3.2 Installing Novell Identity Audit

The Identity Audit installation package installs everything you need to run Identity Audit: the Identity Audit application and communications bus, the database to store events and configuration information, the Web-based user interface, and the reporting server. There are two installation options, a simple installation that can be run as root, or a multi-step installation that uses root as little as possible.

3.2.1 Quick Installation (as root)

This simple installation must be run as root.

  1. Log in as root to the server where you want to install Identity Audit.

  2. Download or copy identity_audit_1.0_x86-64.tar.gz to a temporary directory.

  3. Change to the temporary directory (if necessary).

  4. Extract the install script from the file by using the following command:

    tar xfz identity_audit_1.0_x86-64.tar.gz identity_audit_1.0_x86-64/setup
    
  5. Run the root_install_all.sh script with root privileges.

    identity_audit_1.0_x86-64/setup/root_install_all.sh identity_audit_1.0_x86-64.tar.gz
    

    NOTE:You can log in as root and run the command above or use the sudo command to run the command.

  6. Choose a language by entering a number.

    The end user license agreement displays in the selected language.

  7. Read the end user license and enter 1 or y if you agree to the terms and want to continue installation.

    The installation begins. If the previously selected language is not available for the installer (for example, Polish), the installer continues in English.

    The novell user and novell group are created, if they do not already exist.

    The novell user is created without a password. If you want to be able to log in as the novell user later (for example, to install patches), you can create a password for this user after the installation is completed.

  8. Enter the password for database administrator (dbauser).

  9. Confirm the password for database administrator (dbauser).

  10. Enter the password for the admin user.

  11. Confirm the password for the admin user.

    The dbauser credentials are used to create tables and partitions in the PostgreSQL database. Identity Audit is configured to start up with runlevels 3 and 5 (Multi-User Mode with boot-up in console or X-Windows mode).

After the Identity Audit service starts, you can log in to the URL (for example: https://10.10.10.10:8443/novellidentityaudit) specified in the installation output.The system starts processing internal audit events immediately, and it is fully functional after you configure event sources to send data to Identity Audit.

3.2.2 Non-root Installation

If organizational policy prohibits running the full installation process as root, the installation can be run in two steps. The first part of the installation procedure must be performed with root-level access, and the second part is performed as the Identity Audit administrative user (created during the first part).

  1. Log in as root to the server where you want to install Identity Audit.

  2. Download or copy identity_audit_1.0_x86-64.tar.gz to the /tmp directory.

  3. (Conditional) If the novell user and novell group do not exist on the server:

    1. Extract the script to create the novell user and novell group from the Identity Audit tar file. For example:

      tar xfz identity_audit_1.0_x86-64.tar.gz identity_audit_1.0_x86-64/setup/root_create_novell_user.sh
      
    2. As root, execute the script by using this command:

      identity_audit_1.0_x86-64/setup/root_create_novell_user.sh
      

      The novell user and novell group will own the installation and the running processes of Identity Audit.

  4. Create a directory for Identity Audit. For example:

    mkdir -p /opt/novell
    
  5. Set the directory to be owned by the novell user and novell group. For example:

    chown -R novell:novell /opt/novell
    
  6. Log in as the novell user:

    su novell
    
  7. Extract the Identity Audit tar file to the directory you just created. For example:

    cd /opt/novell
    tar xfz /tmp/identity_audit_1.0_x86-64.tar.gz
    
  8. Execute the installation script. For example:

    /opt/novell/identity_audit_1.0_x86-64/setup/install.sh
    
  9. Choose a language by entering a number.

    The end user license agreement displays in the selected language.

  10. Read the end user license and enter 1 or y if you agree to the terms and want to continue installation.

    The installation begins. If the previously selected language is not available for the installer (for example, Polish), the installer continues in English.

  11. Enter the password for database administrator (dbauser).

  12. Confirm the password for database administrator (dbauser).

  13. Enter the password for the admin user.

  14. Confirm the password for the admin user.

  15. Log out and log back in as novell. This loads the PATH environment variable changes made by the install.sh script.

  16. Execute the root_install_service.sh script to enable Identity Audit to start up as a service. This step requires root level access. For example:

    sudo /opt/novell/identity_audit_1.0_x86-64/setup/root_install_service.sh
    
  17. Enter the root password.

    Identity Audit is configured to start up with runlevels 3 and 5 (Multi-User Mode with boot-up in console or X-Windows mode).

After the Identity Audit service starts, you can log in to the URL (for example: https://10.10.10.10:8443/novellidentityaudit) specified in the installation output.The system starts processing internal audit events immediately, and it is fully functional after you configure event sources to send data to Identity Audit.