Jump to content United States-English
HP.com Home Products and Services Support and Drivers Solutions How to Buy
» Contact HP
More options
HP.com home
 HP-UX Host Intrusion Detection System Version 4.1 Administrator's Guide: HP-UX 11i v1, HP-UX 11i v2 and HP-UX 11i v3 > Chapter 3 Getting Started with HP-UX HIDS

HIDS Quick Start Guide
» 

Technical documentation

Complete book in PDF
» Feedback
Content starts here

 » Table of Contents

 » Index

spacerspacerspacer
spacer
spacer
  		 
 

This section provides a concise synopsis of the steps required to get the HIDS agent and Graphical User Interface (GUI) operational. HP-UX HIDS is packaged with a set of predefined Surveillance Groups and Schedules that cover a wide variety of detection strategies. These Surveillance Groups and Schedules can be used as is, or you can use them as a model for designing a customized detection strategy for specific requirements.

Before following the steps listed here, you must ensure that you have installed and configured the HIDS software package, and have created and propagated certificates to all appropriate hosts.

  1. Log in to each agent host and start the idsagent program. For detailed instructions, see “Starting HP-UX HIDS for the First Time”

  2. Start the System Manager on the administration host. For detailed instructions, see “Starting the HP-UX HIDS System Manager”

    NOTE: The first time you start the System Manager, the product license agreement is displayed.

  3. Use the predefined schedules, or create surveillance schedules from the Schedule Manager screen. For detailed instructions, see “Creating a Surveillance Schedule”

  4. Define the agent hosts that you want to monitor using the Host Manager screen. These are the hosts that you specified in step 1. For detailed instructions, see “Managing Hosts”

  5. Check the status of the agents using the System Manager screen. The host names must be listed in the Monitored Hosts list and they must be listed as Available in the Status column.

  6. Select a host in the Monitored Hosts list. Select a schedule in the Schedules list, and click the Activate button to download the schedule on the host. Repeat this step for different schedules and different hosts. An agent host can run only one schedule at a time. If the downloads are successful, their status will be Scheduled or Running , depending on their timetables. For more information, see “Activating Schedules on Agent Hosts”.

  7. Double-click on a host entry in the System Manager screen to see alerts or errors for the host.



Chapter 3 Getting Started with HP-UX HIDS
  		 


Agents  
Printable version
Privacy statement Using this site means you accept its terms Feedback to webmaster
© Hewlett-Packard Development Company, L.P.