By default, Sentinel installs a Collector Manager and a Correlation Engine. For production environments, NetIQ Corporation recommends setting up a distributed deployment because it isolates data collection components on a separate machine, which is important for handling spikes and other anomalies with maximum system stability. For information about the advantages of installing additional components, see Section 6.1, Advantages of Distributed Deployments.
IMPORTANT:You must install the additional Collector Manager or the Correlation Engine on separate systems. The Collector Manager or the Correlation Engine must not be on the same system where the Sentinel server is installed.
Ensure that you have completed the following tasks before starting the installation.
Make sure that your hardware and software meet the minimum requirements. For more information, see Section 5.0, Meeting System Requirements.
Synchronize time by using the Network Time Protocol (NTP).
A Collector Manager requires network connectivity to the message bus port (61616) on the Sentinel server. Before you start installing the Collector Manager, make sure that all firewall and network settings are allowed to communicate over this port.
Launch the Sentinel Web interface by specifying the following URL in your Web browser:
https://<IP_Address_Sentinel_server>:8443.
The <IP_Address_Sentinel_server> is the IP address or DNS name of the Sentinel server and 8443 is the default port for the Sentinel server.
Log in with the username and password specified during the installation of the Sentinel server.
In the toolbar, click Downloads.
Click Download Installer under the required installation.
Click Save File to save the installer to the desired location.
Specify the following command to extract the installation file.
tar zxvf <install_filename>
Replace <install_filename> with the actual name of the install file.
Change to the directory where you extracted the installer.
Specify the following command to install the Collector Manager or the Correlation Engine:
For Collector Manager:
./install-cm
For Correlation Engine:
./install-ce
The install script first checks for the available memory and disk space. If the available memory is less than 1.5 GB, the script automatically terminates the installation.
Specify the number for the language you want to use for the installation.
The end user license agreement is displayed in the selected language.
Press the Spacebar to read through the license agreement.
Enter yes or y to accept the license agreement and continue with the installation.
The installation might take a few seconds to load the installation packages and prompt for the configuration type.
When prompted, specify 1 to proceed with the standard configuration.
Enter default Communication Server Hostname or IP Address of the machine on which Sentinel is installed.
Specify the ActiveMQ user credentials for the Collector Manager or the Correlation Engine.
The ActiveMQ user credentials are stored in the /<install_dir>/etc/opt/novell/sentinel/config/activemqusers.properties file located in the Sentinel server.
Accept the certificate permanently when prompted.
Enter yes or y to enable FIPS 140-2 mode in Sentinel and continue with the FIPS configuration.
Continue with the installation as prompted until the installation is complete.
Sentinel recommends that you use the default ActiveMQ usernames for the remote Collector Manager and Correlation Engine. However, if you have installed multiple remote Collector Managers and you want to identify them separately, you can create new ActiveMQ users:
Log in to the server as the Sentinel user who has access to the installation files.
Open the activemqgroups.properties file.
This file is located in the /<install_dir>/etc/opt/novell/sentinel/config/ directory.
Add the new ActiveMQ usernames separated by comma as follows:
For Collector Manager, add the new users in the cm section. For example:
cm=collectormanager,cmuser1,cmuser2,...
For Correlation Engine, add the new users in the admins section. For example:
admins=system,correlationengine,ceuser1,ceuser2,...
Save and close the file.
Open the activemqusers.properties file.
This file is located in the /<install_dir>/etc/opt/novell/sentinel/config/ directory.
Add the password for the ActiveMQ user you created in Step 3.
The password can be any random string. For example:
For Collector Manager users:
system=c7f34372ecd20d831cceb29e754e5ac9 collectormanager=1c51ae56 cmuser1=1b51de55 cmuser2=1a51ce57
For Correlation Engine users:
system=c7f34372ecd20d831cceb29e754e5ac9 correlationengine=68790d7a ceuser1=69700c6d ceuser2=70701b5c
Save and close the file.
Restart the Sentinel server.