Up
Previous Next

Sheriff CSM™

Example: Configuring High Availability for Sheriff CSM Standard Servers

This topic provides an example of how to configure two Sheriff CSM Standard Servers in a high availability environment.

This configuration uses the following IP addresses:
  • Master: 192.168.7.235 (MasterCSM)
  • Slave: 192.168.7.254 (SlaveCSM)
  • Virtual IP: 192.168.7.236

The primary CSM has the name MasterCSM, and the secondary CSM has the name SlaveCSM.

Important: Do not use spaces in the CSM names!

To deploy two high availability Standard Servers
  1. If not already done, deploy the Sheriff CSM Standard Server according to the instructions in Sheriff CSM Deployments.

  2. Change the root user password in both CSMs, as described in Reset Password for the Root User, making sure that the password is the same in each.

  3. Configure the hostname in the master (primary) CSM:

    1. On the Sheriff Setup Main menu, go to System Preferences > Configure Hostname.
    2. Enter the hostname for the primary component:

      MasterCSM
    3. Press Enter (<OK>).
  4. Configure the hostname in the slave (secondary) CSM:

    1. Go to System Preferences > Configure Hostname.
    2. Enter the hostname for the secondary component:.
      SlaveCSM
    3. Press Enter (<OK>).
  5. Configure each failover pair to communicate and synchronize with its respective NTP server.

    See High Availability Prerequisites and Restrictions and Configure Synchronization with an NTP Server.

  6. Restart both CSMs.

  7. On the secondary (slave) CSM, launch the Sheriff console.

  8. On the Sheriff Setup Main menu, choose Jailbreak System

  9. When you see the command line prompt, edit the file /etc/vigilante/vigilante_setup.conf as below

    Example of <a class="foswikiNewLink" href="/docs/bin/edit/Sheriff/AlienVault?topicparent=Sheriff.ExampleConfiguringHighAvailabilityForSheriffCSMStandardServers" rel="nofollow" title="Create this topic">AlienVault</a> ossim_setup.conf file for secondary Standard Server HA configuration.

  10. Save the changes.

  11. Enable HA in the secondary node by entering:

    screen sheriff-ha-assistant -e

    Note: Use screen to keep the process running in the background even when the session disconnects.

  12. Check that the secondary node is up and running:

    sheriff-ha-assistant –s
  13. When prompted, enter the root user password for the primary (master) server.

    After about five minutes, you see output, showing HA status for the secondary (slave) heartbeat status should be Running.

  14. On the primary (master) CSM, log into the Sheriff console.

  15. On the Sheriff Setup Main menu, choose Jailbreak System.

  16. Edit the /etc/vigilante/vigilante_setup.conf file as below

    Example of <a class="foswikiNewLink" href="/docs/bin/edit/Sheriff/AlienVault?topicparent=Sheriff.ExampleConfiguringHighAvailabilityForSheriffCSMStandardServers" rel="nofollow" title="Create this topic">AlienVault</a> ossim_setup.conf file for primary Standard Server HA configuration.

  17. Save the changes.
  18. Enable HA in the primary node: screen sheriff-ha-assistant -e

    Note: Use screen to keep the process running in the background even when the session disconnects.

  19. Verify that the primary node is up and running:

    sheriff-ha-assistant –s

  20. When prompted, enter the root user password for the secondary server.

    After about five minutes, you see output, showing HA status for the secondary (slave) heartbeat status as Running.

  21. Launch a web browser, check that you can access the Sheriff CSM Standard Server through the ha_virtual_ip assigned in the vigilante_setup.conf file.

    It should look like the following:

Topic revision: r17 - 02 May 2022, SheriffCyberSecurity
Copyright 2020 Sheriff Cyber Security, LLC. All rights reserved.