Skip to main content

Intezer Protect Sensor Installation: Manual Installation (Advanced)

  • Updated

Available only for Intezer Protect enterprise licenses. 

Intezer Protect License Key

A license key is used to deploy the sensor & associate it with your account. The sensor license key is available on the account details page.

Sensor configuration

The sensor configuration is a yaml file located at /etc/intezer/config.yml

Custom configurations like proxy_address could be applied by editing the sensor configuration file.

Optional configuration

key

value

proxy_address

Proxy URL (http://proxy-url:port or https://proxy-url:port)

proxy_username

Basic Auth username

proxy_password

Basic Auth password

label

A label to assign to the host (50 characters text)

disable_kill_process

Disable sensor process termination capability (true or false)

 

Example configuration file

# Mandatory values for communication with the backend

server_base_url: https://protect.intezer.com/api/v2/sensor

license_key: license_key

# Optional proxy configuration

proxy_address: http://proxy-url:port

proxy_username: username

proxy_password: password

# Optional label assignment

label: example-label

Installation

RHEL / CentOS / Amazon Linux 2

  • Download the sensor .rpm file
wget -O /tmp/intezer-protect.x86_64.rpm $(wget -O - "https://protect.intezer.com/v2/install/pkg?key=<SENSOR_LICENSE_KEY>&pkg_type=rpm")

Replace the <SENSOR_LICENSE_KEY> placeholder with your account license key

  • Verify the downloaded package sha256. The following commands output should be the same
wget -q -O - https://protect-sensor-public.s3.amazonaws.com/intezer-protect.x86_64.rpm.sha256
sha256sum /tmp/intezer-protect.x86_64.rpm | cut -d " " -f 1

In case of a mismatch please contact support@intezer.com.

  • Install Protect sensor .rpm file
sudo rpm -i /tmp/intezer-protect.x86_64.rpm
sudo rm /tmp/intezer-protect.x86_64.rpm

Ubuntu / Debian

  • Download the sensor .deb file
wget -O /tmp/intezer-protect.amd64.deb $(wget -O - "https://protect.intezer.com/v2/install/pkg?key=<SENSOR_LICENSE_KEY>&pkg_type=deb")

Replace the <SENSOR_LICENSE_KEY> placeholder with your account license key

  • Verify the downloaded package sha256. The following commands output should be the same
wget -q -O - https://protect-sensor-public.s3.amazonaws.com/intezer-protect.amd64.deb.sha256

sha256sum /tmp/intezer-protect.amd64.deb | cut -d " " -f 1

In case of a mismatch please contact support@intezer.com

  • Install Protect sensor .deb file
sudo dpkg -i  /tmp/intezer-protect.amd64.deb

sudo rm /tmp/intezer-protect.amd64.deb

Configure the sensor

  • Download the sensor configuration file
wget -O /tmp/sensor_config.yml https://protect.intezer.com/v2/install/config.yml?key=<SENSOR_LICENSE_KEY>

Replace the <SENSOR_LICENSE_KEY> placeholder with your account license key

  • Move the sensor configuration file to the installation directory
sudo cp /tmp/sensor_config.yml /etc/intezer/config.yml
sudo rm /tmp/sensor_config.yml
  • Adjust the sensor configuration file permission
sudo chmod 600 /etc/intezer/config.yml
  • Apply custom configuration (Optional): At this step, you may apply custom configuration such as proxy_address. Read more about sensor configuration.

Start the sensor using systemd

  • Start the sensor service
sudo systemctl enable intezer-protect
sudo systemctl start intezer-protect
  • Verify the sensor service status
sudo systemctl status intezer-protect

Example output:

intezer-protect.service - Intezer Protect Sensor
Loaded: loaded (/etc/systemd/system/intezer-protect.service; enabled; vendor preset: enabled)
Active: active (running) since Sun 2020-11-22 09:13:39 IST; 4h 6min ago

Start the sensor using upstart

  • Start the sensor service
sudo initctl start intezer-protect
  • Verify the sensor service status
sudo initctl status intezer-protect

 

Return to top