• Become a portal pro
• Download
• Print
• My Downloads ()

• Support
• Technical Documentation
• Foglight 5.9.5
• Foglight 5.9.5 - Installing Foglight on Windows with an External Microsoft SQL Server Database

Foglight 5.9.5 - Installing Foglight on Windows with an External Microsoft SQL Server Database

Table of Contents  

Before Installing Foglight

What is Foglight? Hardware requirements and guidelines Planning your installation

High Availability mode

Considerations for running the Management Server in HA mode

Using an external database Creating the database manually Licensing Installation modes

Console mode Silent mode

Installing Foglight

Preparing to install Installing a new version of the Management Server

Step 1: Introduction

Step 1: Introduction Step 2: Transaction Product Agreement Step 3: Select installation type Step 4: Choose installation folder Step 5: Choose shortcut location Step 6: Foglight service Step 7: Pre-installation summary Step 8: Installing Foglight Step 9: Foglight administrator password Step 10: Foglight mode Step 11: Foglight repository database type Step 12: Foglight ports configuration Step 13: Add Foglight license file Step 14: Add Foglight to system service Step 15: Foglight server startup Step 16: Install complete

Foglight Server Startup page Configuration about SQL Server Failover Next steps Embedded Agent Manager

Installed directories Foglight settings

Editing the server.config file Enabling High Availability mode after installation Changing external database credentials Setting up an encrypted database connection Setting up an encrypted LDAP connection with SSL Using encryption when sending email from Foglight Configuring ports Configuring the cluster multicast port used in High Availability mode Setting up Foglight server federation Setting memory parameters for the server

Process heap use

Adding command-line options Binding the Management Server to an IP address Configuring Foglight to use stronger encryption Configuring Foglight to use the HTTPS port

Importing a network security certificate Importing a PKCS #12 (pfx) format certificate

Setting the length of Foglight sessions

HP patch checking tool Uninstalling Foglight Upgrading the Management Server Installing Foglight FAQ

Running the Management Server

Manual database configuration

Option 1 - Run the Foglight database tool to configure the database Option 2 - Run SQL scripts to configure the database

Initializing the database Starting and stopping the Management Server

Starting the Management Server Running the Management Server as a Windows service

Using the Start Menu options Using the command line

Stopping the Management Server Starting and stopping the Management Server in High Availability mode

Logging in to Foglight

Monitoring the Management Server host Next steps

Running the Management Server FAQ

Installing and Upgrading Cartridges Installing Agents

Agent installers Remote agent installation

• Viewing Topics 41 - 44 of 80

×

Changing external database credentials

Use the following method to reconfigure Foglight to start up with a new database password. The password can be updated in the server.config file.

 

IMPORTANT: Do not use “<“ and “>” in your password, for example jo<anne>123. These characters corrupt the XML in the server.config file, causing Foglight to fail to start successfully.

To encrypt your database password using the keyman command:

1	Specify the following from the command line:

> bin\keyman -d [FGLHOME\config] encpwd "<new password>" foglight.defaultkey

The encrypted password appears.

2	Open the server.config file.

3	Replace the existing database password with the new encrypted database password on the following line:

server.database.password = "q4056753111e8a24c9a722048fc6df1f0"

4	Restart the Management Server.

Setting up an encrypted database connection

The server.config file contains the optional parameter foglight.database.secureconn, which is used as part of the process of setting up an encrypted database connection for a MySQL® or Oracle® database. However, setting up an encrypted database connection is not supported if you are running a Microsoft® SQL Server® database.

Setting up an encrypted LDAP connection with SSL

Use the following instructions if you need to encrypt communication between the Management Server and the LDAP server.

To encrypt communication between Management Server and LDAP:

1	Acquire the LDAP server certificate in .pem format from the administrator.

2	Import the certificate into the Management Server keystore, <foglight_home>\jre\lib\security\cacerts (default password: changeit), with the following command:

<foglight_home>\jre\bin\keytool -J-server ‑import ‑file <path_to_cert_file> ‑alias ldapsvrcert ‑keystore <path_to_cacerts> ‑storepass <store_pwd>

 

NOTE: If you do not specify the password using the ‑storepass option, keytool prompts you to supply it. NOTE: In addition to the Root CA certificate, there may be one or more intermediate CA certificates. If so, make sure to import the Root CA certificate and all intermediate CA certificates in sequence.

The following are the examples of command for importing Root CA and intermediate CA certificates:

•	Root CA certificate: <foglight_home>\jre\bin\keytool -import -trustcacerts -alias ldapsvrcert -keystore <path_to_cacerts> -storepass changeit -file <path_to_cert_file>

•	Intermediate CA certificate 1: <foglight_home>\jre\bin\keytool -import -alias ldapsvrcert2 -keystore <path_to_cacerts> -storepass changeit -file <path_to_cert_file>

•	Intermediate CA certificate 2: <foglight_home>\jre\bin\keytool -import -alias ldapsvrcert3 -keystore <path_to_cacerts> -storepass changeit -file <path_to_cert_file>

3	On the navigation panel, under Dashboards, click Administration > Users & Security > Directory Services Settings.

4	Under LDAP Locations, click Edit.

5	Specify the LDAP server URL in the following format:

ldaps://ldap_server_host_name:636

 

NOTE: The port number for LDAP over SSL is usually 636. Confirm the exact port number with your LDAP server administrator.

6	Restart the Management Server.

Using encryption when sending email from Foglight

You can use encryption when sending email from Foglight. To do so, you must enable Foglight to use the SSL protocol and configure the mail server used by Foglight to use an SSL certificate that is not self-signed.

You can configure Foglight to use the SSL protocol either on the Email Configuration Dashboard or by editing the related mail.use.ssl registry variable. See the Administration and Configuration Help for more information.

See the documentation for your mail server for information about configuring it to use an SSL certificate.

•  Previous
• Viewing Topics 41 - 44 of 80
• Next 

Search this document Search all documents for this product-version Search all documents for this product Search all documents

×

 Welcome to Quest Support

You can find online support help for Quest *product* on an affiliate support site. Click continue to be directed to the correct support content and assistance for *product*.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating

© 2024 Quest Software Inc. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center