Installing DSG on VMware

• 1: Creating an OVA Template
• 2: Creating a Virtual Machine using OVA template
• 3: Installing the DSG on the Virtual Machine

1 - Creating an OVA Template

Before proceeding with the installation, ensure that the OVA file provided by Protegrity is available.

Perform the steps to create an Open Virtual Appliance (OVA) template:

1. Log in to the VMware Client console.

2. Navigate to Inventories > VMs and Templates.

3. From the left navigation pane, select the required project.

4. Right-click the project name and select Deploy OVF Template….
   The Deploy OVF Template screen appears.

5. From Select an OVF template, select the preferred method to the .ova file.
   The .ova file can be accessed using the URL or by uploading a local file. Click Next.

6. From Select a name and folder, enter the name of the virtual machine in the Virtual machine name field and select the location for virtual machine. Click Next.

7. From Select a destination compute resource, select the required compute resource. Click Next.

8. From Review details, verify the publisher, download size, and size on disk. Click Next.

9. From Select storage, select the required disk formats, VM Storage Policy, Show datastores from Storage DRS clusters, and datastore to store the deployed OVF or OVA template. Click Next.

10. From Select networks, select the destination for the management and service networks. Click Next.

11. From Ready to complete, verify the details and click Finish.

    Wait till the virtual machine is created.

12. After the machine is successfully created, from the left navigation pane, select the virtual machine name.

13. Right-click the virtual machine name and select Convert to Template.
    A Confirm Convert dialog box appears. Click Yes.
    The OVA template is successfully created.

2 - Creating a Virtual Machine using OVA template

Perform the steps to create a virtual machine using the OVA template:

1. Navigate to Inventories > VMs and Templates.

2. From the left navigation pane, select the required project.

3. Select the required OVA template.

4. Right-click the template name, and select New VM from This Template.

5. From Select a name and folder, enter the name of the virtual machine in the Virtual machine name field and select the location for virtual machine. Click Next.

6. From Select a destination compute resource, select the required compute resource. Click Next.

7. From Select storage, select the required storage.
   Select the required disk formats, VM Storage Policy, Show datastores from Storage DRS clusters, and datastore to store the deployed OVF or OVA template.

8. Click Next.

9. From Select clone options, select the required clone options.

10. If the Customize the operating option is selected, then the Customize guest OS screen appears.
    Configure the required OS for the virtual machine. Click Next.

11. If the Customize this virtual machine’s hardware option is selected, then the Customize hardware screen appears.
    Configure the required hardware for the virtual machine. Click Next.

12. From Ready to complete, verify the details and click Finish.

    The virtual machine is created successfully.

3 - Installing the DSG on the Virtual Machine

Starting the Installation

Ensure that the virtual machine is powered on before starting the installation process.

To install the DSG:

1. Select the virtual machine.

2. Click LAUNCH WEB CONSOLE.

Installing DSG

This section provides information about installing the DSG.

To install the DSG:

1. Press Tab to select the management network interface, which will be the management NIC for the DSG node. Then, proceed by pressing Tab to select Select and press Enter.

   

   Note: The selected network interface will be used for communication between the ESA and the DSG.

2. The DSG appliance attempts to detect a DHCP server to setup the network configuration. If the DHCP server is detected, then the Network Configuration Information screen appears with the settings provided by the DHCP server. If you want to modify the auto-detected settings, then press Tab to select Edit and press Enter to update the information.

   

3. Press Tab to select Apply and press ENTER.

   Note: If a DHCP server is detected, then the Select a node screen appears. Select the ESA IP address that you want to use for the ESA communication from the list.

   The following dialog appears when the DHCP server is not detected. Press Tab to select Manual, and press Enter to provide the IP address manually or Retry to attempt locating the DHCP server again.

   

   The Network Configuration Information dialog appears. You must enter the network configuration and select Apply to continue.

   

   Note: On the DSG, the Management Interface is used for communication between the ESA and the DSG, and accessing the DSG Web UI. The Service Interface is used for handling the network traffic traversing through the DSG.

   For more information about the management interface and the service interface, refer to the section Network Planning.

4. Press Tab to select the time zone of the host, press Tab to select Next, and then press ENTER.

   

5. Press Tab to select the nearest location, press Tab to select Next, and then press ENTER.

   

6. Press Tab to select the required option, press Tab to select OK, and then press ENTER.

   

7. Press Tab to select the required option and then press ENTER.

   

8. Press Tab to select the required option and then press ENTER.

   

9. Select Enable, press Tab to select OK, and then press ENTER to provide the credentials for securing the GRand Unified Bootloader (GRUB).

   Note: GRUB is used to provide enhanced security for the DSG appliance using a username and password combination.
   For more information about using GRUB, refer to Securing the GRand Unified Bootloader (GRUB).

   

   CAUTION: The GRUB option is available only for on-premise installations.

10. Enter a username, password, and password confirmation on the screen, select OK and press ENTER.

    

    Note: The requirements for the Username are as follows:

    • It should contain a minimum of three and maximum of 16 characters.
    • It should not contain numbers and special characters.

    Note: The requirements for the Password are as follows:

    • It must contain at least eight characters.
    • It must contain a combination of alphabets, numbers, and printable characters.

11. Press Tab to set the user passwords, and then press Tab to select Apply and press Enter.

    

    Note: It is recommended that strong passwords are set for all the users.
    For more information about password policies, refer to the section Strengthening Password Policy.

12. Enter the IP address or hostname for the ESA. Press Tab to select OK and press ENTER. You can specify multiple IP addresses separated by comma.

    The Forward Logs to Audit Store screen appears.

    

    Note: If the IP address or hostname of ESA is not provided while installing the DSG, then the user can add the ESA through ESA Communication.

13. Select the ESA that you want to connect with, and then press Tab to select OK and press ENTER.

    The ESA Selection screen appears.

    

    Note: If you want to enter the ESA details manually, then select the Enter manually option. You must enter the ESA IP address when this option is selected.

14. Provide the username and password for the ESA that you want to communicate with, press Tab to select OK, and then press ENTER.

    

15. Enter the IP Address and Network Mask to configure the service interface and press Tab to select OK and press ENTER.

    

    CAUTION: For ensuring network security, the DSG isolates the management interface from the service interface by allocating each with a separate network address. Ensure that two NICs are added to the DSG.

16. Select the Cloud Utility AWS, press Tab to select OK, and then press ENTER to install the utility. The Cloud Utility AWS utility must be selected if you plan to forward the DSG logs to AWS CloudWatch. If you choose to install the Cloud Utility AWS utility later, you can install this utility from the DSG CLI using the Add or Remove Services option after installing the DSG.

    Note: For more information about forwarding the DSG logs to AWS CloudWatch, refer to the section Forwarding logs to AWS CloudWatch.

    

17. Select the ESA that you want to connect with, and then press Tab to select OK and press ENTER.

    The ESA selection screen appears.

    

    Note: If you want to enter the ESA details manually, then select the Enter manually option. You will be asked to enter the ESA IP address or hostname when this option is selected.

18. Enter the ESA administrator username and password to establish communication between the ESA and the DSG. Press Tab to select OK and press Enter.

    The Enterprise Security Administrator - Admin Credentials screen appears.

    

19. Enter the IP address or hostname for the ESA. Press Tab to select OK and press ENTER. You can specify multiple IP addresses separated by comma.

    The Forward Logs to Audit Store screen appears.

    

20. After successfully establishing the connection with the ESA, the following Summary dialog box appears.

    

21. Press Tab to select Continue and press Enter to continue to the DSG CLI manager.

    

    A Welcome to Protegrity Appliance dialog box appears.

22. Login to the DSG CLI Manager.

23. Navigate to Administration > Reboot and Shutdown.

24. Select Reboot and press Enter.

25. Provide a reason for restarting the DSG node, select OK and press Enter.

26. Enter the root password, select OK and press Enter.

    The DSG node is restarted.

27. Login to the DSG Web UI.

28. Click the (Help) icon, and then click About.

29. Verify that the DSG version is reflected as DSG 4.0.0.