This section provides information on the main commands in the centralized installation menu. The menu is displayed when you run the application components centralized installation script kics4net-deploy-<application version number>.bundle.sh. This file must be run in the folder that was created during preparations for application installation.
You can use the centralized installation menu to create or modify the application installation configuration and run the procedure for installing or removing components.
The installation menu has a hierarchical structure of items. The first level contains the items of the main menu. To select the necessary option, you must enter its number and press ENTER. If the selected item takes you to another group of items, a submenu will appear on the screen.
The menu items that define the values of settings may have default values or previously defined values. These values are displayed in brackets after the item name.
The main menu contains the following groups of commands:
You can use the following installation menu commands to manage installation of the Server:
Add Server – adds a new node that will be assigned Server functions. This item is available if the Server has not yet been added. If you select this option, you need to specify the main settings for the Server when the following prompts appear:
Enter the IP address of the node for installation – defines the IP address that will be used for connecting to the computer over the SSH protocol and installing the Server.
Add the capability for application interaction with Kaspersky Security Center – adds the functionality that allows use of the Kaspersky Security Center Administration Server to receive a license key and download updates, and to relay events and application state to Kaspersky Security Center. You do not have to add this functionality to relay events to other recipient systems.
If the capability for application interaction with Kaspersky Security Center has been added, the Network Agent component of Kaspersky Security Center is installed when the application is installed. Kaspersky Security Center Network Agent is not installed if this component is being used by another Kaspersky application (to avoid disrupting the interaction between this application and the Kaspersky Security Center Administration Server). In addition, the functionality for interaction between Kaspersky Industrial CyberSecurity for Networks and Kaspersky Security Center may be limited if the version of the installed Network Agent differs from the version of this component provided in the distribution kit of Kaspersky Industrial CyberSecurity for Networks.
Enable time synchronization between Server and sensors – enables automatic time synchronization between the Server and nodes on which sensors are installed (this is not applicable to Kaspersky Industrial CyberSecurity for Networks version 3.0.1).
Change Server settings – modifies the settings of the added Server. You can use this menu item to change the main component settings that can be edited and to configure advanced settings. After selecting this item, you will see a submenu in which you can change the following settings:
Specify an additional user to run the installation – defines an additional user account that will be used to run the installation on the Server node. An additional user account needs to be specified if the user name with root privileges on this node differs from the user name defined in the Change the user running the installation item. The passwords of all user accounts that will be used to run the installation must match.
Enable hardware Watchdog – enables use of the hardware Watchdog. The hardware Watchdog is a hardware-implemented system for controlling system hangs. If a node has a hardware Watchdog, you can enable its use in Kaspersky Industrial CyberSecurity for Networks. If the use of a hardware Watchdog is enabled, specify its path in the Specify path to hardware Watchdog item.
Add the capability for application interaction with Kaspersky Security Center – adds the functionality enabling the application to interact with Kaspersky Security Center (if this functionality was not already added). This menu item is analogous to the Add the capability for application interaction with Kaspersky Security Center item in the Add Server menu.
Remove the capability for application interaction with Kaspersky Security Center – removes the functionality that lets the application interact with Kaspersky Security Center.
Create database again – deletes the existing database and creates a new one during reinstallation of the application.
If you select this menu item, information in the existing database will be lost after Server installation.
You can use the following installation menu commands to manage installation of sensors:
Add sensor – adds a new node that will be assigned sensor functions. If you select this option, you need to specify the main settings for the sensor when the Enter the IP address of the node for installation prompt appears. In this prompt, you can define the IP address that will be used for connecting to the computer over the SSH protocol and installing the sensor.
Change sensor settings – modifies the settings of the added sensor. You can use this menu item to change the main sensor settings that can be edited and to configure advanced settings. Selecting this menu item displays a list of nodes on which sensors have been added. After selecting a node, you will see a submenu in which you can change the following settings:
Specify an additional user to run the installation – defines an additional user account that will be used to run the centralized installation on the sensor node. An additional user account needs to be specified if the user name with root privileges on this node differs from the user name defined in the Change the user running the installation item. The passwords of all user accounts that will be used to run the installation must match.
Enable hardware Watchdog – enables use of the hardware Watchdog. The hardware Watchdog is a hardware-implemented system for controlling system hangs. If a node has a hardware Watchdog, you can enable its use in Kaspersky Industrial CyberSecurity for Networks. If the use of a hardware Watchdog is enabled, specify its path in the Specify path to hardware Watchdog item.
Remove sensor – removes the sensor node. Selecting this item displays a list of nodes on which sensors have been added.
General installation menu commands include the following commands:
Change the user running the installation – defines the user name with root privileges that runs the centralized installation of application components. The same password for the user accounts that will run the installation must be set on all computers. The password must be entered during installation of components.
View application installation settings – displays the list of installation settings and their values.
You can use the following commands to exit the centralized installation menu:
Save settings and start installation – install the Kaspersky Industrial CyberSecurity for Networks application components according to the defined installation settings. The defined settings are saved in the installation settings file. The application centralized installation script saves the installation settings file on each computer on which the script is run.
Save settings and exit without installing – save changes to the installation settings file, terminate the application centralized installation script, and exit without installing components.
Exit without saving settings – terminate the application centralized installation script without saving changes to the installation settings file.