HP-UX Host Intrusion Detection System Version 4.7 Release Notes HP-UX 11i v3 (766145-001, March 2014)
Table 5 Reboot Matrix (continued)
Update to Version 4.7Update from:
No RebootVersion 4.1
No rebootVersion 4.0
No RebootVersion 3.1
Postinstallation
• The HP-UX startup in progress list should display OK for the Starting HIDS agent entry.
• When an agent system reboots after a cold installation, the HP-UX startup in progress list
should display N/A for the Starting HIDS agent entry. That is, system boot will not automatically
start idsagent until after the secure communication keys and certificates have been installed
on the agent system. See “Configuration” (page 21).
• On each agent system, after the system has rebooted, run the IDS_checkInstall script.
# /opt/ids/bin/IDS_checkInstall
This script checks that the Intrusion Detection Data Source (idds) kernel driver is configured
and enabled. It also checks that all the necessary and superseding patches (or patches that
supersede them) have been installed although it does not verify if a patch has a superseding
patch.
Configuration
After you have installed or updated your HP-UX HIDS software, you need to complete the
configuration with the required and optional steps that are described in Chapter 2 of Host Intrusion
Detection System Administrator Guide, Software Release 4.7. The following is an annotated list
of some of the sections in chapter 2 of that guide.
Required
Before you can run HP-UX HIDS, you must complete the configuration step described in the section
"Setting Up the HP-UX HIDS Secure Communications” in the Host Intrusion Detection System
Administrator Guide.
You may need to create keys and certificates to ensure secure communication between the
administration system and the agent systems.
If you are upgrading from HIDS v 2.x or v3.x, your old keys and certificates are preserved.
Optional
You might also need to complete one or more of the following steps:
• Configuring a multihomed agent system
If you have an agent system with more than one IP address, you may have to specify the
correct address to the agent and administration software.
• Configuring a multihomed administration system
If you have an administration system with more than one IP address, you may have to specify
the correct address to the agent and administration software.
• Enabling over 23 agents (Thread Limits)
With more than 23 agent systems active at one time, you must increase the thread limit.
Postinstallation 21