Installing or Updating Powertech Antivirus

Use the following instructions to install or update Powertech Antivirus (PTAV). You can install Powertech Antivirus on the Powertech Antivirus for HelpSystems One Server (PTAV Server), via a new installation or migration, or on the Powertech Antivirus Endpoints.

The Powertech Antivirus for HelpSystems One Server (PTAV Server)

New installation (two options):
- Find the HelpSystems One download on the Fortra Community Portal, and instructions for installing, licensing, and configuring HelpSystems One on the HelpSystems One Downloads page. See the HelpSystems One Installation Guide in Insite Product Manuals on the portal.
- Air-gapped system: See the Installing or Updating Powertech Antivirus for HelpSystems One on Linux section below.
Migrating from Insite to HelpSystems One:

Do a clean install of Powertech Antivirus for HelpSystems One.
Complete the installation instructions below.
Complete the Migrating from Powertech Antivirus for Insite instructions.

Before You Begin

Read this section before you install Powertech Antivirus.

System Requirements

Prior to installing Powertech Antivirus, ensure you have installed HelpSystems One (preferably on a separate server), and your systems meet the following requirements.

PTAV Server

Required Operating System
- RedHat Enterprise/CentOS 7+ x86_64
- RedHat Enterprise/CentOS 8+ x86_64
Required Software
- Perl 5.6 or later
  - perl-Crypt-SSLeay
  - perl-IO-Compress-Base
  - perl-JSON
- GNU Tar
- openSSL
- net-tools
- urw-fonts (CentOS 7)

Minimum Hardware Requirements
- For up to 500 PTAV connections:
  - 16 GB RAM
  - 50 GB free space
  - 4 CPU
- For up to 1000 PTAV connections:
  - 16 GB RAM
  - 50 GB free space
  - 8 CPU
- For up to 500 PTAV Endpoints

TIP: You can use the following commands to identify your server's status:

Requirement	Linux	AIX
16 GB RAM	free -g	prtconf \| grep Mem
50 GB free space	df -h	df -g
4 CPU	lscpu	prtconf \| grep Proc

Powertech Antivirus Endpoint

Linux

RedHat Linux 6.9 (or later) for Intel x86_64
RedHat Linux 7.1 (or later) for PowerPC little endian, or PowerPC big endian

NOTE: RedHat Linux 8 does not support PowerPC big endian.
RedHat Linux 7.6 (or later) for LinuxOne s390x
SUSE Linux Enterprise Server 12 (or later) for Intel x86_64, or PowerPC little endian
SUSE Linux Enterprise Server 15 (or later) for LinuxOne s390
Ubuntu 16.04 (or later) for Intel x86_64
Ubuntu 20.04 (or later) for LinuxOne s390x
Approximately 2 GB disk space in /opt, 2.5 GB is recommended

AIX

IBM AIX 7.x
On-access scanning requires a minimum AIX 7.1 TL4
Approximately 2 GB disk space in /opt, 2.5 GB is recommended

Solaris

Solaris 10 for Intel or SPARC
Solaris 11 for Intel or SPARC
Solaris 11.4 is required for integration with HelpSystems One
Solaris 11.4 is required for on-access scanning support
Approximately 2 GB disk space in /opt, 2.5 GB recommended

NOTE: The HelpSystems One Application Manager is not supported for endpoints running Solaris. The HelpSystems One Application Manager allows you to easily install, stage, or maintain licenses and product registrations for the HelpSystems products you own on your network. See the HelpSystems One User Guide for more information on Application Manager.

Other Required Software

The command man to view online help.

Compatibility with HelpSystems One

To use HelpSystems One to access PTAV through a web browser, your web browser must meet the minimum browser requirements for HelpSystems One. See the "Web Browser Requirements" section in the HelpSystems One Installation Guide for details.

Firewall Configuration

Use the following table and diagrams to determine how to configure your firewall. The ports are either required or optional. You must open required ports to use Powertech Antivirus. Depending on your setup, you might need to use an optional port(s).


Source	Destination	Port	Protocol	Description	Required or Optional Port
HelpSystems One	Domain Controller	636/389	LDAP(s) over TCP	LDAP integration	Optional
HelpSystems One	Endpoints	22	SSH over TCP	Deployment via HelpSystems One	Optional
HelpSystems One	HelpSystems One download site	80/443	HTTPS over TCP	Deployment via HelpSystems One	Optional
PTAV Server	HelpSystems One	3050	STOMP over web sockets	Connection to registration and messaging server	Required
PTAV Server	Trellix Update hosts	80/443	HTTP(S) over TCP	DAT update from Trellix	Optional
Management Clients	HelpSystems One	3030	HTTPS over TCP	Access to HelpSystems One	Required
Management Clients	HelpSystems One	9001	HTTPS over TCP	Access to dashboards	Optional
Management Clients	PTAV Server	3737	HTTPS over TCP	Access to PTAV management web application	Required
Endpoints	PTAV Server	8998	Kafka over TCP	Used by endpoints to register against PTAV server	Required
Endpoints	PTAV Server	9092	Kafka over TCP	Used by endpoints to poll PTAV server for work and to report progress	Required
Endpoints	PTAV Server	8023 (or selected port)	HTTPS over TCP	Local DAT update. Can be configured post-installation.	Optional
Endpoints	FTP DAT Host	21	FTP passive or active	To distribute DAT updates to endpoints via FTP	Optional
Endpoints	Trellix Update hosts	80/443	HTTP(S) over TCP	DAT update from Trellix	Optional

Required Ports

Optional Ports

Installing or Updating Powertech Antivirus for HelpSystems One

The following steps describe how to install the PTAV Server (used in conjunction with HelpSystems One) to manage Powertech Antivirus on your network. For instructions on installing Powertech Antivirus on endpoints, see the Installing Powertech Antivirus on Endpoints section in this document.

The PTAV Server requires a running HelpSystems One installation. See the HelpSystems One Installation Guide for details on installing HelpSystems One prior to installing the PTAV Server.

HelpSystems One and the PTAV Server must be installed on separate systems.

IMPORTANT: If you are upgrading from Powertech Antivirus for HelpSystems Insite, do not install Powertech Antivirus for HelpSystems One on the existing Insite server.

IMPORTANT: CentOS 7 users:

Verify the required packages exist. To do so, run:
1. rpm -qa | grep perl-LWP-Protocol-https
2. If the package does not exist, install it with: sudo yum install perl-LWP-Protocol-https
Verify the "urw-fonts" package has been installed. To do so:
1. Login as root
2. Run yum install urw-fonts
Verify that perl-Crypt-SSLeay has been installed. To do so, run the command:
sudo yum install perl-Crypt-SSLeay

To install the PTAV Server:

Download the Powertech Antivirus for HelpSystems One installer file "ptavweb_install.tgz" from the Fortra Community Portal.
Move the installation file to the Linux system you would like to use to manage Powertech Antivirus. You can save the installation file to the /tmp directory.
Extract the file using the following command:
```
tar -xvf ptavweb_install.tgz
```

IMPORTANT: If you are installing the product, complete step 4, then continue to step 5. If you are updating the product, skip step 4, and continue to step 5.

If you are installing Powertech Antivirus on an air-gapped system (i.e., one that does not have internet connectivity), download the files appropriate for your operating system, as shown below. Place these files in the ptavweb_install directory.

RHEL/CentOS 7
https://hsdownloads.helpsystems.com/download/postgresql11_19-Linux-x86_64.tar.gz

RHEL/CentOS 8
https://hsdownloads.helpsystems.com/download/postgresql11_19-Linux-x86_64-suse-ssl1_1.tar.gz

RHEL/CentOS 7/8
https://hsdownloads.helpsystems.com/java/OpenJDK11U-jre_x64_linux_hotspot_11.0.18_10.tar.gz

Complete this step only for new installations. Create the registration file to store the registration key generated by HelpSystems One, and copy the key to the file. To do so:
1. Open HelpSystems One.
2. From the main menu, click Product Registration.
3. Click Create Registration Key. The Create Registration Key pane appears on the right.
4. For HelpSystems One Location, click the drop-down menu and select the IP address of the server hosting HelpSystems One.
5. For Product Location, enter the full URL of the Powertech Antivirus system, "https://xxx.xxx.xxx.xxx:3737" where xxx.xxx.xxx.xxx is the IP address of the Linux server being used for this installation.
6. Click Generate Key. HelpSystems One generates the key.
7. Click Copy Key to Clipboard.
8. Return to the Linux command line, navigate to the ptavweb_install directory, and create the registration file. To do so:
  1. Enter the following:
  2. Press i to move to INSERT mode.
  3. Press SHIFT+INSERT to paste the key.
  4. Press ESCAPE.
  5. Type :x and press ENTER.
    The key has been added to the registrationKey.txt file. You are now ready to run the installation procedure.
    NOTE: You can submit cat registrationKey.txt to verify the file has been created and the registration key is correct.
Enter the following command to begin installation:
```
./serverInstall
```
WARNING: If, at this point, the following error is reported:
BEGIN failed--compilation aborted at include/determineInstall.p1 line 14
Run the following command:
yum install perl-IO-Compress-Base
When prompted to install the package, press Enter to accept the default of 'y.'
When complete, submit ./serverInstall again.
WARNING: If, at this point, the following error is reported:
Can't locate JSON.pm in @INC
Run the following command:
sudo yum install perl-JSON
When complete, submit ./serverInstall again.
When prompted to continue, press Enter to accept the default of 'y.'
When prompted to select the Fully Qualified Domain name, enter 1 to choose the default, or 2 to customize.
When prompted to begin Integration installation, press Enter to accept the default of 'y.'
When prompted to begin the PTAV Web Server installation, press Enter to accept the default of 'y.'
When installation is complete, return to HelpSystems One and click Close to dismiss the Create Registration Key pane. An additional row appears in the product list.

NOTE: There may be a delay populating the Alias and Product fields while Powertech Antivirus connects to HelpSystems One.
Click in the banner at the top left of the screen to return to HelpSystems One Home.
Under Available Products, click Powertech Antivirus to access the product.

NOTE: If you are using a self-signed certificate (default), you will see a warning message. You can click Proceed to advance, and will need to accept the risk in your browser to open Powertech Antivirus.

Installing Powertech Antivirus on Endpoints

Follow these instructions to install Powertech Antivirus on individual endpoints.

Download the Powertech Antivirus install file for your operating system from the Fortra Community Portal. If you're a new user, you should have received an email message containing the download link. If you don't have it, contact your Regional Manager.
Unzip the download file, then place the rpm file, or deb file for Ubuntu, on the host machine.
If you are updating Powertech Antivirus, you will run the product installer over the existing installation. By default, the update folder is the same as the one used for your original Powertech Antivirus installation. (If your current installation uses a different install path, that path can be provided with the --prefix option.) Before updating, backup any user data.
Once the update is complete, a new license file will need to be placed in the installation folder. Make sure to keep a copy of license.xml if a rollback to the previous version is needed.

NOTE:

AIX users: Powertech Antivirus can be installed using the rpm command or using SMIT (System Management Interface Tool). Using either method, first change to the directory where the file is located (i.e. cd /home).
If you are updating and need to identify the version that is currently installed, run the following command: /opt/sgav/avsvcinfo

Installing or Updating with RPM

Follow these instructions to install or update Powertech Antivirus with RPM.

To install or update on Red Hat (non-FIPS mode), SLES, or AIX with RPM

Run the following command to install:

rpm --install <rpm-file-name>

where <rpm-file-name> is the name of the .rpm installation file.

NOTE:
If your RHEL system is configured to use FIPS mode, run the following command to install:

rpm --install --nodigest --nofiledigest <rpm-file-name>

where <rpm-file-name> is the name of the .rpm installation file.

By default, the product will install to the /opt/sgav directory which will be created if it does not exist. To install to a different directory, use the --prefix option. For example:

rpm --install <rpm-file-name> --prefix /home/sgav

will install to the /home/sgav directory.

Run the following command to update:

rpm --upgrade <rpm-file-name>

where <rpm-file-name> is the name of the latest version of the .rpm installation file.

If you have installed to an alternate prefix, you must specify the prefix when upgrading if you want the new version installed there as well:

rpm --upgrade <rpm-file-name> --prefix /home/sgav

Installing or Updating on Solaris

Run the following command:

pkgadd -d ./pkg-file-name.pkg HSsgav

EXAMPLE:
pkgadd -d ./sgav-6.0.0-809.sol10.i386.pkg HSsgav

Powertech Antivirus installs to the /opt/sgav directory, which is created if it does not exist.

Installation requires that some files are installed setuid-root, and some scripts are executed with super-user permission. Depending on system configuration, you may be prompted to allow this to occur.

To install to a different directory, use a response file that sets BASEDIR to the alternate location. For example, to install to /usr/local/sgav, create a response file "response.sgav" that contains

BASEDIR=/usr/local

and use the response file in your installation command.

EXAMPLE:
pkgadd -r ./response.sgav -d ./sgav-5.4.2-775.sol10.i386.pkg HSsgav

Solaris PKG Uninstallation

To uninstall the software, run the following command:

pkgrm HSsgav

Uninstallation requires that scripts are allowed to run with super-user permission. Depending on system configuration, you may be prompted to allow this to occur.

Solaris PKG Upgrade

To upgrade the software, uninstall the old version and install the new one.

During uninstallation, configuration files are saved with .pkgsave extensions. During installation, any configuration files in the installation directory with the .pkgsave extension are restored to current and the base versions delivered with the new package are saved with .pkgnew extensions.

Installing or Updating on Ubuntu with DEB

To install on Ubuntu, run the following command:

dpkg -i <file-name>

where <file-name> is the name of the product .deb file.

To uninstall on Red Hat and SLES, run the following command:

rpm -e sgav

To uninstall on Ubuntu, run the following command:

To completely remove Powertech Antivirus:

dpkg -P sgav

To remove Powertech Antivirus, but leave configuration files:

dpkg -r sgav

AIX Only: Installing or Updating using SMIT (System Management Interface Tool)

To install or update using SMIT, run the following command:

smit install_software

Type the directory where the .rpm file is stored in the INPUT device field, and type sgav for "SOFTWARE to install," as shown below:

NOTE: Users performing an update—If the latest version of Powertech Antivirus is in the same folder as the previous version, use F4 to list the packages that match sgav. Choose the highest or most recent version number.

			SOFTWARE to install                              
	                                                                       
Move cursor to desired item and press F7. Use arrow keys to scroll.
    ONE OR MORE items can be selected.
Press Enter AFTER making all selections.
                                                                          
   sgav                                                   ALL
	   
      @@R:sgav-5.0.0-705 5.0.0-705 
      @@R:sgav-4.3.0-602 4.3.0-602

Install Software

Type or select values in entry fields.
Press Enter AFTER making all desired changes.

[Entry Fields]

* INPUT device / directory for software               /home
* SOFTWARE to install                                [sgav-5.0.0-705 sgav-5.0.0-705  > +
PREVIEW only? (install operation will NOT occur)    no                     +
COMMIT software updates?                            yes                    +
SAVE replaced files?                                no                     +
AUTOMATICALLY install requisite software?           yes                    +
EXTEND file systems if space needed?                yes                    +
OVERWRITE same or newer versions?                   no                     +
VERIFY install and check file sizes?                no                     +
Include corresponding LANGUAGE filesets?            yes                    +
DETAILED output?                                    no                     +
Process multiple volumes?                           yes                    +
ACCEPT new license agreements?                      no                     +
Preview new LICENSE agreements?                     no                     +
WPAR Management
Perform Operation in Global Environment         yes                    +
Perform Operation on Detached WPARs             no                     +
Detached WPAR Names                        [_all_wpars]            +
Remount Installation Device in WPARs            yes                    +
Alternate WPAR Installation Device             []
F1=Help          F2=Refresh        F3=Cancel        F4=List
F5=Reset         F6=Command        F7=Edit          F8=Image
F9=Shell         F10=Exit          Enter=Do

When the installation is complete, the following screen will appear. Ensure the Command status is OK.

COMMAND STATUS
Command: OK            stdout: yes           stderr: no

Before command completion, additional instructions may appear below.

installp: The specified device /home/root
is not a valid device or file.
geninstall -I "a -cgNQqwX -J"  -Z   -d /home -f File 2>&1

File:
R:sgav-5.0.0-705                  
Validating RPM package selections ...
Please wait...
sgav                        ##################################################

Connecting a Powertech Antivirus Endpoint to the PTAV Server

Use the following procedure to connect the PTAV Endpoint to the PTAV Server after manually installing Powertech Antivirus on an endpoint. This procedure is required only if Powertech Antivirus was not installed from HelpSystems One. To use the PTAV Server to monitor and manage endpoints, register Powertech Antivirus on the endpoint using the PTAV Server Integration Service.

Install HelpSystems One if it is not installed already. Although HelpSystems One and Powertech Antivirus for HelpSystems One (the PTAV Server) can be installed on the same system, installing on separate systems is recommended.
Open HelpSystems One in your web browser.
From the HelpSystems One Home page, Available Products list, select your Powertech Antivirus server.
Copy your Powertech Antivirus API Key. To do so:
1. Go to Settings > Endpoint Registration.
2. For the API key, choose (Show Actions) > Copy.
On the endpoint:
1. Go to the Integration Service folder using command cd ptav-home/integration (/opt/sgav/integration by default).
2. Run the registration command register.sh with the required parameters, pasting the Server Key you have copied for the Server Key (-k).
  Required Parameters:
```
-k|--key)       Server Key
-s|--server)    Fully Qualified Domain Name or IP address
```
  Optional Parameters:
```
-p|--port)      Server Port [default=8998]
-a|--alias)     Alias Name
-c|--client)    Client IP/DNS Name
-f|--folder)    Client Install Path
```
  EXAMPLE:
  ./register.sh -k ad24embc-517u-43f1-80a8-68446a2f0e8d -s myptavserver.mydomain.com
  or
  ./register.sh -k ad24embc-517u-43f1-80a8-68446a2f0e8d -s xxx.xxx.xxx.xxx
  where xxx.xxx.xxx.xxx is the IP address of the Powertech Antivirus for HelpSystems One system.
Return to HelpSystems One, go into Powertech Antivirus, and select > Connection Settings. The server you have added appears in the list. Its status is New , indicating the endpoint has not been allowed. Allowing an endpoint is required to indicate the endpoint should be allowed to communicate with the PTAV Server.
To approve the registered endpoint, click (Show Actions) > Allow. Doing this:
- Allows the PTAV application to connect to the PTAV Server's Integration Service.
- Triggers the Integration Service to start sending health check requests to the endpoint system.
NOTE: Servers can also be allowed by checking the server and selecting Allowed at the top of the screen.

The PTAV Server now lists the endpoint's status as "critical ", indicating the endpoint is not responding to health checks.

NOTE: Each endpoint needs to be able to resolve to a domain name.

Run the following command on the endpoint system (in ptav-home/integration) to begin responding to health check requests sent by HelpSystems One.

./avinsitectl start

NOTE: The command above starts the service once, but does not "enable" it to run after reboot. To also automatically start after reboot, use the command:

./avinsitectl enable

The PTAV Server now lists the endpoint's status as , indicating it is now responding to health check requests.

Repeat steps 2-7 for additional endpoints you would like to register and scan.

After you have installed, see Updating Virus Definitions in the Powertech Antivirus User Guide on the Fortra Community Portal to configure Powertech Antivirus to scan using the latest virus definition DAT files from Trellix.

NOTE: See the HelpSystems One User Guide on the Fortra Community Portal for more details on setting up and using HelpSystems One.

Licensing

After your purchase, you will receive an email from HelpSystems with your license code attached. You can apply the license directly to the endpoint, or add it using the Powertech Antivirus Application. The Powertech Antivirus Application allows you to apply a license to several endpoints simultaneously.

To manually license Powertech Antivirus directly on an endpoint

Rename the file to "license" (no extension).
Save the attached file to the /opt/sgav (or other) directory, where the product was installed.

To license Powertech Antivirus endpoints using HelpSystems One

Connect Powertech Antivirus to HelpSystems One.
In the Navigation Pane, click Licenses.
Click Add.
Click Choose File. Navigate to the license file sent via email from HelpSystems.
Select the license file and click Open. Repeat the previous two steps for additional license files.
Click Add. The license file is added to the license list.
In the Navigation Pane, click Endpoints.
Use the check boxes to select the endpoints you would like to license, and click Allocate License.
Choose the license you would like to allocate from the License drop-down list, and click Allocate.

After You Are Done

Congratulations! Powertech Antivirus is now installed. Read the following for additional information and your next steps.

Registering Powertech Antivirus Server with HelpSystems One After Installation

During a normal installation, so long as a valid "registrationKey.txt" file has been placed in the installer directory (i.e. /home/user/ptavweb_install as indicated in the installation instructions), the file "registration_file.json" is placed into the /opt/ptavwebsvc/conf directory as part of the installation routine. However, if the "registrationKey.txt" file was not created prior to running the installation routine, it can be added to Powertech Antivirus after installation in order to register Powertech Antivirus with HelpSystems One. This may be necessary if:

The "registrationKey.txt" file was not created and placed into the installer directory before running serverInstall, or
You have uninstalled HelpSystems One or deleted the registration listing for Powertech Antivirus in HelpSystems One.

NOTE: The registration key is generated in HelpSystems One for a given IP address. If the registration key remains in HelpSystems One, you can repeatedly use the key—and the later-generated JSON file—before, during, and after installing the PTAV Server.

To create a new registration key

Open HelpSystems One, then click >Application Manager.
Click Product Registration.
Click Create Registration Key. The Create Registration Key pane appears on the right.
For HelpSystems One Location, click the drop-down menu and select the IP address of the server hosting HelpSystems One.
For Product Location, enter the full URL of the Powertech Antivirus system, "https://xxx.xxx.xxx.xxx:3737" where xxx.xxx.xxx.xxx is the IP address of the Linux server being used for this installation. For example, "https://10.60.154.8:3737".
Click Generate Key. HelpSystems One generates the key.
Click Copy Key to Clipboard.
Return to the Linux command line, navigate to the /opt/ptavwebsvc directory, and create the registration file. To do so:
1. Enter the following:
2. Press i to move to INSERT mode.
3. Press SHIFT+INSERT to paste the key.
4. Press ESCAPE.
5. Type :x and press ENTER.
  The key has been added to the "registrationKey.txt" file.
  NOTE: You can submit cat registrationKey.txt to verify the file has been created and the registration key is correct.
Run the perl script createRegistrationFile.pl available in the/opt/ptavwebsvc directory. The script checks for the registration file and prompts you to confirm whether you want to overwrite an existing /opt/ptavwebsvc/conf/registration_file.json if one is found.
Restart the Powertech Antivirus server using the scripts stopPtavws.pl and startPtavws.pl.

Copyright © Fortra, LLC and its group of companies.
All trademarks and registered trademarks are the property of their respective owners.
6.12 | 202306291127 | June 2023