立即与支持人员聊天

获得即时帮助
完成注册

登录

请求定价

联系销售人员

Foglight 6.1.0 - Installing Foglight on Windows with an External Microsoft SQL Server Database

Before Installing Foglight

What is Foglight? Hardware requirements and guidelines Planning your installation

High Availability mode

Considerations for running the Management Server in HA mode

Using an external database Creating the database manually Planning for authentication with gMSA Licensing Installation modes

Console mode Silent mode

Installing Foglight

Preparing to install Installing a new version of the Management Server

Step 1: Introduction

Step 1: Introduction Step 2: Transaction Product Agreement Step 3: Select installation type Step 4: Choose installation folder Step 5: Choose shortcut location Step 6: Foglight service Step 7: Pre-installation summary Step 8: Installing Foglight Step 9: Foglight administrator password Step 10: Foglight mode Step 11: FIPS Compliance mode Step 12: Foglight repository database type Step 13: Foglight ports configuration Step 14: Add Foglight license file Step 15: Add Foglight to system service Step 16: Foglight server startup Step 17: Change service credentials [Optional] Step 18: Install complete

Foglight Server Startup page Configuration about SQL Server Failover Next steps Embedded Agent Manager

Installed directories Foglight settings

Editing the server.config file Enabling High Availability mode after installation Changing external database credentials Importing self-signed certificates to Foglight TrustStore

Non-FIPS mode FIPS-compliant mode

Setting up an encrypted database connection Setting up an encrypted LDAP connection with SSL Using encryption when sending email from Foglight Configuring ports Configuring the cluster multicast port used in High Availability mode Setting up Foglight server federation Setting memory parameters for the server

Process heap use

Adding command-line options Binding the Management Server to an IP address Configuring Foglight to use stronger encryption Configuring Foglight to use the HTTPS port

Importing a network security certificate Importing a PKCS #12 (pfx) format certificate

Setting the length of Foglight sessions

HP patch checking tool Uninstalling Foglight Upgrading the Management Server Installing Foglight FAQ

Running the Management Server

Manual database configuration

Option 1 - Run the Foglight database tool to configure the database Option 2 - Run SQL scripts to configure the database

Initializing the database Starting and stopping the Management Server

Starting the Management Server Running the Management Server as a Windows service

Using the Start Menu options Using the command line

Stopping the Management Server Starting and stopping the Management Server in High Availability mode

Logging in to Foglight

Monitoring the Management Server host Next steps

Running the Management Server FAQ

Installing and Upgrading Cartridges Installing Agents

Agent installers Remote agent installation

Importing self-signed certificates to Foglight TrustStore

Foglight needs to verify self-signed certificates. It is necessary to configure the TrustStore properly for encrypted database/LDAP connection.

Non-FIPS mode

In non-FIPS mode, to be compatible with former Foglight versions, Foglight uses JRE TrustStore as the default TrustStore. The default TrustStore will NOT be preserved during Foglight upgrade. Foglight also support a separate TrustStore, which will be preserved during upgrade. Choose the one that best suits your needs:

Option 1: Import the certificate into the embedded JRE TrustStore, <foglight_home>\jre\lib\security\cacerts (default password: changeit), with the following command:

<foglight_home>\jre\bin\keytool -import -file <path_to_cert_file> -alias <alias_of_cert> -keystore <foglight_home>\jre\lib\security\cacerts -storepass <store_pwd>

Option 2: Prepare and import the certificate into Foglight TrustStore with the following steps:

1

Prepare TrustStore: copy <foglight_home>\config\security\trust.keystore.sample to <foglight_home>\config\security\trust.keystore

2

Import the certificate into the Foglight TrustStore, <foglight_home>\ config\security\trust.keystore (default password: nitrogen), with the following command:

<foglight_home>\jre\bin\keytool -import -file <path_to_cert_file> -alias <alias_of_cert> -keystore <foglight_home>\config\security\trust.keystore -storepass <store_pwd>

FIPS-compliant mode

In FIPS-compliant mode, it is required to use FIPS-validated KeyStore type BCFKS.

Import the certificate into the Foglight default TrustStore in FIPS-compliant mode, <foglight_home>\config\security\trust.fips.keystore (default password: nitrogen) with the following command:

<foglight_home>\jre\bin\keytool -import -trustcacerts -alias <alias_of_cert> - file <path_to_cert_file> -keystore <foglight_home>\config\security\trust.fips.keystore -deststoretype BCFKS - provider org.bouncycastle.jcajce.provider.BouncyCastleFipsProvider -providerpath <foglight_home>\server\core\bc-fips.jar -storepass <store_pwd>

Setting up an encrypted database connection

The server.config file contains the optional parameter foglight.database.secureconn, which is used as part of the process of setting up an encrypted database connection for a MySQL® or Oracle® database. For Microsoft® SQL Server® database, ssl is enabled by default.

In Foglight FIPS-compliant mode, it is required to import the self-signed SQL Server certificates to Foglight TrustStore. For more information, refer to Importing self-signed certificates to Foglight TrustStore .

相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级

© ALL RIGHTS RESERVED. 使用条款隐私 Cookie Preference Center