Console Pre-Installation

Before you start with the setup
  1. 1.
    Assign a static IP address to the server(s) which will be running the AIR Console and DB.
  2. 2.
    80 (HTTP) inbound
  3. 3.
    Allow inbound access for the following ports (TCP/UDP) for endpoint agents to connect:
    • 443 (HTTPS) inbound
    • 4222 ( inbound
  4. 4.
    (For 2-Tier Deployment) Allow inbound access for the following port (TCP/UDP) from AIR Console server to access MongoDB Server:
    • 27017 (MongoDB) inbound
    • 5432 (PostgreSQL) inbound
  5. 5.
    Allow internet access to the following domains (for 2-Tier deployment, this is only required on the AIR Console server):
  6. 6.
    If you use an EDR/XDR or EPP software along with Binalyze, check our exclusion/exception rules page.
  7. 7.
    (optional) Create an SSL certificate for the Static IP Address or FQDN you have provided.
  8. 8.
    (optional) Allow inbound access for the following port (TCP/UDP) for alternative secure access to web UI on the AIR Console server:
    • 8443 (HTTPS) inbound
  9. 9.
    (optional) Create a password-protected network share on the server.
  10. 10.
    (optional) Create an Active Directory user for Binalyze AIR to be able to enumerate LDAP computers on your network. This account should only have the right to enumerate computers and should NOT be a privileged account such as a Domain Admin.