Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Install Cloud Connector in Linux

The Cloud Connector can be installed on a physical server or a virtual machine running Linux 64-bit (Ubuntu or RHEL). 

NOTE: As of v4.1.2, registering a Symbolic Server Name during installation is mandatory. 

Important Notes

IMPORTANT: As of  v5.2.0, the Cloud Connector cannot be installed without the Cloud Connector User role configured in your account. Make sure you have the Cloud Connector User role granted to your account before installation.

IMPORTANT: Certificate validation happens at installation. During install, if the server certificate validation is successful, no console messages are displayed. If you use a proxy server with SSL termination to connect Cloud Connector to Skyhigh Security, the proxy server’s certificate MUST be provided at install time using the parameter
-Vcertificates=<server file path1>:<server file path2>. Only digitally signed certificates in CRT format are supported. If you perform an upgrade for one release using the
-Vcertificates=<server file path1>:<server file path2> option, you must use it again for all subsequent upgrades.

IMPORTANT: As of CC 3.5, the installer parameter -Venv=<environment_url> is no longer supported. 

NOTES: 

  • If you want to change the Java KeyStore (JKS) password, contact Skyhigh Security Support for assistance. 
  • From Cloud Connector 5.4.1 onwards, endpoints are accessed using token-based authentication instead of basic authentication.

Prerequisites 

Before you begin, review the required Prerequisites

Install Cloud Connector for Linux

You can install Cloud Connector on a physical server or a virtual machine running Linux 64-bit (Ubuntu or RHEL). For requirements, see Prerequisites

NOTE: JVM version 1.8 is bundled with the Cloud Connector installer. 

This procedure includes the output you see from the install wizard when you select the different install options.

  1. Log in to your Unix or Linux system. 
  2. Log in as SUDO user with the command: Sudo su
  3. Copy or download the installer to your system. 
  4. Start the installation wizard with the command: sh shnlp_unix64_x_x_x_x-SNAPSHOT.sh. Follow the prompts. 

root@aws-qalp00:/shn/Thiru/Builds# sh shnlp_unix64_4_2_0_1-SNAPSHOT.sh
Unpacking JRE ...
perl: warning: Setting locale failed.
perl: warning: Please check that your locale settings:
    LANGUAGE = (unset),
    LC_ALL = (unset),
    LC_CTYPE = "UTF-8",
    LANG = "en_US.UTF-8"
are supported and installed on your system.

perl: warning: Falling back to a fallback locale ("en_US.UTF-8").
update-rc.d: error: initscript does not exist: /etc/init.d/shnlps
Starting Installer ...
This will install Log Processor on your computer.

OK [o, Enter], Cancel [c]
o

Click Next to continue, or Cancel to exit Setup.
Select the folder where you would like Log Processor to be installed, then click Next.
Where should Log Processor be installed?
[/opt/shnlp]

 

  1. Enter the folder where you want to install Cloud Connector, and decide whether to use Symlinks [Y] or your local IP address [N]. 

Where should Log Processor be installed?
[/opt/shnlp]
/shn/Thiru/Fresh_Ec_iNSTALL
Create symlinks?
Yes [y, Enter], No [n]
y
Select the folder where you would like Log Processor to create symlinks, then click Next.
[/usr/local/bin]

Please select your connection status
The Cloud Connector needs to connect to Skyhigh Security on the Internet. If this computer requires the use of a proxy server to connect to Skyhigh Security, please specify below.

This machine can directly connect to the internet [1, Enter], This machine requires a proxy server to connect to the internet [2]

 

  1. Select the connection status:
    1. This system can directly connect to the internet [1]. The wizard asks for your tenant login credentials and environment details with the salt value. If you want to change to custom environment, select Y and continue.

      Please select your connection status
      The Cloud Connector needs to connect to Skyhigh Security on the Internet. If this computer requires the use of a proxy server to connect to Skyhigh Security, please specify below.

      This machine can directly connect to the internet [1, Enter], This machine requires a proxy server to connect to the internet [2]

      1

      Please enter your credentials for Skyhigh Security
      Please enter your tenant login credentials

      Username:
      []
      user@gmail.com
      Password:

      Environment:
      Production [2]
      EUPROD (Frankfurt) [3]
      GovCloud [4]

       

      1

      The 'Salt' will be used as a customer-specific secret to compute hashes during data tokenization. Use a password-like string for this. Make sure to write down the 'Salt' value in a safe place as it will be needed for additional installations.

      Salt

    2. This computer requires a proxy server to connect to the internet [2]. If you require a proxy, be ready to enter your proxy settings information, tenant login details, select environment, and salt values.

Please select your connection status
The Cloud Connector needs to connect to Skyhigh Security on the Internet. If this computer requires the use of a proxy server to connect to Skyhigh Security, please specify below.
This machine can directly connect to the internet [1, Enter], This machine requires a proxy server to connect to the internet [2]

2

Proxy configuration settings
Proxy Hostname or IP:
[]
172.16.206.113
Proxy Port:
[8080]
3128
Proxy Type:
https [1, Enter]
NTLM [2]
1
Proxy User (Optional):
[]
Proxy Password (Optional):

Please enter your credentials for Skyhigh Security

Please enter your tenant login credentials.
Username:
[]
user@gmail.com
Password:

Environment:
Production [2]
EUPROD (Frankfurt) [3]
GovCloud [4]

 

The 'Salt' will be used as a customer-specific secret to compute hashes during data tokenization. Use a password-like string for this. Make sure to write down the 'Salt' value in a safe place as it will be needed for additional installations.

Salt

 

  1. Select a Tenant.

    NOTE: This option is displayed only when your user ID exists on more than one tenant, so you can select the tenant you want to login to. 

  1. For Custom Environment URL. Do you want to create a custom environment URL? choose one of the following:
    1. Yes. Change the custom DNS name. Then, select the IP address and port to use. 

      Custom Environment URL:?
      Yes [y, Enter], No [n]

       

      The Symbolic Server Name setting allows you to choose a user specified DNS name for services like De-Tokenization. If you leave this to the default/suggested value, Skyhigh Security will create the DNS record as shown. If you supply your own Symbolic Server Name then you need to register this in your own DNS servers.

      Do you want to change the Symbolic Server Name?
      Yes [y], No [n, Enter]

    2. No. If you leave this as the default value, Skyhigh creates suggested DNS record as shown.

      Custom Environment URL:?
      Yes [y], No [n, Enter]

  2. The wizard asks if you want to change the Symbolic Server Name.
    • No. If you don't want to change the Symbolic Server Name, accept the default Symbolic Server Name. 
    • Yes. If you do want to change the Symbolic Server name, follow the prompts to enter the change.

       

  • Was this article helpful?