identity-Based Application and Network Profiling

NSM Plug-In Users Guide

Using the Content Management Tool

Managing Vulnerability Assessment

REPLACING THE SSL CERTIFICATE

Junos Pulse. Windows In-Box Junos Pulse Client Quick Start Guide. Published: Copyright 2013, Juniper Networks, Inc.

STRM Log Manager Administration Guide

Log Sources Users Guide

Adaptive Log Exporter Users Guide

Juniper Secure Analytics

Identity-Based Traffic Logging and Reporting

Adaptive Log Exporter Service Update

Specops Command. Installation Guide

Setting up an icap Server for ISG- 1000/2000 AV Support

Installing JSA Using a Bootable USB Flash Drive

Juniper Secure Analytics

Juniper Secure Analytics

Juniper Networks Management Pack Documentation

WinCollect User Guide

Installation Guide. . All right reserved. For more information about Specops Inventory and other Specops products, visit

TECHNICAL NOTE INSTALLING AND CONFIGURING ALE USING A CLI. Installing the Adaptive Log Exporter

DESLock+ Basic Setup Guide Version 1.20, rev: June 9th 2014

DESlock+ Basic Setup Guide ENTERPRISE SERVER ESSENTIAL/STANDARD/PRO

Juniper Secure Analytics

Managing Qualys Scanners

IF-MAP FEDERATION WITH JUNIPER NETWORKS UNIFIED ACCESS CONTROL

Juniper Secure Analytics

IBM Security QRadar SIEM Version MR1. Log Sources User Guide

How to integrate Verax NMS & APM with Verax Service Desk

Sophos Anti-Virus for NetApp Storage Systems startup guide

Configuring IBM HTTP Server as a Reverse Proxy Server for SAS 9.3 Web Applications Deployed on IBM WebSphere Application Server

Monitoring Oracle Enterprise Performance Management System Release Deployments from Oracle Enterprise Manager 12c

IBM Security QRadar SIEM Version MR1. Vulnerability Assessment Configuration Guide

Administering Jive for Outlook

etoken Enterprise For: SSL SSL with etoken

Introduction to Junos Space Network Director

Junos Pulse for Google Android

Managing Service Design for PTP Timing

for Small and Medium Business Quick Start Guide

CA VPN Client. User Guide for Windows

STRM Log Manager Users Guide

Juniper Secure Analytics

Wavecrest Certificate

Junos Space. Network Director Quick Start Guide. Release 2.0. Published: Copyright 2015, Juniper Networks, Inc.


FTP, IIS, and Firewall Reference and Troubleshooting

APNS Certificate generating and installation

Installing and Configuring DB2 10, WebSphere Application Server v8 & Maximo Asset Management

Comodo Web Application Firewall Software Version 2.11

Expresso Quick Install

Juniper Secure Analytics Release Notes

Configuring the Samsung SDS CellWe EMM cloud connector

Junos Space. Junos Space Security Director Restful Web Services API Reference. Modified: Copyright 2016, Juniper Networks, Inc.

Juniper Secure Analytics

Using Internet or Windows Explorer to Upload Your Site

CA Spectrum and CA Embedded Entitlements Manager

PRODUCT WHITE PAPER LABEL ARCHIVE. Adding and Configuring Active Directory Users in LABEL ARCHIVE

Active Directory Requirements and Setup

Protecting Juniper SA using Certificate-Based Authentication. Quick Start Guide

SRC Virtualization. Modified: Copyright 2015, Juniper Networks, Inc.

Junos Pulse Mobile Security Dashboard. User Guide. Release 4.2. February 2013 Revision , Juniper Networks, Inc.

Secure Messaging Server Console... 2

LifeSize Control Installation Guide

Reference and Troubleshooting: FTP, IIS, and Firewall Information

FileMaker Server 11. FileMaker Server Help

Juniper Secure Analytics

MIGRATING IPS SECURITY POLICY TO JUNIPER NETWORKS SRX SERIES SERVICES GATEWAYS

Firefly Host. Installation and Upgrade Guide for VMware. Release 6.0. Published: Copyright 2014, Juniper Networks, Inc.

Configuring and Implementing A10

Sentral servers provide a wide range of services to school networks.

QuickStart Guide for Mobile Device Management

LAE 5.1. Windows Server Installation Guide. Version 1.0

Installation Guide. . All right reserved. For more information about Specops Deploy and other Specops products, visit

Installing and Configuring vcloud Connector

Bitrix Site Manager ASP.NET. Installation Guide

Configuring Steel-Belted RADIUS Proxy to Send Group Attributes

SECURE MOBILE ACCESS MODULE USER GUIDE EFT 2013

DEPLOYING EMC DOCUMENTUM BUSINESS ACTIVITY MONITOR SERVER ON IBM WEBSPHERE APPLICATION SERVER CLUSTER

FileMaker Server 14. FileMaker Server Help

QuickStart Guide for Mobile Device Management. Version 8.6

NSi Mobile Installation Guide. Version 6.2

PaperClip. em4 Cloud Client. Setup Guide

Junos Pulse. Windows In-Box Junos Pulse Client Solution. Release 5.0. Published: Copyright 2013, Juniper Networks, Inc.

How to Set Up Your NSM4000 Appliance

Tuning Guide. Release Juniper Secure Analytics. Juniper Networks, Inc.

Upgrading VMware Identity Manager Connector

Release Notes: Junos Space Service Automation 13.3R4

BusinessObjects Enterprise XI Release 2

Setting up a Scheduled task to upload pupil records to ParentPay

Transcription:

TECHNICAL NOTE SETTING UP A STRM UPDATE SERVER AUGUST 2012 STRM uses system configuration files to provide useful characterizations of network data flows. Updates to the system configuration files, available on the Juniper customer support website (), include minor updates (such as Online Help or script updates), major updates (such as JAR file updates), or Device Service Module (DSM) updates. Updates also include threat, vulnerability, and geographic information from various security-related websites.the STRM Console must be connected to the Internet to receive automatic updates. If your deployment includes a STRM Console that is unable to access the Internet or you want to manually manage updates to your system, you can set up a STRM update server to manage the update process. The autoupdate package includes all files necessary to manually set up an update server in addition to the necessary system configuration files for each update. After the initial setup, you only need to download and uncompress the most current autoupdate package to manually update your configuration. To receive notification of new updates, we recommend that you access Juniper customer support and subscribe to the following page: Software > Autoupdates. This technical note provides information on manually setting up your STRM update server. Unless otherwise noted, all references to STRM refer to STRM, STRM Log Manager, and STRM Network Anomaly Detection. This includes the following sections: Configuring your Update Server Adding New Updates Configuring your Update Server You can either configure an Apache server or your STRM Console as your update server. Choose one of the following procedures: Configuring the Apache Server Configuring Your STRM Console as the Update Server

2 TECHNICAL NOTE Configuring the Apache Server Step 1 Step 2 Step 3 Step 4 Step 5 Step 6 To set up the Apache server: Access your Apache server. Create an update directory named autoupdates/. By default, the update directory is located in the web root directory of the Apache server. You can place the directory in another location if you configure STRM accordingly. Optional. Create an Apache user account and password to be used by the update process. Download the autoupdate package from the Juniper customer support website. c Double-click the latest autoupdate package matching your STRM version. d Save the file on your Apache server in the autoupdates directory created in Step 2. On the Apache server, type the following command to uncompress the autoupdate package. tar -zxf updatepackage-[timestamp].tgz Configure STRM to accept updates: a Click the Admin tab. b On the navigation menu, click System Configuration. c Click Auto Update. d To direct the update process to the Apache server, configure the following parameters in the Server Configuration panel: Webserver - Type the address or directory path of the Apache server. NOTE If the Apache server runs on non-standard ports, add :<portnumber> to the end of the address. For example, http://apacheserverip:8080. Directory - Type the directory location you created in Step 2. Proxy Information - Optional. If proxy information is required to access the Apache server, configure the following parameters: - Proxy Server - Type the URL for the proxy server. - Proxy Port - Type the port for the proxy server. - Proxy Username - Type the necessary username for the proxy server. A username is only required if you are using an authenticated proxy. - Proxy Password - Type the necessary password for the proxy server. A password is only required if you are using an authenticated proxy.

Configuring your Update Server 3 e f g h Select the Deploy changes check box. Click Save. Using SSH, Log in to STRM as the root user. Username: root Password: <admin password> To configure the username and password for the Apache server, type the following commands: /opt/qradar/bin/updateconfs.pl -change_username <username> /opt/qradar/bin/updateconfs.pl -change_password <password> The username and password must match those created in Step 3. i To test your update server, type the following command: lynx https://<your update server>/<directory path to updates>/manifest_list j Type the username and password created in Step 3. The list of updates is displayed. If the list is not displayed, contact Customer Support. Configuring Your STRM Console as the Update Server Step 1 Step 2 Step 3 Step 4 Step 5 You can configure your STRM Console as the update server. To set up your STRM Console as the update server: Log in to STRM as the root user. Username: root Password: <admin password> Type the following command to create the autoupdate directory: mkdir /opt/qradar/www/autoupdates/ Download the autoupdate package from the Juniper customer support website. c Double-click the latest autoupdate file matching your STRM version. d Save the file on your STRM Console in the autoupdates directory created in Step 2. On your STRM Console, type the following command to uncompress the autoupdate package. tar -zxf updatepackage-[timestamp].tgz Configure STRM to accept updates: a Log in to the STRM user interface.

4 TECHNICAL NOTE Step 6 b c d e f Click the Admin tab. On the navigation menu, click System Configuration. Click the Auto Update icon. In the Server Configuration pane, type https://localhost/ in the Webserver field. If the Send feedback option in the Update Settings pane is enabled, clear the check box to disable it. Click Save and Update Now. Adding New Updates After you have configured your update server and set up STRM to receive updates from the update server, adding new updates only requires you to download updates from the Juniper customer support website to your update server. Step 7 Step 8 Step 9 Step 10 Step 11 Step 12 To add new updates to the server: Download the update file from the Juniper customer support website. c Double-click the latest autoupdate package matching your STRM version. d Save the file on your local update server in the directory you created when setting up your update server. Access your update server. Type the following command to uncompress the autoupdate package. tar zxf <updatepackage.tgz> Log in to STRM as root. Test your update server, type the following command: lynx https://<your update server>/<directory path to updates>/manifest_list Type the username and password of your update server. The list of updates is displayed. If not, contact Customer Support.

Juniper Networks, Inc. 1194 North Mathilda Avenue Sunnyvale, CA 94089 USA 408-745-2000 www.juniper.net Copyright 2012 Juniper Networks, Inc. All rights reserved. Juniper Networks, Junos, Steel-Belted Radius, NetScreen, and ScreenOS are registered trademarks of Juniper Networks, Inc. in the United States and other countries. The Juniper Networks Logo, the Junos logo, and JunosE are trademarks of Juniper Networks, Inc. All other trademarks, service marks, registered trademarks, or registered service marks are the property of their respective owners. All specifications are subject to change without notice. Juniper Networks assumes no responsibility for any inaccuracies in this document or for any obligation to update information in this document. Juniper Networks reserves the right to change, modify, transfer, or otherwise revise this publication without notice.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information