Before starting the installation of Kaspersky Industrial CyberSecurity for Networks, make sure that the computers meet the hardware and software requirements. Also make sure that the equipment, hardware, and software of the computers are compliant with all operational security recommendations.
To ensure proper functioning of application components, it is recommended to use specially dedicated computers that only have software from the operating system installed. If third-party applications are installed on computers, the performance of components of Kaspersky Industrial CyberSecurity for Networks may be reduced.
To install application components, each computer must have a user account with root privileges that will be used to perform the installation. You can use the standard tools of the operating system to add the necessary user accounts.
In Kaspersky Industrial CyberSecurity for Networks version 3.0.1, if a user account with root privileges is created after the Astra Linux SE 1.6 operating system is installed, you must define the maximum level of integrity for this user account so that it can write to the folder used for storing application data (this level is defined by using the sudo pdpl-user -i 63 <user name> command).
On the computers where components will be centrally installed, verify that the following conditions are fulfilled:
The computers have network access, and access over SSH is configured and open.
The computers have user accounts with root privileges (application components will be installed under these user accounts).
The computers do not have any user accounts or groups with the following names that are reserved for interaction between application components (if these accounts exist, they could receive elevated access rights, even root privileges, after the application is installed):
kics4net
kics4net-postgresql
kics4net-webserver
kics4net-websensor
kics4net-connectors
kics4net-fts
To prepare computers for installation of application components:
On all computers on which application components will be installed, set the same password for the user account with root privileges (application components will be installed under this user account). By default, the root user account is used to perform the installation. Memorize the user names and password. You will need to provide this data while the application installation script is running.
After application components are installed, you are advised to change the passwords for these users.
Find out and save the following information about the computers:
Name and IP address of the computer that will perform Server functions.
IP addresses of the computers that will perform sensor functions.
Name or IP address and SSL port of the computer with Kaspersky Security Center.
To display the computer name, you can enter the hostname command in the command line. To display information about IP addresses and network interfaces, you can enter the sudo ifconfig command in the command line (in a Windows operating system, use the ipconfig command).
On the computer from which the centralized installation will be performed, use the SSH protocol to connect to each computer where the application components will be installed. A connection needs to be made to verify access over SSH.
To connect:
Enter the following command in the command line:
ssh <user name>@<computer IP address>
After entering this command, perform the necessary actions at the operating system prompts.
To terminate the connection session, use the following command:
exit
On the computer from which the installation will be performed, create a folder for storing the installation files.
Copy the following files from the Kaspersky Industrial CyberSecurity for Networks distribution kit to the folder you created:
Application components centralized installation script named kics4net-deploy-<application version number>.bundle.sh
If installation will be performed on computers that have a CentOS operating system, copy the following files:
Package for installing the Server and sensors: kics4net-<application version number>.x86_64.rpm.
Package for installing system connectors: kics4net-connectors-<application version number>.x86_64.rpm.
Package for installing the full-text search system: kics4net-fts-<application version number>.x86_64.rpm.
Package for installing the DBMS: kics4net-postgresql-<DBMS version number>.x86_64.rpm.
Package for installing the Intrusion Detection system: kics4net-suricata-<system version number>.x86_64.rpm.
Package for installing a web server for an application sensor: kics4net-websensor-<application version number>.x86_64.rpm (this package is required if you want to install the sensor component to one or more computers and connect to this component through the web interface).
Package for installing a web server for the Application Server: kics4net-webserver-<application version number>.x86_64.rpm.
Package for installing Network Agent from the Kaspersky Security Center distribution kit: klnagent64-<Network Agent version number>.x86_64.rpm (this package is required if you want to monitor the state of the application, receive a license key, and download application updates via Kaspersky Security Center).
Network Agent is a Kaspersky Security Center component that enables interaction between the Kaspersky Security Center Administration Server and Kaspersky applications that are installed on a specific node (workstation or server). For detailed information on Network Agent, please refer to the Kaspersky Security Center Help system.
The folder with the listed files will be required during installation, modification of installation settings, and centralized removal of application components.
On the computer where the Server will be installed, verify that the following conditions are fulfilled:
There is network access to the computer.
The computer has a user account with root privileges (the local installation script will be run under this user account).
The computer does not have any user accounts or groups with the following names that are reserved for interaction between application components (if these accounts exist, they could receive elevated access rights, even root privileges, after the application is installed):
kics4net
kics4net-postgresql
kics4net-webserver
kics4net-connectors
kics4net-fts
To prepare the computer for local installation of the Server:
Find out and save the following information about the computer:
User account credentials for the account with root privileges that will be used to run the local installation script.
Name and IP address of the computer (for subsequent connection to this computer after installing the Server).
To display the computer name, you can enter the hostname command in the command line. To display information about IP addresses and network interfaces, you can enter the sudo ifconfig command in the command line.
Create a folder for storing the installation files.
Copy the following files from the Kaspersky Industrial CyberSecurity for Networks distribution kit to the folder you created:
Script for local installation of application components: kics4net-install.sh.
If installation will be performed on a computer that has a CentOS operating system, copy the following files:
Package for installing the Server and sensors: kics4net-<application version number>.x86_64.rpm.
Package for installing system connectors: kics4net-connectors-<application version number>.x86_64.rpm.
Package for installing the full-text search system: kics4net-fts-<application version number>.x86_64.rpm.
Package for installing the DBMS: kics4net-postgresql-<DBMS version number>.x86_64.rpm.
Package for installing the Intrusion Detection system: kics4net-suricata-<system version number>.x86_64.rpm.
Package for installing a web server for the Application Server: kics4net-webserver-<application version number>.x86_64.rpm.
Package for installing Network Agent from the Kaspersky Security Center distribution kit: klnagent64-<Network Agent version number>.x86_64.rpm (this package is required if you want to monitor the state of the application, receive a license key, and download application updates via Kaspersky Security Center).
Network Agent is a Kaspersky Security Center component that enables interaction between the Kaspersky Security Center Administration Server and Kaspersky applications that are installed on a specific node (workstation or server). For detailed information on Network Agent, please refer to the Kaspersky Security Center Help system.
On the computer where the sensor will be installed, verify that the following conditions are fulfilled:
There is network access to the computer.
The computer has a user account with root privileges (the local installation script will be run under this user account).
The computer does not have any user accounts or groups with the following names that are reserved for interaction between application components (if these accounts exist, they could receive elevated access rights, even root privileges, after the application is installed):
kics4net
kics4net-websensor
To prepare the computer for local installation of the sensor:
Find out and save the following information about the computer:
User account credentials for the account with root privileges that will be used to run the local installation script.
Name and IP address of the computer (for subsequent connection to this computer after installing the sensor).
To display the computer name, you can enter the hostname command in the command line. To display information about IP addresses and network interfaces, you can enter the sudo ifconfig command in the command line.
Create a folder for storing the installation files.
Copy the following files from the Kaspersky Industrial CyberSecurity for Networks distribution kit to the folder you created:
Script for local installation of application components: kics4net-install.sh.
If installation will be performed on a computer that has a CentOS operating system, copy the following files:
Package for installing the Server and sensors: kics4net-<application version number>.x86_64.rpm.
Package for installing the Intrusion Detection system: kics4net-suricata-<system version number>.x86_64.rpm.
Package for installing a web server for an application sensor: kics4net-websensor-<application version number>.x86_64.rpm.