AIX


  1. Installing the AIX takes only a few minutes..
  2. Download the appropriate file from the help.Argent.com under the Optional Monitoring Agents section.

    Optional Monitoring Agents

  3. Transfer the file you downloaded to the AIX system you want to monitor, using FTP, SSH, or another file transfer method. For this example, we’ve placed the downloaded file in the /tmp directory.
  4. On the AIX machine, log on as “root” and create the /etc/argent directory:

    mkdir /etc/argent

  5. Switch to the /tmp directory, where we placed the downloaded file, and move the file to /etc/argent.

    mv ARGENT_GUARDIAN_AIX_8_0A_0707.TAR /etc/argent

  6. Change directories to /etc/argent.

    cd /etc/argent

  7. Extract the contents of the tar file.

    tar xfv ARGENT_GUARDIAN_AIX_8_0A_0707.TAR

  8. The /etc/argent directory now contains three more files:
    • tagagent (the binary for the Secure Unix Agent)
    • tagagent.conf (the configuration file for the Secure Unix Agent)
    • tagshell (the Unix Shell Script Agent)
  9. Create log files for both the Secure Unix Agent and the Unix Shell Script Agent.

    touch tagagent.log tagshell.log

  10. Make both tagagent.log and tagshell.log world-writable. (This is necessary if the Rules you’re running are executed by someone other than “root”.)

    chmod 666 tagagent.log tagshell.log

  11. Change the ownership on the /etc/argent directory and its files:

    chown -R root:staff /etc/argent

  12. The Secure Unix Agent and the Unix Shell Script Agent run under inetd. Place the following lines in /etc/inetd.conf:
    
    tagagent        stream  tcp     nowait  root    /etc/argent/tagagent    tagagent
    
    tagshell        stream  tcp     nowait  root    /etc/argent/tagshell    tagshell
    
    
  13. Next, place the following lines in /etc/services:
    
    tagagent        3060/tcp        # The Argent Secure Unix Agent
    
    tagshell        3061/tcp        # The Argent Unix Shell Script Agent
    
    
  14. Restart inetd to enable the monitoring agents.

    refresh -s inetd

  15. You can verify that the agents are listening by using the following “netstat” command:

    netstat -a | egrep ‘tagagent|tagshell’

  16. If desired, access to the monitoring agents can be restricted by using TCP wrappers.