Linux-UNIX: System details and checks
Verify these prerequisites, including system details; and that your database is communicating with Guardium .
- Obtain the IP address of the database server on which you are installing S-TAP. If virtual IPs are used, note those as well (you will need to configure those later, when completing the configuration).
- If installing on the central manager, identify the IP address of the collector that will control this S-TAP, and to which this S-TAP will report.
- If installing on a server with secure boot enabled, enroll the Guardium S-TAP key on the database server before installing S-TAP. For more information, see Linux-UNIX: Enrolling a K-TAP signing key.
- If installing a locally built (custom) K-TAP with secure boot on, use the kernelModuleSigning.sh utility to sign the K-TAP. For more information, see Linux-UNIX: Signing and enrolling a locally built K-TAP
- Verify connectivity between the database server and the collector. On the database, enter
nmap -p <port> <ip_address>. For example, to check that port 16018
(the port Guardium uses for TLS) is reachable at IP
address 192.168.3.104, enter the command
nmap -p 16018 192.168.3.104
Typical output looks like:
Starting nmap V. 3.00 Interesting ports on g4.guardium.com (192.168.3.104): Port State Service 16018/tcp open unknown