LinkedIn
Twitter
Table of Contents
Below you'll find a table of contents for the Deployment journey.
- Table of Contents
- Prerequisites
- Actions
- Deploy Director
- Active Directory Authentication
- Email Configuration
- Deploy Linux Actor
- Additional Actors
Deploying Mandiant Security Validation (MSV) is a multi-step process that involves deploying the Director and Actors, and finally, configuring the Actors. In this section, we will walk you through the deployment process for the Director and Actors.
Prerequisites
- Entitlement to Mandiant Security Validation.
- Access to Mandiant Advantage.
- Performed Access & Planning steps.
Actions
Deploy Director
In this action, we will walk through the steps of deploying the Director Virtual Appliance, which is the recommended deployment method.
Show More
Prerequisites
Prerequisites
See the Relevant Links section for more documentation regarding the prerequisites.
- Entitlement to Mandiant Security Validation.
- Access to Mandiant Advantage.
- Performed Access & Planning steps.
Initial deployment of the director is only required for on-prem installations. If you are using the SaaS version of MSV, you can skip the deploy director section, and move onto the next steps for Active Directory Authentication or Email .
Steps
-
Download the latest OVA file from the Mandiant Advantage portal. | Docs
-
Ensure you'ved reviewed the pre-installation checklist, system requirements, and have the MSV License available. | Docs
-
Import the Virtual Machine into the existing virtual infrastructure, configure the virtual hardware to meet the system requirements, and power on the Virtual Machine. | Docs
-
Using the virtual machine console, log in using the default username and password. | Docs
-
Setup the Network Configuration by following the steps in the linked documentation. | Docs
Relevant Links
Active Directory Authentication
You can configure the Security Validation Director to authenticate users against an Active Directory server. This allows you to use your existing Active Directory users and groups to manage access to the Director.
Show More
Prerequisites
Prerequisites
See the Relevant Links section for more documentation regarding the prerequisites.
- Entitlement to Mandiant Security Validation.
- Access to Mandiant Advantage.
- Successfully deployed the Director.
- Administrative access to Active Directory.
- Network connectivity between the Director and Active Directory
Steps
-
In the Director console, navigate to Settings > User Settings. Select Authentication, then Active Directory + Google Authenticator.
-
Fill out the required fields, including AD Server - Address, AD Server - Port, AD Server - Encryption, and AD Server - Local User.
-
If you would like to sync User Groups from Active Directory and map them to Groups in MSV Directory, select True for Enable Active Directory User Group Sync.
-
In order to automatically add new users who match group mapping from AD to MSV on first login, select True for Auto Add New Users.
-
Enter the Active Directory Username. This account should have read access to AD to query users and groups. This is commonly referred to as a bind account.
-
Enter the Active Directory Password for the account entered in step 5.
-
Enter the Active Directory Tree Root. Set the highest common level in the AD tree where users and groups are needed for MSV AD Authentication.
-
Click Update Authentication Settings.
Relevant Links
Email Configuration
Alert emails are sent from MSV utilizing system email. It is recommended to utilize a dedicated email account to send alerts from MSV.
Show More
Prerequisites
See the Relevant Links section for more documentation regarding the prerequisites.
- Administrative access to MSV Director.
- Credentials for email account to send alerts from.
Steps
-
In MSV Director Console, navigate to Settings > Director Settings. Select Email.
-
Fill out the email settings for with the details relative to your email configuration. | Docs
-
Follow the linked documentation for more information about settings for common email providers. | Docs
-
Click Update Email Settings.
Relevant Links
Deploy Linux Actor
One of the most common Actor types is the Linux Actor. In this section, we will walk you through the steps of deploying a Linux Actor utilizing the Virtual Appliance.
Show More
Prerequisites
See the Relevant Links section for more documentation regarding the prerequisites.
- Administrative access to MSV Director.
- Appropriate OVA deployment access in virtualization environment.
- Network connectivity between MSV Director and Actors. | Docs
Steps
-
-
Complete the pre-installation checklist and ensure you have the necessary system requirements. | Docs
-
Download the OVA from Mandiant Advantage. | Docs
-
Deploy the OVA into your virtualization environment, or install from a tar.gz file.
-
Add the Actor to the Director by following the steps in the linked documentation. | Docs
-
Relevant Links
Additional Actors
Mandiant Security Validation has a wide variety of Actors to esnure that you're able to deploy the right Actor for your environment. In this section, we will point you to the documentation for the MacOS, Windows, and Cloud Actors.
Show More
Prerequisites
See the Relevant Links section for more documentation regarding the prerequisites.
- Administrative access to MSV Director.
- Administrative access to the platform for which you are deploying the Actor(s).
Steps
-
In order to properly deploy the MacOS Actor, please follow the linked documentation below. | Docs
-
In order to properly deploy the Window Actor, please follow the linked documentation below. | Docs
-
In order to configure the AWS Actor, please follow the linked documentation below. | Docs
Relevant Links
Next Step: Mandiant Security Validation: Step 3 - Integrations
Previous Step: Mandiant Security Validation: Step 1 - Access & Planning