<< PREVIOUS NEXT >>

WINDOWS 2003

NOTE:  

For Windows 2003 servers:

• Unverified Process with long directory or process name is not blocked

• "Access denied" message is not displayed when a process is blocked

• Zero-Dwell Time Protection is not available. Contact Virsec Technical representative for more information

SUPPORTED VSP FEATURES

1. For Windows 2003 

   1. Only the Core license features - Executable Allowlisting and AppControl Policies are supported

   2. Other features – File System Monitoring, Memory Exploit Protection, Buffer Error Protection and Web Application Protection are not supported

   3. VSP is not supported for hosts running hypervisor: Hyper-V

   4. Out of the box protection actions are not available

   5. Probe Password protection feature is not available

PRE-REQUISITE

Ensure that PowerShell is installed

PROBE INSTALLATION

Install VSP Probe on the Application Instance using the below process:

1. Using any browser, navigate to the Local File Repository URL: http://<Local Repository URL>

   1. Navigate to the directory vsp. To install all the available SKUs (VSP-Enterprise, VSP-Web, VSP-Memory and VSP-Host), follow the below steps:

   2. Download this file vsp_install_vm.bat to the server

      

   3. Execute the below commands at the command prompt, while logged in as an Administrator:

      1. The below command displays the help menu

         

         vsp_install_vm.bat -h

          

          

         

      2. Execute the below command to install the probe

          

         NOTE:  

         For Probe uninstallation, use the option -U with this script only

          

         

         vsp_install_vm.bat -c <CMS_IP> -i <Host_IP> -k <VSP_Kafka_Node_IP> -l <LFR_IP> -s <SKU>

          

         1. Parameter "-c" CMS_IP – IP Address of CMS

         2. (Optional) Parameter "-C" <CMS DNS Name> – Custom DNS name for CMS

         3. (Optional) Parameter "-e" - To indicate Remote vRule configuration. Do not provide this option for Remote vRule option

         4. (Optional) Parameter "-H" – Entries are not added in the /etc/host file to resolve the LFR and CMS DNS names. If this parameter is used, ensure that the parameters -C and -K are provided

         5.  (Optional) Parameter "-i" Host_IP – IP Address of Application Instance (Host)

         6. (Optional) Parameter "-k" VSP_Kafka_Node_IP – IP Address of Kafka

         7. (Optional) Parameter "-K" <Kafka DNS Name> – Custom DNS name for Kafka

         8. Parameter "-l" LFR_IP - IP Address of LFR

         9. (Optional) Parameter "-L" LFR_Port - VSP LFR Port (Default port is 80)

         10. (Optional)  Parameter "-n" Hostname - Hostname of the Application Instance. This is utilized during probe registration with CMS

         11. (Optional) Parameter "-p" Host Profile Tag – Appropriate Host Profile Tag

         12. (Optional) Parameter "-P" – To enable pristine host mode for VSP-Host

         13. (Optional) Parameter "-q" Kafka_Container_Port – VSP Kafka Port (Default port is 9092)

         14. (Optional) Parameter "-r" – To restart VSP services after installation. They are not restarted by default

         15. Parameter "-s" SKU - Provide the required SKU. Allowed values are web, host, mem

         16. (Optional) Parameter "-t" – List of comma-separated Application Service tags to enable a Probe to auto-associate with a CMS Application

         17. (Optional) Parameter "-u" – To uninstall already existing Probe services and install the latest available version

         18. (Optional) Parameter "-U" – To uninstall already existing Probe services

         19. (Optional) Parameter "-v" – To print Verbose information. Allowed values are 0 (INFO level), 1 (DEBUG level) and 2 (TRACE level)

         20. (Not applicable for Windows 2003) (Optional) Parameter "-X" – To set the password to stop/modify a service using VSP-CLI utility. When this parameter is used, the user is prompted to provide the password (this method is preferred due to security reasons). A valid password must be 16 (minimum) – 511 (maximum) characters in length and must have alphanumeric characters in both upper and lower cases. Once the password is set, VSP Service start/stop (using services.msc OR sc command) is not allowed

         21. (Not applicable for Windows 2003) (Optional) Parameter "-x" – To set the password to stop/modify a service using VSP-CLI utility. When this parameter is used, the password must be provided along with the command. A valid password must be 16 (minimum) – 511 (maximum) characters in length and must have alphanumeric characters in both upper and lower cases. Once the password is set, VSP Service (start/stop using services.msc OR sc command) is not allowed

         22. (Optional) Parameter "-z" – Path of the zip file of VSP SKU package

2. If the parameter -r is provided during installation, the installed probe instance automatically registers with VSP CMS and a restart of the server is NOT required

3. If the parameter -r is not provided during installation, start the installed VSP ASI service

   1. Method 1: Using UI

      

   2. Method 2: Using Command

      

      sc start vsp

       

4. Verification

   1. On the Application Instance, VSP Probe is installed as a service

      

   2. In CMS, navigate to Deploy > Probes

      

   3. Verify that the Probe server is listed and in Connected state

      

NOTE:  

For any publisher trust issues on Windows 2003, refer to the troubleshooting section for the recommended actions

<< PREVIOUS NEXT >>