DeepSurface: VMWare
DocumentationInstallation GuideOverviewLet DeepSurface Host For YouGetting StartedSystem RequirementsSelf Hosted Quick Start - Installing to Cloud PlatformsSelf Hosted - Installation Using an OVARegistration, Package Installation, and InitializationFirst Steps After Initialization of the ConsoleDeployment OptionsMain and Subordinate ConsolesAgent-Based DeploymentUser Managed Scan DeploymentCredentialed Scanning DeploymentMixed EnvironmentDeployment ToolsActive Directory Group PolicyMicrosoft Endpoint Configuration Manager (part of InTune)Tanium DeployHCL BigFixIvantiVirtual MachinesVMWareVirtual BoxVirtualBox Guest AdditionsAWS EC2 (BYOL)AWS EC2 (Usage Based)Azure CloudGoogle CloudAdditional Items to ConsiderMain Console Server CertificatesLDAPTOFUClock SyncDeepSurface CommandsMultiple Vulnerability SourcesAPI DocumentationUser GuideReportingDashboardsExportsRisk InsightHostsPatchesVulnerabilitiesVulnerability InstancesUsersRemediation Workflow ManagerPlansSettingsIntegrationsWorkflowExportingAccepted Risk PlansAccepted Risk WorkflowExploreModelPathsActivityTasksConfiguration AlertsScan LogsNotification SettingsScanningStatusAgentsUser ManagedCredentialed Scanning SettingsCredentialsScan GroupsGeneral SettingsCloud ScanningNetwork ConnectivitySubordinatesVulnerability SourcesSetupSensitive Assets: PolicesSensitive Assets: ManualAdmin SettingsSMTP SettingsCertificatesOutbound ProxyAuthentication ProvidersUsersTagsIntegrations GuideVulnerability SourcesCrowdStrike SpotlightSentinelOneCarbon Black CloudMicrosoft Defender for EndpointWazuhLansweeper CloudNessus APITenable.io APISecurity Center/Tenable.sc APIRapid7 InsightVM APIQualys APINozomi GuardianEclypsiumAWS InspectorRemediationJira SoftwareTanium (BETA)Authentication ProvidersLDAP (Active Directory)SAML (Azure Active Directory)SAML (Google)SAML (Okta)PAMCyberArkDelinea (Thycotic)Microsoft LAPSSecurity GuideFirewall ConfigurationBase Network RequirementsAgent Network RequirementsCredentialed Scanning Network RequirementsAPI Network RequirementsHow DeepSurface Scans WorkDomain (LDAP) ScanningHost Scanning RoutineReasons for the Administrative Access RequirementEndpoint Protection ConsiderationsOther ItemsScope of Data Storage and RetentionIPS/IDS ConsiderationsLoggingResetting the DSADMIN passwordProduct InformationChangelogsOpen source LicensesEnd User License Agreement (EULA)
Setting up a DeepSurface virtual machine on VMWare platforms is a fairly straight-forward process that involves the following steps:
- Planning the deployment and network configuration
- Make the provided OVA available to VMWare
- Create a new virtual machine from the OVA
- Perform first login configuration via the VM console
Planning the deployment and network configuration
As with any DeepSurface deployment, administrators will need to be able to access the DeepSurface web console via HTTPS (port 443/TCP). The vast majority of administration tasks can be performed via HTTPS, but occasional low-level tasks will need to be performed via SSH (port 22/TCP). Ensure you have selected a TCP/IP subnet that allows your workstation to access these services.
Make the provided OVA available to VMWare
For desktop products, such as VMWare Workstation Pro or VMWare Workstation Player, this should be a simple matter of downloading the OVA file provided by DeepSurface support staff to the host operating system.
For vSphere, ESXi, or other enterprise products, this process may be more involved. For instance, you may need to import your OVA into a Content Library before being able to create the virtual machine. Consult your VMWare administrator if you have difficulties.
Create a new virtual machine from the OVA
Please refer to instructions on VMWare's site for your product:
VMWare Workstation
VMWare vSphere
OVA configuration options to be considered after the OVA is imported:
- VMware Tools are not installed, to make use of some VMware features, you may wish to install VMware Tools prior to completing additional configuration steps on the VM.
- The OVA does not have a network adapter configured by default. Before logging into the VM console for the first time you need to add a network adapter to the VM and associate it with the desired network connection.
Proceed to Installation using an OVA to register with DeepSurface and begin the system initialization process.