Preparation

Certificates

  1. Create a management server certificate in PFX format with a private key (you need to issue a domain CA certificate) with the following attributes:
    1. Subject: Common name - <DNS name of the management server>
    2. Subject Alternative name:
      1. DNS - <DNS name of the management server>
      2. DNS - <DNS domain name>

  2. Certificate Authority certificate in CRT formatĀ  (Base64)

Preparing a Linux Management server

  1. Set a static address for the server
  2. Set a static server name in FQDN format
  3. Check that domain machines can be defined by DNS name from the server

  4. Install Docker and Docker Compose

    In Centos and RHEL distributions (versions 8 and higher), docker packages replaced with podman.
    To install docker and docker compose, use the official documentation.

  5. Check that the Linux server can be defined from domain machines by DNS name

Preparing a Linux Access server

  1. Set a static address for the server
  2. Set a static server name in FQDN format
  3. Check that domain machines can be defined by DNS name from the server

  4. Install Docker and Docker Compose

    In Centos and RHEL distributions (versions 8 and higher), docker packages replaced with podman.

    To install docker and docker compose, use the official documentation.

  5. Check that the Linux server can be defined from domain machines by DNS name
  6. Change the standard SSH port (port 22 will be used by Indeed Identity PAM SSH Proxy)


  • No labels