Installation on CentOS 7/RHEL 7 (EOL)¶
Warning
CentOS 7 is no longer supported by IDSTower v2.5.2 and above, please consider upgrading to newer versions of CentOS to use the latest version of IDSTower, Moreover, CentOS 7 will reach End Of Life (EOL) on June 30, 2024, meaning it will no longer receive security updates and patches.
Quick install¶
After obtaining the License Key, please use the our interactive installation script to quickly install IDSTower:
$ curl -O https://download.idstower.com/install_script/1.0.7/install-IDSTower.sh
$ echo "c07445dd1a1579e9ace54761bf4c1506c5edc1fa66aad4af46c4037f27beafe7 install-IDSTower.sh" \
| sha256sum -c -
$ bash install-IDSTower.sh -i
Manual install¶
Please follow the following steps to install IDSTower on CentOS 7/RHEL 7:
Add IDSTower Yum repository
$ sudo bash -c 'cat > /etc/yum.repos.d/idstower.repo << EOF
[idstower]
name = IDSTower
baseurl = https://download.idstower.com/repos/yum/\$basearch/
enabled=1
gpgcheck=0
EOF'
Add MariaDb 10.3 Yum repository
$ sudo bash -c 'cat > /etc/yum.repos.d/mariadb.10.3.repo << EOF
[mariadb]
name = MariaDB
baseurl = https://archive.mariadb.org/mariadb-10.3/yum/centos7-amd64/
gpgkey=https://yum.mariadb.org/RPM-GPG-KEY-MariaDB
gpgcheck=1
EOF'
Install EPEL repository and IDSTower
$ sudo yum install epel-release -y
$ sudo yum install idstower -y
Start MariaDB service
$ sudo systemctl enable mariadb.service
$ sudo systemctl start mariadb.service
$ sudo systemctl status mariadb.service
(Recommended) Run mysql_secure_installation Script
$ sudo /usr/bin/mysql_secure_installation
Edit the appsettings.json configuration file (located in: /opt/idstower/) and set the following settings
set the LicenseKey key value with the key you obtained from the license page.
set the URL key value with the url you want IDSTower to listen to, example: http://idstower.mydomain.local, this url must be reachable from your Suricata hosts, note that you can use ip addresses as well.
set the MySQL Database settings like host, port, database name, username & password via the Database key.
run IDSTower with –init-database option to initialize the database:
$ cd /opt/idstower/
$ sudo ./IDSTower --init-database
Note
If you wish to initialize the database manually, you can find the schema initialization script here: https://download.idstower.com/packages/latest/sql_scripts/
You can easily import the script by running the following command:
$ sudo mysql -u [username] -p [DatabseName] < idstower_schema_script.sql
Add an admin user to IDSTower:
$ sudo ./IDSTower -a [Your Admin Username]
example:
$ sudo ./IDSTower -a admin
Enable & Start IDSTower Service
$ sudo chown -R idstower:idstower /var/log/idstower/*
$ sudo systemctl enable idstower.service
$ sudo systemctl start idstower.service
Verify that IDSTower Service started correctly
$ sudo systemctl status idstower.service
Make sure your firewall allows ports 80 & 443 (or the ports you are running IDSTower on):
$ sudo firewall-cmd --zone=public --permanent --add-service=http
$ sudo firewall-cmd --zone=public --permanent --add-service=https
$ sudo firewall-cmd --reload
Now you can access IDSTower web interface using the url set in your appsettings.json