Audit & Monitoring Service deployment checklist

The following checklist provides an overview of each of the main steps that are involved when you deploy Centrify Audit & Monitoring Service. For any tasks related to Centrify software, there are links to more information and procedures.

For authentication and privilege elevation deployment steps, please see Authentication and Privilege Elevation services deployment checklist.

Step

Auditing and Monitoring installation step

Notes

Link to Details

 

Preparation and Planning

 

 

1

Analyze your network topology to determine where to install components and services and any hardware or software updates required.

 

Overview of the auditing infrastructure

2

Create a list of the computers where you plan to install different components.

 

Planning an audit installation

3

Determine the scope of the audit installation.

 

 

Deciding on the scope of the installation

4

Determine the size of your database storage.

 

Sizing recommendations for audit installations

 

Pre-requisite tasks

 

 

5

Create Active Directory security groups for managing the permissions required for the auditing and monitoring service infrastructure.

 

Creating security groups for auditing

6

Install Microsoft SQL Server and create a database instance for use with the audit and monitoring service.

 

Installing and configuring Microsoft SQL Server for auditing

7

Prepare SQL Server for auditing.

This includes creating a backend service account that will run stored procedures.

Configuring SQL Server to prepare for auditing

8

Create a setup user account and give it database administrator (DBA) privileges.

You'll use this account and password to run the installers.

Creating a setup user account for installation

 

Install tasks

 

 

9

Install the Audit Manager and Audit Analyzer consoles.

 

Installing the Audit Manager and Audit Analyzer consoles

10

In Audit Manager, create a new installation for auditing.

 

Creating a new installation

 

11

In Audit Manager, set up the Audit Stores and Audit Store databases.

 

 

Creating the first audit store, Creating the first audit store database

12

Install and configure the audit collector service on at least two Windows computers.

 

Installing the audit collectors

13

Install a Centrify agent for Windows on each Windows computer that you want to audit.

 

Installing the Centrify Agent for Windows

14

Install a Centrify agent for UNIX on each UNIX or Linux computer that you want to audit.

 

Installing an Centrify Agent for *NIX

15

Install and configure the Audit Management Server component on a Windows server computer.

For this task, run the installer using the setup user account that you created in step 8.

Installing the Audit Management Server and Configuring the Audit Management Server

16

Configure and enable auditing on the Windows computers, if they're not already enabled.

 

Enabling or disabling auditing on Windows computers

17

Configure and enable auditing on the UNIX or Linux computers.

 

Enabling or disabling auditing on Linux and UNIX computers

18

Install additional Audit Manager or Audit Analyzer consoles on any Windows computer that you want to use for the auditing and monitoring service.

 

Installing additional Audit Manager or Audit Analyzer consoles

 

Verification tasks

 

 

19

Verify that data is being collected and agents are working correctly:

  • Run dainfo on audited UNIX computers.
  • Use Audit Analyzer to verify that data is being collected.

 

Checking the status of the UNIX agent