close
- Copyright and Trademark Information
- Table of Contents
- List of Figures
- List of Tables
- play_arrow Overview
- play_arrow Installation
- play_arrow Installation Tasks Overview
-
- Installing or Upgrading the CTPView Server OS
- Saving the CTPView Configuration Settings and Data (CTPView Server Menu)
- Creating More Disk Space on the CTPView Server (CTPView)
- Creating More Disk Space on the CTPView Server (CTPView Server Menu)
- Installing the CTPView Server OS (CTPView Server CLI)
- Restoring CTPView Software Configuration Settings and Data (CTPView)
- Restoring CTPView Software Configuration Settings and Data with the Restore Utility (CTPView Server Menu)
- Restoring CTPView Software Data by Manually Synchronizing the CTPView Server (CTPView)
- Reviewing the Installation Log for Errors (CTPView Server CLI)
- Verifying the CTPView Server OS Installation (CTPView)
- Validating the CTPView Server Configuration (CTPView)
- play_arrow Upgrade Tasks for Only the CTPView Software
-
- Configuring the CTPView Administrative Settings
- Preparing a New Server
- Changing the BIOS Menu Password (CTPView Server CLI)
- Changing the Server's Default User Account Password (CTPView Server CLI)
- Changing the Server's Root Account Password (CTPView Server CLI)
- Changing the GRUB Boot Loader Password (CTPView Server Menu)
- Changing the PostgreSQL Apache Account Password (CTPView Server Menu)
- Changing the PostgreSQL Administrator Account Password (CTPView Server Menu)
- Configuring IP ACLs for Restricting Access to Resources (CTPView Server Menu)
- Configuring the Network Access (CTPView Server Menu)
- Creating a Self-Signed Web Certificate (CTPView Server Menu)
- Enabling OpenSSL Authentication of Users by Creating a Self-Signed Web Certificate (CTPView Server Menu)
- Importing Certificates Issued by a Third-Party CA (CTPView Server Menu)
- Updating the CTPView Software
- Logging In with a Browser (CTPView)
- Changing the CTPView GUI Default User Account Password (CTPView)
- Creating a New Global_Admin Account (CTPView)
- Configuring Subdomains in Hostnames (CTPView Server Menu)
- play_arrow Upgrade Tasks for CTPOS
- play_arrow Default Accounts and Passwords
- play_arrow Understanding CTPView Upgrade Files
- play_arrow Administration
- play_arrow Managing and Displaying Users (CTPView)
- Managing CTPView Users with the CTPView Admin Center
- Accessing the CTPView Admin Center (CTPView)
- Monitoring CTPView Users (CTPView)
- Adding New CTPView Users (CTPView)
- Modifying CTPView User Properties (CTPView)
- Monitoring CTPView Groups (CTPView)
- Modifying CTPView User Group Affiliation (CTPView)
- Adding a New CTPView User Group (CTPView)
- Modifying CTPView User Group Default Properties (CTPView)
- play_arrow Deleting Users and Groups (CTPView)
- play_arrow Managing User Passwords (CTPView)
- play_arrow Configuring User Login Properties (CTPView)
- Logging Out a CTPView User (CTPView)
- Configuring Automatic Logout for a CTPView User (CTPView)
- Configuring the Number of Login Attempts Allowed Before Lockout (CTPView)
- Configuring a Lockout Period for CTPView Users (CTPView)
- Clearing CTPView User Counters (CTPView)
- Reinstating Locked-Out IP Addresses (CTPView)
- Creating an Access Filter to Allow or Deny IP Addresses (CTPView)
- Removing an IP Access Filter (CTPView)
- Understanding CTPView GUI User Levels
- CTPOS and CTPView Software Password Requirements
- play_arrow Managing the CTPView Server (CTPView)
- Adding and Removing CTP Platforms Managed by CTPView Software (CTPView)
- Adding and Removing Host Groups (CTPView)
- Adding and Removing SNMP Communities (CTPView)
- Managing CTP Platforms in the Network (CTPView)
- Configuring Email Notifications (CTPView)
- Setting the CTPView Server Start-Up Banner (CTPView)
- Setting the CTP Platforms Login Banner (CTPView)
- Configuring an SSH Connection to a CTP Platform that Persists Through the Session (CTPView)
- Setting the CTPView Server Clock (CTPView)
- Setting the CTPOS Clock (CTP Menu)
-
- Accessing the NTP Server Settings Window (CTPView)
- Stopping the NTP Daemon (CTPView)
- Adding an NTP Peer (CTPView)
- Removing an NTP Peer (CTPView)
- Synchronizing the CTPView Server to an NTP Peer (CTPView)
- Adding NTP Network Clients (CTPView)
- Removing an NTP Network Client (CTPView)
- Modifying the Netmask of an NTP Network Client (CTPView)
- play_arrow NTP Authentication Overview on CTP Devices
- Configuring NTP Authentication Using the System Query Page (CTPView)
- Configuring NTP Authentication Using the System Configuration Page (CTPView)
- Configuring NetRef Settings (CTPView)
- Setting a Limit on File Transfer Bandwidth Between the CTPView Server and CTP Platforms (CTPView)
- Restoring CTPView Software Configuration Settings and Data (CTPView)
- Restoring CTPView Software Data by Manually Synchronizing the CTPView Server (CTPView)
- play_arrow Monitoring CTP Platforms (CTPView)
- Monitoring the Network with the CTPView Software (CTPView)
- Changing the Display Settings for CTPView Network Monitoring (CTPView)
- Displaying Runtime Query Results for a CTP Platform (CTPView)
- Overriding CTP Platform Network Status and Adding Comments (CTPView)
- Saving CTP Platform Configurations (CTPView)
- Setting an Audible Alert for CTP Platform Status (CTPView)
- Displaying CTPView Network Reports (CTPView)
- Field Descriptions in CTPView Network Reports (CTPView)
- Displaying Network Statistics (CTPView)
- Displaying the Management and Circuit Interface Settings (CTP Menu)
- play_arrow Changing CTPView GUI Settings
-
- Accessing the CTPView Server Configuration Menu (CTPView Server Menu)
- play_arrow Managing CTPView Users (CTPView Server Menu)
- Unlocking a User Account (CTP Menu)
- play_arrow Adding a VLAN Interface to a Node (CTP Menu)
- Configuring Separate Interfaces for Management and Circuit Traffic (CTP Menu)
- Accessing the Security Profile Configuration Menu (CTP Menu)
- Classification of CTPView Shell Account Users
-
- Setting the CTPView Server Start-Up Banner (CTPView Server Menu)
- Establishing an SSH Connection (CTP Menu)
- Saving the CTPView Configuration Settings and Data (CTPView Server Menu)
- Creating More Disk Space on the CTPView Server (CTPView Server Menu)
- Restoring CTPView Software Configuration Settings and Data with the Restore Utility (CTPView Server Menu)
- Restarting the PostgreSQL Server (CTPView Server Menu)
- Setting the Logging Level (CTPView Server Menu)
-
- Resetting the Default System Administrator Account (CTPView Server Menu)
- Resetting the Data File Permissions (CTPView Server Menu)
- Resetting the CTPView System Files to the Default Values (CTPView Server Menu)
- Burning an Image of CTPOS to a CompactFlash Card (CTPView Server Menu)
- Resetting the Default Firewall Settings (CTPView Server Menu)
-
- Changing Passwords to Improve Access Security
- Changing the BIOS Menu Password (CTPView Server CLI)
- Changing the Server's Root Account Password (CTPView Server CLI)
- Changing the GRUB Boot Loader Password (CTPView Server Menu)
- Changing the PostgreSQL Apache Account Password (CTPView Server Menu)
- Changing the PostgreSQL Administrator Account Password (CTPView Server Menu)
- play_arrow Troubleshooting
- play_arrow Restoring CLI Access to the CTPView Server
- Restoring Access to a CTPView Server
- Accessing a Shell on the CTPView Server (CTPView Server CLI)
- Setting a New Password for a Nonroot User Account (CTPView Server CLI)
- Setting a New Password for a Root User Account (CTPView Server CLI)
- Creating a Nonroot User Account and Password (CTPView Server CLI)
- play_arrow Restoring Browser Access to a CTPView Server
- play_arrow Changing a CTPOS User Password
list Table of Contents
Creating a Virtualized Instance of CTPView Server on an ESX Server
date_range
20-Jan-22
Before you begin:
Make sure that vSphere client is installed on you workstation.
NoteWithin vSphere, there are numerous ways to perform a particular task. The following example illustrates one such method. You can use the procedure that suits your network deployment effectively.
To create a new CentOS 7 STIG’d VM instance of CTPView server on an ESXi Server:
- Copy the CentOS 7 ISO file (centOS-7-x86_64-DVD-1804.iso) to the ESXi datastore. The CentOS 7 ISO can be downloaded from http://vault.centos.org/7.5.1804/isos/x86_64/.
- Start the vSphere client and enter the ESXi server IP address and your login credentials.
- Start the wizard to create a new virtual machine. Select File > New > Virtual Machine.
- Select the configuration as Typical and click Next.
- Enter a name for the VM. For example, CTPView_9.0R1.
- Select the datastore (with at least 80 GB free space) and click Next.
- Select Guest OS as Linux and version as Other Linux (64-bit), and then click Next.
- Select the number of NICs as 2 and adapter type as E1000, and then click Next.
- Select the virtual disk size as 80 GB and select Thick Provision Lazy Zeroed.
- Select the Edit the virtual machine settings before completion check box and click Continue.
- Click the Hardware tab and select memory size as 4 GB.
- In the Hardware tab, select CPU. Then, select the number of virtual sockets as 2 and number of cores per socket as 1 (you can select up to 4 cores).
- In the Hardware tab, select CD/DVD. Then, select the device type as Datastore ISO File and browse to CentOS 7 ISO file. Select the Connect at power on check box under Device Status.
- Click Finish.
- Select your created virtual machine in the left panel of vSphere > Inventory.
- In the Getting Started tab, select Power on the virtual machine.
- Switch to the Console tab and click inside the terminal emulator.
- Select the Install CentOS Linux 7 option with the Up Arrow key and press Enter.
- Press the Enter key to begin the installation process.
- Select the language and your desired country time zone (if necessary) and then click Continue.
- Click the SOFTWARE SELECTION option.
- In the Basic Environment section,
select the Basic Web Server radio button.
In the Add-Ons for Selected Environment section, select PHP Support and Perl for Web check boxes and click Done.
- Click INSTALLATION DESTINATION and verify that the VMware Virtual disk (80 GB) is selected.
- In the Other Storage Options section, select the I will configure a partitioning option button.
- Click Done. The MANUAL PARTITIONING page appears.
- Click the + button. The ADD A NEW MOUNT POINT dialog box appears.
- To create a partition for /boot, enter /boot in the Mount Point field and enter 1014 MB in the Desired Capacity field. Then, click Add mount point.
- Select Standard Partition from the Device Type list and select ext3 from the File System list. Enter LABEL=/boot in the Label field and then click Update Settings.
- Similarly, repeat the steps 26 through 28 to create
partitions for the following mount points with the provided settings.
Table 5: Mount Points and Their Settings
Mount Point
Desired Capacity
Device Type
File System
Label
/tmp
9.5 GB
Standard Partition
ext3
LABEL=/tmp
/
8 GB
Standard Partition
ext3
LABEL=/
/var/log
3.8 GB
Standard Partition
ext3
LABEL=/var/log
/var
3.8 GB
Standard Partition
ext3
LABEL=/var
/var/log/audit
1.9 GB
Standard Partition
ext3
LABEL=/var/log/a
/home
1.9 GB
Standard Partition
ext3
LABEL=/home
/var/www
9.4 GB
Standard Partition
ext3
LABEL=/var/www
- Click Done twice and then click Accept Changes.
- Click NETWORK & HOST NAME.
- Select an Ethernet option (for example, Ethernet (ens32)),
enter the hostname (for example, ctpview) in the Host
name field, and then click Apply.
- Click Configure. Then, click
the IPv4 Settings tab.
- Select Manual from the Method list and click Add.
- Enter values for Address, Netmask, and Gateway fields, and then click Save.
- Click the toggle button in the right-top corner to bring the configured Ethernet up and running, and then click Done.
- Click SECURITY POLICY.
- Select the DISA STIG for CentOS Linux 7 Server option and click Select Profile. Then,
click Done.
NoteSkip this step, if you are creating a non-STIG’d VM.
- Click Begin Installation. The USER SETTINGS page appears.
- Click USER CREATION and enter
the username as “admin” and enter a password. Do Not use
the username “juniper_sa”.
- Select the Make this user administrator check box and click Done.
- In the USER SETTINGS page,
click ROOT PASSWORD, enter a password for
the root account and click Done.
Remember the passwords. Password recovery is not a simple process and is service affecting. It requires console access to the CTPView and requires rebooting of CTPView (possibly even a system re-power).
NoteIf unique passwords are not required, use the password as “CTPView-2-2”.
- After the installation process is completed, click Reboot.Note
By default, USB mass storage device will not be detected on CentOS 7 server as it is blacklisted due to security requirements.
To enable USB mass storage device on CentOS 7:Comment the line install usb-storage /bin/true in the file
/etc/modprobe.d/usb-storage.conf.Reboot the server.
