Nervepoint Access Manager uses a wizard process to guide you quickly and easily through the installation process, these steps are covered in this article.
Locating the Installation Wizard URL
The first thing that occurs from the moment the VM image is run is the appliance with prompt you to provide root user credentials.
After hitting Set the main VM console will be visible.
The VM Centre interface provides all the required functions for managing the VM itself details of which can be found here, VM Centre Overview.
The installation wizard is accessible on https:<server-address> which is shown in the header of the VM Centre when the VM is started in the above example it is shown by the line:
Simply go to the URL to step through the Installation Wizard.
Step 1: License Agreement
The first step is the agreement of the license.
Step 2: Configure the Administrator
The next step requires a secure password for the administrator account. This is the sole identity that will be allowed access to the Nervepoint Access Manager administration console to manage and configure the server from setting up authentication factors, settings security options, updating email notifications and keeping an eye on the system through the Dashboard and Idetntities as well as setting up and updating the backend connectors such as Active Directory.
The required security rules are visible to the right and any password must conform to this. The password can be changed later from within the admin console.
Step 3: Connecting to Primary Connector
Nervepoint Access Manager requires that at least one Active Directory connector is available to connect to and its from the next step that this is done. This becomes the primary connector for the system regardless of any other connector which are all seen as secondary connectors.
NOTE: Additional connectors are available after the installation has been completed.
Nervepoint Access Manager will try to auto-discover your Active Directory and SSH databases as shown above but if you wish to configure it manually simply select the Configure Manually option.
NOTE: Active Directory must be configured for SSL communication
Step 4: Configure Primary Active Directory Connector
Once discovered Nervepoint Access Manager will pre-populate the settings for your Active Directory, these should be reviewed and any remaining unconfigured items set.
- Name - the name that is used to identity the directory in Access Manager
- Allow Self-Service Account Linking - determines if users from this directory will be able to set their own linked accounts
- Domain Controller - name of AD host
- Backup Controllers - set any backup domain controllers
- Domain - domain of AD
- Service Account Name - name of service account. Account must have administrator permissions on the AD. Nervepoint Access Manager will use this account to communicate and run any required commands against your AD.
- Service Account Password - password associated with Service Account Name.
Additional items can be configured for your AD a basic overview is below but for more details refer to the administration article, Directory Settings and Reconciliation:
- Advanced - add or remove OUs
- Global Catalog - settings required for using AD forests
- Synchronization - settings for reconcilation
Step 5: Testing AD Settings
Nervepoint Access Manager tests the settings you configured to verify permissions and account details are correct. If this step fails you can re-enter the settings.
Step 6: Self Service Questions
Nervepoint Access Manager requires an initial set of Questions for Q&A authentication configuring. A number of defaults are provided and can be changed.
These questions can be amended later and additional questions added from the administration portal after installation, refer to this article for more information, Authentication Basics.
Step 7: Mail Sender Address
Nervepoint Access Manager contains a built in mail server that can be used to send notifications, reminders, and passwords to all your users, to do this an email address must be set to act as a sender. If you wish to use an external mail server you can do so in the system configuration after installation has completed
Step 8: Setting a Self Signed Certificate
The final step allows you to configure a self signed certificate as halfway point to setting up a secure SSL connection using certificates.
Once installed and running you can install a secure SSL certificate following the instructions here, Uploading an SSL Certificate.
The final step is verifying the details you have configured hitting Back allows you to re-configure any step.
Hitting Finish will result in the server being install as per your configuration. Nervepoint Access Manager provides a progress report as below.
Once complete hitting Close results in being redirected to the main Nervepoint Access Manager portal.
You are now ready to start using Nervepoint Access Manager. The next recommended step is to configure the server to suit your business needs, follow the Administration Primer to understand the key components.
A video explaining this process can be found on our Youtube Channel (http://youtube.com/nervepointtech) at http://youtube.com/watch?v=2EkU48oU4cI.