Page tree




In This Document 


Was this document useful? 
Your Rating:
Results:
1 Star2 Star3 Star4 Star5 Star
2 rates


Have a suggestion for the Armor Knowledge Base? Send a message to kb@armor.com.



This topic only applies to Armor Anywhere users.

For invited users:

Before your account was created, your account administrator decided the proper roles and permissions for your account.

Consult with your account administrator to understand what permissions you have and how you should configure your account.

You can use this document to complete the account signup process and review high-level action items to complete.

Before you begin, Armor recommends that you pre-installation information, including firewall rules.

To learn more, see Requirements for Armor Anywhere.

To use a Linux-based Armor Anywhere agent, you must have Python 2.7 installed.

Before you install the Armor Anywhere agent, you must remove any previously installed anti-virus software, such as Trend Micro, McAfee, etc. Afterwards, you must reboot your system. 


Step 1: Open the Account Signup email

  1. In the email from Armor, click the link.
    • You will be redirected to enter your account security information, including payment information.
      • If you already coordinated your payment process with Armor, then you will not see the payment screen.

Step 2: Complete your security information

In this step, you will add your phone number to your account. This phone number will be used for multi-factor authentication. To complete the account signup process and to log into AMP, you must be near this phone number.
  1. Note your Armor username. 
    • The Username will be pre-populated with the email address of the Primary Contact for the account.
  2. In Password and Confirm Password, create and enter an account password.
    • Your password must be at least 12 characters in length.
    • Your password must contain an upper-case character, a lower-case character, a number, and a special character.
    • Your password cannot contain personal information, such as your name, email address, birthday, etc. For example, if your name is John Smith, then you cannot use joh or smi in your password.
    • You can only change your password once every 24 hours.
    • Passwords expire after 60 days. 
    • After 6 failed login attempts, you will be locked out of your account for an hour. To resolve this, you must contact your account administrator or contact Armor Support.
    • After 15 minutes of no activity, you will be logged out of the Armor Management Portal (AMP).
  3. Complete the Challenge Phrase and Challenge Response
    • If you call Armor for technical support, you will be asked the Challenge Phrase, and you must correctly answer the Challenge Response
    • Do not use inappropriate language or suggestive material. 
    • The answer must be at least five characters long. 
  4. In Phone Number, select your country code / flag, and then enter your phone number.
    • This phone number will be used for multi-factor authentication (MFA). Every time you log into the Armor Management Portal (AMP), you will receive a phone call in order to complete the login process.
    • You can enter a phone number with spaces and special characters, such as (555) 555-555. 
    • (Optional) If your phone number contains an extension, enter the number in Extension. You cannot include spaces or special characters in this field.
  5. Click Validate to validate the phone number entered.
    • You will receive a phone call; answer the phone, and then follow the instructions.
    • (Optional) After you complete the signup process, you can configure your account to use the Microsoft Authenticator application for MFA. To learn how to use this application, see Configure multi-factor authentication for your account.
  6. Click Continue.

If you already coordinated with Armor to pay with a check, then you will be redirected to Armor Management Portal (AMP) login screen..



Step 3: Complete your payment information

  1. In Currency, select your currency.
  2. (Optional) If your business is tax exempt, select I'm tax exempt.
    • In Tax Exempt ID, enter a valid tax exempt ID.
  3. For Payment Method, mark the desired payment (credit card or bank account). 

Option 1: Credit card 

Cardholder Name, Address, City, State, and Postal Code will be pre-populated with the name and contact information for the Primary Contact on the account.

  1. In Card Number, enter the credit card number.
  2. In Expiration Date, select the appropriate month and year.
  3. In CVV, enter the verification number for the credit card
  4. In Country, select the corresponding country.
  5. Click Submit.

You will be redirected to Armor Management Portal (AMP) login screen.


Option 2: ACH Bank Debit

  1. In ABA / Routing Number, enter the corresponding banking number.
  2. In Bank Account Number, enter the account number.
  3. Select the appropriate Account Type.
  4. In Bank Name, enter the name of the banking institution.
  5. In Account Holder Name, enter the name of the account holder.
  6. Click Submit.

You will be redirected to Armor Management Portal (AMP) login screen.


Step 4: Locate the Armor Anywhere agent

  1. In the Armor Management Portal (AMP), in the left-side navigation, click Infrastructure
  2. Click Virtual Machines
  3. Click Deploy New Armor Agent or click the plus ( + ) icon.
  4. Copy your license key. You will need this information in a later step.
  5. Select your operating system (Windows or Linux).  
 

For Amazon Web Services users who:

  • Use Elastic Beanstalk to run their instance's applications,
  • Run Amazon Linux 2015.03, 2015.09, 2016.03, 2016.09, 2017.03, or 2017.09.

Review the following example to understand how to install the Anywhere agent. Afterwards, you can skip to the Test your connection step.

commands:
  01_install_agent:
    test: if [ $(rpm -q armor-agent | head -c11) == 'armor-agent' ]; then exit 1; else exit 0; fi
    command: |
      yum install -y https://get.core.armor.com/latest/armor-agent.rpm
      /opt/armor/armor register --license=AAAA1-A11AA-AA1AA-AAAAA-1AAA

You must replace AAAA1-A11AA-AA1AA-AAAAA-1AAA with your specific license key.

For Amazon Web Services users who:

  • Use a set hostname,
  • Use Elastic Beanstalk to run their instance's applications, and
  • Run Amazon Linux 2015.03, 2015.09, 2016.03, 2016.09, 2017.03, or 2017.09.

Review the following example to understand how to install the Anywhere agent. Afterwards, you can skip to the Test your connection step.

commands:
  01_install_agent:
    test: if [ $(rpm -q armor-agent | head -c11) == 'armor-agent' ]; then exit 1; else exit 0; fi
    command: |
      echo "<host_name>$(date +%Y%m%d%H%M%S)" > /proc/sys/kernel/hostname
      sed -i "s/HOSTNAME=.*/HOSTNAME=$(cat /proc/sys/kernel/hostname)/g" /etc/sysconfig/network
      yum install -y https://get.core.armor.com/latest/armor-agent.rpm
      /opt/armor/armor register --license=AAAA1-A11AA-AA1AA-AAAAA-1AAA

You must replace:

  • AAAA1-A11AA-AA1AA-AAAAA-1AAA with your specific license key
  • HOSTNAME and hostname with your specific hostname.


Step 5: Download and install the Armor Anywhere agent

There are three types of scripts that you can use to install the agent:

Script typeDescription
Pre-installation

You can use these scripts to verify that your environment is compatible with Armor Anywhere. These scripts will not install the agent.

sudo curl -sSL https://get.core.armor.com/latest/armor_agent.sh | bash /dev/stdin
Pre-installation and installation

You can use these scripts to:

  • Verify that your environment is compatible with Armor Anywhere
  • Install the agent
sudo curl -sSL https://get.core.armor.com/latest/armor_agent.sh | bash /dev/stdin -l AAAA1-A11AA-AA1AA-AAAAA-1AAA
Installation

You can use these scripts to install the agent. These scripts will not verify your environment for compatibility. 

sudo curl -sSL https://get.core.armor.com/latest/armor_agent.sh | bash /dev/stdin -l AAAA1-A11AA-AA1AA-AAAAA-1AAA -s

In the above scripts, replace AAAA1-A11AA-AA1AA-AAAAA-1AAA with your specific license key.


Step 6: Test your connection

After you install the agent, Armor recommends that you test the connection for each configured firewall rule.

To verify connectivity to an Armor service endpoint, use the telnet command.

The following example tests connectivity to api.armor.com over 443/tcp:

telnet 146.88.106.210 443

For Windows systems without the telnet feature installed, you can also use PowerShell:

new-object System.Net.Sockets.TcpClient('146.88.106.210', 443)


Step 7: Review the status of the Armor Anywhere agent 

  1. In the Armor Management Portal (AMP), in the left-side navigation, click Infrastructure
  2. Click Virtual Machines
  3. Review the corresponding Status column. The Status column contains a green or red status to indicate if the server's agent has registered a heartbeat to Armor.
    • A green status indicates the server's agent has registered a heartbeat in the past hour. 
    • A red status indicates the server's agent has not registered a heartbeat in the past hour. 
      • After four hours without a registered heartbeat, the API will close all service endpoints (firewall ports).


Step 8: Configure your notification preferences

Armor recommends that you configure your account to receive notifications for Account, Billing, and Technical events.

These notification preferences do not relate to support tickets.

To update your notification preferences for support tickets, see Support Tickets.


Account

You will receive a notification when:

  • A password expires in 14 days.
  • A password expires in 7 days.
  • A password expires in 24 hours.
  • A password has expired.
Billing

You will receive a notification when:

  • An invoice has posted. 
  • An invoice is past due (2, 10, 15, 25, and 30 days).
  • A payment method will soon expire (1, 15, and 30 days).

You can configure a user to become the primary billing contact for an account. This user will receive billing notifications. Additionally, this user will be listed in the Bill to field in an invoice. 

  1. In the Armor Management Portal (AMP), in the left-side navigation, click Account.
  2. Click Users
  3. Locate and hover over the desired user. 
  4. Click the vertical ellipses. 
  5. Select Set as Primary Billing Contact
  6. Click OK
Technical

You will receive a notification when:

  • A virtual machine will be deleted or downgraded.
  • CPU, disk, and memory utilization is at more than 90% for 5 minutes.
  • Ping, SSH (Linux), or RDP (Windows) fails for 5 minutes.

You can only change the notification preferences for your own account. You cannot change the notification preferences for other user accounts.

  1. In the Armor Management Portal (AMP), in the top, right corner, click the vertical ellipses.
  2. Click Settings
  3. Click Notification Preferences.
  4. Use the slider to make your desired changes.
    • Select Alert to receive notifications in the top bar in the Armor Management Portal (AMP). 
    • Select Email to receive notifications through email. 
    • You can select both notification options.
  5. Click Update Notification Preference to save your changes.