Chapter 19. Installation in Secure Environments
Table of Contents
In secure environments, manager and agent services run on servers under separately created operating system users, not under the superuser. In this case, operating system users must be granted additional privileges so that the manager and agent services can function correctly.
Important
Agents automatically discover hosts, instances, instance objects, and other components installed on the server and create them in the web application. You can configure the automatic discovery in the
ppem-agent.ymlagent configuration file.The automatic discovery and a number of other features are not supported when PPEM is installed in a secure environment.
If the agent service is running on behalf of an operating system user lacking the required privileges, consider the following limitations when creating clusters:
The main instance data catalog cannot be created. PPEM uses
sudoand requires the privileges to runchmod,chown,initdb, andpg_ctl.Instances cannot be configured. PPEM automatically specifies instance parameters in the
postgresql.auto.confconfiguration file and requires the privilege to access the main instance data catalog.
When executing commands provided in this section, consider the following:
Debian Linux operating system commands are specified. For other operating system versions, use their corresponding commands.
Standard variables are specified in commands, for example,
ppemfor the repository database. If required, you can specify other variables.
The installation process includes the following steps:
Ensure that prerequisites are met.
PPEM will be installed. You can update the browser page with the web application and start working.