Versions Compared

Version Old Version 34 New Version 35
Changes made by

Catie G.

Catie G.

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Note

Before you begin, Armor recommends that you pre-installation information, including firewall rules. To learn more, see Armor Anywhere Agent 3.0 Pre-Installation.

...

Step 1: Locate the Armor Anywhere Agent

  1. In the Armor Management Portal (AMP), in the left-side navigation, click Infrastructure.

  2. Click Virtual Machines.

  3. Hover over the plus ( + ) icon, and then click the Anywhere Agent icon.

    • If you don't have any agents listed, then click Add an Armor Agent.

  4. Copy your license key. You will need this information in a later step.

  5. Select your operating system (Linux or Windows).

...

Armor recommends installing the Armor Agent with all Security Services. Documentation on installing the Armor Agent only can be found below.

Step 2: Install the Armor Anywhere Agent

...

Note

To access troubleshooting documentation for each Armor Security Service, click on the name of the service in the sub-agent health table.

...

Installing the Armor Anywhere Agent Only

If you need to install the Armor Agent and Armor Security Services one by one, Armor recommends following the specific order outlined below to utilize the benefits of Recommendation Scans.

Recommendation Scans provide a good starting point for establishing a list of rules that you should implement for FIM and IPS. During a recommendation scan, the Armor Agent scans the operating system for installed applications, the Windows registry, open ports, and more. Recommendation Scans provide the rules and policies that will be auto applied by FIM and IPS, so auto apply features for those services must be turned on. Similarly, there is nothing for FIM and IPS to auto apply unless a Recommendation Scan is run.

...

Note

Step 1: Install Trend Sub-Agent:

theme
Code Block
Midnight
/opt/armor/armor trend install

Step 2: Turn On File Integrity Monitoring in "Auto-Apply" Mode(This automatically applies FIM rules identified by Recommendation Scans. You must run a Recommendation Scan to identify the FIM rules that will be auto-applied.)

Code Block
themeMidnight
/opt/armor/armor fim on auto-apply-recommendations=on

Step 3: Turn On Intrusion Prevention Service in "Auto-Apply" Mode(This automatically applies IPS rules identified by Recommendation Scans. You must run a Recommendation Scan to identify the IPS rules that will be auto-applied.)

Option 1: Detect Mode

Midnight
Code Block
theme
/opt/armor/armor ips detect auto-apply-recommendations=on

Option 2: Prevent Mode

theme
Code Block
Midnight
/opt/armor/armor ips prevent auto-apply-recommendations=on


Step 4: Install Malware Protection (Anti-Virus)

Midnight
Code Block
theme
/opt/armor/armor av on

Step 5: Install Vulnerability Scanning*

Midnight
Code Block
theme
/opt/armor/armor vuln install

*Vulnerability Scaning is a standalone service not included in the Trend Subagent

Step 6: Install Logging*

Code Block
themeMidnight
/opt/armor/armor logging install

*Logging is a standalone service not included in the Trend Subagent

Step 7: Run a Recommendation Scan (This runs the initial Recommendation Scan to apply the baseline rules for FIM and IPS. Recommendations cannot be applied unless FIM and IPS are turned on and running in auto-apply mode.)

Midnight
Code Block
theme
/opt/armor/armor trend recommendation-scan


Step 8: Turn On Ongoing Recommendation Scans (This automatically runs Recommendation Scans every 7 days. All FIM and IPS rule changes are automatically applied if you followed Steps 2 and 3.)

Midnight
Code Block
theme
/opt/armor/armor trend ongoing-recommendation-scan on

...

Related Documentation