Trusted Access Manager
Installation

This document provides instructions for installing Trusted Access Manager. The most recent version of this file is located on the Sentinel Documentation web page: http://www.enterasys.com/support/manuals/sentinel.html.

• General Installation Information
  • System Requirements
  • Evaluation Copy
  • Recommended Reading Sequence
• Installation on Windows
  • Configuring the Environment
  • Stopping the NetSight Server and Database (Windows)
  • Installing Trusted Access Manager (Windows)
• Installation on Solaris
  • Preparing for Installation on Solaris
  • Stopping the NetSight Server and Database (Solaris)
  • Installing Trusted Access Manager (Solaris)
• Installation on Linux
  • Preparing for Installation on Linux
  • Stopping the NetSight Server and Database (Linux)
  • Installing Trusted Access Manager (Linux)
• Launching Trusted Access Manager
  • Launching on Windows
  • Launching on Solaris
  • Launching on Linux
• Uninstalling Trusted Access Manager
  • Uninstalling on Windows
  • Uninstalling on Solaris
  • Uninstalling on Linux
• Support
  • Accessing Help
  • Technical Support
  • Documentation
  • Training

General Installation Information

• Windows® XP, Windows Server™ 2003, or Windows® 2000
• UNIX® Solaris® 8, 9, or 10 on Sun® Platforms only
• Linux: Red Hat Version 9, Red Hat Enterprise Linux WS, ES v3, and SuSE Linux

The following tasks comprise the Trusted Access Manager installation process:

• When you purchased Trusted Access Manager, you received a Licensed Product Entitlement ID that allows you to generate a product license. Prior to installing Trusted Access Manager, you must redeem your Entitlement ID for a product license. Refer to the instructions included with the Entitlement that was sent to you. (For more information, see http://www.enterasys.com/products/management/.) 
• Install any operating system patches required for Java or InstallAnywhere® (Solaris only).
• Prepare your system for installation.
• Install Trusted Access Manager.

System Requirements

• Windows^® 2000, Windows Server™ 2003, Windows XP^® Professional w/ Service Pack 2  (qualified on the English version of the operating systems)
  • Recommended P4-2.4 GHz, 1GB RAM
  • Free Disk Space - 500MB

• Solaris^® 8, 9, and 10 on Sun^® Platforms only (with latest operating system patches installed)
  • Recommended Sun^® Ultra 30/60 (or equivalent), 900MHz, 1GB RAM
  • Free Disk Space - 800MB

• Linux: Red Hat Version 9, Red Hat Enterprise Linux WS, ES v3, and SuSE Linux
  • Recommended P4-2.4 GHz, 1GB RAM
  • Free Disk Space - 500MB

Evaluation Copy

To upgrade from an evaluation copy of Trusted Access Manager to a purchased copy, contact your Enterasys Networks Representative to purchase the software and receive an Entitlement ID. You do not need to reinstall the software to perform the conversion. If your evaluation copy has not expired:

1. In the Trusted Access Manager main window, select Tools  > Server Information.
2. In the Server Information window, click the License tab.
3. Select Trusted Access Manager from the table and click Change License.
4. Read and accept the License and click OK.
5. Enter the license text that you received when you generated the product license. (When you purchased the software, you received a License Entitlement ID that allows you to generate a product license. Refer to the instructions included with the License Entitlement ID that was sent to you.)
6. Click Update. The license file will be updated with the new license text.

Recommended Reading Sequence

Before installation:

• Installation (this file)
• Release Notes

After installation:

• Trusted Access Manager Help (Help > Help Topics on the Trusted Access Manager menu bar)
• Concepts
• Getting Started

Installation on Windows

• Configure the Environment
• Stop the NetSight Server and Database (Windows)

Once your system is properly configured, you can proceed with:

• Installing Trusted Access Manager (Windows)
• Launching Trusted Access Manager

Configuring the Environment

	NOTE:	Some of the operations in the following instructions may generate a message prompting you to reboot your system. It is not necessary to reboot your system until you have completed the configuration process.

Windows 2000

1. Open your system's Control Panel (Start > Settings > Control Panel) and double-click the System icon. The System Properties window opens.
2. Select the Advanced tab and click the Performance options button. The Performance Options window opens.
3. Verify that the "Application response" section has Optimize performance for: Applications selected.
4. Click the Change button in the "Virtual Memory" section of the Performance Options window. The Virtual Memory window opens.
5. Enter the following settings in the "Paging file size for selected drive" section:
   Initial size (MB) -- set to a minimum of 128 MB or equivalent to your system RAM.
   Maximum size (MB) -- typically set to twice the Initial size. For example, if your Initial size is set to 128 MB, your maximum size would be set to 256 MB.
6. Click Set and OK to close the window.
7. Click OK to close the Performance Options window.
8. Click OK to close the System Properties window.
9. With the cursor in an open area of the desktop, right click and select Properties from the drop-down menu. The Display Properties window opens.
10. Select the Settings tab, and set Colors to a minimum of High Color (16 bit) and Screen area to 1024 by 768 pixels (recommended minimum). The Colors setting affects the appearance of Trusted Access Manager windows. With a setting of 24 bit (16,777,216 colors) and above, certain window features such as table rows, appear with a color gradient. Setting the Colors lower than 24 bit will not support color gradients.
11. Click OK to close the Display Properties window.
12. Reboot your system.

Windows Server 2003 and Windows XP

1. Open your system's Control Panel (Start > Settings > Control Panel) and double-click the System icon. The System Properties window opens.
2. Select the Advanced tab and click the Settings button in the "Performance" section. The Performance Options window opens.
3. Select the Advanced tab and verify that the "Processor scheduling" and "Memory usage" sections have Adjust for best performance of: programs selected.
4. Click the Change button in the "Virtual Memory" section of the Performance Options window. The Virtual Memory window opens.
5. In the "Paging file size for selected drive" section, select the Custom size option and enter the following settings:
   Initial size (MB) -- set to a minimum of 128 MB or equivalent to your system RAM.
   Maximum size (MB) -- typically set to twice the Initial size. For example, if your Initial size is set to 128 MB, your maximum size would be set to 256 MB.
6. Click Set and OK to close the window.
7. Click OK to close the Performance Options window.
8. Click OK to close the System Properties window.
9. With the cursor in an open area of the desktop, right click and select Properties from the drop-down menu. The Display Properties window opens.
10. Select the Settings tab, and set the Screen resolution to 1024 by 768 pixels (recommended minimum), and the Color quality to a minimum of Medium (16 bit). The Color quality setting affects the appearance of Trusted Access Manager windows. With a setting of 24 bit and above, certain window features such as table rows, appear with a color gradient. Setting the Color quality lower than 24 bit will not support color gradients.
11. Click OK to close the Display Properties window.
12. Reboot your system.

Stopping the NetSight Server and Database (Windows)

1. Go to the Taskbar Notification Area of your desktop (on the lower right of your screen, unless you've relocated your Taskbar).
2. Right-click the Services Manager icon ( ) and select NetSight Server > Stop Server and Database.

Installing Trusted Access Manager (Windows)

1. Log onto your system as the user who will be using Trusted Access Manager.
2. Download the Trusted Access Manager software from the Trusted Access Manager product web page at  http://www.enterasys.com/products/management/. Or, if you are installing from a CD, insert the Trusted Access Manager CD into your system's CD drive.
3. Navigate to install.exe and double-click it.
4. The Installer leads you through a series of windows that ask you for all the information required in order to install Trusted Access Manager. You will need the following information to complete the installation:
   • Client/Server or Client-only Install -- You will need to select whether you are installing a Client-only or Client and Server version of Trusted Access Manager.
     • Client-only - This will install the Trusted Access Manager client on the system. No server or database components will be installed. This requires that a Trusted Access Manager Client and Server has been installed on another system with an Enterasys NetSight Console 2.2 Server.
     • Client and Server - This requires that an Enterasys NetSight Console 2.2 Server already be installed on the system. This provides the server and database components for the Trusted Access Manager features to integrate with Enterasys NetSight Console 2.2. A Trusted Access Manager client will also be installed on this system.
   • License Text -- You will need to enter the license text that you received when you generated the Trusted Access Manager license. (When you purchased Trusted Access Manager, you received a Licensed Product Entitlement ID that allows you to generate a product license. You must generate the license prior to installing Trusted Access Manager. Refer to the instructions included with the Entitlement ID that was sent to you.)
   • Destination Directory -- This is the path to your Trusted Access Manager Installation Directory. In the Destination Directory window, click Browse to navigate to the directory, or type the path in manually. The installer will add the Trusted Access Manager directory to the end of the path.
   When you click Done on the final window in the Installer, Trusted Access Manager has been installed according to your specifications. You are now ready to launch Trusted Access Manager.

Installation on Solaris

Before installing Trusted Access Manager from a CD on a Solaris platform, you need to:

• Prepare for Installation on Solaris

Once your system is properly configured, you can proceed with:

• Stopping the NetSight Server and Database (Solaris)
• Installing Trusted Access Manager (Solaris)
• Launching Trusted Access Manager

Preparing for Installation on Solaris

1. Insert the Trusted Access Manager CD into the CD drive.
2. Use an xterm where you are logged in as root using the su - command.

   	NOTE:	You may encounter a Java exception when becoming the root user with the su - command. Be sure that your system's root environment has a proper DISPLAY variable setting. The Installation program will report a Java exception (InvocationTargetException) if the DISPLAY variable is undefined. If this occurs: Set the system display variable to accept a remote display with the command:        /usr/openwin/bin/xhost + Set the display variable in the environment where the su - was done.   For C shell:       setenv DISPLAY :0.0   For Korn shell:       export DISPLAY=:0.0

3. Using the cd command, cd to the /cdrom/cdrom0 (where 0 is zero) directory. If it does not exist, make the directory using the mkdir -p command, then cd to the newly created directory.
4. Using the ls command, check to see if the CD drive is mounted. If no files are listed, issue the following commands:
   cd /
mount -r -F hsfs /dev/sr0 /cdrom/cdrom0
   (where 0 is zero).

Stopping the NetSight Server and Database (Solaris)

1. On the server system, navigate to the <NetSight Console installdir>/server
2. Stop the server and database using the command:
       stopserver.sh

Installing Trusted Access Manager (Solaris)

1. Use an xterm where you are logged in as root. (Be sure that your system's root environment has a proper DISPLAY variable setting. For more information see the above note.)
2. If you have downloaded the software:
        cd to the directory where you downloaded the installer and start the Installer with the command sh ./install.bin.
   If you are installing from a CD:
        Start the installer with the command /cdrom/cdrom0/Solaris/install.bin
3. The Trusted Access Manager Installer leads you through a series of windows that ask you for all the information required in order to install Trusted Access Manager. You will need the following information to complete the installation:
   • Client/Server or Client-only Install -- You will need to select whether you are installing a Client-only or Client and Server version of Trusted Access Manager.
     • Client-only - This will install the Trusted Access Manager client on the system. No server or database components will be installed. This requires that a Trusted Access Manager Client and Server has been installed on another system with an Enterasys NetSight Console 2.2 Server.
     • Client and Server - This requires that an Enterasys NetSight Console 2.2 Server already be installed on the system. This provides the server and database components for the Trusted Access Manager features to integrate with Enterasys NetSight Console 2.2. A Trusted Access Manager client will also be installed on this system.
   • License Text -- You will need to enter the license text that you received when you generated the Trusted Access Manager license. (When you purchased Trusted Access Manager, you received a Licensed Product Entitlement ID that allows you to generate a product license. You must generate the license prior to installing Trusted Access Manager. Refer to the instructions included with the Entitlement ID that was sent to you.)
   • Destination Directory -- This is the path to your Trusted Access Manager Installation Directory. In the Destination Directory window, click Browse to navigate to the directory, or type the path in manually. The installer will add the Trusted Access Manager directory to the end of the path.
   When you click Done on the final window in the Installer, Trusted Access Manager has been installed according to your specifications. You are now ready to launch Trusted Access Manager.

Installation on Linux

Before installing Trusted Access Manager from a CD on a Linux platform, you need to:

• Prepare for Installation on Linux

Once your system is properly configured, you can proceed with:

• Stop the NetSight Server and Database (Linux)
• Installing Trusted Access Manager (Linux)
• Launching Trusted Access Manager

Preparing for Installation on Linux

1. Insert the Trusted Access Manager CD into the CD drive.
2. Use an xterm where you are logged in as root.

   	NOTE:	If you do not have a DISPLAY variable defined for your root user environment, you will encounter a Java exception during the install upon becoming the root user. Be sure that your system's root environment has a proper DISPLAY variable setting.

3. Using the cd command, cd to the /mnt/cdrom directory.
4. Using the ls command, check to see if the CD drive is mounted. If no files are listed, issue the following command:
   mount /mnt/cdrom

Stopping the NetSight Server and Database (Linux)

1. On the server system, navigate to the <NetSight Console installdir>/server
2. Stop the server and database using the command:
       stopserver.sh

Installing Trusted Access Manager (Linux)

1. Use an xterm window where you are logged in as root. (Be sure that your system's root environment has a proper DISPLAY variable setting. For more information see the above note.)
2. If you have downloaded the software:
        cd to the directory where you downloaded the installer and start the Installer with the command sh ./install.bin.
   If you are installing from a CD:
        Start the installer with the command /mnt/cdrom/linux/install.bin
3. The Installer leads you through a series of windows that ask you for all the information required in order to install Trusted Access Manager. You will need the following information to complete the installation:
   • Client/Server or Client-only Install -- You will need to select whether you are installing a Client-only or Client and Server version of Trusted Access Manager.
     • Client-only - This will install the Trusted Access Manager client on the system. No server or database components will be installed. This requires that a Trusted Access Manager Client and Server has been installed on another system with an Enterasys NetSight Console 2.2 Server.
     • Client and Server - This requires that an Enterasys NetSight Console 2.2 Server already be installed on the system. This provides the server and database components for the Trusted Access Manager features to integrate with Enterasys NetSight Console 2.2. A Trusted Access Manager client will also be installed on this system.
   • License Text -- You will need to enter the license text that you received when you generated the Trusted Access Manager license. (When you purchased Trusted Access Manager, you received a Licensed Product Entitlement ID that allows you to generate a product license. You must generate the license prior to installing Trusted Access Manager. Refer to the instructions included with the Entitlement ID that was sent to you.)
   • Destination Directory -- This is the path to your Trusted Access Manager Installation Directory. In the Destination Directory window, click Browse to navigate to the directory, or type the path in manually. The installer will add the Trusted Access Manager directory to the end of the path.
   When you click Done on the final window in the Installer, Trusted Access Manager has been installed according to your specifications. You are now ready to launch Trusted Access Manager.

Launching Trusted Access Manager

Launching on Windows

Launching on Solaris

1. Use the cd command to navigate to the Trusted Access Manager Installation Directory.
2. Issue the Trusted Access Manager startup command:
   ./TrustedAccessManager

Launching on Linux

1. Use an xterm window where you are logged in as root.
2. Use the cd command to navigate to the Trusted Access Manager Installation Directory.
3. Issue the Trusted Access Manager startup command:
   ./TrustedAccessManager

Uninstalling Trusted Access Manager

Uninstalling on Windows

1. Go to the Taskbar Notification Area of your desktop (on the lower right of your screen, unless you've relocated your Taskbar).
2. Right-click the Services Manager icon ( ) and select NetSight Server > Stop Server and Database.

You can now uninstall Trusted Access Manager:  

From the Start menu, select Programs > Enterasys Networks > Enterasys Sentinel Trusted Access Manager > Uninstall Trusted Access Manager. You must be logged in as the user who installed Trusted Access Manager in order to see this selection on the Start menu.

If a different user is uninstalling Trusted Access Manager, go to the UninstallerData directory located in the Trusted Access Manager Installation Directory and double-click on Uninstall Trusted Access Manager.exe. In such a case the Uninstaller may not be able to remove certain files due to permission conflicts.

Uninstalling on Solaris

You must stop the NetSight Server and the NetSight Database prior to uninstalling Trusted Access Manager.

1. On the server system, navigate to the <NetSight Console installdir>/server
2. Stop the server and database using the command:
       stopserver.sh

1. Use the cd command to navigate to the Trusted Access Manager Installation Directory (top level).
2. Start the Uninstaller by issuing the command:
       ./UninstallTrustedAccessManager.sh

Uninstalling on Linux

You must stop the NetSight Server and the NetSight Database prior to uninstalling Trusted Access Manager.

1. On the server system, navigate to the <NetSight Console installdir>/server
2. Stop the server and database using the command:
       stopserver.sh

1. Use the cd command to navigate to the Trusted Access Manager Installation Directory (top level).
2. Start the Uninstaller by issuing the command:
       ./UninstallTrustedAccessManager.sh

Support

http://www.enterasys.com

Accessing Help

After you've launched Trusted Access Manager for the first time, it is highly recommended that you select Help > Help Topics from the menu and read the following links before proceeding to use Trusted Access Manager:

• Welcome
• Release Notes
• Concepts
• Getting Started

Technical Support

Phone: 1-800-872-8440 (toll-free in U.S. and Canada, 24 hours a day, 365 days a year)
For the Enterasys Networks Support toll-free number in your country:
http://www.enterasys.com/services/support/contact/

Email: support@enterasys.com

Mail:
Enterasys Networks, Inc.
Technical Support
50 Minuteman Rd.
Andover, MA 01810 (USA) 

FTP: ftp.enterasys.com
Login: anonymous
Password: [your email address]

Documentation

Training