SCP Installation and Configuration on Linux
This section describes how to install and configure SCP on Linux, for uploading offline usage data in on-premises isolated network. The SCP installation and configuration prerequisites are given in the section Prerequisites for SCP Installation and Configuration.
On-premises Mode
For uploading usage data for the on-premises mode, SCP is installed as a service on the proxy machine. The SCP service and RMS License Manager need not be installed on the same machine.
The topics included in this section are:
>Place the CA Certificate Bundle
•By Editing the SCP Configuration File
•By Using the SCP Command-Line Options
>(Optional) Specify the Location of the SCP Configuration File
Unzip the SCL Add-on Package
Unzip the SCL Add-on package by using the password received from Thales in emails, and extract the Linux-specific package.
Place the CA Certificate Bundle
Copy cacert.pem file at the location where the SCP configuration file is placed, which by default is /etc/sentinel-scp/.
You can download cacert.pem from http://curl.haxx.se/ca/cacert.pem.
Configure SCP
There are certain settings that you need to configure before installing and running SCP. There are two ways of configuring SCP on Linux:
>By editing the SCP configuration file
>By using the SCP command-line options
By Editing the SCP Configuration File
Open the SCP configuration file and modify the following elements:
|
Element |
Description |
|---|---|
|
[Mandatory] YPSaddress |
Specify the URL of Directory Services which is received in emails from Thales. For example: https://demo-yps.com/YPServer |
| [Mandatory] UsageUploadMode |
Specify the mode to upload the usage data. For on-premises deployment mode, it should be set to "offline_uploader". NOTE After modifying this element in SCP configuration file, execute |
| (Optional) LoggingSettings |
Denote the logging settings. By default, the log files are created at /usr/sbin/. You can specify a different location by editing the SCP configuration file, as explained in the section Configure Logging. |
| (Optional) ProxyMode |
Specify proxy connection mode. In Linux, you can define proxy settings using the configuration file or using system settings. |
Configuring System Settings for Proxy
These are defined using the environment variables: https_proxy and http_proxy.
NOTE The configuration file has precedence over system settings.
1.First, https_proxy variable value is checked. If it is specified, the host value is used to establish the connection. Example:
export https_proxy=http://12.12.12.12:8080
2.If https_proxy variable is not specified, the application checks for http_proxy and will repeat the process similar to https_proxy.Example:
export http_proxy=http://12.12.12.12:8080
3.If both https_proxy and http_proxy are not specified, the auto proxy is used to establish the connection. The application will search for the wpad server entries in both DHCP and DNS. If found, the application will download the wpad.dat file, retrieve the proxy server IP address, and use the same to connect to the cloud.
4.If the connection is not established using auto proxy (that is, wpad is not defined), the application will run as if no proxy is set.
NOTE Both https_proxy and http_proxy are case-sensitive. The https_proxy variable takes precedence over http_proxy.
On Linux, auto proxy with PAC is supported by using the SCP configuration file. However, auto proxy with PAC using system settings is not supported.
Install SCP
NOTE The root permissions are required to perform install/uninstall operations.
NOTE The commands described in this section are for 32-bit applications. For 64-bit applications, change the name of the script to install64.sh.
1.Open the command prompt and go to the directory <extractedfolder>/redistributable/SentinelCloudPlugin.
2.Grant the execute permission on the installation script by using the following command:
chmod +x install.sh
3.Execute the installation script by using the command:
sh install.sh
This installs the SCP service on Linux. Next, you need to start SCP as covered in the section Post-installation Steps.
(Optional) Specify the Location of the SCP Configuration File
The default installation location of the SCP configuration file is /etc/sentinel-scp/.
If you want to keep the SCP configuration file at a different location, specify the configuration file path in the environment variable, SCP_CONFIG_FILEPATH_[vendor_alias]. SCP will then look for the configuration file at the path specified.
Post-installation Steps
After installing the SCP service, you can use the following commands to start and manage SCP.
The name of the SCP service is:
>For 32-bit applications: sntlcloudps_[vendor_alias]
>For 64-bit applications: sntlcloudps64_[vendor_alias]
NOTE The commands shown below are for 32-bit applications. For 64-bit applications, change the name of the SCP service to sntlcloudps64_[vendor_alias].
Configure SCP Start Mode
Start
/etc/init.d/sntlcloudps_[vendor_alias] start -mode "offline_uploader"
NOTE The above command is applicable only when
OfflineUsageSetting is already uncommented in the SCP configuration file.
Restart
/etc/init.d/sntlcloudps_[vendor_alias] restart -mode "offline_uploader"
Status:
/etc/init.d/sntlcloudps_[vendor_alias] status
Stop:
/etc/init.d/sntlcloudps_[vendor_alias] stop
Refer to the section SCP Command-line Options for details.
Uninstallation
To uninstall the SCP daemon, go to the path where SCP deliverables are placed and execute the following commands:
NOTE The commands shown below are for 32-bit applications. For 64-bit applications, change the name of the script to uninstall64.sh.
chmod +x uninstall.sh sh uninstall.sh