Link Search Menu Expand Document

Pre-requisites for Firesec Deployment

System Requirements

ComponentRecommendedNotes
OSWindows Server 2016 or abovewith Local Admin privileges on this machine
Core12 
RAM16 GB 
Storage500 GB 
Web ServerInternet Information Services (IIS) 10with URL Rewrite Module
DB ServerSQL SERVER 2016 or abovewith SSMS

Additional Requirements

  • Local Administrator privileges1 are required in order to deploy Firesec on the Server.
  • Hosting Firesec Web App on HTTPS2 requires port 443 or a custom port to be opened on that server and firewall. For hosting on HTTP, port 80 or a custom port needs to be opened.
  • .Net Framework 4.8, SQL Server and Management Studio, latest version of browsers3, Postman, Putty to be pre-installed on the server.4
  • Network Access from deployment Server to respective Network Devices (Firewalls) must be enabled/allowed.
  • An Admin user5 to be created in respective Network Devices (Firewalls).
  • HTTP/2 disabled on Server and browsers (Chrome / Edge / Firefox).
  • Remote access to the server for deployment.
  • REST API access is required for getting necessary configuration details from the Firewalls.6

Note

Users accessing the database with type of rights defined for each users
- IIS APPPPOOL\DefaultAppPool  (dbo)
- NT AUTHORITY\SYSTEM (default/system defined)
- NT AUTHORITY\LOCAL SERVICE (default/system defined)

  1. One Windows user with administrator privileges to install/configure and access IIS, Database and Windows Services. 

  2. For https, a self-signed certificate from the customer is required. This can be generated from PowerShell / IIS. 

  3. Latest version of browsers (Chrome / Edge / Firefox). Postman for testing REST API Request & Responses and putty access for testing via CLI. 

  4. Customer to complete the installation of these tools prior to Firesec Deployment. 

  5. A REST API* & CLI Admin user with appropriate user permissions to execute show … type of commands 

  6. Fortinet, CheckPoint, PaloAlto, Juniper, Cisco Firepower, SonicWall, Sophos etc.