Linux


  1. Installing the Linux Secure Agent and/or the Linux Shell Script Agent takes only a few minutes.
  2. Download the appropriate file from the help.Argent.com under the Optional Monitoring Agents section.

    Optional Monitoring Agents

  3. Transfer the file you downloaded to the Linux system you want to monitor, using FTP, SSH, or another file transfer method. For this example, we’ve placed the downloaded file in the /tmp directory.
  4. On the Linux machine, log on as “root” and create the /etc/argent directory.

    mkdir /etc/argent

  5. Switch to the /tmp directory, where we placed the downloaded file, and move the file to /etc/argent.

    mv ARGENT_GUARDIAN_LINUX_8_0A_0707.TAR /etc/argent

  6. Change directories to /etc/argent.

    cd /etc/argent

  7. Extract the contents of the tar file.

    tar xfv ARGENT_GUARDIAN_LINUX_8_0A_0707.TAR

  8. The /etc/argent directory now contains three more files:
    • tagagent (the binary for the Secure Unix Agent)
    • tagagent.conf (the configuration file for the Secure Unix Agent)
    • tagshell (the Unix Shell Script Agent)
  9. Create log files for both the Secure Unix Agent and the Unix Shell Script Agent.

    touch tagagent.log tagshell.log

  10. Make both tagagent.log and tagshell.log world-writable. (This is necessary if the Rules you’re running are executed by someone other than “root”.)

    chmod 666 tagagent.log tagshell.log

  11. Change the ownership on the /etc/argent directory and its files:

    chown -R root:root /etc/argent

  12. The Secure Unix Agent and the Unix Shell Script Agent run under xinetd. We need to create two files in the /etc/xinetd.d directory to enable the agents.
  13. Change to the /etc/xinetd.d directory.

    cd /etc/xinetd.d

  14. Using “vi” or another editor, create tagagent with the following contents: 
    
service tagagent

{

socket_type = stream

protocol = tcp

port = 3060

wait = no

user = root

server = /etc/argent/tagagent

}
  15. Next, create tagshell with the following contents: 
    
service tagshell

{

socket_type = stream

protocol = tcp

port = 3061

wait = no

user = root

server = /etc/argent/tagshell

}

    16. NOTE:

    If desired, both agents can be configured to accept connections only from specific IP addresses by using the “only_from” option.

    Example:

    adding the following line to tagagent or tagshell would allow connections only from 10.1.1.31:

    only_from = 10.1.1.31

  16. Next, place the following lines in /etc/services: 

    
tagagent        3060/tcp        # The Argent Secure Unix Agent

tagshell        3061/tcp        # The Argent Unix Shell Script Agent
  17. Reload xinetd’s configuration to enable the monitoring agents.

    /sbin/service xinetd reload

  18. You can verify that the agents are listening by using the following “netstat” command:

    netstat -a | egrep ‘tagagent|tagshell’