On This Page
Initial Setup
Before Installation
-
Confirm that you have either a Google Chrome or Mozilla Firefox internet browser.
-
Download an installation file from the Tufin Extensions website (formerly Marketplace).
- In SecureTrack:
- Create a user with Security Administrator level permissions. Log into SecureTrack with that user.
- Configure the relevant network zones.
- In SecureChange:
- Create a user with the permission: Create and handle tickets on behalf of another user (via API only). Log into SecureChange with that user.
- Create a server decommission workflow to be used when asset mitigation is needed.
- Access credentials that can make API calls to one of the following supported vulnerability management solutions:
- Rapid7 Nexpose
- Rapid7 InsightVM
- QualysGuard
- Qualys VMDR
- Nessus Professional
- Tenable.io
- Tenable.sc
Install VMA
You may need to install a new version of VMA in these cases:
-
You are installing VMA on a new environment.
-
You uninstalled VMA.
-
You need to upgrade to a TOS Aurora version that requires a new installation.
Follow these steps to install VMA:
-
Using SSH, log into the TOS Aurora server.
-
Create a directory called
/opt/extensions
. -
Copy the installer run file (already downloaded) to
/opt/extensions
. -
Go to
/opt/extensions
. -
Go to the folder and run the installer file:
# sh vma-v<VERSION>.k3s.run
VMA is installed in the TOS Aurora cluster on the data node.
A license is required if you are running TOS Aurora R23-1 or earlier, or you have a legacy (non-tiered) TOS license - see Installing a License.
Log into VMA
Vulnerability Mitigation App (VMA) is located in the SecureTrack server. To log in, you will need to enter your SecureTrack user credentials.
Your user credentials determine your level of access to VMA.
Access VMA from SecureTrack
From the app launcher icon (), select Vulnerability Mitigation App.
Log in to VMA Directly
- In your browser, enter the following URL:
https://<SecureTrack_Host>/apps/public/vma
where
<SecureTrack_Host>
is your SecureTrack IP address. VMA uses SecureTrack for authentication.The Login page appears.
- Enter your SecureTrack user credentials and click Log In.