Skip to content

Deploying and install configuration using VMware vSphere

This section covers.

Deploying the virtual machine

The following steps walk you through deploying the PAM UI Server within a VMware vSphere infrastructure.

  1. Within your existing VMware infrastructure, right-click an inventory object and select Deploy OVF Template.

    Actions menu

  2. The Deploy OVF Template wizard opens. On the Select an OVF template page, specify the location of the OVA template and click NEXT.

    Select OVA template

  3. On the Select a name and folder page, enter the unique name the PAM UI Server will be identified by, select a deployment location and click NEXT.

  4. On the Select a compute resource page, select a resource on which to run the deployed PAM UI Server template and click NEXT.

  5. On the Review details page, verify the OVF template details and click NEXT.

  6. On the License agreements page, read the Osirium end-user license agreement. Accept and click NEXT.

  7. On the Select storage page, define where and how to store the PAM UI Server files that will be deployed through the OVA template and click NEXT.

  8. On the Select networks page, select a network the PAM UI Server will be accessible from and click NEXT.

  9. On the Ready to complete page, review the settings selected and click FINISH. Wait while the server is created.

    Warning

    The ISO file that will be automatically mounted during installation must remain attached to the virtual machine even after the installation has been completed.

    The file contains the system OS, and the PAM UI Server will break if it is detached.

Network Configuration Settings

To setup the network configuration on the PAM UI Server:

  1. Once the PAM UI Server has finished deploying, right-click and select Power On. Wait while the server is booted.

    Warning

    DO NOT turn off the PAM UI Server during the boot stage as this may cause the machine to become corrupted.

  2. Within VMware vSphere open the Console window of the deployed PAM UI Server.

  3. At the command type sudo netconf and press ENTER.

  4. Within the Configure Networking screen, configure the following server settings. Press TAB to navigate between the fields.

    • IP Address: Enter the IP Address which will be used to connect to the PAM UI Server.
    • Netmask: Enter the network mask.
    • Default Gateway: Enter the network default gateway IP address.
    • Domain Name Servers: Enter the network DNS IP address. Enter multiple servers as a comma separated list.
    • Search Domains: Enter the domain to be used as part of a domain search list. Can be left empty.

    netconf

  5. When completed TAB down to the Save button and press ENTER. The network configuration is saved and you are navigated to a confirmation screen.

  6. When prompted select Save and press ENTER.

    netconf_confirm

  7. You MUST reboot before continuing. At the command prompt type sudo reboot to apply the configuration. Wait while the system is rebooted.

SSH Access Configuration

SSH access configuration is required to allow administrators to SSH onto the PAM UI Server.

When the first SSH connection is made to the PAM UI Server a private key is set. The server will generate a unique username for this initial connection which will be deleted once the initial setup has been completed.

Note

Additional keys can be added after setup.

Adding the first SSH public key

  1. Generate an RSA key pair using your preferred method.

    Note

    Instructions for generating an RSA key pair using PuTTY can be found here.

  2. Open the Console window of the PAM UI Server.

  3. At the command prompt type sshconf and press ENTER. This will display a one-time username that you will use to setup the SSH key for the support user account.

    SSH username

    Note

    The setup-xxxxxxxx username displayed will be unique to each PAM UI Server install.

  4. Open PuTTY or your preferred SSH tool and enter the IP address of the PAM UI Server.

    SSH ip address

  5. Next under Connection -> Data enter the one-time username displayed by 'sshconf' in the Auto-login username field.

    SSH ip address

  6. Next under Connection -> SSH -> Auth -> Credentials, click Browse... and select the private key file (.ppk file) that you created at the start (i.e. pam_ui_support.ppk).

    SSH ip address

  7. Click Open to connect.

  8. As this is the first time you are connecting you will see a fingerprint alert box, accept the fingerprint.

  9. The connection window will now only remain open for a few seconds and then disappear. PuTTY may display an error on disconnect. This is okay and expected.

  10. This connection has now set the SSH key of the 'support' user for the PAM UI Server.

  11. Now to SSH to the PAM UI Server open PuTTY, set the IP address, set the private key file (.ppk file) but now set the auto-login username to be 'support' (without the quotes).

  12. Click Open and you will be connected to the PAM UI Server.

  13. You are now ready to configure your PAM UI Server. See System configuration of the PAM UI Server.