Hello Dears,

Kindly I would Like To Know if there is Additional Parameters Needed for Installing the Guardium S-TAP Agent in the AIX Servers that Contains the Database and the Required Parameters for AIX And for Windows As when i try as the Documents I sometimes found Errors with the MS SQL DB and I will install in AIX So I would Like To Know If there are additional Parameters Needed to avoid Any Issues during the Instalation.

and Kindly does the S-Tap Verification is very Important to Do or I can Ignore it as there are some Agent Verified Successfully and some Failed to Verify.

Thanks

------------------------------
Moustafa Salah
------------------------------

Hi Moustafa Salah,

S-Tap verification is not mandatory(as far as I have experienced). If you are getting traffic, that is fine.

AIX or Linux OS:  (perl is mandatory with 5.8 or higher version)
Script at AIX or LInux machine: ./<installer_name> -- --dir <install_dir> --sqlguardip <guardium-machine ip> --tapip <database ip> --perl <perl dir> -q

Use the parameters for S-TAP installation from Collector to Database given below for Blocking, Redaction(masking) policies:

ATAP_ENABLED - 1
KTAP_ENABLED - 1
KTAP_ALLOW_MODULE_COMBOS - Y
KTAP_LIVE_UPDATE - Y
STAP_ENABLED - 1
STAP_FIREWALL_INSTALLED - 1
STAP_UID_CHAIN_TRACE - 1

link: https://www.ibm.com/support/knowledgecenter/SSMPHH_11.2.0/com.ibm.guardium.doc.stap/gim/t_gim_client_install_unix.html

MS-SQL:  install the GIM client at the MS-SQL server and once it communicating to collector follow below steps:

Use the parameters for S-TAP installation from Collector to Database given below for Blocking, Redaction(masking) policies:

WINSTAP_FIREWALL_INSTALLED = 1

https://www.ibm.com/support/knowledgecenter/SSMPHH_11.2.0/com.ibm.guardium.doc.stap/stap/r_stapparmsw_firewall.html

Hope this information is fine for you.

Thanks,
Panendar Rao.C





------------------------------
PHANENDRA RAO CHAVANA
------------------------------

Hello PHANENDRA RAO CHAVANA,

Firstly, I would like to thank you for your Reply and I would like to ask if this all parameters are mandatory as there is default values, shall I use all this parameter 

and I installed the Windows STAP in 2 Windows machines and the STAP Installed Successfully into the Servers but one of them failed in verification(MSSQL) and the Other(Oracle) has no Inspection Engine (in STAP Control) in spite of the Ports are Open So, Did you see this issue before or you have a solution for this issue?

Thanks

------------------------------
Moustafa Salah
------------------------------

Original Message:
Sent: Tue November 03, 2020 07:26 AM
From: PHANENDRA RAO CHAVANA
Subject: AIX S-TAP Installation Parameters

Hi Moustafa Salah,

S-Tap verification is not mandatory(as far as I have experienced). If you are getting traffic, that is fine.

AIX or Linux OS:  (perl is mandatory with 5.8 or higher version)
Script at AIX or LInux machine: ./<installer_name> -- --dir <install_dir> --sqlguardip <guardium-machine ip> --tapip <database ip> --perl <perl dir> -q

Use the parameters for S-TAP installation from Collector to Database given below for Blocking, Redaction(masking) policies:

ATAP_ENABLED - 1
KTAP_ENABLED - 1
KTAP_ALLOW_MODULE_COMBOS - Y
KTAP_LIVE_UPDATE - Y
STAP_ENABLED - 1
STAP_FIREWALL_INSTALLED - 1
STAP_UID_CHAIN_TRACE - 1

link: https://www.ibm.com/support/knowledgecenter/SSMPHH_11.2.0/com.ibm.guardium.doc.stap/gim/t_gim_client_install_unix.html

MS-SQL:  install the GIM client at the MS-SQL server and once it communicating to collector follow below steps:

Use the parameters for S-TAP installation from Collector to Database given below for Blocking, Redaction(masking) policies:

WINSTAP_FIREWALL_INSTALLED = 1

https://www.ibm.com/support/knowledgecenter/SSMPHH_11.2.0/com.ibm.guardium.doc.stap/stap/r_stapparmsw_firewall.html

Hope this information is fine for you.

Thanks,
Panendar Rao.C





------------------------------
PHANENDRA RAO CHAVANA
------------------------------