Install the LCE Server

Before You Begin

Install JRE
Install Elasticsearch
Download the LCE server package from the Tenable Support Portal.

The following procedure must be performed as the root user.

Installation Location

The LCE server must be installed in /opt/. Because LCE is installed where the installation package is located by default, the package must be placed in /opt/.

Caution: /opt/lce/ must not contain any symbolic links.

Installing the Package

Note: To ensure consistency of audit record time stamps between the LCE and SecurityCenter, make sure that the underlying OS makes use of the Network Time Protocol (NTP) as described at http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Deployment_Guide/sect-Date_and_Time_Configuration-Command_Line_Configuration-Network_Time_Protocol.html

If you are upgrading from a previous version of LCE, please skip this section and see Upgrade the LCE Server. Please follow the instructions in this section for new installations.

To install the LCE RPM, enter the following command: rpm -ivh <package name>, where <package name> is the name of the LCE server package you downloaded from the Tenable Support Portal.

For example:

# rpm -ivh /tmp/lce-5.0.0-el6.x86_64.rpm

Preparing... ########################################### [100%]

1:lce ########################################### [100%]

The installation process is complete.

Please refer to /var/log/lce_upgrade.log to review installation messages.

This is a new installation. To configure LCE, please direct your browser to:

https://l92.168.1.101:8836

Note: If you install LCE on RHEL or CentOS 5, you must include --no-signature, as RHEL/CentOS 5 does not support v4 headers for packages. For example:

# rpm -ivh --nosignature lce-5.0.0-el5.x86_64.rpm

The installation process will create a user and group named lce and install the LCE server to the /opt/lce directory. All files will be installed with the user and group of lce except for the actual lced daemon, which is set-user-id root. The daemon must be started as the root user, and once the it has bound to the appropriate port(s), it will drop privileges. If the lced daemon terminates abnormally for any reason, the system will automatically restart the daemon and add a warning to the LCE logs.

Copyright 2017 - 2018 Tenable, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc. Tenable, Tenable.io, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.