2.2. Team Installation and Configuration¶
This section outlines the installation and configuration of Cyber Triage® Team, which is a client-server deployment with one server and one or more clients.
Here are some basic concepts of a Team deployment:
Only one instance of Cyber Triage® can run on a system at a time, so this means you will need at least two computers. One for the server and one or the client.
Any client can open any incident, even if it did not create the incident.
Some functionality is currently more limited in a client-server deployment, such as the ability to cancel collections and malware analysis.
Team Installation Checklist
There are many steps to getting a Cyber Triage Team deployment setup. Please go through the following list and if you have problems, indicate to support which step caused the issues.
- Planning
Read the Architecture section below to get an understanding of what components are involved with a Team deployment. Most deployments have a single server with Cyber Triage and PostgreSQL on it.
Obtain the dedicated server(s). See Team Requirements.
- PostgreSQL
Install and configure PostgreSQL. See Installing and Configuring PostgreSQL.
Test the speed of PostgreSQL. If the speed is too slow, review the system resources and configuration. See Testing PostgreSQL Speed.
If you installed PostgreSQL on its own server, then ensure the host-based firewall on the computer running PostgreSQL will accept connections to port 5432. See PostgreSQL Server: Listening Network Ports.
- Cyber Triage Server
On a Windows computer, install and configure Cyber Triage Server. Ensure that the Server can connect to the PostgreSQL database. See Cyber Triage Server Installation.
Configure the host-based firewall on the Cyber Triage server to allow access on ports 443, 9443, and 61616. See Installing and Configuring PostgreSQL.
Create users. See Create and Manage Team Users.
- Cyber Triage Clients
Install and configure Cyber Triage Clients on additional Windows-based computers. See Install and Configure Cyber Triage Clients.
- Additional Configuration
Configure other Cyber Triage settings that are not unique to Team deployments. See Setup (Standard and Team).