- Overview
- CylanceON-PREM architecture
- Steps to get Start with CylanceON-PREM
- Requirements: CylanceON-PREM
- Configuring the CylanceON-PREM virtual appliance
- Configuring the console
- Log in to CylanceON-PREM
- Administrative dashboard
- Filter lists
- Export lists
- Policies
- Setting up the CylancePROTECT agent
- Adding the CA certificate to endpoints
- Installing the CylancePROTECT Desktop agent for Windows
- Installing the CylancePROTECT Desktop agent for macOS
- Installing the CylancePROTECT Desktop agent for Linux
- Manually update the Linux driver
- Upgrading the CylancePROTECT Desktop agents
- Using virtual machines
- Device management
- Threat management
- Global lists
- Administration
- Managing users
- Managing roles
- Update profile information
- Audit logs
- Managing Certificates
- Setting up email notifications
- Settings
- Upgrade CylanceON-PREM
- Reboot the virtual appliance
- Configure session timeout
- Update CylanceON-PREM SSL certificate version 1.3.1 and later
- Update CylanceON-PREM SSL certificate version 1.2.2.1 and earlier
- Change the certificate cipher mode
- Enable maintenance mode
- Change network settings
- Check an IP address
- Change the log level
- Download logs
- Configure syslog/SIEM settings
- Update database connection settings
- Configure active directory
- Configure identity provider settings
- Using certificate-based authentication
- Add a banner to the login screen
- Applications
- CylanceON-PREM API
- Troubleshooting
- Agent not communicating with CylanceON-PREM
- Web browser reports insecure webpage
- Unable to connect to external database
- Configure static IP using the OVF tool
- Remote server 404 error in log files
- Log in with a local administrator account
- Online Certificate Status Protocol issues
- A user is not receiving email notifications
- Before you contact support
- BlackBerry Docs
- CylanceON-PREM
- Cylance ONPREM Administration Guide
- Configuring the CylanceON-PREM virtual appliance
- External database overview
External database overview
This is a simple overview of possible steps for setting up an external database to connect to the
CylanceON-PREM
virtual appliance. This is not a list of requirements because configuring an external database depends on your environment. This list is simply provided as guidance and could help if you have issues connecting the database to the virtual appliance.- Install PostgreSQL and PostgreSQL server.
- Initialize the PostgreSQL database.
- Start and enable autostart postgres service to start the database when the server starts.
- Force postgres to listen on all ports in postgresql.conf.
- Allow postgres port through firewall.
- Enable the pgcrypto extention.
- Create a postgres user.
- If the database is dedicated toCylanceON-PREM, using the default postgres user is an option.
- If the database is shared, then you should create a new postgres user for theCylanceON-PREMdatabase. A shared database is not recommended forCylanceON-PREM.
- Authorize remote postgres authentication in pg_hba.conf file.
- Generate SSL certificates for postgres server connection.
- Configure SSL in postgresql.conf file.
When you connect the external database to
CylanceON-PREM
, consider the following:
- Use the fully qualified domain name (FQDN) of the external database. Using the external database IP address is also an option.
- The default port for PostgreSQL is 5432.
- TLS/SSL requires uploading the external database certificate toCylanceON-PREM. During initial configuration, enableVerify Peer Mode, upload the certificate, then disableVerify Peer Mode.
- Verify Peer Moderequires configuring certificates on the host and client.