Installation checklist

As a preview of what’s involved in the installation process, the following steps summarize what you need to do and the information you should have on hand for a successful deployment of Server Suite.

To prepare for installation:

1. Analyze your network topology to determine where to install components and services and any hardware or software updates required.

   For a review of the decisions to make and recommended hardware configuration, see Planning a deployment.

2. Create a list of the computers where you plan to install different components.

   For example, list the computers where you plan to install agents, collectors, audit store databases, consoles, and group policy extensions.

   If you are installing the audit and monitoring service infrastructure, you should use a dedicated computer for each component, so that the audit collector service, audit store database, and audit management database are on separate computers with high-speed and reliable network connectivity.

   For a review of the requirements associated with each component, see Planning a deployment.

3. Determine the scope of the audit installation.

   The most common deployment scenario is a single installation for an Active Directory site, but you can have more than one installation, if needed, and use subnets to limit the scope of the installation. If you are only implementing access management, you can skip this step, Step 4, and Step 7 through Step 10.

   For a review of what constitutes an installation, see Deploying the audit and monitoring service infrastructure and Decide on the scope of the installation.

4. Create Active Directory security groups for managing the permissions required for the audit and monitoring service infrastructure.

   For a review of the Active Directory security groups to create, see Create security groups for auditing. If you are only implementing identity and privilege management, you can skip this step.

5. Install Access Manager on at least one computer that can connect to the Active Directory forest.

6. Open Access Manager and add containers for licenses and zones to the Active Directory forest.

7. Install Microsoft SQL Server.

   If you are not a database administrator in your organization, you should submit a service request or contact an administrator who has permission to create databases for assistance. For more information about preparing a SQL Server database engine for auditing, see Installing and configuring Microsoft SQL Server for auditing. If you are only implementing access management, you can skip this step.

8. Install Audit Manager and Audit Analyzer.

   For more information about installing these products, see Installing the Audit Manager and Audit Analyzer consoles. If you are only implementing identity and privilege management, you can skip this step.

9. Open Audit Manager to create a new installation for auditing.

   For more information about using Audit Manager to create a new installation and audit store, see Creating a new installation. If you are only implementing identity and privilege management, you can skip this step.

10. Install the audit collector service on at least two Windows computers.

    You can add collectors to the installation at any time. For more information about installing and configuring collectors, see Installing and configuring Centrify audit collectors. If you are only implementing identity and privilege management, you can skip this step.

11. Install a Centrify Agent for Windows on each Windows computer that you want to manage or audit.

    For more information about installing and configuring Centrify Agent for Windows, see Installing the Centrify Agent for Windows.

12. Install additional consoles on any Windows computer that you want to use for identity and privilege management, or audit and monitoring service.

After the initial deployment, you can add new agents, collectors, audit stores, and audit store databases to the audit installation or create additional installations at any time.