Online criminals hate us. We protect you from attacks that antivirus can't block.

Thor AdminPrivilege Reporting (Access Director Reporting point) install guide

Introduction

The reporting point was introduced as an add-on to Access Director Enterprise 

Requirements

The requirements listed is required to install and use the Access Director Reporting Point for centralized logging

- Windows Server 2012 R2 or newer

- Internet Information Services (IIS) 8.5 or newer

- PHP 5.3 or newer (for full feature)

NOTE: Most of the installation will require Administrator rights 

NOTE: Linux with Apache can also be used. 

Installing

The requirements listed are required to install and use the Access Director Reporting Point for centralized logging 

1.IIS

Note: If you already have IIS installed, please skip this step.

IIS is a windows feature. In order to install it, go to Windows features, select Internet Information Services and click OK:

 mceclip0.png

 

2.PHP

Note: If you already have PHP for IIS installed, skip this step.

The installation of PHP for IIS will be done using an application from Microsoft called Web Platform Installer. You can download this application here:

https://www.iis.net/downloads/microsoft/web-platform-installer

After downloading the Web Platform Installer, double click the downloaded .msi file and install the application.

After the installation is done, open the Web Platform Installer, navigate to the Products tab and search for PHP.

After doing the search, find PHP in the list, and select the version you want.

Make sure the version you want is NOT for IIS Express.

 mceclip1.png

 

Note: At the moment of writing this paper, the highest PHP version available in the Web Platform Installer is version 7.3.1.

3.Install the Reporting Point

Just run the provided .msi file. The install will publish the Reporting Point website in your IIS automatically if you keep the default settings provided by the installer.

Note: If you attempted to install the .msi before you installed IIS, it will deploy the website at a specific point, but, in order to access the site, you will need to add it to IIS.

4.Add User Rights

Assign write & modify rights for the user IIS_IUSRS on Files folder in which you installed the Reporting Point website. (The default path is: c:/wwwroot/AccessDirector)

5.Edit php.ini

In the php.ini file change short_open_tag=off to short_open_tag=on.

Note: If you installed PHP using the Web Platform Installer, you will find your php.ini file at the following path: C:\Program Files (x86)\PHP\php.ini.

6.Access the Reporting Point

Just browse to http://<yourserver>/AccessDirector .

NOTE: Always update your Reporting point using the online updater within the reporting point

configuration website.

Alternative Installation

If you installed the Reporting Point after installing the actual Access Director, there is one more configuration you need to update in order to ensure that the Reporting Point actually receives data.

For this you will have to update a value in the machine registries.

First, start the Registry Editor(regedit). The path to the Access Director keys should be: “Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Basic Bytes\Access Director” (you can just type this path, just like you would in the Windows Explorer).

mceclip2.png

Right click on the entry named AuditURL and click modify. Change the Value to: http://<yourserver>/AccessDirector/upload.php and click ok. After this, open Services and restart the Access Director Framework Service in order to make sure the value has been properly updated.

After this, the Reporting Point should properly log data.

Authentication

The reporting point supports authentication basic authentication

Default Login:

Username: admin

Password: admin

Online Updates

The Reporting Point can be updated using the configuration wheel, in the top right corner.

https (443) access to https://basic-bytes.com is required to perform an online update.

In order to install the Access Director Enterprise please see the guide bellow: 

https://support.heimdalsecurity.com/hc/en-us/articles/360001975917-Thor-AdminPrivilege-Access-Director-Enterprise-install-guide

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

0 Comments

Article is closed for comments.