Installation: OpenSSL Signed Installation Guide

@AlanOrlikoski edited this page Jan 4, 2019 · 24 revisions

This type of installation is for users with some experience with linux administration. It is ideal for those that are required to build upon a baseline (gold disk) image. It also works very well for cloud based instances as a build script. It ensures that the most recent versions of the software are used and that it is configured the same way every time. Also note that all ciphers and keys are generated at run time and therefore are as unique as any script can make them.

Installation instructions

  • Start with Ubuntu 16.04 LTS Server base image

  • Log into system with an account that has sudo privledges

  • The buildskadi.sh script downloads the signed buildskadi.tgz file and verifies the signature using openssl. If anything interrupts the download or if the signature doesn't match then the installation exits with an error message.

  • Start the script from a terminal using the commands below This could take anywhere from 5 - 60+ minutes depending on the speed of the internet connection

Usernames and Passwords made at installation time

wget -O /tmp/buildskadi.sh https://raw.githubusercontent.com/orlikoski/skadi/master/scripts/buildskadi.sh
sudo bash /tmp/buildskadi.sh

Usernames and Passwords set to skadi:skadi

export DEFAULT_PASSWORDS="true"
wget -O /tmp/buildskadi.sh https://raw.githubusercontent.com/orlikoski/skadi/master/scripts/buildskadi.sh
sudo -E bash /tmp/buildskadi.sh

Post Installation

The final completion will look something like the following. Make sure to note the usernames and passwords as they will be needed to access the tools:

NOTE: The OS account will only appear if the skadi user did not already exist

Skadi Setup is Complete

The Nginx reverse proxy setup and can be accessed at http://<IP Address> or http://localhost if installed locally:
The following are the credentials needed to access this build and are stored in /opt/skadi_credentials if run-time generated credentials was chosen: 

Proxy & Grafana Account:
   - Username: skadi_<random chars>
   - Password: <random chars>

TimeSketch Account:
   - Username: skadi_<random chars>
   - Password: <random chars>

OS Account:
   - Username: skadi
   - Password: <random chars>

The following files have credentials used in the build process stored in them:
  - /opt/skadi_credentials (only if run-time generated credentials chosen)
  - /opt/Skadi/Docker/.env
  - /opt/Skadi/Docker/skadi_dockprom/.env

Setup Kibana with Skadi Default Objects (Dashboards, Visualizations, Searches, Default Pattern Index)

In Kibana click Management -> Saved Objects -> Import and use the file that has all of the Skadi specific Dashboards/Visualizations/Searches kibana_6.x.json

This file now includes all of the saved objects as well as the default pattern index.

You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session.
Press h to open a hovercard with more details.