Skip to content

Configuration of a standalone PAM Server or leader node

Follow these configuration steps if you are either setting up a standalone server or this is the first node in the cluster you are configuring.

  1. Within the Console window, press ENTER when prompted to start the setup and configuration.

    Enter setup

  2. Read and accept the EULA to continue.

    eula

  3. Within the Configure Networking screen, configure the following server settings. Press TAB to navigate between the fields.

    • IP Address: Enter the IP Address which will be used to connect to the server.
    • Netmask: Enter the network mask.
    • Gateway: Enter the network default gateway IP address.
    • Primary DNS: Enter the network primary DNS IP address.
    • (Secondary DNS): Enter the secondary DNS IP address if relevant, else leave blank.

    configure networking

  4. Once completed TAB down to the OK button and press ENTER.

  5. Creating a new PAM Server so press ENTER to Continue without restoring a backup.

    Continue without restoring a backup

  6. Within the Enter a hostname window, enter a name to identify the new server.

    hostname

  7. TAB down to the OK button and press ENTER.

  8. Enter the FQDN (all in lowercase) or IP Address which will be assigned to the node. The configuration entered here is used to communicate between nodes in a cluster.

    FQDN or IP Address

    If the following error occurs then make sure that the hostname can be resolved and check if it has been included in the DNS A records - see Prerequisites.

    Hostname resolution error

  9. TAB down to the OK button and press ENTER.

  10. Set a password for the primary superadmin account. The username (superadmin) and the password will be used later to log into the UI. The superadmin password set here will also be used to log into all the other nodes in the cluster so there will only be one main superadmin password for all the nodes.

    superadmin password

  11. TAB down to the OK button and press TAB.

  12. Confirm the primary superadmin account password.

  13. TAB down to the OK button and press TAB. Wait while the system is configured.

  14. As this is the first node (leader) in the cluster ENTER to Continue without joining cluster.

    Continue without joining cluster

  15. Your Master Encryption Key will be shown. MEK

    Type Description
    Master encryption key This key is VERY IMPORTANT so you MUST make a note of it and securely store it externally for future reference as it is not stored on the server. It will be required during a backup/restore procedure to recreate the hash file and decrypt the Osirium PAM database stored within the backup file. See Backup/restore upgrade procedure.
    Salt During the installation process the master encryption key is combined with the Salt to generate a hash which is stored in a file. The Salt is stored on the server and will be included in the backup file.
    Hash Is generated during the installation process and stored on the server. The hash file will not be included in the backup file. During a backup/restore procedure the master encryption key will be used with the salt to recreate the hash and decrypt the backup database file to reinstate the server.
  16. Enter the Master Encryption Key including the dashes to verify.

  17. TAB down to the OK button and press ENTER. Wait while the system is configured.

  18. Once the setup has completed the following message will be displayed on the Console window.

    Make a note of the https address which will be required to connect to the server from the UI. This is only required if you have an existing PAM UI Server.

    For instructions to install and configure the PAM UI Server click here.

    Console window

  19. Now the server has been successfully deployed and configured you will need to run through the Finalise setup steps to complete the installation.