This article describes the installation process on CentOS 7 as installed from the official Minimal installer. If you already have some software installed, the installation process might differ.
If you have a problem with your connection, use the following command to list available network devices:
nmcli d
To connect to the internet, use the simple tool nmtui
which works in the command line.
To finish the installation, you can use a basic Linux tool of your choice. This guide uses nano wget
.
sudo yum install nano wget -y
wget https://dev.mysql.com/get/mysql80-community-release-el7-3.noarch.rpm
rpm -import https://repo.mysql.com/RPM-GPG-KEY-mysql-2022
sudo rpm -Uvh mysql80-community-release-el7-3.noarch.rpm
sudo yum install mysql-community-server -y
sudo nano /etc/my.cnf
max_allowed_packet=33M
log_bin_trust_function_creators=1
innodb_log_file_size=150M
innodb_log_files_in_group=2
sudo systemctl start mysqld
sudo grep 'temporary' /var/log/mysqld.log
mysql -u root -p
ALTER USER 'root'@'localhost' IDENTIFIED BY 'super_strong_new_password';
Query OK, 0 rows affected (0.02 sec)
quit
sudo yum install unixODBC -y
wget https://downloads.mysql.com/archives/get/p/10/file/mysql-connector-odbc-8.0.17-1.el7.x86_64.rpm
sudo rpm -ivh mysql-connector-odbc-8.0.17-1.el7.x86_64.rpm --nodeps
sudo myodbc-installer -a -d -n "MySQL ODBC 8.0.17" -t "Driver=/usr/lib64/libmyodbc8w.so"
sudo myodbc-installer -d -l
sudo yum install openssl -y
sudo yum install xorg-x11-server-Xvfb -y
sudo yum install cifs-utils
qtwebkit-devel
package.sudo yum install -y epel-release
sudo yum install qtwebkit-devel
yum install krb5-workstation
sudo yum install openldap-clients cyrus-sasl-gssapi cyrus-sasl-ldap -y
wget https://download.eset.com/com/eset/apps/business/era/server/linux/latest/server-linux-x86_64.sh
chmod +x server-linux-x86_64.sh
touch installer.sh
sudo ./server-linux-x86_64.sh \
--skip-license \
--db-type="MySQL Server" \
--db-driver="MySQL ODBC 8.0.17" \
--db-hostname=localhost \
--db-port=3306 \
--db-admin-username=root \
--db-admin-password=password form step II.12. \
--server-root-password=password \
--db-user-username=erauser \
--db-user-password=strong complex password \
--cert-hostname="hostname, IP, FQDN"
db-user-password
. A weak password will cause the installation to fail.sudo sh installer.sh
SELinux policy... failure
. That can be ignored if you do not use SELinux.sudo systemctl start eraserver
sudo systemctl status eraserver
You should see that the service is active.
yum install java-1.8.0-openjdk tomcat
wget https://download.eset.com/com/eset/apps/business/era/webconsole/latest/era.war
sudo cp era.war /var/lib/tomcat/webapps/
era.war
file.sudo systemctl restart tomcat
ls /var/lib/tomcat/webapps
The output should resemble the following:
era era.war
http://10.1.0.1:8080/era
The PROTECT Server is deployed where 10.1.0.1
is replaced by the IP address of your machine.
Continue to the next section if you can open the ESET PROTECT Web Console and log in with Administrator credentials (the password was set in the installer script as server-root-password).
The connection to the Web Console is now available only via HTTP. You can set up HTTPS connection..
If you are unable to connect to the Web Console, there are a few possible reasons:
sudo systemctl status eraserver
sudo systemctl status tomcat
If one of the services is not active, start it.sudo systemctl start tomcat
To make Tomcat start after each boot run:
sudo systemctl enable tomcat
FirewallD
, so use the following commands to permanently open port 8080:firewall-cmd --zone=public --add-port=8080/tcp --permanent
firewall-cmd --reload
wget https://download.eset.com/com/eset/apps/business/era/agent/latest/agent-linux-x86_64.sh
chmod +x agent-linux-x86_64.sh
touch agent_installer.sh
nano agent_installer.sh
sudo ./agent-linux-x86_64.sh \
--skip-license \
--hostname=10.1.0.1 \
--port=2222 \
--webconsole-user=Administrator \
--webconsole-password=password \
--webconsole-port=2223
where:
sudo sh agent_installer.sh
When prompted, press y to accept the certificate.
You can ignore any errors about SELinux returned by the installer.
7. Set the ESET Management Agent service to start and enable starting after computer boot-up.
sudo systemctl enable eraagent
sudo systemctl start eraagent
rm -rf agent_installer.sh
rm -rf agent-linux-x86_64.sh
rm -rf installer.sh
rm -rf era.war
rm -rf mysql80-community-release-el7-3.noarch.rpm
rm -rf mysql-connector-odbc-8.0.17-1.el7.x86_64.rpm
rm -rf qtwebkit-2.3.4-29.fc32.x86_64.rpm
rm -rf server-linux-x86_64.sh