Prerequisites for the ZeroLock® Management Console

The ZeroLock Management Console (ZMC) is the backend component of the ZeroLock security suite. The ZMC performs command and control for ZeroLock Agent software that runs on protected endpoints.

The ZMC is comprised of several components, including ux-server, collector, and database. These components run in a containerized environment on various host operating systems.

The Installer prepares the host operating system (starting with a fresh install) to run the ZMC.

The Installer identifies the latest previous version of the ZMC, (optionally) backs it up, copies the database, and then migrates the copied database to the latest schema.

Minimum System Requirements

Before installing the server, verify that the target system meets the minimum requirements as outlined below.

ZeroLock Server Requirements

RAM

16GB
Disk Space 512GB (dependent on number of endpoints and data retention duration)
CPU Cores 6 or more recommended
Installation Requirements
  • Self-deployment: Latest version of Docker is installed.
  • OVA-deployment ESXi 7.0 or later.

 

ZeroLock Endpoint Agent Requirements

OS

Linux Kernel v3.5 or higher. Distribution agnostic.
Processor x86-64
Memory 50MB
Disk Space 100MB
Kernel Mods No kernel modifications or modules are required.
VM/Container Support ZeroLock runs on bare metal, virtual machines, and containers (including public/private/hybrid cloud instances).
Pre-Installation Requirements

RPM-based systems (Fedora and CentOS):

  • Checkpolicy
  • Iproute
  • util-Linux
  • policycoreutils or policycoreutils-python. 

Debian-based systems (Ubuntu):

  • iproute2
  • util-linux 

 


Port Requirements

Communications to the ZMC requires two ports  – 7443 and 443.   

The ZMC requires port 7443 to the ux-server container and the agent communicates on port 443 (HTTPS) to the collector container. The local firewall must allow those ports/protocols inbound.

 


Docker Set Up

Download and install the latest Docker.  Ensure the User launching the ZMC containers is not root but part of the docker group. The User must be able to launch Docker without sudo access.


Podman

Podman is supported effective with ZeroLock Management Console v3.3.5.