Manualshelf

HP-UX Host Intrusion Detection System Version 4.2 Administration Guide

ManualsBrandsHP ManualsSoftwareHP-UX Host Intrusion Detection System Software
21222324252627282930
2 Configuring HP-UX HIDS
This chapter describes how to configure HP-UX HIDS System Manager and the Agent software.
For information on installing HIDS, see HP-UX HIDS Release 4.1 Release Notes.
This chapter addresses the following topics:
“Required Configuration Steps” (page 29)
“Optional Configuration Steps” (page 29)
“Setting Up HP-UX HIDS Secure Communications” (page 29)
“Configuring a Multihomed Agent System” (page 35)
“Configuring a Multihomed Administration System” (page 37)
“Configuring a Loopback System” (page 39)
“Configuring Ports” (page 40)
“Enabling Multiple Agents” (page 40)
“Restricting Permissions” (page 42)
Once you have installed or updated HP-UX HIDS software, you must complete the configuration
with the following required and optional steps.
Required Configuration Steps
Before you run HP-UX HIDS, you must set up the secure communication protocol.
You must also create certificates to ensure secure communication between the administration
system and the agent systems.
Optional Configuration Steps
You may also need to complete one or more of the following tasks:
“Configuring a Multihomed Agent System” (page 35)
If you have agent systems with more than one IP address, you may need to specify the
correct address to the agent and the administration software.
“Configuring a Multihomed Administration System” (page 37)
If you have an administration system with more than one IP address, you may need to
specify the correct address to the administration software.
“Configuring a Loopback System” (page 39)
“Configuring Ports” (page 40)
“Working with NIS” (page 40)
“Working with Firewalls” (page 40)
“Enabling Multiple Agents” (page 40)
“Enabling More than 23 Agents (Thread Limits)” (page 40)
If you have many agent systems, you may need to increase the thread limit on the
administration system.
“Enabling More than 20 Inbound Requests” (page 41)
Setting Up HP-UX HIDS Secure Communications
HP-UX HIDS provides a secure communication environment between the System Manager and
the agent processes through the Secure Sockets Layer (SSL) protocol.
To ensure secure communication, both the System Manager process that runs on the
administration system and the HP-UX HIDS agent process that runs on each participating agent
system must have a certificate associated with the agent process. A separate certificate is required
Required Configuration Steps 29