RapidIdentity Product Guides - 2019 Rolling Release

Appliance Installation

The steps below are for deploying a RapidIdentity Appliance on physical hardware or in a virtual machine environment that meets the requirements outlined in System Requirements. For assistance installing in a Cloud environment, please contact Identity Automation Support.System Requirements

This sequence describes the necessary steps to configure the network, database, and LDAP settings.

The following steps assume RapidIdentity is installed on a virtual machine.

  • Prior to installing RapidIdentity Appliance, access the Installation Files and download the latest ISO image. If installing on physical hardware, use the optical image to create a bootable CD/DVD or USB drive.

  • Create a virtual machine as defined in System Requirements.System Requirements

  • Boot from the installation image/media and select the desired release option. Once the installation cd is booted, select Latest Rolling Release , Latest Long Term Support (LTS) Release, or Select Release Version as desired. If the network is configured with DHCP that will allow the appliance to self-configure and reach the internet, press Enter and then type Yes at the prompt. If you will have to manually configure the network, press Tab and add asknetwork to the boot command line. If the network requires an http proxy to access the internet, also add proxy=<proxyurl>.

    Note

    For more information on Rolling Releases and Long-Term Support (LTS) Releases, click here.

    Install_Rolling_Release__-_1.png

    The virtual machine on which the RapidIdentity appliance is installed must be able to access the Internet.

    If DHCP is not available on the VLAN, after pressing the Tab key, add asknetwork to boot from the command line. If a proxy is necessary, the proxy URL can then be added by keying proxy=<proxyurl> as shown below.  

    RapidIdentity_Install_2.png

    If using the asknetwork option to configure networking, follow these 2 steps:

    Select manual configuration for IPv4 and/or IPv6. Click OK

    Configure_TCP-IP.png

    Enter the IP addresses, gateway, and name server for the organization. Click OK

    Manual_TCP.png

  • The installation process requires a few minutes and a progress bar shows the percent completed. When the process is 100% complete, allow the operating system a few minutes and let it update. A new screen displays showing log information of files being installed. Allow the process to complete. Once complete, the screen prompts to reboot. Before rebooting, remove the iso from the virtual drive. After removing the iso, select Enter to reboot. 

    Package_Installation.png
    Package_Installation_2.png

    If you chose Select Release Version as a boot option, at this point you will be asked what version of RapidIdentity to install.

    Recent_Version.png
    Package_Install_Complete.png
Appliance CLI Configuration

  1. After the appliance has rebooted, log in with the following credentials:

    localhost login: config

    password: Cust0mer (Use a zero instead of the letter O; note that the password is case-sensitive.)

    Post_Install_Login_1.png

    The RapidIdentity Appliance Configuration Main Menu screen displays. 

    Configuration_Main_Menu.png

  2. Configure and validate each of the Network settings by navigating to the System > Network > Network Settings.  

    Network_Menu.png

  3. Configure the network settings to be specific for the environment by selecting each of the four options. Ensure the Hostname is configured. Use the arrow key to navigate to Hostname and click Enter to edit the file. The Hosts File option allows a name to be attached to the IP address. More information on configuring networking with network scripts is available here.

    GNU_Network_Menu.png

  4. After the Network settings are configured, exit the window and press the Escape key to return to the Main Menu.

  5. If this appliance is to be in a production environment, navigate to System > Security and select Change Password. This will change the password necessary to login as config and access the CLI menu, so ensure this password in a secure location so that it is not lost or forgotten.

    CLI_Change_Password.png

  6. If using VMWare, navigate to Tools > VMWare Open VM Tools and select to install. This menu option will only show up if you are using VMWare to configure VMs.

    Tools_-_VMWare.png

  7. If a new database is necessary for this installation, select Local Database and choose either PostgreSQL or MySQL.

    Local_Database.png

  8. Regardless of database type chosen, drill down through Server Status and choose Install MySQL Server or Install PostgreSQL Server (depending on the choice made in the previous step) and then Yes to confirm. When the installation is complete, an info window displays. Click OK to view the Local MySQL server status window.  

    Server_Status.png

    RapidIdentity is configured by default to look for a local PostgreSQL database on the default port, using the default username and password. If PostgreSQL is selected, the database configuration is sufficient. If MySQL is selected, navigate to the Main Menu using the Escape key. Then, navigate to RapidIdentity > Main Database > Type and use down arrow and space bar to select MySQL. Click the Enter key. MySQL is now selected as the RapidIdentity Main Database. Once RapidIdentity is restarted the change will be active. 

    Password Management

    If this is intended to be a production environment, it is strongly recommended to change the database username and password fields. This will need to be done later through the UI or with the assistance of RapidIdentity Support.

    Main_Database_Menu.png

    A separate audit database can be configured, but by default the main database is used.

  9. After the database is configured, press the Escape key and navigate to the RapidIdentity screen. The system will need to be restarted at this point if any of the database connection settings were changed from the defaults. Do this by drilling down into RapidIdentity > Status and choosing Restart.

    Server_Status_2.png

  10. Press Enter twice to start RapidIdentity and then press OK to confirm.

At this stage, the CLI configuration for RapidIdentity is complete unless the environment does not have an existing directory service. If that is the case, follow these steps to install OpenLDAP. The installation of Microsoft Active Directory is beyond the scope of this guide.

Install OpenLDAP

  1. Navigate to the Main Menu and select Local LDAP Server

    Local_LDAP_Server.png

  2. Select OpenLDAP | Server Status: not installed | Install OpenLDAP.  

    Install_Open_LDAP.png

  3. Type Y to install OpenLDAP, allow the installation to complete, and follow any instructions on screen. When the installation is complete, note the Root Admin DN and Password. Be sure to change the password as needed.

  4. When this sequence is complete, exit the RapidIdentity Appliance Configuration Menu.

Repeat this sequence for each appliance. After the appliances are installed, extend the schema and install the password filter if using Active Directory.

Otherwise, skip to the Initial Appliance Configuration sequence.

In this section: