Jump/Bastion Host Setup

Pre-requisites

Virtual Machine Specifications:

• Operating System: Ubuntu
• Operating System Version: 22.04

Configure the following firewall rules on the jump host:

• Enable outbound HTTPS on port 443 for https://api.app.secopsolution.com 
• Enable outbound HTTPS WebSocket (WSS) traffic (port 443) to wss://socket.app.secopsolution.com.
• Enable inbound rule on port 5679 on the Jump Host within your network.

Authentication Requirements (Target Assets):

• Linux-Based Assets: SSH service running on any custom port.
• Windows-based Assets: WinRM service running on port 5985.

1. Navigate to the Asset Module

• In the top navigation panel of the SecOps platform, click on the Asset module to access the asset management functionality.

2. Initiate the Onboarding Process

• Click on Add Asset to open the asset onboarding form.

• Select the Agent-based option to proceed.

3. Provide Agent Information

• Agent Mode: Select Jump host to set up the agent on the jump host machine.

• Agent Name: Enter a name for the agent that aligns with your naming conventions for easy identification.

• Operating System: Choose the asset's operating system and its version from the available options.

• Asset Groups: Optionally, assign the asset to one or more asset groups to help categorize and manage it effectively.

• Criticality Level: Set the asset’s criticality level to determine its importance and impact in your operations.

4. Download Agent Details

• After completing the form, click on Download Agent to generate the agent details.

• Navigate to the Notifications section to retrieve the following:

1. Agent Download URL: The link to download the agent installation package.

2. License Key: A unique key to activate the agent during installation.

1. Download the installer file on the Jump Host VM:
   wget https://demo_download_link

2. Extract the installer file:
   tar -xvf SecOps-Agent.tar.gz

3. Install the agent:
   sudo bash install.sh

4. Accept the license terms and enter the license key.

1. Check the agent status in the assets section of the product.
2. Run the below command to check the status on the jump host:

1. Download the SecOps Jump Host validation tool.
2. For Linux hosts, verify SSH connectivity from the jump host to the remote target host.
3. For Windows hosts, use the validation tool to acheck connectivity, authentication, and execution permissions. Run the following commands:  

Provide the remote host details, including IP address and credentials. If    all checks pass, the setup is successful. For errors, refer to the troubleshooting section.