CipherTrust Teradata Protection Installation Checklist

Use this table to verify prerequisites and collect the information you need for the installation.

CipherTrust Manager (CM) FQDN

1. Connect to your CipherTrust Manager instance:

   ssh -i {key file} ksadmin@ip.address
   

2. Use the hostname command to view the hostname:

   ksadmin@keysecure:~$ hostname
   

Teradata Node Name Resolution

You can map a Teradata node name to an IP address using a Domain Name Server (DNS). DNS is the most preferred method of host name resolution. If you use DNS to resolve host names, use the FQDN for the host names.

Using the Admin CLI

Access the CLI menu as follows:

1. Start the serial console application.

2. If the login prompt is not displayed, press the Enter key to wake up the connection.

3. Sign in to the appliance. The default System Administrator name and password are cliadmin and cliadmin123.

Example

At the prompt, type cliadmin followed by the password.

network$ agentip show
agent ip address support : off
SUCCESS: agent ip address support showed.
network$ agentip on
WARNING: The Security Server will restart automatically after enabling
agent IP address support!
Continue? (yes|no)[no]:yes
SUCCESS: Agent IP address support is enabled and the server restarted.
network$ agentip show
agent ip address support : on
SUCCESS: Agent IP address support showed.
network

Configure NAE Interface Mode on CipherTrust Manager

If using the CipherTrust Manager, configure the NAE interface mode:

1. Sign in to the CipherTrust Manager.

2. Go to Admin Setting > System > Interfaces.

3. Select the appropriate NAE interface mode:

   1. For TCP communication: Select any No TLS mode.

   2. For SSL communication: Select any mode except No TLS.