ESM Server Software Requirements
Table of Contents
4.2 (EoS)
Expand all | Collapse all
-
- Set Up the Endpoint Infrastructure
- Activate Traps Licenses
-
- Endpoint Infrastructure Installation Considerations
- TLS/SSL Encryption for Traps Components
- Configure the MS-SQL Server Database
- Install the Endpoint Security Manager Server Software
- Install the Endpoint Security Manager Console Software
- Manage Proxy Communication with the Endpoint Security Manager
- Load Balance Traffic to ESM Servers
-
- Malware Protection Policy Best Practices
- Malware Protection Flow
- Manage Trusted Signers
-
- Remove an Endpoint from the Health Page
- Install an End-of-Life Traps Agent Version
-
-
- Traps Troubleshooting Resources
- Traps and Endpoint Security Manager Processes
- ESM Tech Support File
-
- Access Cytool
- View the Status of the Agent Using Cytool
- View Processes Currently Protected by Traps Using Cytool
- Manage Logging of Traps Components Using Cytool
- Restore a Quarantined File Using Cytool
- View Statistics for a Protected Process Using Cytool
- View Details About the Traps Local Analysis Module Using Cy...
- View Hash Details About a File Using Cytool
ESM Server Software Requirements
In a Multi-ESM Server deployment you can deploy multiple
ESM Servers to support the agents in your organization. Each ESM
Server supports up to 30,000 agents for a total number of 150,000
agents per database. While you can deploy as many ESM Servers as
you want, you cannot exceed the total number of supported agents
for the database.
Before installing ESM Server software, make sure that the server
meets the following prerequisites:
- ESM Server and ESM Console running the same version.
- ESM Server hostname of 15 or fewer characters
- Clock that is synchronized to the time of other ESM components (console and database) using standard enterprise networking means such as Windows Time Service (WTS).
- Ensure that the round-trip communication time between the ESM Server and the database is less than 80 ms.
- .NET Framework 4.5.1 Full or later
- SSL certificate from a trusted certificate authority (CA) with server authentication and client authentication (recommended)
- Allow communication on the TCP port from clients to server (the default is port 2125)
- For automated content updates, enable SSL/TLS 1.2 communication between the ESM Server and the followings sites on port 443:
- updates.paloaltonetworks.com
- downloads.paloaltonetworks.com
- Forensic folder with BITS enabled
- Internet Information Services (IIS) 7.0 or above with ASP.NET and Static Content Compressions components
- English- or Japanese-language version of a physical or virtual Windows Server. To determine which versions of Windows Server are supported, refer to Where Can I Install the Endpoint Security Manager(ESM)? in the Palo Alto Networks® Compatibility Matrix.
- Communication between the ESM Server and the agents is based on Windows Communication Foundation (WCF) client with a TLS/SSL version which is dependent on the version of the Traps agent and the operating system.
- Traps 4.0 and 4.1 releases on Windows XP, Windows Vista, Windows Server 2003, and Windows Server 2008—TLS/SSL 1.0
- Traps 4.0 and 4.1 releases on all other operating systems—TLS/SSL 1.2
- Traps 3.4 releases—TLS/SSL 1.0
- For ESM Server hardware requirements, see Distributed Endpoint Security Manager Hardware Requirements