SCP Installation and Configuration on Linux

This section describes how to install and configure SCP on Linux, for uploading offline usage data in on-premises isolated network. The SCP installation and configuration prerequisites are given in the section Prerequisites for SCP Installation and Configuration.

On-premises Mode

For uploading usage data for the on-premises mode, SCP is installed as a service on the proxy machine. The SCP service and RMS License Manager need not be installed on the same machine. 

The topics included in this section are:

>Unzip the SCL Add-on Package

>Place the CA Certificate Bundle

>Configure SCP

By Editing the SCP Configuration File

By Using the SCP Command-Line Options

>Install SCP

>(Optional) Specify the Location of the SCP Configuration File

>Post-installation Steps

>Uninstallation

Unzip the SCL Add-on Package

Unzip the SCL Add-on package by using the password received from Thales in emails, and extract the Linux-specific package.

Place the CA Certificate Bundle

Copy cacert.pem file at the location where the SCP configuration file is placed, which by default is /etc/sentinel-scp/.

You can download cacert.pem from http://curl.haxx.se/ca/cacert.pem

Configure SCP

There are certain settings that you need to configure before installing and running SCP. There are two ways of configuring SCP on Linux:

>By editing the SCP configuration file

>By using the SCP command-line options

By Editing the SCP Configuration File

Open the SCP configuration file and modify the following elements:

Element

Description

[Mandatory] YPSaddress

Specify the URL of Directory Services which is received in emails from Thales. For example:

https://demo-yps.com/YPServer
[Mandatory] UsageUploadMode

Specify the mode to upload the usage data. For on-premises deployment mode, it should be set to "offline_uploader".

NOTE   After modifying this element in SCP configuration file, execute /etc/init.d/sntlcloudps_[vendor_alias] start command from the path where the SCP service is placed.

(Optional) LoggingSettings

Denote the logging settings. By default, the log files are created at /usr/sbin/.

You can specify a different location by editing the SCP configuration file, as explained in the section Configure Logging.

(Optional) ProxyMode

Specify proxy connection mode. In Linux, you can define proxy settings using the configuration file or using system settings.

Configuring System Settings for Proxy

These are defined using the environment variables: https_proxy and http_proxy.

NOTE   The configuration file has precedence over system settings.

1.First, https_proxy variable value is checked. If it is specified, the host value is used to establish the connection. Example:

export https_proxy=http://12.12.12.12:8080

2.If https_proxy variable is not specified, the application checks for http_proxy and will repeat the process similar to https_proxy.Example:

export http_proxy=http://12.12.12.12:8080

3.If both https_proxy and http_proxy are not specified, the auto proxy is used to establish the connection. The application will search for the wpad server entries in both DHCP and DNS. If found, the application will download the wpad.dat file, retrieve the proxy server IP address, and use the same to connect to the cloud.

4.If the connection is not established using auto proxy (that is, wpad is not defined), the application will run as if no proxy is set.

NOTE   Both https_proxy and http_proxy are case-sensitive. The https_proxy variable takes precedence over http_proxy.

Limitation

On Linux, auto proxy with PAC is supported by using the SCP configuration file. However, auto proxy with PAC using system settings is not supported.

Install SCP

NOTE   The root permissions are required to perform install/uninstall operations.

NOTE   The commands described in this section are for 32-bit applications. For 64-bit applications, change the name of the script to install64.sh.

1.Open the command prompt and go to the directory <extractedfolder>/redistributable/SentinelCloudPlugin.

2.Grant the execute permission on the installation script by using the following command:

chmod +x install.sh

3.Execute the installation script by using the command:

sh install.sh

This installs the SCP service on Linux. Next, you need to start SCP as covered in the section Post-installation Steps.

(Optional) Specify the Location of the SCP Configuration File

The default installation location of the SCP configuration file is /etc/sentinel-scp/.

If you want to keep the SCP configuration file at a different location, specify the configuration file path in the environment variable, SCP_CONFIG_FILEPATH_[vendor_alias]. SCP will then look for the configuration file at the path specified.

Post-installation Steps

After installing the SCP service, you can use the following commands to start and manage SCP.

The name of the SCP service is:

>For 32-bit applications: sntlcloudps_[vendor_alias]

>For 64-bit applications: sntlcloudps64_[vendor_alias]

NOTE   The commands shown below are for 32-bit applications. For 64-bit applications, change the name of the SCP service to sntlcloudps64_[vendor_alias].

Configure SCP Start Mode

Start

/etc/init.d/sntlcloudps_[vendor_alias] start -mode "offline_uploader" 

NOTE   The above command is applicable only when OfflineUsageSetting is already uncommented in the SCP configuration file.

Restart

/etc/init.d/sntlcloudps_[vendor_alias] restart -mode "offline_uploader" 

Status:

/etc/init.d/sntlcloudps_[vendor_alias] status

Stop:

/etc/init.d/sntlcloudps_[vendor_alias] stop

Refer to the section SCP Command-line Options for details.

Uninstallation

To uninstall the SCP daemon, go to the path where SCP deliverables are placed and execute the following commands:

NOTE   The commands shown below are for 32-bit applications. For 64-bit applications, change the name of the script to uninstall64.sh.

chmod +x uninstall.sh
sh uninstall.sh