Join GitHub today
GitHub is home to over 31 million developers working together to host and review code, manage projects, and build software together.Sign up
Installation: OpenSSL Signed Installation Guide
This type of installation is for users with some experience with linux administration. It is ideal for those that are required to build upon a baseline (gold disk) image. It also works very well for cloud based instances as a build script. It ensures that the most recent versions of the software are used and that it is configured the same way every time. Also note that all ciphers and keys are generated at run time and therefore are as unique as any script can make them.
Start with Ubuntu 16.04 LTS Server base image
Log into system with an account that has sudo privledges
The buildskadi.sh script downloads the signed buildskadi.tgz file and verifies the signature using openssl. If anything interrupts the download or if the signature doesn't match then the installation exits with an error message.
Start the script from a terminal using the commands below This could take anywhere from 5 - 60+ minutes depending on the speed of the internet connection
Usernames and Passwords made at installation time
wget -O /tmp/buildskadi.sh https://raw.githubusercontent.com/orlikoski/skadi/master/scripts/buildskadi.sh sudo bash /tmp/buildskadi.sh
Usernames and Passwords set to
export DEFAULT_PASSWORDS="true" wget -O /tmp/buildskadi.sh https://raw.githubusercontent.com/orlikoski/skadi/master/scripts/buildskadi.sh sudo -E bash /tmp/buildskadi.sh
The final completion will look something like the following. Make sure to note the usernames and passwords as they will be needed to access the tools:
NOTE: The OS account will only appear if the
skadi user did not already exist
Skadi Setup is Complete The Nginx reverse proxy setup and can be accessed at http://<IP Address> or http://localhost if installed locally: The following are the credentials needed to access this build and are stored in /opt/skadi_credentials if run-time generated credentials was chosen: Proxy & Grafana Account: - Username: skadi_<random chars> - Password: <random chars> TimeSketch Account: - Username: skadi_<random chars> - Password: <random chars> OS Account: - Username: skadi - Password: <random chars> The following files have credentials used in the build process stored in them: - /opt/skadi_credentials (only if run-time generated credentials chosen) - /opt/Skadi/Docker/.env - /opt/Skadi/Docker/skadi_dockprom/.env
Setup Kibana with Skadi Default Objects (Dashboards, Visualizations, Searches, Default Pattern Index)
In Kibana click Management -> Saved Objects -> Import and use the file that has all of the Skadi specific Dashboards/Visualizations/Searches kibana_6.x.json
This file now includes all of the saved objects as well as the default pattern index.