Risk Suite 2 Installation
From SymbiantWiki
Contents |
Requirements
- Microsoft Windows 2000 Professional and Server (SP 2 recommended)
- -or- Microsoft Windows XP Professional
- -or- Microsoft Windows Server 2003
- .NET framework 2.0
- SQL Server 2000 or later
To install Symbiant Risk Suite you must have full administration privileges for both the Windows (Internet) Server and SQL Server.
Set-up
Download the latest Risk Suite build. Extract the zip file to a temporary folder. Please be sure to read any associated read me files.
Double click the Setup.exe file to launch a set-up wizard that will guide you through the installation process.
When the installation is complete, the installer will launch the Symbiant Risk Suite Configuration utility. This application will allow you to construct the required database components, set-up your email requirements and specify a location to store uploaded documents.
You should complete each of the screens of this configuration utility following the installation, however you can launch this utility at any time from the Start menu (All Programs > Symbiant > Risk Suite 2 > Configuration Utility) should you wish to modify any settings in the future.
Before you begin using Risk Suite please read the Symbiant Risk Suite User Guide. If you are planning on connecting to an Active Directory service, please be sure to read the Enabling Active Directory guide before configuring Risk Suite.
You can begin the Risk Suite application by navigating to the installation directory via any modern web browser (Internet Explorer 5.5 or later recommended).
Configuration
Before you can begin using Tracker you must configure the system. Once Tracker has been installed a Configuration Utility will appear.
Database
The database must be installed on a Microsoft SQL Server 2000 or later database. Simply enter the required configuration details and click [Create].
Database Server
| Server | The SQL Server where the Risk Suite database should be installed. |
|---|---|
| Port | If the SQL Server uses a different port to the standard for security reasons, enter that otherwise leave port blank. |
| Root User ID | The administrator user for the database, this user should have full sa privileges. |
| Password | The password for the administrator user. |
Click the [Test] button to check that the details entered are valid and can be used to create the database.
Risk Suite Database
| Name | The name for the new Risk Suite database, i.e. SymbiantRiskSuite |
|---|---|
| Username | The name of the login user to connect to the database, i.e. symriskusr |
| Password | The password for the login user, i.e. s9mR15k5u1t |
The password must be a strong and secure password otherwise SQL Server will reject it and you will be forced to enter a stronger password. Strong passwords include both letters and numbers.
Click [Create] and the Configuration Utility will create the Risk Suite 2 database.
Here you must enter the mail server settings and credentials if required.
| SMTP Server | The name of the SMTP mail server to connect to. |
|---|---|
| Port | Generally the mail server port is 25, if this is different for your server enter the correct value in port. |
| Username | If your SMTP server requires login credentials, check the Credentials box and enter the username to login and send emails. |
| Password | The password for the SMTP user. |
To check that the email settings have been entered correctly, you can enter an email address and click the [Test] button. This will send an email to the specified address, if the email arrives then the SMTP configurations are correct.
Scheduler
The Scheduler configures when the email reminders are triggered. Email reminders are sent when an action has not been updated by its action by date. Reminders can be sent a defined number of days before the action is due via the main Risk Suite interface. Here, we configure the days the reminder task will be run and at what time.
This screen is already per-configured to run the email reminder every weekday at 8:30 in the morning. This is based on the servers date and time. Note that just because this is set to run every weekday doesn't mean that emails will be sent every day, emails are only sent when action due dates are approaching or have been passed.
Active Directory
If you have an Active Directory enabled license and wish to connect to an Active Directory to allow accounts to be created from the directory and network logins, the Active Directory configuration allows entry of the required connection details. See the Enabling Active Directory Support section below for important Active Directory configuration details.
To connect to an Active Directory via Risk Suite an LDAP or GC connection string is required and any username or password required to authenticate the connection. You can click [Test] to check if the details entered are correct and a connection can be established. Please read the Enabling Active Directory user guide for more details on configuring an Active Directory for Tracker, there are some important account and server changes that must be implemented.
Tracker
If you also have a copy of Symbiant Tracker, you can check the user Symbiant Tracker box to pass all risks to monitor to Symbiant Tracker.
You must specify the URL where the Tracker application can be accessed as well as database connection details:
| Server | The SQL Server where the Tracker database is hosted. |
|---|---|
| Name | The name of the Symbiant Tracker database. |
| Username | The name of the login user to connect to the database. |
| Password | The password for the login user. |
It is also possible to provide default users that will be used if the Risk Suite user wishing to access Tracker does not have a Tracker account. Check to allow a default Manager or Auditee and enter the relevant username and password.
Documents
Check permit file uploads to allow users to upload files to Risk Suite, enter the path to where the files are stored or click the [...] button to browse for the folder.
The permitted file types are the files that are allowed to be uploaded to Risk Suite, these should be restricted to secure files only, i.e. do not permit executables or potentially harmful files to be uploaded. Separate each type of file that can be uploaded with a semi-colon (;).
Themes
To provide a custom look and feel to Risk Suite you can specify a theme. Themes are created using the Theme Builder. Select the theme to use from the list available.
Please note that the theme builder is now obsolete, the next major Risk Suite release will not provide support for themes created with the Theme Builder.
That completes all the required configuration settings. Click [OK] to save the setting and begin using Risk Suite.
Enabling Active Directory Support
The latest version of Risk Suite includes the ability to connect to Active Directory retrieve users and implement a single sign in (login) environment.
Configuring Risk Suite to work with Active Directory is very simple. First you will need to contact Symbiant and request that your Risk Suite license has Active Directory support activated. If Symbiant have not already agreed to do this for you, you should contact support or your Symbiant sales representative.
Once you have obtained your new license key file, copy this to the bin directory of your Risk Suite installation folder.
Next connect to Risk Suite and log-in as normal, if this is a new installation, use username “admin”, password “abcxyz”. Click on Accounts and change the username of the default Administrator user to the CA name of the Active Directory user you want to be the default administrator in Risk Suite. If you are unsure what the CA name is, contact your Active Directory administrator. Make sure you save these changes and log-out of Tracker.
Note: If you already have other user accounts in Risk Suite you will need to change each of their usernames to match the Active Directory login name of the corresponding user..
On the server (computer) where Risk Suite is installed, open the Symbiant Risk Suite Configuration Utility (this will normally be located at Start > All Programs > Symbiant > Risk Suite 2 > Configuration Utility). Locate and activate the Active Directory tab. Here you should enter the LDAP or GC string used to retrieve the user accounts from your Active Directory and any username and password that is required. Generally an LDAP connection is used for connecting to a single domain server, GC is used to connect to the global catalogue (or forest). Again, if you do not know what to enter here contact your Active Directory administrator (please do not contact Symbiant and ask what to enter here as it is unique to your network and we cannot help you with this). Click OK to save the configuration changes.
Finally you must de-activate anonymous access to the Risk Suite virtual directory in Internet Information Services. To do this open your Internet Information Server (IIS) Manager. Expand the web sites and locate the SymbiantRiskSuite virtual directory and display its properties. Locate and activate the Directory Security tab and click the Edit button under Authentication and access control. Un-check the Enable anonymous access check box. Then under Authenticated access, check Integrated Windows authentication and un-check the remaining check boxes. Click OK on all the dialogues to save these changes.
You should now be able to access Risk Suite without logging in assuming you are logged onto the network and are registered with an account in Risk Suite. Once in Risk Suite, click Accounts (assuming you have Administrator privileges) and locate other users from the Active Directory to grant access to.
For more information on Active Directory and connecting to it, please see:
