Installation on CentOS 7/RHEL 7#

Quick install#

After obtaining the License Key, please use the our interactive installation script to quickly install IDSTower:

$ curl -O
$ echo "6eef7644400dbc1ebfea553c912ed9010c086dd4ca551e522191df406ad28181" \
 | sha256sum -c -
$ bash -i

Manual install#

Please follow the following steps to install IDSTower on CentOS 7/RHEL 7:

  1. Add IDSTower Yum repository

$ sudo bash -c 'cat > /etc/yum.repos.d/idstower.repo << EOF
name = IDSTower
baseurl =\$basearch/
  1. Add MariaDb 10.3 Yum repository

$ sudo bash -c 'cat > /etc/yum.repos.d/mariadb.10.3.repo << EOF
name = MariaDB
baseurl =
  1. Install EPEL repository and IDSTower

$ sudo yum install epel-release -y
$ sudo yum install idstower -y
  1. Start MariaDB service

$ sudo systemctl enable mariadb.service
$ sudo systemctl start mariadb.service
$ sudo systemctl status mariadb.service
  1. (Recommended) Run mysql_secure_installation Script

$ sudo /usr/bin/mysql_secure_installation
  1. Edit the appsettings.json configuration file (located in: /opt/idstower/) and set the following settings

    • set the LicenseKey key value with the key you obtained from the license page.

    • set the URL key value with the url you want IDSTower to listen to, example: http://idstower.mydomain.local, this url must be reachable from your Suricata hosts, note that you can use ip addresses as well.

    • set the MySQL Database settings like host, port, database name, username & password via the Database key.

  2. run IDSTower with –init-database option to initialize the database:

$ cd /opt/idstower/
$ sudo ./IDSTower --init-database


If you wish to initialize the database manually, you can find the schema initialization script here:

You can easily import the script by running the following command:

$ sudo mysql -u [username] -p [DatabseName] < idstower_schema_script.sql
  1. Add an admin user to IDSTower:

$ sudo ./IDSTower -a [Your Admin Username]


$ sudo ./IDSTower -a admin
  1. Enable & Start IDSTower Service

$ sudo chown -R idstower:idstower /var/log/idstower/*
$ sudo systemctl enable idstower.service
$ sudo systemctl start idstower.service
  1. Verify that IDSTower Service started correctly

$ sudo systemctl status idstower.service
  1. Make sure your firewall allows ports 80 & 443 (or the ports you are running IDSTower on):

$ sudo firewall-cmd --zone=public --permanent --add-service=http
$ sudo firewall-cmd --zone=public --permanent --add-service=https
$ sudo firewall-cmd --reload
  1. Now you can access IDSTower web interface using the url set in your appsettings.json