Installation Prerequisites

This topic lists the tasks you must complete, and the information you must obtain, before installing CTE-U.

Prerequisites

Note

CTE-U v10.0.0, and all subsequent versions, support CipherTrust Manager v2.10 and all subsequent versions. It is not supported with previous versions of CipherTrust Manager.

Make sure you have the following information from the CipherTrust Manager Administrator:

• The registration token for the CipherTrust Manager with which you plan to register the Agent.

• The name of the profile you intend to assign to the client if you want to use a profile other than the default client profile.

• Optionally, the name of the host group to which you want this client to be a part.

Recommendations and Considerations

• The host on which you want to install CTE must support AES-NI hardware encryption. If it does not, any attempt to install or upgrade CTE to release 7.0.0 or later will fail.

• Thales recommends that you install CTE in the default location.

• Do not install CTE on network-mounted volumes such as NFS.

• Make the Installation root directory /opt a real directory.

Network Setup Requirements

* The IP addresses, routing configurations, and DNS addresses must allow connectivity of the CipherTrust Manager to all clients where you install ${cteu_10}.

* If the host is a virtual machine, the VM must be deployed and running.

Port Configuration Requirements

The following port information applies to both Windows and Linux systems.

Communication through a Firewall

If a protected client must communicate with CipherTrust Manager through a firewall, see the CipherTrust Manager documentation to determine which of the ports must be opened through the firewall.

Communication with CipherTrust Manager

The default port for http communication between CipherTrust Manager and the CTE Agent is 443. If this port is already in use, you can set the port to a different number during the CTE Agent installation.