Installation on AWS Amazon Linux 2

Warning

Amazon Linux 2 is no longer supported by IDSTower v2.5.2 and above, please consider upgrading to newer versions of Amazon Linux to use the latest version of IDSTower, Moreover, Amazon Linux 2 will reach End Of Life (EOL) on June 30, 2025, meaning it will no longer receive security updates and patches.

Quick install

After obtaining the License Key, please use the our interactive installation script to quickly install IDSTower:

$ curl -O https://download.idstower.com/install_script/1.1.0/install-IDSTower.sh
$ echo "a2d8a712add3fc732ce517cef54007817e432f9434e19d631772da96c5853313 install-IDSTower.sh" \
 | sha256sum -c -
$ bash install-IDSTower.sh -i

Manual install

Please follow the following steps to install IDSTower on AWS Amazon Linux 2:

  1. Add IDSTower Yum repository

$ sudo bash -c 'cat > /etc/yum.repos.d/idstower.repo << EOF
[idstower]
name = IDSTower
baseurl = https://download.idstower.com/repos/yum/\$basearch/
enabled=1
gpgcheck=0
EOF'
  1. Add MariaDb (10.6) YUM repository

$ sudo bash -c 'cat > /etc/yum.repos.d/mariadb.10.6.repo << EOF
[mariadb]
name = MariaDB
baseurl = http://yum.mariadb.org/10.6/centos7-amd64
gpgkey=https://yum.mariadb.org/RPM-GPG-KEY-MariaDB
gpgcheck=1
EOF'
  1. Install IDSTower

$ sudo amazon-linux-extras install ansible2 -y
$ sudo yum install idstower -y
  1. Start MariaDB database service

$ sudo systemctl enable mariadb.service
$ sudo systemctl start mariadb.service
$ sudo systemctl status mariadb.service
  1. Edit the appsettings.json configuration file (located in: /opt/idstower/) and set the following settings

    • set the LicenseKey key value with the key you obtained from the license page.

    • set the URL key value with the url you want IDSTower to listen to, example: http://idstower.mydomain.local, this url must be reachable from your Suricata hosts, note that you can use ip addresses as well.

    • Note: On AWS if you use an IP Address in URL, it cannot be your public IP address, please use the private one.

    • set the MySQL Database settings like host, port, database name, username & password via the Database key.

  2. run IDSTower with –init-database option to initialize the database:

$ cd /opt/idstower/
$ sudo ./IDSTower --init-database

Note

If you wish to initialize the database manually, you can find the schema initialization script here: https://download.idstower.com/packages/latest/sql_scripts/

You can easily import the script by running the following command:

$ sudo mysql -u [username] -p [DatabseName] < idstower_schema_script.sql
  1. Add an admin user to IDSTower:

$ sudo ./IDSTower -a [Your Admin Username]

example:

$ sudo ./IDSTower -a admin
  1. Enable & Start IDSTower Service

$ sudo chown -R idstower:idstower /var/log/idstower/*
$ sudo systemctl enable idstower.service
$ sudo systemctl start idstower.service
$ sudo systemctl status idstower.service
  1. Now you can access IDSTower web interface using the url set in your appsettings.json