METODOLOGÍA DE LA INVESTIGACIÓN
FLUJO DE CAJA 2020 2021
The way in which the silent installation of the CimTrak™ Master Repository is started, will depend on what operating system you are installing it on. After the installation is started, the process is the same for all operating systems. Determine which operating system you are using.
For Windows Platforms: Navigate to the location where the CimTrak™ Install file is
located and run “setupwin32.exe”. The Install Wizard should begin automatically, however, if it does not you may start the Install Wizard by opening a command prompt and typing the following command:
“X\setupwin32.exe” where “X” is the path to the CimTrak™ Install file’s directory. NOTE: It is necessary to run the command prompt in administrator mode for Windows Vista operating systems and later.
Modifications have been made in this version of CimTrak™ to simplify the deployment of CimTrak™ components using a software deployment tool such as Microsoft SMS, Symantec/Altris Deployment Manager, IBM Tivoli, and others. There is multiple platform support for the silent installer.
The silent installer simplifies the deployment process of CimTrak™ to multiple servers. It reduces the time for deployment and allows administrators to more time to concentrate on policy and configuration tasks.
To install the Repository in silent mode, it must be called in this manner:
setupWin32.exe -silent -V InstallRepository="1" -V Username="[username]" -V Password="[password]"
Parameters:
- InstallationDirectory
The base directory for the installation (optional, default is "C:\Program Files\Cimcor\CimTrak™", must not exceed 4096 characters)
- LogFile
The path where log messages will be written (optional, default is no Log File))
- DBUsername
The name of the user that will be created on the operating system to run the Repository database process (must not exceed 20 characters, default is product name ("CimTrak™"))
- DBUserPassword
The password for the above user (must not exceed 127 characters, must adhere to your Network password policy, a password will be randomly generated if one isn't provided)
- DBKey
The password key for the Repository database (must not exceed 20 characters, default is no database key).
- DBKeyBackupPath
The directory where a file containing the above password key will be written (must not exceed 4096 characters, will be ignored if DBKey isn't provided)
- AddRepositoryFirewallRule
Whether to add a firewall rule for the Repository, if necessary ("0" for no, "1" for yes, default is "1")
The port the Repository will use for communication (must be between "1" & "65535", default is "3749")
- DataStoragePath
The directory where the data pertaining to watched files and well as intrusions will be stored (must not exceed 4096 characters, default is "[base installation path]\CimTrak™Server\Storage")
- AutoRestartRepository
The amount of seconds to wait before automatically restarting the Repository, if necessary (must be between "0" and "86400", "0" to not automatically restart, default is "0")
- RepositoryEncryption
The type of encryption used for the Repository data (must be one of the available encryptions, defaults are listed below)
- RepositoryKeyLength
The key length of the encryption used for the Repository data (must be one of the available key lengths for the selected encryption, defaults are listed below)
- RepositoryHMAC
The HMAC type used for the Repository data (must be one of the available HMACs, defaults are listed below)
- OpenSSLCommunication
The OpenSSL type used for Repository communication (must be one of the available OpenSSL communication types, defaults are listed below)
- WebTrendsLogging
Whether to add a firewall rule for the Repository, if necessary ("0" for no, "1" for yes, default is "0")
- PasswordPolicy
The set of password polices to use ("0" for none, "1" for AR 25-2 compliant policy, "2" for custom) - no AR 25-2 for Ether, "1" is custom (default is "0")
- RequireCharacters
Whether to require 2 uppercase, lowercase, numbers & special characters (won't be evaluated unless PasswordPolicy is custom, "0" for no, "1" for yes, default is "1")
- PasswordDictionary
Whether to use a password dictionary (won't be evaluated unless PasswordPolicy is custom, "0" for no, "1" for yes, default is "1")
- PasswordLength
The minimum password length requirement (won't be evaluated unless PasswordPolicy is custom, must be between "0" and "50", "0" for no length requirement, default is "10")
- PasswordAging
The amount of days that a password can be used before it expires (won't be evaluated unless PasswordPolicy is custom, must be between "0" and "365", "0" to have passwords never expire, default is "30")
- PasswordReuse
The amount of previous passwords that can't be reused (won't be evaluated unless PasswordPolicy is custom, must be between "0" and "30", "0" to be able to reuse all passwords, default is "10")
- PasswordLockout
The amount of failed logons that occur before the account will be locked out (won't be evaluated unless PasswordPolicy is custom, must be between "0" and "10", "0" to never lock out, default is "10")
- PasswordLockoutTime
The amount of minutes that a user will be locked out in the event that the maximum number of logon failures was exceeded (won't be evaluated unless PasswordPolicy is custom, must be between "0" and "4320", "0" to never lock out, default is "60")
- SyslogAddress
The IP address of the Syslog server (must not exceed 50 characters, default is no address)
- SyslogProtocol
The protocol of the Syslog server (won't be evaluated unless SyslogAddress is provided, must be either "UDP" or "TCP", default is "UDP")
- SyslogPort
The port of the Syslog server (won't be evaluated unless SyslogAddress is provided, must be between "1" & "65535", default is "514" for "UDP" protocol, "1465" for "TCP")
- SNMPAddress
The address of the SNMP server (must not exceed 50 characters, default is no address)
- SNMPPort
The port of the SNMP server (won't be evaluated unless SNMPAddress is provided, must be between "1" & "65535", default is "162")
- SNMPCommunity
The community of the SNMP server (must not exceed 100 characters, default is "Public")
- SMTPAddress
The address of the SMTP server (must not exceed 50 characters, default is no address)
- SMTPPort
The port of the SMTP server (won't be evaluated unless SMTPAddress is provided, must be between "1" & "65535", default is "25")
- SMTPUsername
The username used to log in to the SMTP server (won't be evaluated unless SMTPAddress is provided, must not exceed 50 characters, required if SMTPPassword is provided)
- SMTPPassword
The password used to log in to the SMTP server (won't be evaluated unless SMTPAddress is provided, must not exceed 50 characters, required if SMTPUsername is provided)
- SMTPEmail
The e-mail address from which the e-mail messages transmitted by the Repository originates (won't be evaluated unless SMTPAddress is provided, must not exceed 100 characters, required)
- SMTPDisplayName
The display name for the e-mail address from which the e-mail messages transmitted by the Repository originates (won't be evaluated unless SMTPAddress is provided, must not exceed 100 characters, required)
- SMTPInterval
The interval (in minutes) in which the Repository will transmit e-mail messages, if necessary (must be between "1" and "1440", default is "2")
- SMTPRequireTLS
An optional feature that when activated grants compatibility with TLS required email servers. ("0" for does not require TLS, "1" for Requires TLS, default is "0")
- Serial
The serial number for the Repository (not required. If not provided, the Repository will begin in evaluation mode)
The username of the first Repository user (must not exceed 19 characters, required)
- Password
The password of the first Repository user (must not exceed 31 characters, required)
Encryptions (if specifying the encryption):
ENTERPRISE
Defaults: AES, 256, SHA1, DHE-RSA-AES256-SHA Encryptions AES: 128, 192, 256 CAST256: 128, 256 IDEA: 128 DES: 64 DES_EDE3: 192 DES_EDE2: 192 RC2: 64, 128, 256, 512, 1024 BlowFish: 64, 128, 160, 192, 224, 256, 288, 320, 352, 384, 416, 448 CAST128: 64, 128 RC4: 64, 128, 256, 512, 1024, 2048 HMACs MD4 MD5 RIPEMD160 SHA1 SHA256 SHA384 SHA512 OpenSSL Communications DHE-RSA-AES256-SHA AES256-SHA DHE-RSA-AES128-SHA AES128-SHA EDH-RSA-DES-CBC3-SHA EDH-RSA-DES-CBC-SHA EXP-EDH-RSA-DES-CBC-SHA DES-CBC3-SHA DES-CBC-SHA IDEA-CBC-SHA RC4-SHA RC4-MD5
FIPS
Defaults: AES, 256, SHA1, DHE-RSA-AES256-SHA Encryptions AES: 128, 192, 256 DES_EDE3: 192 HMACs SHA1 OpenSSL Communications DHE-RSA-AES256-SHA AES256-SHA DHE-RSA-AES128-SHA AES128-SHA EDH-RSA-DES-CBC3-SHA DES-CBC3-SHA INTERNATIONAL/ETHER
Defaults: DES, 64, SHA1, EXP-EDH-RSA-DES-CBC-SHA Encryptions DES: 64 RC2: 64 BlowFish: 64 CAST128: 64 RC4: 64 HMACs MD4 MD5 RIPEMD160 SHA1 SHA256 SHA384 SHA512 OpenSSL Communications EXP-EDH-RSA-DES-CBC-SHA EXP-DES-CBC-SHA EXP-RC2-CBC-MD5 EXP-RC4-MD5
Example for installing the Repository on Windows, logging messages to "c:\log.txt":
setupwin32 -silent -V LogFile="C:\log.txt" -V InstallRepository="1" - V Username="user" –V Password="password"
NOTE:
- If you wish to check the return value of the installation programmatically in Windows, you must run the installer with "start /w". The "start" command in DOS runs the command that follows in a new DOS window. The "/w" flag means to start the command and wait until it terminates before allowing the user to execute any more commands. An example of how to use this would be:
start /w setupwin32 -silent -V InstallationDirectory="c:\test"....
which would execute, then provide the user with the command prompt when it was finished, where the user could type:
echo %errorlevel%
to see the result of the installation. 0 is success and -1 is a failure (a failure exists if the user inputs an invalid command or parameter. The installer can still fail even with correct parameters, this error will be explained in the log file).
- If the Encryption is not specified, the default Encryption settings will be used.
- The "V" in "-V" in the command-line must be capitalized.
- The parameter names are case-sensitive. They should not contain any preceding dashes; only the "-V" should contain dashes.
- The parameter values must be enclosed in double-quotes.
- If you wish to not provide a parameter, do not specify it with an empty value (for instance, RepositoryEncryption=""). Otherwise, errors will occur that will prevent the installation from continuing.
- Entering an invalid parameter name will cause the installer to exit immediately.
- If an invalid installation directory is used, an error message (‘ERROR: The InstallationDirectory parameter isn't a valid directory.’) will be inserted at the end of the Log File. This error will not be present at the command prompt.
- Default values will be used for InstallationDirectory ("C:\Program Files\Cimcor\CimTrak™"), LogFile ("", meaning no messages will be logged). For all the parameters with default values, see the list of parameters for the Repository. - If specifying the DBUserPassword when installing the Repository with the silent installer, the DBUserPassword (password for the Windows account that is used to run CimTrak™) *must* meet the Windows Password complexity requirements on the computer that the Repository will be installed. Make sure the desired DBUserPassword meets the Windows Password complexity requirements before installing the Repository.
- If the silent installer is run and the Repository has been previously installed, the Repository will be upgraded regardless of the InstallRepository parameter value. If the Repository is being upgraded, the parameters pertaining to the Repository will be ignored and and a log file entry will be added stating that the Repository will be upgraded.
NOTE: The Silent Installer will modify your firewall (Windows Only) to allow TCP PORT 3749 (or customized port number) to facilitate CimTrak™ Communications. You will not be prompted for permission to open this port.