...
...
...
...
...
...
...
...
...
...
...
...
...
...
| Note |
|---|
Before you begin, Armor recommends that you pre-installation information, including firewall rules. To learn more, see Armor Anywhere Agent 3.0 Pre-Installation. |
...
Step 1: Locate the Armor Anywhere Agent
In the Armor Management Portal (AMP), in the left-side navigation, click Infrastructure.
Click Virtual Machines.
Hover over the plus ( + ) icon, and then click the Anywhere Agent icon.
If you don't have any agents listed, then click Add an Armor Agent.
Copy your license key. You will need this information in a later step.
Select your operating system (Linux or Windows).
...
Armor recommends installing the Armor Agent with all Security Services. Documentation on installing the Armor Agent only can be found below.
Step 2: Install the Armor Anywhere Agent
Run the command to install the Armor Anywhere Agent with all Security Services.
| Code Block | ||
|---|---|---|
| ||
sudo curl -sSL https://agent.armor.com/latest/armor_agent.sh | sudo bash /dev/stdin -l AAAA1-AAAA1-AAAA1-AAAA1-AAAA1 -r (region) -f |
| Tip |
|---|
You must replace
Currently, all users will leverage the region: |
...
| Note |
|---|
To access troubleshooting documentation for each Armor Security Service, click on the name of the service in the sub-agent health table. |
...
| Anchor | ||||
|---|---|---|---|---|
|
If you need to install the Armor Agent and Armor Security Services one by one, Armor recommends following the specific order outlined below to utilize the benefits of Recommendation Scans.
Recommendation Scans provide a good starting point for establishing a list of rules that you should implement for FIM and IPS. During a recommendation scan, the Armor Agent scans the operating system for installed applications, the Windows registry, open ports, and more. Recommendation Scans provide the rules and policies that will be auto applied by FIM and IPS, so auto apply features for those services must be turned on. Similarly, there is nothing for FIM and IPS to auto apply unless a Recommendation Scan is run.
If you do not want to run Recommendation Scans, please review the full list of CLI commands available here.
Agent Only Step 1: Run the command to install the Armor Anywhere agent only.
| Code Block | |
|---|---|
| Midnight | sudo curl -sSL https://agent.armor.com/latest/armor_agent.sh | sudo bash /dev/stdin -l AAAA1-AAAA1-AAAA1-AAAA1-AAAA1 -r (region) |
| Tip |
|---|
You must replace
Currently, all users will leverage the region: |
...
In rare cases, the usual calls to retrieve this identifier fail to return this UUID, which will cause the Armor Agent to fail registration.
Turn on Armor Agent debug logging and try to register again. If the registration fails again, search the log for "Unable to get BiosUUID"
| Code Block | theme | Midnight
|---|
time="2020-07-24T03:06:48-05:00" level=debug msg="Unable to get BiosUUID" time="2020-07-24T03:06:50-05:00" level=debug msg="Unable to get BiosUUID" |
In Linux, try this command to try to retrieve the UUID:
| Code Block | theme | Midnight
|---|
sudo dmidecode |grep UUID |
Any of the above commands should return a 35byte string formatted like:
| Code Block | theme | Midnight
|---|
4C4C7544-0057-4C30-8046-C2C04F4C9132 |
The BIOS UUID is required by the Armor Agent, to ensure uniqueness of the device. The BIOS UUID must be readable by the operating system. If the BIOS UUID is not available to the operating system please check with your provider.