Arctera Enterprise Vault™ Insight Surveillance Installation Guide

Last Published:
Product(s): Enterprise Vault (15.2)
  1. Introducing Insight Surveillance
    1.  
      About Insight Surveillance desktop application
    2.  
      About Insight Surveillance web application
    3.  
      Feature comparison: Arctera Insight Surveillance desktop application Vs Arctera Insight Surveillance web application
    4. Product documentation
      1.  
        White papers on the Arctera Support website
  2. Preparing to install Insight Surveillance
    1. Configuration options for Insight Surveillance
      1.  
        Insight Surveillance configuration for large installations
      2.  
        Insight Surveillance configuration for smaller installations
    2.  
      Supported versions of Enterprise Vault in Insight Surveillance environments
    3. Prerequisites for Arctera Insight Surveillance
      1.  
        Prerequisites for the SQL Server computer
      2.  
        Prerequisites for the Arctera Insight Surveillance server computer
      3.  
        Prerequisites for the Enterprise Vault server computer
      4. Prerequisites for Insight Surveillance
        1.  
          Additional requirements for Arctera Insight Surveillance
        2.  
          Set Kerberos Trusted Delegation
    4.  
      Configuring Outlook to enable the processing of items with many attachments or many recipients
    5.  
      Setting the Windows and ASP.NET Temp folder permissions
    6. Security requirements for temporary folders
      1.  
        Granting additional users and groups access to the temporary folders
    7.  
      Disabling networking facilities that can disrupt a Insight Surveillance environment
    8.  
      Disabling the Windows Search Service on the Insight Surveillance server
    9.  
      Ensuring that the Windows Server service is running on the Insight Surveillance server
    10.  
      Configuring the SQL Server Agent service
    11.  
      Assigning SQL Server roles to the Vault Service account
    12.  
      Installing and configuring the SQL full-text search indexing service
    13.  
      Verifying that Enterprise Vault expands distribution lists
    14. Configuring Intelligent Review API Authentication and Authorization
      1.  
        Setting Kerberos trusted delegation between Surveillance Servers and Surveillance Database Servers
      2.  
        Setting Kerberos trusted delegation between Surveillance Servers and Surveillance Database Servers on IP address
  3. Installing Insight Surveillance
    1. Installing the Insight Surveillance server software
      1.  
        Allowing Enterprise Vault to communicate with Insight Surveillance through the Windows firewall
      2.  
        Creating the configuration database and customer databases
      3.  
        Configuring a dedicated server for Intelligent Review processing (optional deployment configuration)
      4. Configuring Insight Surveillance for use in a SQL Server Always On environment
        1.  
          Using SQL Server Reporting Services in an Always On environment
      5. Installing Insight Surveillance in a clustered environment
        1.  
          Configuring Insight Surveillance for use in a Network Load Balancing cluster
      6.  
        Maximizing security in your Insight Surveillance databases
    2.  
      Uninstalling Insight Surveillance
  4. Appendix A. Ports that Insight Surveillance uses
    1.  
      Default ports for Insight Surveillance
    2.  
      Changing the ports that Insight Surveillance uses
  5. Appendix B. Troubleshooting
    1.  
      Error messages appear in the event log when upgrading to Insight Surveillance 15.2
    2.  
      Enterprise Vault eDiscovery Manager service not created
    3.  
      Enterprise Vault eDiscovery Manager service does not start
    4.  
      "Access is denied" message is displayed when you try to create a customer database on a UAC-enabled computer
    5.  
      Cannot create or upgrade Insight Surveillance customer databases when Symantec Endpoint Protection is running
    6.  
      Error messages when the Intelligent Review (IR) API authentication and authorization fails
  6. Appendix C. Installing and configuring the Enhanced Auditing feature
    1.  
      Overview
    2.  
      Prerequisites for the Enhanced Auditing feature
    3.  
      Installing the Enhanced Auditing feature
    4.  
      Post installation steps
    5.  
      Upgrading the Enhanced Auditing setup
    6.  
      Modifying the Enhanced Auditing setup
    7.  
      Repairing the Enhanced Auditing setup
    8.  
      Uninstalling the Enhanced Auditing setup
    9.  
      Managing access from Arctera Insight Surveillance

Installing the Enhanced Auditing feature

Follow the instructions in this section to perform a first-time installation of the Enhanced Auditing feature.

Before you proceed, note the following:

  • You must belong to the local Administrators group.

  • You must be a domain user.

  • You meet the minimum hardware and software requirements.

To install the Enhanced Auditing feature

  1. Copy the MSI file of the Enhanced Auditing feature on the server you want to use as an audit server.
  2. In Windows Explorer, browse to the MSI file, and then run setup.exe. The setup.exe program launches the Windows Installer (.msi) package.
  3. Click Next on the Welcome screen.
  4. On the Prerequisites screen, see if you meet the listed prerequisites. If yes, select the I have read and met the above prerequisites check box and then click Next.
  5. On the Prerequisite Status screen, the installer performs a check for all required software. When the prerequisite check is completed, click Next.
  6. On the End-User License Agreement screen, read the Arctera Software License Agreement. If you agree the terms, select the I accept the terms in the License Agreement check box and then click Next.
  7. On the Installation location screen, the default installation location is displayed. If you want to use a different installation location, click Browse to select the installation location.
  8. On the Auditing Service Account Login screen, provide the following account details for the Auditing Service.

    • Domain

    • Username

    • Password

  9. On the Arctera Enhanced Auditing Configuration Welcome screen, provide the following required details for creating the Audit Server URL and enabling it for secure access.

    • Server Name: DNS Alias name or FQDN for the audit server.

    • Port: Port for the audit server site. Enter a port that is available to use. You must not use the default IIS port 80.

    • Comma-separated list of IP addresses from where the audit server can be accessed: Enter a comma-separated list of IPv4 addresses of the Insight Surveillance server.

      Note:

      Although installing the audit server on the Insight Surveillance server is possible, its configuration may fail due to lack of IPv6 support. To avoid potential issues while configuring the audit server:

      - Configure the audit server on a server separate from the Insight Surveillance server, or

      - Disable IPv6 configuration on the Insight Surveillance server.

      There is no need to disable IPv6 when configuring SupervisionAPI, SupervisionWeb, and other Insight Surveillance services.

    • Holding folder Path: A directory where the audit data will be stored temporarily.

      Note:

      Ensure that the Access Control List (ACL) of the Holding Folder is not changed.

    Based on these details, the audit server URL format becomes: https://<auditservername>:<portnumber>.

    Click Next after entering all required details.

  10. On the Arctera Enhanced Auditing Configuration Settings screen, enter details of either an existing Elasticsearch server or a new Elasticsearch server.

    For an existing Elasticsearch server, select the Use an existing Elasticsearch server details, and then provide the following details:

    • Elasticsearch URL: URL of the Elasticsearch server.

      Note:

      Ensure that security is enabled with native realm.

      If Elasticsearch has TLS enabled, then ensure that the required configurations also exist on the audit server. For more information on security in Elasticsearch, refer to the Elasticsearch documentation.

    • Elasticsearch Username: Username of the Elasticsearch superuser. This superuser is displayed at the time of upgrading and modifying the Enhanced Auditing feature. The Enhanced Auditing feature uses this superuser to perform the user and role management operations on Elasticsearch.

    • Elasticsearch Password: Password of the Elasticsearch superuser.

    To install a new Elasticsearch server, enter the password in the Set password for Elasticsearch built-in users field. When prompted, specify the Elasticsearch installation location where you want to install Elasticsearch.

    Click Next after entering all required details.

  11. Click Install to proceed with the installation.
  12. On the final screen of the setup, the Audit Server URL is displayed. You need this URL while configuring the Auditing settings in the Configuration tab in the Insight Surveillance client.
  13. To view the installation-specific logs, navigate to the folder where you have installed the Arctera Enhanced Auditing setup and access the Temp folder.

Note:

Even after the Enhanced Auditing feature is uninstalled, Elasticsearch does not get uninstalled.