What are the Recommendations for Installing Securden Endpoint Privilege Manager¶
Securden Endpoint Privilege Manager is delivered as a binary package when you purchase an on-prem license. You can install the EPM server on any Windows server that satisfies the minimum requirements. Optionally, you can host the server on any virtual machine or your private cloud instance. The installation is simple and can be completed in less than 5 minutes. The recommended server specifications are listed below.
Recommended Server Configurations
| Category | Minimum | Recommended |
|---|---|---|
| Server Operating System | Windows Server 2008 R2 and later | Windows Server 2019 or later |
| Memory and Storage | 8 GB RAM and 50 GB Free Hard Disk Space in each machine | 8 GB RAM and 50 GB Free Hard Disk Space in each machine |
| Backend Database | PostgreSQL by default | MS SQL Server 2019 or later |
| Web-Interface | Chrome, Firefox, Edge, Safari, Internet Explorer 10 and above in endpoints | Chrome, Firefox, Edge, Safari, Internet Explorer 10 and above in endpoints |
What are the Deployment Pre-requisites for Installing Securden EPM?¶
-
SMTP Server: Securden EPM uses the email service for sending out alerts, reports, etc. You need to create a dedicated SMTP server for Securden or configure API based email service integration with Gmail or Outlook.
-
DNS: A public DNS must be created for Securden EPM to register the server's name with the IP address.
-
SSL Certificate: A public SSL certificate needs to be installed on the application server to authenticate and encrypt connections between user devices and the EPM server.
-
Ports Used: The list of all firewall port settings that must be configured is available in the table below.
| Port Name | Port Used | Source | Destination |
|---|---|---|---|
| PostgreSQL Database Port | 5252 (TCP) | Primary, Secondary, and all Application Servers | PostgreSQL Server |
| MS SQL Database Port | 1433 | Primary and Application Servers | MS SQL Server |
| Securden Server Port | 5151 | To all Users (End Machines), Agents, and Secondary Servers | Primary |
| SMTP Server Port (Mail Server Port) | 587 (TLS), 465 (SSL) | ||
| AD Domain Controller | 636 (TLS/SSL), 389 (No SSL) | Primary Server | Active Directory Domain Controller |
| RADIUS Server Port | 1812 |
