Chat now with support
Chat with Support

InTrust 11.3.2 - System Requirements

Microsoft Forefront Threat Management Gateway and ISA Server Events

Server side:

  • InTrust Server
  • Microsoft Microsoft TMG Management Console for data gathering without agents

Processed computer:

Architecture x86
Microsoft Forefront Threat Management Gateway or ISA Server Any of the following:
  • Forefront Threat Management Gateway 2010 (gathering without agents is not supported)
  • ISA Server 2006 (gathering without agents is not supported)
  • ISA Server 2004 (gathering without agents is not supported)
Additional Software and Services
  • For data gathering with agents: Microsoft Microsoft TMG Management Console
Rights and permissions for data gathering with agents:

The following rights and permissions must be assigned to the InTrust agent account if the agent is not running under the LocalSystem account:

  • Read permission to the server (or server array) configuration
  • Read permission to the HKLM\SYSTEM\CurrentControlSet\Control\TimeZoneInformation registry key
  • Read and List Folder Contents permissions to log file folders; the Delete permission must also be granted if the Clear log after gathering option is turned on for the data source
Requirements for gathering Threat Management Gateway logs in SQL Server Express format without agents:
  • RPC connections to the Threat Management Gateway server must be allowed.
  • The SQL Server instance named "MSFW" on the Threat Management Gateway server must be made remotely available.
  • The Microsoft TMG Management Console must be installed on the InTrust server.

Note: For more information about job and task accounts, ee the Understanding Jobs and Tasks topic and Minimal Rights and Permissions Required for InTrust Operations.

Microsoft DHCP Server Events

Server side:

  • InTrust Server

Processed computer:

Architecture
  • x64
  • x86 where applicable
Operating System Any of the following:
  • Microsoft Windows Server 2016
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2012
  • Microsoft Windows Server 2008 R2
Microsoft DHCP Server N/A
Additional Software and Services
  • For data gathering without agents: Remote Registry Service
Rights and permissions for data gathering without agents:
  • Access this computer from the network right
  • Deny access to this computer from network right must be disabled
  • Read permission to the HKLM\SYSTEM\CurrentControlSet\Services\DHCPServer\Parameters registry key
  • Read permission to the HKLM\SYSTEM\CurrentControlSet\Control\TimeZoneInformation registry key
  • Read permission to the HKLM\SYSTEM\CurrentControlSet\Control\Nls\Language registry key
  • Membership in the local Administrators group
  • Read and List Folder Contents permissions to log file folders; the Delete permission must also be granted if the Clear log after gathering option is turned on for the data source
Rights and permissions for data gathering with agents:
  • Read permission to the HKLM\SYSTEM\CurrentControlSet\Services\DHCPServer\Parameters registry key
  • Read permission to the SYSTEM\CurrentControlSet\Control\TimeZoneInformation registry key
  • Read and List Folder Contents permissions to log file folders; the Delete permission must also be granted if the Clear log after gathering option is turned on for the data source

Note: For more information about job and task accounts, see the Understanding Jobs and Tasks topic and Minimal Rights and Permissions Required for InTrust Operations.

Solaris Events

Server side:

  • InTrust Server

Processed computer:

Architecture
  • x86
  • Sun SPARC (supported architectures for certain operating systems are listed below)
Operating System Any of the following:
  • Oracle Solaris 11.1 standard installation: 32-bit and 64-bit (on SPARC v9 and x64 architecture) with the the SUNWiconv-unicode package installed
  • Sun Solaris 10 standard installation: 32-bit and 64-bit (on SPARC v9 and x64 architecture)
  • Sun Solaris 9 standard installation: 32-bit and 64-bit (on SPARC v9 architecture)
  • Sun Solaris 8 with patch 112439-01: 32-bit and 64-bit (on SPARC v9 architecture)

Note: If a non-UTF-8 locale is used, the following patches should be installed:

  • For x86 architecture: 125294-XX
  • For Sun SPARC architecture: 125293-XX

Red Hat Enterprise Linux Events

Server side:

  • InTrust Server

Processed computer:

Architecture Any of the following:
  • x64 (RHEL 5 and later; see the Additional Software note below for details)
  • x86
Operating System Any of the following:
  • Red Hat Enterprise Linux 7 – 7.4
  • Red Hat Enterprise Linux 6.3 – 6.9
  • Red Hat Enterprise Linux 5
  • Red Hat Enterprise Linux 4
Additional Software

This note applies only to Red Hat Enterprise Linux 6 and 7.

The InTrust agent is a 32-bit application, so the following dependencies must be installed on 64-bit editions of the operating system:

  • glibc.i686
  • libuuid.i686
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating