Versions Compared

Old Version 7

changes.mady.by.user Omry Koschitzky

Saved on

compared with

New Version 8

changes.mady.by.user Omry Koschitzky

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Verify that Java is installed on the remote machine:
    1. Log in to the remote machine using the same user that is used by XpoLog to access the remote machine.
    2. Run the command java -version (the LogAway agent requires Java version 1.4+ to run)
  2. Download XpoLog’s LogAway package compatible to the Java version installed on the remote machine:
    Download LogAway for Java 1.4+: xpologAgent.tar.gzXpoLog LogAway
  3. Copy XpoLog’s LogAway package to the remote machine (place it in the home directory of the user that is used by XpoLog to access the remote machine)
  4. Unpack XpoLog’s LogAway package by running the following commands:
    1. gunzip xpologAgent.tar.gz
    2. tar xvf xpologAgent.tar
    3. Verify that a folder named xpologAgent was created and contains several files
  5. Verify that XpoLog’s LogAway agent can be executed:
    1. Enter the xpologAgent folder
    2. Run the command sh runAgent.sh –v
    3. Verify that information regarding the agent is printed to the screen
  6. Verify on the remote server that TCP port forwarding is enabled:
    1. View the file /etc/ssh/sshd_config
    2. The parameter 'AllowTcpForwarding' specifies whether TCP forwarding is permitted (the default is ''yes''). Note that disabling TCP forwarding does not improve security unless users are also denied shell access, as they can always install their own forwarders. In case 'AllowTcpForwarding' is set to "no" change it to "yes" and restart the SSH service.
  7. Go to XpoLog>Settings>General, and under the 'Connection Policies' configure the following:
    1. LogAway Agent forwarding port -  a free port on the remote machine to use (try "netstat" to list ports in use). LogAway uses the port locally in order to use SSH port forwarding (for example: 5555). It is not recommended to use ports 0-1023, as these are usually system processes ports.
    2. LogAway Agent forwarding timeout - the allowed period of LogAway Agent inactivity before it's connection is terminated (default 1 minute)
  8. In order to verify that the agent can be used by the XpoLog server, add a log over SSH on this machine using direct access mode and check that everything works as expected.
    Open XpoLog Support Portal > Activity Information and under SSH connections tab verify that the connection mode is Agent (instead of the default: Less).