Verify Privilege Server Suite Unix/Linux Quick Start
This Quick Start Guide provides a brief summary of the steps for installing and getting started with Verify Privilege Server Suite software. For more information about any step, see the appropriate sections in the Planning and Deployment Guide or Administrator's Guide for Linux and UNIX.
-
Run the setup program for Authentication & Privilege components on a Windows administrator's workstation.
The setup program simply copies the necessary files to the local Windows computer, so there are no special permissions required to run the setup program other than permission to install files. Follow the prompts displayed to select which components to install.
-
Open Access Manager to start the Setup Wizard and create an organizational structure and the containers for Licenses and Zones.
In the Setup Wizard, you can accept the default organizational structure or create a custom organizational unit for Verify Privilege Server Suite objects, add license keys, and configure a few basic permissions and setup options.
-
In Access Manager, create a new zone with the default options. For example, create a new zone named Demo.
-
In Access Manager, add Active Directory users to the new zone.
- Select the new Demo zone.
- Right-click, select Add User to Select User Type, then select Active Directory users to search for and select existing Active Directory users.
- Select Define user UNIX profile and deselect assign roles.
- Accept the defaults for all fields.
-
Create a child zone.
- Select the Demo zone.
- Right-click, then select Create Child Zone.
- Type a name for the zone, for example, Child1 and an optional description, then click Next and Finish to create the new child zone.
-
Assign a role for the users you added to the Demo zone.
User profiles are inherited by child zones, so the users you added to the Demo zone automatically have a profile in Child1. To log on to a computer, users must have a profile and a role assignment. You can assign the default UNIX Login role to enable users to log on.
- Expand Child Zones, Child1, and Authorization.
- Select Role Assignments, right-click, then click Assign Role.
- Select the UNIX Login role from the results and click OK.
- Click Add AD Account.
- Search for and select one of the Active Directory users you added to the Demo zone, then click OK.
-
On the Linux or UNIX computer, log on as root. if you are installing on a computer running Linux or UNIX.
-
Run the install.sh command.
./install.sh
The installation script checks whether the computer meets all system requirements, such as a supported operating system, available disk space, DNS and network connectivity, and your Active Directory configuration.
If the computer meets all requirements, you can choose to install all Verify Privilege Server Suite, or a customized set of services. You can also choose whether to automatically join the domain and restart the local computer to complete the installation. After you make your selections, the script installs a platform-specific Verify Privilege Server Suite Agent and any other packages.
Alternatively, you can install using a native package manager or another software distribution utility. The command line syntax and the agent package name will depend on the operating system on which you are installing.
To manually join the domain after installation, use the adjoin command. In either case, you must specify the zone to join. For example, if you created the Child1 zone, you might run a command similar to this:
adjoin myDomain -z Child1
In Step 4, you created a profile for an Active Directory user in the Demo zone. In Step 6, you assigned the user the UNIX Login role. You can now verify authentication by logging off as root and logging on to the computer you just joined to the Active Directory domain with the Active Directory user account and password you assigned the UNIX Login role.
That’s it!
From here, if you want to explore further, you can:
- Create and assign additional roles to users
- Create new child zones
- Import existing UNIX users and groups
- Override user attributes in child zones
- Set group policies for UNIX computers and users
- Run reports
- Import and manage NIS maps in Active Directory
For more information about any topic, see the Verify Privilege Server Suite documentation set.