Skip to content

Prerequisites

Make sure your system fits the descriptions below before starting the installation.

Software Requirements

File Access Manager requires the latest ASP.NET Core 6.0.x Hosting Bundle. This bundle consists of .NET Runtime and ASP .NET Core Runtime. You can download the latest 6.0.x Hosting Bundle version from here.

Permissions

File Access Manager requires different permissions, based on the tasks to perform. The user configured in the Application configuration wizard must have the following permissions on the HNAS:

  • Share Read permissions to all shares

  • Full Control permission for each normalized folder

  • Member of the local Backup Operators group

  • Member of the local Administrators group

The following detailed explanation describes permissions required by each File Access Manager task:

  • Activity Monitoring - The user must be a member of the local Administrator group on the HNAS.

  • Crawling - The user must have Share Read permissions to all the shares on the HNAS.

    The user must be a member of the local Backup Operators group on the file HNAS.

  • Permission Collection - The user must have Share Read permissions to all the shares on the HNAS.

    The user must be member of the local Backup Operators group on the HNAS.

    The user must be a member of the local Administrators group to read the Share Permissions, and the local Users and Groups of the HNAS.

  • Access Fulfillment - The user must have Full Control permission on the normalized folders to be able to set the permissions.

  • Data Classification - The user must have Share Read permissions for all the shares on the HNAS.

    The user must be member of the local Backup Operators group on the HNAS.

Configuring the HNAS Audit Settings

  1. Log into the Hitachi NAS console using administrator credentials.

  2. Go to Home > File Services > File System Audit Policies.

  3. Select the EVS for which auditing will be enabled.

  4. Select Add.

    The Add File System Audit Policy page opens to display a set of audit policy default settings.

  5. Set the maximum log file to a value of at least 8MB (16MB is recommended) in the Audit Log section.

  6. Select New or Wrap (Wrap is recommended) in the Log roll over policy section.

  7. Select OK.

  8. Repeat Steps 4 and 5 to enable auditing in additional EVS file systems.

Configuring the Audit Log Consolidated Cache

  1. Log into the Hitachi NAS Admin Services’ EVS using SSH with administrator credentials.

  2. Execute the following command to switch from admin EVS to file services EVS:

    console-context --evs <EVS name>

  3. Execute the following command to configure the audit log consolidated cache:

    audit-log-consolidated-cache add -s <Size> <EVS name>

    For example, in audit-log-consolidated-cache add -s 50MB [file system name], the [file system name] is the name of the EVS file system on which the audit log consolidated cache file is stored. It is recommended that disk space of at least 50 MB be provisioned for an audit log consolidated cache to avoid losing events. It is also recommended that a new file system be created for the audit log consolidated cache.

  4. Increase the size of the Event Pool in the EventLogEventCache by running the following command:

    fsm set auto-heap-pool-sizeEventLogEventCache::Event 200000

    The pool limit can be increased to 200,000, which is enough for a 50 MB audit log consolidated cache.

Configuring Share Auditing

  1. Open Computer Management (run compmgmt.msc).

  2. Select More Actions > Connect to another computer.

  3. Type the IP or DNS of the EVS.

  4. Select OK.

  5. Go to System Tools > Shared Folders > Shares.

    The EVS shares display on the right.

  6. Right-click on a share, and select Properties.

  7. Select the Security tab.

  8. Select Advanced.

    The Advanced Security Settings window displays.

  9. Select the Auditing tab.

  10. Select Add or Edit to add/edit users/groups to be audited.

  11. Select Everyone to make the EVS log events for all users.

  12. Select Success in the Type field.

  13. Select Full Control in the Basic Permissions field.

  14. Repeat to audit additional shares.

    Important

    To avoid unnecessary overhead, define only those users or groups to be monitored, as well as any actions required for monitoring. (For example, removing Read will result in much less overhead on the HNAS.) HSD may provide more information on how to avoid unnecessary overhead.

  15. Generate activity on the shares created in a required file system in order to verify if auditing is enabled on the EVS for that file system.

  16. Execute the following command on the Hitachi NAS Console to verify whether the events are generated:

    audit-log-show <Name of file system>

Communications Requirements

Requirement Source Destination Port
File Access Manager Message Broker Permissions Collector / Data Classification Collector RabbitMQ 5671
File Access Manager Access Activity Monitor File Access ManagerServers 8000-8008
Collecting Events Activity Monitor HDS MSRPC (135)
Permissions Collection Permissions Collector HDS SMB (139/445)
Data Classification Data Classification HDS SMB (139/445)