Microsoft Azure Image Deployment

Follow these steps to create the base VM image on your Azure portal.

Create App Registration

If you plan on using Cloud Scanner functionality you must register the app. Registration allows for FireMon Asset Manager to make API calls to your Azure environment. Instructions on how to create the service principal portal can be found here

If you will just be performing passive and active scanning, this step is not needed.

Create & Provision a Virtual Machine

  1. In Azure Portal Search for FireMon; select the appropriate Command Center or Scout image

  2. Click Create

  3. Go through the Basics setup process.

    1. Image Size is predetermined based on the Command Center or Scout selected in step 1..

    2. For Authentication, you can choose password or SSH key. You will need this information for direct access to the system if sudo escalation is needed.

  4. Disk: Asset Manager comes with a default 100 GB disk. Do not add an additional disk at this time.

  5. Proceed through remaining setup options, Networking, Management, Tags, etc, according to your company policies

  6. When the Validation passed message appears, click Create.

Azure begins provisioning the virtual machine you specified. Track its progress by selecting the Virtual Machines tab in the left menu. After it's created the status of Virtual Machine changes to Running.

Access the System

  1. Your FireMon system comes pre-licensed and is ready to use. You will need to contact your Account Manager for a unique license for your account.

  2. In your browser navigate to https://<your-firemon-ip>

  3. Log in as user admin with password: (732)357-3500

  4. On first log in navigate to Settings > Users. Change the admin and manager passwords using the Edit button.

  5. Congratulations! Your Asset Manager Enterprise VM Command Center is deployed. See xxxx for scan configuration

CLI Access

  1. It is recommended to use the Command Line Interface (CLI) to configure your system on first time setup.

  2. Use an SSH tool like PuTTY to access the system with the public IP.
    1. At the login prompt, enter the default UID: admin
    2. At the password prompt, enter the default password: (732)357-3500

  3. Type system reinit. This script will walk you through hostname, and network information. For network information leave blank and press Enter to accept DHCP.

    • How would you like to configure the network? (dhcp|manual)

    • How would you like to configure DNS? (dhcp|manual)

    • How would you like to configure Domain Server? (dhcp|manual)

    • How would you like to configure NTP? (dhcp|manual)

    • Do you want to enable FIPs?

Login

To log into your new Asset Manager system:

  1. Copy the IP address of your Command Center from the Overview blade.

  2. Paste It to the address bar of a supported web browser such as Chrome, Firefox, or IE.

  3. Bookmark the location for subsequent logins.

  4. Log in with the username admin and the password you set during system initialization.

Congratulations! Your Asset Manager Enterprise VM Command Center is deployed.