Install Linux forwarder manually
Instructions also include upgrade steps
Prerequisite(s)
Warning!
The initial scan (we refer to as the backscan) is a comprehensive physical disk scan that is very resource intensive for a short period of time. We do not recommend installing the forwarder on critical assets early in your deployment. Think of your first several deployments as "sacrificial" in that they will take the biggest hit because they will be uploading the greatest number of unique files and each subsequent install will have less and less unique files and therefore, shorter and less intensive backscans.
Installation or Upgrade of v2.1.x or newer w/ RHEL 7
- Get the install package for the target platform from the download center and download to your local directory.
curl -O <https://downloads.stairwell.com/linux/2.1.0/>\<package_file_name>
sudo rpm -i <package_file_name>
sudo rpm -U <package_file_name>
- After installation was successful, run the following commands to complete configuration of the Environment ID (EnvID), Forwarder Token (Token), & Proxy URL (proxyURL).
sudo vi /etc/stairwell/config.json
{
"logger": {
"loglevel": "error"
},
"asset": {
"idempotencyKey": "",
"EnvId": "ABCDEF-ABCDEF-123ABC-ABCD1234",
"Token": "ABCDEFG1234567HIJKLMNOP789012QRSTUVW345678XYZABCD901"
},
"interpreters": [
"sh",
"bash",
"python3",
"go",
"ruby",
"perl",
"lua",
"Rscript"
],
"ostype": "server",
"proxyURL": "https://your.proxy.url:1234",
"enableEvents": true
}
- After configuration is completed, the Stairwell service will need to be activated.
sudo service auditd stop
sudo systemctl start auditd
sudo systemctl enable --now stairwell.service
- After Stairwell is activated, the logs can be viewed.
journalctl -u stairwell.service -f
Installation or Upgrade of v2.1.x or newer w/ RHEL 6
- Get the install package for the target platform from the download center and download to your local directory.
curl -O https://downloads.stairwell.com/linux/2.1.0/<package_file_name>
sudo rpm -i <package_file_name>
sudo rpm -U <package_file_name>
- After installation was successful, run the following commands to complete configuration of the Environment ID (EnvID), Forwarder Token (Token), & Proxy URL (proxyURL).
sudo vi /etc/stairwell/config.json
{
"logger": {
"loglevel": "error"
},
"asset": {
"idempotencyKey": "",
"EnvId": "ABCDEF-ABCDEF-123ABC-ABCD1234",
"Token": "ABCDEFG1234567HIJKLMNOP789012QRSTUVW345678XYZABCD901"
},
"interpreters": [
"sh",
"bash",
"python3",
"go",
"ruby",
"perl",
"lua",
"Rscript"
],
"ostype": "server",
"proxyURL": "https://your.proxy.url:1234",
"enableEvents": true
}
- After configuration is completed, the Stairwell service will need to be activated.
sudo service stairwell start
- After Stairwell is activated, the logs can be viewed.
sudo tail -f /var/log/stairwell/fileshipper.log
Updated 8 months ago