Example installation of a Server and sensor

This section describes an example sequence of actions for installing Kaspersky Industrial CyberSecurity for Networks with a Server and one sensor. The computer on which the Server is being installed is referred to as "computer 1" in the example. The computer on which the sensor is being installed is referred to as "computer 2". The installation is performed from computer 1.

To install the Server and sensor on computer 1 and computer 2:

  1. On computer 1 and computer 2, set the same password for the root user account (application components will be installed under this user account).

    To set a password, you can enter the sudo passwd root command in the command line.

  2. On computer 1, create the kics4net_startuser account. This account will be used to run the application installation script. After the application is installed, this account will also be allowed to start the Application Console.

    The kics4net_startuser account does not need to run commands with root privileges. To create the account, you can enter the sudo useradd kics4net_startuser command in the command line. After creating the account, you can set a password for it by using the sudo passwd kics4net_startuser command.

  3. Find out and save the following information about the computers:
    • Name and IP address of computer 1.
    • IP address of computer 2.
    • Name or IP address and SSL port of the computer with Kaspersky Security Center.

    To display the computer name, you can enter the hostname command in the command line. To display information about IP addresses and network interfaces, you can enter the sudo ifconfig command in the command line (in a Windows operating system, use the ipconfig command).

  4. On computer 1, verify that you can access computer 2 over the SSH protocol.

    To connect:

    1. Enter the following command in the command line:

      ssh root@<IP address of computer 2>

    2. After entering this command, perform the necessary actions at the operating system prompts.
    3. To terminate the connection session, use the following command:

      exit

  5. On computer 1, sign in to the system using the kics4net_startuser account and create the folder /home/kics4net_startuser/kics4net_install/.
  6. Copy the following files from the Kaspersky Industrial CyberSecurity for Networks distribution kit to the folder you created:
    • Application installation script kics4net-deploy-<application version number>.bundle.sh
    • Package for installing the Server and sensors: kics4net-<application version number>.x86_64.rpm
    • Package for installing the Console: kics4net-utm-<application version number>.x86_64.rpm
    • Package for installing the DBMS: kics4net-postgresql-<DBMS version number>.x86_64.rpm
    • Package for installing the Intrusion Detection system: kics4net-suricata-<system version number>.x86_64.rpm
    • Package for installing a web server: kics4net-webserver-<application version number>.x86_64.rpm
    • Package for installing Network Agent from the Kaspersky Security Center distribution kit: klnagent64-<Network Agent version number>.x86_64.rpm
  7. Go to the folder /home/kics4net_startuser/kics4net_install/.
  8. Enter the command for running the application installation script:

    bash kics4net-deploy-<application version number>.bundle.sh

    The screen prompts you to choose the language of the installation menu.

  9. Select the language that you want to use in the installation menu.
  10. After you select the language for the installation menu, the application verifies the checksums of packages in the folder containing the saved files from the distribution kit. Wait for validation of the package checksums to complete.
  11. In the menu for selecting the installation option, select Run new installation.

    The main installation menu appears on the screen.

  12. Select the Add Server menu item and specify the main settings of the Server in the prompts that follow:
    • Enter the IP address of the node for installation – type the IP address of computer 1.
    • Enter the IP address for connections to the Server – re-enter the IP address of computer 1.
    • Enter Server name – type any Server name that is unique in Kaspersky Industrial CyberSecurity (for example, Server_1).
    • Add the capability for application interaction with Kaspersky Security Center – type y, and in the prompts that follow, enter the IP address/name of the computer with Kaspersky Security Center and the SSL port for connection.
    • Enable time synchronization between Server and sensors – type y.
    • Enter the IP address or name of the computer with the web server – type the IP address / name of computer 1.
    • Enter the web server port number – type port number 443.
    • Enter an application user name – type the application user name kics4net_admin.
    • Use self-signed certificates to connect to web server – type y to confirm the use of a self-signed certificate for the Web Server. If you have a certificate that was published by a trusted certificate authority, to use this certificate type n at this prompt and then y at the prompt to Use trusted certificates to connect to web server. To use a trusted certificate, you must specify the path to the trusted certificate file.

      If you want to use a trusted certificate in the application, it must be issued for the same IP address or computer name that will be indicated by application users when connected through the web interface. To load a trusted certificate, you can use a PFX file containing the saved trusted certificate and private key. The file must be created without a defined password for accessing the contents.

    • Enter the operating system user name for starting the Console – type the user name kics4net_startuser. This user will be allowed to start the Application Console.
    • Specify the name of one more user – type n.
  13. Select the Add sensor menu item and specify the main settings of the sensor in the prompts that follow:
    • Enter the IP address of the node for installation – type the IP address of computer 2.
    • Enter sensor name – type any name that is unique for a sensor in Kaspersky Industrial CyberSecurity (for example, Sensor_1).
  14. Select the Change interface language menu item, and select the localization language for components of Kaspersky Industrial CyberSecurity for Networks in the menu that appears.
  15. When finished configuring the settings, select Save settings and start installation.
  16. When the screen displays a message prompting you to read the terms of the End User License Agreement and Privacy Policy, press ENTER.

    The text of the End User License Agreement will appear on the screen.

  17. Please carefully read the End User License Agreement.

    After you are finished viewing the End User License Agreement, the screen will display a menu in which you can select your next actions.

  18. Select I confirm that I have fully read, understand, and accept the terms and conditions of this End User License Agreement.
  19. When you see a message about viewing the Privacy Policy, press ENTER.

    The text of the Privacy Policy will appear on the screen.

  20. Please carefully read the Privacy Policy.

    After you are finished viewing the Privacy Policy, the screen will display a menu in which you can select your next actions.

  21. Select I understand and agree that my data will be processed and transmitted (including to third-party countries) in accordance with the Privacy Policy. I confirm that I have fully read and understand the terms of the Privacy Policy.

    After you accept the terms of the Privacy Policy, the screen will prompt you to enter the password of the user running the installation.

  22. Enter the root user password. The password must be entered twice: first in the SSH password prompt and then in the SUDO password prompt.

    The installation script will begin the installation of components. During installation, the screen will display service messages regarding operations being completed.

  23. When the prompt appears for entering the password of the user kics4net_admin, enter the new password for this user.

Wait for completion of the script kics4net-deploy-<application version number>.bundle.sh.

After installation is complete, Kaspersky Industrial CyberSecurity for Networks does not monitor the industrial network (monitoring points have not been added to network interfaces of nodes that have application components installed). To use the application, you need to perform the necessary actions to prepare the application for operation.

Page top