In this video, we are going to show how to deploy cyber sense in Aws. In this demo, cyber recovery is already deployed. For details about deploying cyber recovery in Aws. See the following article on the Dell support website to deploy cyber sense in Aws. We start by navigating to instances to check the already deployed cyber recovery.
We have vault DD with private IP S 10 00 22 and Cyber recovery management host IP 10 00 25 and jump host IP 10 00 12. Please send an email to cyber recovery cloud requests at dell dot com with the details of the Aws region, the AWS account ID and the AWS canonical ID that you will be using for the deployment Dell technologies will share the AMI so that it will be available in the left pane here under AMI in the images section, please make sure that you are in private images.
Select the AMI and click launch instance from AMI which takes you to the launch instance page specify the name of the instance. Then select the instance type R five B 0.8 X large, which is one of the supported instance types for cyber senses. For additional details, see the administrator's guide for other instance types that cyber sense supports in AWS.
The user must create a key pair for cyber sense and select the same. The key pair will be used to log into the cyber sense server, edit the network settings and select the cyber recovery VPC which will automatically select the management and DDVE private subnet under Subnet, create a new security group for Cyber Sense.
Enter the security group name in the description, add the inbound security group rule to allow SSH and http S access from the jump host to the Cyber sense server. When the security rule is updated, click launch instance, the Cyber Sense server is now up and running. Make a note of the Cyber sense server's private IP which is 1 10 00 20.
Let's navigate to the security group rule of the jump host. Add two outbound rules, one each to allow SSH and http S access to the Cyber sense server from the jump hosts. Navigate to VPC under security select network AC LS then select the jump host Subnet. AC L add an inbound rule to provide a port number range from 10 24 to 65 5 35 from the Cyber Sense server.
And save your changes in outbound rules, add rules to allow SSH and http S access from the Cyber Sense server and save your changes. Log into the jump host. The password for this server is already decrypted from the AWS console. Copy the contents of the cyber sense key pair into the management server and save it on the desktop.
Open a command prompt and navigate to the desktop log into the cyber sense server using the SSH command. In this video that IP address is 10 00 20. Switch to root user update the following entries in the SSH D config file under Etsy SSH, remove the hash mark next to permit root log in and change password authentication from no to yes.
Restart the SSH D service using the command service. SSH D restart, navigate to the AWS console and add a tag key to the Cyber sense server and in its security group. In this video, we are adding a tag called demo switch back to the cli of the Cyber sen server and set the SC Linux parameter to disabled by default.
The firewall service is inactive, log into the cyber recovery gooey console and navigate to infrastructure and then assets. Navigate to applications and click add to add the Cyber sense application. Enter the nickname IP address and server credentials of the Cyber sense server and then select the application type cyber sense.
As soon as cyber sense is selected, a new entry called security group tag is appended and the user has to update the tag key details, click save and cyber sense is added as an application in the cyber senses, go navigate to system then license and select, click the check box and accept the terms.
Now upload the license file, navigate to manage the cloud configuration tab displays the persistent storage limit and the scratch storage limit by default, they are enabled. The maximum size is 12 and 45 tey bytes respectively. Under scratch storage pre configured is not enabled by default.
If the pre configured option is enabled and the size is updated, the user has to pay for the amount of disk allocated whether it is used or not. When you clear the pre configured scratch storage check box, the space will get added automatically when required and gets deleted if not required. That's how to deploy cyber sense in Aws.
Thanks for watching.