Security Requirements

•	The account that you use to run the Opalis UNIX Agent must have the appropriate rights assigned to it for the UNIX computer where it will perform its tasks.

•

The UNIX computers where you have installed the Opalis UNIX Agent must have a port opened to allow connections with the Opalis Management Server or Action Server computer where this Integration Pack is installed. Type this port number in the Port field of the Agent Connection section of the UNIX Server Connection Settings dialog. For instructions, see Connecting to a UNIX Server.

•	UNIX computers that communicate with objects using SSH must be configured to accept SSH connections on the same port that you specify in the Port field of the SSH Connection section of the UNIX Server Connection Settings dialog. For instructions, see Connecting to a UNIX Server.

•	Communication between Opalis Integration Server and the Opalis UNIX Agent is encrypted using SSL. Opalis Software Inc. provides a default key and certificate in the following locations on both of the following locations:

•	Management Server computer – cert.pem and key.pem in C:\Program Files\Common Files\Opalis Software\Opalis Integration Server\Extensions\Support\UNIX.

•	UNIX computer where the Opalis UNIX Agent is installed – cert.pem and key.pem in the Opalis UNIX Agent Root folder.

You can replace the default key and certificate with your own. Copy the default key.pem and cert.pem files to a secure location for business recovery purposes. In the business recovery location, rename the files to opalis_default_key.pem and opalis_default_cert.pem to prevent overwriting the originals. Generate the key and certificate using a key and certificate generation utility. Apply the names key.pem and cert.pem to the appropriate file. Copy your custom-generated key and certificate files into the folders listed above, and into a secure location for business recovery purposes.