To enable Carbon Black on the guest Linux virtual machines (VM) where your workloads are running, you must first install the Carbon Black launcher using the VMware package repository. The Linux VM (or server that is used to supply binaries to VMs) must be able to access the https://packages.vmware.com site.
This method is the preferred method for installation. Perform the steps as applicable for your Linux distribution. You must have the root privilege on the Linux VM.
Prerequisites
- The Linux VM (or server that is used to supply binaries to VMs) must have access to https://packages.vmware.com. To verify accessibility to packages.vmware.com, use the ping packages.vmware.com command. Then run the curl -Is https://packages.vmware.com/cb/cblauncher command. The curl request returns the HTTP/1.1 200 OK status code.
- The following dependencies must be installed on the Linux VM.
- libglib-2.0
- libgthread
- gnupg2
- Use Carbon Black launcher 1.1 for Linux VMs to install Carbon Black sensor kit with version 2.11.2 or later. The Carbon Black launcher 1.1 enforces full digital-signature verification for all files contained in a sensor kit 2.11.2 or later.
- Starting with Carbon Black sensor version 2.11.2, the tar-balls are enabled with full signature verification. If you use Carbon Black launcher 1.1 to download and install a Carbon Black sensor kit with version earlier than 2.11.2, the signature verification capability is not enabled on the sensor kit and the sensor installation cannot complete due to signature verification failure.
- If you use a Carbon Black launcher 1.0 or earlier to install a Carbon Black sensor kit 2.11.2 or later, the launcher installs the sensor without full verification.
Procedure
- For Ubuntu systems:
- Obtain and import the VMware packaging public keys using the following commands.
curl -L https://packages.vmware.com/cb/cblauncher/key/VMWARE-CBLAUNCHER-PACKAGING-GPG-RSA-KEY.pub --output VMWARE-CBLAUNCHER-PACKAGING-GPG-RSA-KEY.pub
apt-key add VMWARE-CBLAUNCHER-PACKAGING-GPG-RSA-KEY.pub
- Create a file named cblauncher.list under /etc/apt/sources.list.d.
- Create or edit /etc/apt/sources.list.d/cblauncher.list with the following content:
deb [arch=amd64] https://packages.vmware.com/cb/cblauncher/latest/ubuntu xenial main
- Install the package using the following commands:
apt-get update
apt-get install cblauncher
- For RHEL/CentOS/Oracle/Amazon Linux systems:
- Obtain and import the VMware packaging public keys using the following commands:
wget https://packages.vmware.com/cb/cblauncher/key/VMWARE-CBLAUNCHER-PACKAGING-GPG-RSA-KEY.pub
rpm --import VMWARE-CBLAUNCHER-PACKAGING-GPG-RSA-KEY.pub
- Create a file named cblauncher.repo under /etc/yum.repos.d.
- Edit the /etc/yum.repos.d/cblauncher.repo file with the following content:
[repo-cblauncher]
name=cblauncher repo
baseurl=https://packages.vmware.com/cb/cblauncher/latest/
enabled=1
gpgcheck=1
- Install the Carbon Black launcher package using the following command:
- For SLES systems:
- Obtain and import the VMware packaging public keys using the following commands:
wget https://packages.vmware.com/cb/cblauncher/key/VMWARE-CBLAUNCHER-PACKAGING-GPG-RSA-KEY.pub
rpm --import VMWARE-CBLAUNCHER-PACKAGING-GPG-RSA-KEY.pub
- Add the following repository:
zypper ar "https://packages.vmware.com/cb/cblauncher/latest/" cblauncher
- Install the Carbon Black launcher package using the following command:
zypper install cblauncher
- To verify if the Carbon Black launcher is installed, run the following command with the root privilege based on the Linux distribution:
- For CentOS/RHEL/Oracle 6.x, use the following command.
service cblauncher status
- For all other distributions like SUSE/Ubuntu/Amazon, use the following command.
systemctl status cblauncher
The status must be running.
Results
After the launcher is installed, you can enable
Carbon Black on the Linux VMs similar to the Windows VMs from the
Carbon Black Cloud Workload Plug-in.