View Categories

Pre-requisites for Saner CVEM Deployment

Print Friendly, PDF & Email

Monitoring System

  • A desktop/laptop system with the latest version of Google Chrome/Mozilla Firefox/Apple Safari/Microsoft Edge to access the Saner web console.

Network Requirements

The following changes must be done on your network:

  • Ensure outgoing HTTPS connection on port 443 between Saner Agents and Saner Server is allowed.
  • Ensure WebSocket communications are allowed in your network.
  • Ensure Saner Agent is allowed to upload zip files to Saner Server
  • If you plan on integrating Active Directory with Saner Server, ensure incoming and outgoing TCP connections are allowed on the ports configured for Active Directory.
  • If you plan on designating an existing device to integrate with Active Directory, ensure the incoming and outgoing TCP connections between the device are allowed on the ports configured for Active Directory.
  • Ensure that the URLs – https://saner.secpod.com and IP Addresses – 15.197.185.143 and 3.33.186.66 are part of your firewall’s whitelist. For users using the Saner EU platform, ensure that inbound and outbound traffic from Saner Agent to eu.saner.secpod.com is allowed.
  • If you are using a proxy server in your environment, ensure that inbound and outbound traffic from Saner Agent to saner.secpod.com is allowed. If you are using the Saner EU platform, ensure that inbound and outbound traffic from Saner Agent to eu.saner.secpod.com is allowed.

Patch update repository requirements

You must have either one of the below options available in your environment.

For OS Patching

Option 1: Endpoints should be configured to take updates from respective update servers.

  • WSUS Server (For Windows Operating Systems)
  • Yum Repository (For RPM-based Linux Systems)
  • DPKG Repository (For Debian-based Linux Systems)
  • Apple Mac OS X Update Server

Option 2: You must have an active connection for the endpoints to connect to the vendor cloud patch site.

  • For Windows – https://update.microsoft.com
  • For Ubuntu – https://archive.ubuntu.com/ubuntu
  • For CentOS – https://mirror.centos.org

For Third-Party Applications Patching

You must have either one of the below options available in your environment.

Option 1: Use Patch Repositories built and maintained by SecPod.

Option 2: Create a local HTTP/HTTPS/FTP repository to host the content provided by SecPod

Pre-requisites for Saner Agent

Saner Agents can be installed on endpoints running Windows, Linux, macOS, and AIX operating systems. However, ensure the devices have a minimum of 800MB of disk space and 400 MB of RAM available.

System Privileges

  • On Windows systems, you must install Saner Agent using a user with administrator rights.
  • On Mac and Linux systems, you must install Saner Agent using a user with root privileges.

Antivirus Exclusion List

The following files/services must be added to the exclusion list of the antivirus program running on your endpoints.

On Windows Devices

  • C:\Program Files (x86)\SecPod Saner
  • spdialogbox20.exe
  • spdialogbox.exe
  • spagentwatchdog.exe
  • spupgradecontroller.exe
  • spscanmanager.exe
  • spsaneruninstall.exe
  • spsanerrun.exe
  • spsaneragnt.exe
  • spldapmanager.exe
  • spfirmware32.exe
  • spfirmware64.exe
  • spnmapresultmanager.exe
  • spfileindexer.exe
  • sptaskhandler.exe

If you are using Remote Access – an on-demand remote support tool in Saner EM, you need to whitelist the spremoteconnector.exe process on Windows systems.

On Linux Devices

  • /usr/bin/spsaner.service
  • /usr/bin/spscanmanager
  • /usr/bin/spagentwatchdog
  • /usr/bin/spsaner_servicelauncher
  • /usr/sbin/spsaneragent
  • /etc/saner
  • /var/saner/
  • /usr/lib64/saner
  • /var/log/saner

If you are using Remote Access – an on-demand remote support tool in Saner EM, you need to whitelist /opt/saner folder and spremoteconnector process on Linux 64-bit devices.

On AIX Devices

  • /etc/rc.d/init.d/spsaner
  • /usr/bin/spsanerd
  • /usr/bin/spscanmanager
  • /usr/bin/spagentwatchdog
  • /usr/bin/spsaner_servicelauncher
  • /usr/sbin/spsaneragent
  • /etc/saner
  • /var/saner/
  • /usr/lib/saner
  • /var/log/saner

On Mac Devices

  • /usr/local/bin/spsaneragent
  • /usr/local/bin/spscanmanager
  • /usr/local/bin/spagentwatchdog
  • /usr/local/bin/spupgradecontroller
  • /usr/local/bin/spmessagebox,
  • /usr/local/bin/spsaner_deactivate
  • /etc/saner
  • /var/saner
  • /user/local/lib/saner
  • /var/log/saner

If you are using Remote Access – an on-demand remote support tool in Saner EM, you need to whitelist /opt/saner folder and spremoteconnector process on macOS devices.

Important

If you are using Saner Network Scanner, ensure ‘nmap‘ is added to the antivirus program’s exclusion list running on your endpoints. On Windows devices, ensure ‘nmap’ and ‘npcap’ are added to the antivirus program’s exclusion list.