novdocx (ENU) 10 August 2006Novell Audit 2.0 Installation GuideNovellAuditwww.novell.com2.0INSTALLATION GUIDEJuly 14, 2006novdocx (ENU) 10 August 2006Legal NoticesNovell, Inc. makes no representations or warranties with respect to the contents or use of this documentation, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. Further, Novell, Inc. reserves the right to revise this publication and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes.Further, Novell, Inc. makes no representations or warranties with respect to any software, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. Further, Novell, Inc. reserves the right to make changes to any and all parts of Novell software, at any time, without any obligation to notify any person or entity of such changes.Any products or technical information provided under this Agreement may be subject to U.S. export controls and the trade laws of other countries. You agree to comply with all export control regulations and to obtain any required licenses or classification to export, re-export or import deliverables. You agree not to export or re-export to entities on the current U.S. export exclusion lists or to any embargoed or terrorist countries as specified in the U.S. export laws. You agree to not ...
BorderManager is a registered trademark of Novell, Inc., in the United States and other countries. eDirectory is a trademark of Novell, Inc. NCP is a trademark of Novell, Inc. NetMail is a registered trademark of Novell, Inc., in the United States and other countries. NetWare is a registered trademark of Novell, inc., in the United States and other countries. NLM is a trademark of Novell Inc. Novell is a registered trademark of Novell, Inc., in the United States and other countries. Novell Application Launcher is a trademark of Novell, Inc. Nsure Audit is a trademark of Novell, Inc. SUSE is a registered trademark of Novell, Inc., in the United States and other countries.
Third-Party Materials
All third-party trademarks are the property of their respective owners.
Welcome to Novell®Audit. This guide provides the information required to install Novell Audit. Audience on page 7 Feedback on page 7 Documentation Updates on page 7 Additional Documentation on page 7 Documentation Conventions on page 7 Audience This guide is intended for network administrators. Feedback We want to hear your comments and suggestions about this manual. Please use the Feedback option at the bottom of each page of the Novell Audit online documentation. Documentation Updates For the most recent version of theNovell Audit 2.0 Installation Guide, see theNovell Documentation Web site, (http://www.novell.com/documentation/novellaudit20/index.html). Additional Documentation For information on managing Novell Audit, see theNovell Audit 2.0 Administration Guide. Documentation Conventions In this documentation, a greater-than symbol (>) is used to separate actions within a step and items within a cross-reference path. A trademark symbol (®TM, etc.) denotes a Novell trademark. An asterisk (*) denotes a third-party , trademark.When a single pathname can be written with a backslash for some platforms or a forward slash for other platforms, the pathname is presented with a backslash. Users of platforms that require a forward slash, such as UNIX*, should use forward slashes as required by your software.
About This Guide
7
8
Novell Audit 2.0 Installation Guide
nItslaaltionOverview
Installing and configuring Novell Audit is an eight-step process: 1Meet the Novell Audit prerequisites and requirements. For more information, seeSystem Requirements and Prerequisites on page 11. 2as the data store. For more information,Configure MySQL* or another supported application seeConfiguring the Data Store on page 15 3Install or update the Secure Logging Server component of Novell Audit on a single server in your tree. Depending on whether this is a first-time install or an upgrade, see the following: Installing and Activating Novell Audit on page 23 Upgrading Novell Audit on page 21 If you want to configure multiple Secure Logging Server in the tree, seeSection 7.2, Configuring Multiple Secure Logging Servers, on page 40. 4Install or update the Novell Audit iManager plug-in on your iManager server. For more information, seeInstalling the Novell Audit iManager Plug-In on page 37. 5Use the Novell Audit iManager plug-in to configure your Secure Logging Server. This includes creating the Channel object required to connect to the data store you created inStep 2as well as any other logging channels or notifications you want to activate on your logging system. For more information, seeConfiguring the Secure Logging Server on page 39. 6Install and configure the Platform Agent on every server that you want to report events. You must also install the Instrumentation for each logging application that you want to report events. For example, if you have NetWare®and eDirectoryTMrunning on a server, you must install the Platform Agent, the NetWare Instrumentation, and the eDirectory Instrumentation for that server to report NetWare and eDirectory events. For more information, seeChapter 8, Configuring the Platform Agent and Logging Instrumentations, on page 43. 7you are running NetWare or eDirectory, select which events you want to report.(Optional) If For more information, seeSelecting Logged Events on page 45. 8Test your installation to ensure that your Novell Audit environment is set up and functioning correctly. For more information, seeVerifying the Installation on page 49.
1
Installation Overview
9
10
Novell Audit 2.0 Installation Guide
SPyrsetreemquRieisqtueisermentsand
This section contains Novell®Audit prerequisites and requirements. Section 2.1, System Requirements, on page 11 Section 2.2, Prerequisites, on page 13 After you have met the requirements in this section, proceed toConfiguring the Data Store on page 15to configure MySQL or another supported application as the data store. 2.1 System Requirements The following sections outline the system requirements for each Novell Audit component. Section 2.1.1, Secure Logging Server, on page 11 Section 2.1.2, Platform Agent, on page 12 Section 2.1.3, eDirectory Instrumentation, on page 12 Section 2.1.4, NetWare Instrumentation, on page 13 2.1.1 Secure Logging Server The Secure Logging Server is the server component in the Novell auditing system. It is installed on the server where you want to manage the flow of information to and from the auditing system. The server where you install the Secure Logging Server must meet the following requirements: Requirement Description Operating SystemOpen Enterprise Server 1.0 SP1 or later (NetWare®and Linux*) NetWare 6.5 Windows* 2003 Server Windows 2000 Server SP4 or later SUSE®(32 bit and 64 bit, althoughLinux Enterprise Server 9 and 10 Novell Audit only runs in 32-bit mode) Red Hat* Linux 3 and 4 AS and ES (32 bit and 64 bit, although Novell Audit only runs in 32-bit mode) Solaris* 8, 9, and 10 IMPORTANT:Solaris 8 requires GCC 3.3 and zlib 1.2.3 to function as a Secure Logging Server. Without GCC3.3, applications fail to authenticate to the logging server. The resulting error in nproduct.logis,Failed SSL Handshake. Novell eDirectory version 8.7 or 8.8 must be installed on the server where the Secure Logging Server is located.