Installing FortiSIEM From an ISO
This topic covers installation of FortiSIEM from an ISO under a native file system, also known as installing "on bare metal."
Hardware Requirements for Collector Nodes
Component | Quantity | Host SW | Processor | Memory | OS/App Storage |
---|---|---|---|---|---|
Collector | 1 | ESX | 2 Core 2 GHz, 64-bit | 4 GB | 40 GB |
Collector | 1 | Native Linux |
2 Core, 64-bit | 4GB | 40 GB |
Suggested Platform: Dell PowerEdge R210 Rack Server |
ISO Installation
You can install Collectors on bare metal hardware (without a Hypervisor layer). Be sure to read the section on Hardware Requirements for Collector Nodes before starting the installation process.
- Download the ISO image from:
https://support.fortinet.com.html - Burn the ISO to a DVD so that you can boot from it to begin the setup.
- Before you begin the installation, make sure the host where you want to install the Collector has an Internet connection. Once the ISO DVD boots up, it will prompt you for installation-specific input such as the following:
- Keyboard type
- Language
- Timezone
- Whether to re-initialize (i.e. reformat) the disk where it will install collector
- root password
- Log in to the server where you want to install the Collector as user
root
with the password you created at installation time. - Make sure your boot DVD is loaded.
- Run the following script to configure the IP and hostname:
/opt/vmware/share/vami/vami_config_net
.- The machine will reboot and
yum
update itself. - Make sure the collector can reach the
os-pkgs-cdn.fortisiem.fortinet.com
andos-pkgs.fortisiem.fortinet.com
URLs on port 443 for OS updates.
- The machine will reboot and
- Once the machine reboots, log in again as user
root
with password with the password you created at installation time. - Run the following command to install the i686 packages required by
phCheckpoint
:yum -y install libcurl.i686 net-snmp-libs.i686 libesmtp.i686 libstdc++.i686 pam.i686 libicu.i686
- Register the Collector with Supervisor using the following command:
-
phProvisionCollector
For example:phProvisionCollector --add <Organization-user-name> <Organization-user-password> <Supervisor-IP> <Organization-name> <Collector-name>
-