This section describes the process of installing Kaspersky CyberTrace on Linux systems.
After installation, make sure that only users with administrator rights have access to the folder where Kaspersky CyberTrace is installed.
We also recommend that you install and run anti-virus software before installing Kaspersky CyberTrace.
Installation methods
On Linux systems, you can install Kaspersky CyberTrace by three methods:
In this type of installation, you run the installation script, run.sh. The installation script installs the RPM package and runs the configurator. The configurator generates certificates for Kaspersky CyberTrace Web and configures the Elasticsearch indicator database.
The same as RPM installation.
RPM installation
Kaspersky CyberTrace is installed in the /opt/kaspersky/ktfs directory. This directory is called %service_dir% in this document.
The user account that performs the RPM installation must have root privileges.
To perform the RPM installation of Kaspersky CyberTrace:
%temp_dir% with this directory and %VERSION% with the version of the installation package.tar -C %temp_dir% -xvzf Kaspersky_CyberTrace-Linux-x86_64-%VERSION%-Release-RPM.tar.gz --no-same-owner
The RPM package, installation script, and documentation will be unpacked to this directory.
The archive can have a different name, for example, %SIEM%-rpm.tar.gz. You can either use the existing name or rename the archive by using the mv command.
./run.sh install
The installation script will install the RPM package and add Kaspersky CyberTrace Service to the list of services by using chkconfig. Kaspersky CyberTrace Service will start automatically on system boot.
After the RPM package is installed, the installation script automatically runs the configurator.
For more information about using the configurator, see subsection "Interactive setup with the configurator" below.
If you interrupt the configuration process, you can resume it by running the following command: /opt/kaspersky/ktfs/bin/configure –i.
DEB installation
Kaspersky CyberTrace is installed in the /opt/kaspersky/ktfs directory. This directory is called %service_dir% in this document.
The user account that performs the DEB installation must have root privileges.
To perform the DEB installation of Kaspersky CyberTrace:
%temp_dir% with this directory and %VERSION% with the version of the installation package.tar -C %temp_dir% -xvzf Kaspersky_CyberTrace-Linux-x86_64-%VERSION%-Release-DEB.tar.gz --no-same-owner
The DEB package, installation script, and documentation will be unpacked to this directory.
The archive can have a different name, for example, %SIEM%-deb.tar.gz. You can either use the existing name or rename the archive by using the mv command.
./run.sh install
The installation script will install the DEB package and add Kaspersky CyberTrace Service to the list of services started on boot by systemd. Kaspersky CyberTrace Service will start automatically on system boot.
For more information about using the configurator, see subsection "Interactive setup with the configurator" below.
If you interrupt the configuration process, you can resume it by running the following command: /opt/kaspersky/ktfs/bin/configure –i.
Interactive setup with the configurator
To perform the interactive setup with the configurator:
Use the PAGE UP and PAGE DOWN keys to navigate. Type q to quit.
To accept the End User License Agreement, print Yes.
Configurator command-line parameters
The configurator is a binary file that configures and runs Kaspersky CyberTrace.
The file has the following command-line syntax:
configure [options]
The following options are available:
-h [ --help ]Display a help message and exit.
-i [ --install ]Perform the initial configuration of Kaspersky CyberTrace.
-c [ --change ]Update the certificate used for Kaspersky CyberTrace Web.