Home
Installation, Deployment, and Upgrade
Installing HCL Discover involves planning and preparing your environment, installing and configuring prerequisite software, obtaining the HCL Discover installation files, and running the HCL Discover installer.
Discover Network Capture Application Manual
Installing the Network Capture Application
The following instructions can be used to assist the installation of your Network Capture Application software.
Package Installation
The following information describes the HCL DiscoverNetwork Capture Application installation package.
Operating system users
The DNCA must be installed by using the root user account. During the installation process, the DNCA user dncauser is created. During execution, the dncauser user runs the DNCA processes, regardless of the user that started them.

Installation, Deployment, and Upgrade
Installing HCL Discover involves planning and preparing your environment, installing and configuring prerequisite software, obtaining the HCL Discover installation files, and running the HCL Discover installer.
- Installation and Deployment Manual
- Discover Network Capture Application Manual
  - Discover Network Capture Application Overview
    Network Capture Application from Discover captures and records the complete interaction between the visitor and the web application environment by using a network tap or network switch spanning port. The Network Capture Application software features the following benefits:
  - Installing the Network Capture Application
    The following instructions can be used to assist the installation of your Network Capture Application software.
    - DNCA installation requirements
      The following requirements must be met before you install the HCL Discover Network Capture Application:
    - Hardware Setup and Operating System Installation
    - Package Installation
      The following information describes the HCL DiscoverNetwork Capture Application installation package.
      - Operating system users
        The DNCA must be installed by using the root user account. During the installation process, the DNCA user dncauser is created. During execution, the dncauser user runs the DNCA processes, regardless of the user that started them.
      - Installing the DNCA software
        Use the following information to install the DNCA software to your physical server or virtual machine. If you are deploying your Network Capture Application to a cloud-based environment, refer to the installation procedures for those environments.
      - Failover installation
        For failover, there are Primary and Standby DNCAs in the cloud but on separate host servers. The DNCAs should be on separate servers because if both DNCAs were on the same server the failover won't work.
    - Post-installation checklist
      Use the post-installation checklist to complete the DNCA installation process.
    - Troubleshooting tips
      Use the following troubleshooting tips to diagnose problems with your DNCA installation.
    - Uninstall or Rollback of the Network Capture Application
      Complete the following instructions to uninstall the DNCA software.
  - Configuring the DNCA
    The HCL Discover Network Capture Application can be configured through a web-based console or through the configuration files that are stored on the DNCA server. The following information guides you on how to configure the DNCA.
  - Upgrade for DNCA
    It is recommended that you always use the latest version of the HCL Discover Network Capture Application suitable for your version of HCL Discover.
  - Packet Forwarder Overview
    The Packet Forwarder is used to capture and forward hits to a cloud-based DNCA that is operating on a virtual machine.
  - SSL Keys
    For decrypting transmissions by using the SSL protocol, the HCL Discover Network Capture Application must be provided the SSL keys in use in the transaction stream.
  - Performance Measurement
    Performance measurement provides details on the Network Capture software performance and timestamp measurements.
  - Configuring DNCA on Red Hat Enterprise Linux™ (RHEL)
    The following sections contain important information for configuring DNCA in a Red Hat Enterprise Linux™ environment:
  - DNCA monitoring
    You can monitor the passive capturing to diagnose performance issues.
  - Overview of DNCA maintenance
    The maintenance utility performs routine maintenance and logging tasks for Discover DNCA. You can use the utility to help maintain the ability of the DNCA to perform DNCA.
  - DNCA frequently asked questions (FAQ)
    The following content contains frequently asked questions or scenarios that can be used to help isolate or fix an issue with your Network Capture Application.
  - Downloading Privacy Configuration
  - Enabling web console access through a single IP address
    You can specify a single IP address which can access the web console. Limiting access to a single IP address helps to prevent unauthorized access through an unknown system.
  - Applying authentication when accessing the web console
    You can improve security by enabling authentication to the web console.
- HCL Discover Session Archiving Installation Guide
  As you prepare for an installation, you need to gather some items, review hardware and software requirements, and then you can perform the installation.
- Discover Upgrade Manual

Operating system users

The DNCA must be installed by using the root user account. During the installation process, the DNCA user dncauser is created. During execution, the dncauser user runs the DNCA processes, regardless of the user that started them.

Note: Do not use the sudo root user for installation. Although it can display that the installation was completed, several capture errors indicate that the installation failed. These errors can include "restarting too rapidly" errors, failures to start interfaces, permissions issues, and more. Please be sure to use a true root user login.

It is not required that you log in to the system by using the root user. However, the dncauser user must have the permissions to run the ./discover start and ./discover stop commands. It is necessary to run with limited root permissions as described. As a passive network traffic that is capturing application running under a stock Linux™ operating system, the DNCA requires specific system permissions to passively capture network packets. Through the operating system, the DNCA must be able to place system network NICs into promiscuous capture mode. It allows the DNCA to passively listen to all network traffic presented to the designated NICs. It is necessary to run the specific application process as root permission.

To minimize security issues, only one specific DNCA application module requires this permission for traffic that is capturing. All other DNCA application modules are run with non-root user permissions.

The capturing module only listens to a copy of the supplied network traffic. The module cannot inject any traffic whatsoever between your web server and the client browser.

Rate this topic

5 stars 4 stars 3 stars 2 stars 1 star

Comment on this topic.

By clicking this box, you acknowledge that you are NOT a U.S. Federal Government employee or agency, nor are you submitting information with respect to or on behalf of one. HCL provides software and services to U.S. Federal Government customers through its partners immixGroup, Inc. Contact this team at https://hcltechsw.com/resources/us-government-contact. Do not include any personal data in this Comment box.