To enable the Carbon Black Cloud sensor on your Linux VM workload to communicate with the Carbon Black Cloud through a Sensor Gateway, you must install and configure the sensor to work with the Sensor Gateway.

Prerequisites

  • Verify that you have access to the latest Carbon Black Cloud sensor for Linux version (2.15+).
  • If you install the sensor through the console, include the UseSystemCerts=true property in the /var/opt/carbonblack/psc/cfg.ini file. See About the Linux Sensor cfg.ini File in the Carbon Black Cloud Sensor Installation Guide.
  • The company code must be available. See Generate a Company Code.

Procedure

  1. Download the latest version of the Carbon Black Cloud Linux sensor. See Download Sensor Kits in the Carbon Black Cloud Sensor Installation Guide.
  2. Omit this step if the Sensor Gateway is already configured with a CA-signed certificate. To use a self-signed certificate in the Sensor Gateway, you must add the certificate chain to the trust store.
    1. Copy the certificate sgw_certificate.pem file to use for communication with the Sensor Gateway to your Linux VM workload.
    2. Add the content of the self-signed certificate sgw_certificate.pem into the CA signed certificate ca-certificates.crt file on your VM workload.
      cat sgw_certificate.pem >> CERTFILE_PATH 

      The CERTFILE_PATH points to /etc/ssl/certs/ca-certificates.crt on most Linux systems. However, we recommend you confirm in the documentation of your distro how to locate the Trusted CA certs file.

  3. Retrieve the sensor installation file by running the following command:
    wget <location of the sensor installation file>
  4. Unzip the sensor installation file:
    tar -xvf <tgz installation file>
  5. Use the company code to complete the sensor installation:
    ./install.sh "<company_code>" --sensor-gateway-cert CERTFILE_PATH

    The CERTFILE_PATH points to /etc/ssl/certs/ca-certificates.crt on most Linux systems. However, we recommend you confirm in the documentation of your distro how to locate the Trusted CA certs file.

Results

After the sensor is installed, you can view the running Sensor Gateway in the Carbon Black Cloud console.