5.3 Installing the Access Gateway Appliance

The Access Gateway Appliance is installed with the following default partitions:

  • boot: The size is automatically calculated and the mount point is /boot.

  • swap: The size is double the size of the RAM and the mount point is swap.

The remaining disk space after the creation of the /boot and swap partitions is allocated as the extended drive. The extended drive has the following partitions:

  • root: The default size is one-third the size of the extended drive and the mount point is /.

  • var: The default size is one-third the size of the extended drive and the mount point is /var.

The Access Gateway Appliance does not support configuring multiple network interfaces during installation. The eth0 interface is configured by default, and if you require multiple interfaces, you can configure them through the Administration Console after installation.

  1. Insert the Access Gateway Appliance CD into the CD drive and boot from CD. The boot screen appears.

  2. By default, the Boot From Hard Disk option is selected in the boot screen. Use the Down-arrow key to select Install Appliance.

  3. (Optional) Use the function key options to change installation settings as desired. For example, you can press F4 to perform a network installation.For more information on these function keys, see Section 5.2, Boot Screen Function Keys.

  4. After you have made your installation selections, press Enter.

    The License Agreement page is displayed.

  5. Review the agreement on the License Agreement page, then click I Agree to accept the agreement. The Clock and Time Zone page is displayed.

  6. Select the region and time zone.

  7. (Conditional) If the date and time are not the same as the date and time on the Administration Console, click Change, adjust the date and time.

  8. Click Next. The Appliance Configuration page is displayed.

  9. Configure the details on the Appliance Configuration page:

    Host Name: The hostname for the Access Gateway Appliance machine.

    IMPORTANT:Do not use linux as the hostname. If you do, the Access Gateway is not imported

    Domain Name: The domain name for your network.

    IP Address: The IP address of the Access Gateway.

    Subnet Mask: The subnet mask of the Access Gateway Appliance network.

    Default Gateway: The IP address of the default gateway.

    DNS Server 1: The IP address of your DNS server. You must configure at least one DNS server.

    DNS Server2: The IP address of your additional DNS server. This is an optional configuration.

    Specify the following information in the Root Password section:

    Enter Password: Specify a password for the root user.

    Re-enter Password: Specify the password for root user again for verification.

    NTP Server Configuration: The name of the NTP server.

    Specify the following in the NAT Settings section:

    Enter NAT IP: (optional) Provide Access Gateway Local NAT IP Address, if the device is behind NAT.

    Specify the following in the Administration Console configuration section:

    IP Address: The IP address of the Administration Console. The Access Gateway Appliance is imported into this Administration Console. If you select the Install and Enable SSL VPN Service option, the SSL VPN server is also imported into the Administration Console.

    Username: The name of the Administration Console user.

    Enter Password: Specify the password for the user.

    Re-enter Password: Specify the password again for verification.

    Install and enable SSL VPN Service: Select this check box to install and configure the SSL VPN service on the Access Gateway Appliance. When the SSL VPN server is installed on the same system as the Access Gateway, the SSL VPN server must be configured as a protected resource of the Access Gateway.

    IMPORTANT:You cannot uninstall the SSL VPN server that is installed with the Access Gateway Appliance.

  10. Click Next. The Installation Settings page appears.

    This page displays the options and software you selected in the previous steps. Use the Overview tab for a list of selected options, or use the Expert tab for more details. Ensure that all the default partitions recommended adhere to the guidelines mentioned in Table 5-1.

    NOTE:Do not change the software selections listed on this screen.

    This screen does not display SSL VPN as a selected pattern even when the Install and enable SSL VPN Service option is selected.

  11. (Optional) To modify the installation settings for partitions, click Change. For more information on partitions, see Section 5.4, Creating Custom Partitions.

  12. Click Install to continue with the installation process.

  13. Click Install to confirm.

    This process might take 15 to 30 minutes, depending on the configuration and hardware.

    The machine reboots after the installation is completed. It runs an auto import script, and then the Access Gateway Appliance is imported to the Administration Console.

  14. (Optional) To verify the installation of the Access Gateway Appliance, log in to the Administration Console (see Section 3.3, Logging In to the Administration Console), then click Devices > Access Gateways.

    If the installation was successful, the IP address of your Access Gateway appears in the Server list.

    The Health status indicates the health state after the Access Gateway is imported and registers with the Administration Console.

    NOTE:The Access Gateway Appliance health is displayed as green instead of yellow, even before a trust relationship is established between an Embedded Service Provider and the Access Gateway. You must establish a trust relationship with the Identity Server before you proceed with any other configuration.

    If an Access Gateway starts to import into the Administration Console but fails to complete the process, the following message appears:

    Server gateway-<name> is currently importing. If it has been several minutes after installation, click repair import to fix it.
    

    If you have waited at least ten minutes, but the message doesn’t disappear and the Access Gateway doesn’t appear in the list, click the repair import link. For additional help, see Section A.6, Troubleshooting the Access Gateway Import.

  15. Continue with one of the following sections: