Linux
- Installing the Linux Secure Agent and/or the Linux Shell Script Agent takes only a few minutes.
- Download the appropriate file from the help.Argent.com under the Optional Monitoring Agents section.
- Transfer the file you downloaded to the Linux system you want to monitor, using FTP, SSH, or another file transfer method. For this example, we’ve placed the downloaded file in the /tmp directory.
- On the Linux machine, log on as “root” and create the /etc/argent directory.
mkdir /etc/argent
- Switch to the /tmp directory, where we placed the downloaded file, and move the file to /etc/argent.
mv ARGENT_GUARDIAN_LINUX_8_0A_0707.TAR /etc/argent
- Change directories to /etc/argent.
cd /etc/argent
- Extract the contents of the tar file.
tar xfv ARGENT_GUARDIAN_LINUX_8_0A_0707.TAR
- The /etc/argent directory now contains three more files:
- tagagent (the binary for the Secure Unix Agent)
- tagagent.conf (the configuration file for the Secure Unix Agent)
- tagshell (the Unix Shell Script Agent)
- Create log files for both the Secure Unix Agent and the Unix Shell Script Agent.
touch tagagent.log tagshell.log
- Make both tagagent.log and tagshell.log world-writable. (This is necessary if the Rules you’re running are executed by someone other than “root”.)
chmod 666 tagagent.log tagshell.log
- Change the ownership on the /etc/argent directory and its files:
chown -R root:root /etc/argent
- The Secure Unix Agent and the Unix Shell Script Agent run under xinetd. We need to create two files in the /etc/xinetd.d directory to enable the agents.
- Change to the /etc/xinetd.d directory.
cd /etc/xinetd.d
- Using “vi” or another editor, create tagagent with the following contents:
service tagagent { socket_type = stream protocol = tcp port = 3060 wait = no user = root server = /etc/argent/tagagent }
- Next, create tagshell with the following contents:
service tagshell { socket_type = stream protocol = tcp port = 3061 wait = no user = root server = /etc/argent/tagshell }
- Next, place the following lines in /etc/services:
tagagent 3060/tcp # The Argent Secure Unix Agent tagshell 3061/tcp # The Argent Unix Shell Script Agent
- Reload xinetd’s configuration to enable the monitoring agents.
/sbin/service xinetd reload
- You can verify that the agents are listening by using the following “netstat” command:
netstat -a | egrep ‘tagagent|tagshell’
NOTE:
If desired, both agents can be configured to accept connections only from specific IP addresses by using the “only_from” option.
Example:
adding the following line to tagagent or tagshell would allow connections only from 10.1.1.31:
only_from = 10.1.1.31