Customize ActiveGate installation
Linux
Command line parameters can be used with the installer as follows:
DESK-Security-Gateway-Linux-<version>.sh [<parameter1>=<value2>] [<parameter2>=<value2>] ...
Spaces between the parameter name and parameter value aren't allowed.
| Parameter | Meaning |
|---|---|
PROXY=<proxy_address>:<proxy_port> |
Proxy |
USER=<user> |
Runs service as a specified user. For versions earlier than 1.155, the user must exist in the system. For versions 1.155+, the installer creates the user if the user doesn't exist in the system and this user doesn't require root rights. If the parameter is not specified, the installer creates user dtuserag to run the ActiveGate service. However, you can use USER=root to force the ActiveGate service to run as root. |
INSTALL=<folder> |
Stores installation files in the specified folder. The default value for this parameter (if not specified) is /opt/desk. Not permitted during upgrade. |
LOG=<folder> |
Stores log files in the specified folder. The default value for this parameter (if not specified) is /var/log/desk. Not permitted during upgrade. |
CONFIG=<folder> |
Stores configuration files in the specified folder. The default value for this parameter (if not specified) is /var/lib/desk. Not permitted during upgrade. |
TEMP=<folder> |
Indicates the temporary directory to be used by ActiveGate. The default value for this parameter (if not specified) is /var/tmp/desk. Not permitted during upgrade. |
--ca-certificate-file=<path> |
Absolute path to the location of the certificate to be used when ActiveGate connects to the DESK server. See Specifying CA certificate during ActiveGate installation. |
--ca-certificate-password-file=<path> |
Absolute path to the location of the file containing the certificate password. See Specifying CA certificate during ActiveGate installation. |
Mount points
During the install process, ActiveGate creates a number of directories. If you specified the path in the INSTALL and CONFIG parameters, ActiveGate will create its directories inside that path. Do not create mount points to the installer-created directories. You can only mount the default directories or the directories you have specified.
For example, suppose you have provided the following INSTALL parameter:
INSTALL=/opt/MyActiveGate
The ActiveGate installer will create a subdirectory gateway in the installation path you have provided:
/opt/MyActiveGate/gateway
As a reuslt:
- The mount point
/opt/MyActiveGateis VALID. - The mount point
/opt/MyActiveGate/gatewayis INVALID.
Windows
Command line parameters can be used with the installer as follows:
DESK-ActiveGate-Windows-x86-<version>.exe [<parameter1>=<value2>] [<parameter2>=<value2>] ...
| Parameter | Meaning |
|---|---|
CA_CERTIFICATE_FILE=<path> |
Absolute path to the location of the certificate to be used when ActiveGate connects to the DESK server. See Specifying CA certificate during ActiveGate installation |
CA_CERTIFICATE_PASSWORD_FILE=<path> |
Absolute path to the location of the file containing the certificate password. See Specifying CA certificate during ActiveGate installation |
Specifying CA certificate during ActiveGate installation
You can specify the CA proxy certificate (the certificate to be used when ActiveGate connects to the DESK server) during installation. This enables a connection to be established to the server during installation, allowing the ActiveGate installer to download and install any required additional capabilities.
The password is specified as a file from which the password is read. The certificate file is copied into the ActiveGate directory structure, in the customkeys folder of the ssl folder, in the ActiveGate configuration. The password is extracted from the password file and inserted into the custom.properties file in the ActiveGate configuration. It is then encrypted as soon as the ActiveGate service starts.
Linux command example:
[root@localhost]# DESK-Security-Gateway-Linux-1.75.sh --ca-certificate=/home/fred/myCert.jks --ca-certificate-password-file=/home/fred/myPwd.txt
Windows command example:
c:\DESK-ActiveGate-Windows-x86-<version>.exe CA_CERTIFICATE_FILE=D:\Users\Fred\myCert.jks CA_CERTIFICATE_PASSWORD_FILE=D:\Users\Fred\myPwd.txt