The following requirements must be all satisfied to use ACSIA SOS V7.x.x.
Endpoints requirements
The following requirements must be satisfied for each endpoint.
At the moment we don't support Linux machines with secure boot enabled.
System requirements
Minimum (Low Load) | Recommended | |
RAM | 4 GB | 8 GB |
CPU core | 2 core | 4 core |
HD | 20 GB | 20 GB |
Network |
1 x network interface | 1 x network interface |
Architecture | 64bit | 64bit |
Supported OS |
Windows 10 or newer versions Windows Server 2012 R2 or newer versions Windows 2003/2008 and 2008R2 Ubuntu 20.04 or newer versions Ubuntu 18 or newer versions Debian 11/12 |
|
Tested Browsers |
Chrome >= 106 |
Other requirements
The following requirements must be satisfied for each endpoint:
- They must be synchronized with NTP/DC.
- They must have a DNS configured.
ACSIA manager requirements
System requirements
Minimum requirements | |
RAM | 32 GB |
CPU core | 8vCPU |
HD system | min 50GB available |
HD data |
min 500GB available (separate disk mounted on /var/lib/docker is recommended) |
Network | 1 x network interface |
Architecture | x64 |
Supported OS | Ubuntu 22.04 |
Tested Browsers |
Chrome >= 106 Edge >= 106 Safari > = 16.0 Firefox >= 110 Opera >= 94 |
To install the ACSIA manager, you need Docker installed on your environment.
You can follow the procedure directly on the Docker official website: Install Docker Engine on Ubuntu
Certificates requirements
You must have:
- A valid domain name.
- Valid SSL certificates for your domain name from a trusted Certificates Authority.
Network requirements
The following network requirements must be satisfied:
Source | Destination | Destination port | Protocol | Notes |
Endpoint | ACSIA Manager | 1514 | TCP | Event ingestion |
Endpoint | ACSIA Manager | 443 | TCP | PUSH/PULL |
User/Admin Workstation | ACSIA Manager | 443 | TCP | ACSIA SOS UI |
34.159.83.241 34.159.47.15 34.159.150.228 34.85.152.87 34.85.155.173 |
ACSIA Manager | 11443 | TCP | Only for the BitDefender antivirus module |
*.bitdefender.com *.bitdefender.net |
Endpoint | 443 | TCP | Only for the BitDefender antivirus module |
Endpoint | *.bitdefender.com *.bitdefender.net |
443 | TCP | Only for the BitDefender antivirus module |
Endpoint | prod-repo.s3.amazonaws.com packages.wazuh.com wimi.xdrplus.com ppa.launchpad.net (linux only) falco.org (linux only) download.falco.org (linux only) *.fedorainfracloud.org (linux only) dl.fedoraproject.org (linux only) mirror.centos.org (linux only) mirrors.kernel.org (linux only) nmap.org (windows only) npcap.com (windows only) www.openinfosecfoundation.org (windows only) download.sysinternals.com |
443 | TCP | download/upgrade packets |