Server prerequisites - Linux

Ensure to meet the following prerequisites to install the ESET PROTECT Server on Linux:

•You must have a valid license.

•You must have a supported Linux operating system.

•The required ports must be open and available—see the complete list of ports.

•A database server must be installed and configured with a root account. A user account does not have to be created before the installation. The installer can create the account. Microsoft SQL Server on Linux is not supported. However, you can connect the ESET PROTECT Server on Linux to Microsoft SQL Server on Windows.

•ODBC Driver - The ODBC Driver is used to establish a connection with the database server (MySQL).

•Set the server installation file as an executable using the Terminal command:

chmod +x server-linux-x86_64.sh

•We recommend that you use the latest version of OpenSSL 1.1.1. ESET Management Agent also supports OpenSSL 3.x. The minimum supported version of OpenSSL for Linux is openssl-1.0.1e-30. There can be more versions of OpenSSL installed on one system simultaneously. At least one supported version must be present on your system.

oUse the command openssl version to show the current default version.

oYou can list all versions of OpenSSL present on your system. See the filename endings listed using the command sudo find / -iname *libcrypto.so*

oVerify if your Linux client is compatible using the following command: openssl s_client -connect google.com:443 -tls1_2

•Xvfb - Required for proper report printing (Generate Report) on all Linux Server systems. On Rocky Linux, gtk3 is also required for report printing.

•Xauth - The package gets installed together with xvfb.

•cifs-utils - Required for proper Agent deployment to a Windows OS.

•kinit + klist - Kerberos is used to authenticate a domain user when logging in and the Active Directory synchronization task. Ensure to configure Kerberos properly (/etc/krb5.conf). ESET PROTECT On-Prem supports synchronization with multiple domains.

•ldapsearch - Used in AD synchronization task and for authorization.

•snmptrap - Optional; used to send SNMP traps. SNMP also requires configuration.

•SELinux devel package - Used during product installation to build SELinux policy modules. The package is only required on systems with SELinux enabled (RHEL). SELinux may cause problems with other applications. For ESET PROTECT Server, it is not necessary.

•lshw - Install the lshw package on the client/server Linux machine for the ESET Management Agent to report the hardware inventory correctly.

The table below contains the appropriate terminal commands for each package described above for various Linux distributions (run the commands as sudo or root):