Overview

This article describes a standard UMS single server installation (not HA) along with IGEL Cloud Gateway (ICG). The database is reachable via Azure or is hosted in Azure.

Requirements

  • Microsoft Azure account
  • UMS 6.07.100 or higher

Creating a Virtual Machine for the UMS

  1. Log in to Microsoft Azure.
  2. Hover over Resource groups and select Create.
  3. Edit the data as follows:
    • Resource group: Enter a name for the resource group, e.g. "MyResourceGroup".
    • Region: Select a region, according to your preferences. 
  4. Click .
    Your resource group is validated.
  5. Click .
    Your resource group is created.
  6. Click Home to get to the overview.
  7. Hover over Virtual machines and select Create.
  8. Edit the data as follows:
    • Resource group: Select the resource group you have created before.
    • Virtual machine name: Enter a name for the virtual machine on which your UMS is to be installed.
    • Image: Select "Windows Server 2016 Datacenter".
    • Size: Select the size for your virtual machine. If all components will be running at the same time, we recommend “Standard B4ms” (4cpu/16 GiB). The components and their RAM requirements are as follows: 
      • UMS Server: 4 GB
      • UMS Administrator. 2 GB
      • UMS Console: 3 GB
      • UMS Web App: 1 GB
      • Embedded database: 2-3 GB
    • Select inbound ports: Select "HTTP (80)", "HTTPS (443)", and "RDP (3389". As an alternative, you can add the ports later on; see Configuring the Virtual Machine.
  9.  Click .
  10. Click .

Configuring the Virtual Machine

  1. In the sidebar menu, go to Networking.
  2. Click .
  3. Edit the data as follows:
    • Destination port ranges: Enter "8443".
    • Protocol: Select TCP.
    • Name: Change to "Port_8443".
  4. Click .
    UMS with External Database

    After the installation is complete, do not forget to disable ports 3389 and 22!

  5. Select Outbound port rules.
  6. Click .
  7. Using the procedure described in steps 2 and 3, add the following ports:
    • 8443 (TCP)
    • 22 (TCP)
    • Data base port: The port that will be used for communication with the database. For more information, see UMS with External Database
    • 443 (TCP)
  8. Review your settings.

Installing the UMS

  1. Ensure that your virtual machine is running.
  2. Click Connect and then select RDP
  3. Enter the displayed data in your RDP client or click  and use the RDP file.
  4. With a web browser, download the UMS installer from https://www.igel.com/software-downloads/workspace-edition/ > UNIVERSAL MANAGEMENT SUITE > WINDOWS. (Example: setup-igel-ums-windows_6.07.100.exe)
  5. Install the UMS as described in Installation under Windows with the following settings:
    • Activate Standard UMS.
    • Activate with UMS Console.
    • Deactivate with Embedded Database.
    • Deactivate Only UMS Console.
    • Activate Web App (early feature set).
  6. When the installation is finished, open the UMS Administrator and follow the instructions under Setting Up a Data Source.

Setting the Public Address on the UMS Server

  1. Start the UMS Console and log in.
  2. Go to UMS Administration > UMS Network > Server, open the context menu and select Edit.
  3. Enter the public ID of your virtual machine (displayed on the overview page) and click Save process configuration.

Create Web Certificates

  1. In the UMS Console, go to UMS Administration > Global Configuration > Certificate Management > Web.
  2. Select your root certificate and then select Create signed certificate from the context menu.
  3. Select Create one end certificate for all (known) servers and then confirm with Ok.
  4. Fill in the details as appropriate.
  5. Click Manage hostnames to verify if the internal IP Address and the public IP address are included.
  6. Review your settings and click Ok.
  7. Select your certificate and then select Assign server from the context menu.
  8. Assign your server to the certificate and confirm with Ok.
  9. Click Assign Certificate to server(s) to confirm.
  10. Check if the certificate is marked as Used.

    At this point, you can safely connect to your UMS from a local machine as well as from remotely installed UMS Consoles. For clarity purposes, we will still use the UMS Console on Azure.

Downloading the Installer for IGEL Cloud Gateway (ICG)

 With a web browser, download the ICG installer from https://www.igel.com/software-downloads/enterprise-management-pack/ > IGEL CLOUD GATEWAY (ICG). (Example: installer-2.02.110.bin) You can do this on the virtual machine or use your local machine and then copy the file to your virtual machine via RDP (clipboard).

Creating a Virtual Machine for IGEL Cloud Gateway (ICG)

  1. In your Azure portal, go to your resource group (in our example: MyResourceGroup) and add a new Ubuntu Server 18.04 LTS.


  2. Edit the settings as follows:
    • Resource group: This must be set to the resource group we have created before (in our example: MyResourceGroup).
    • Virtual machine name: Enter a name for the virtual machine.
    • Size: “D2s v3” (2 CPUs/8 GiB RAM) or higher is recommended.
    • Authentication type: Select Password.
    • Username: Enter a username for SSH access. This user account will be used for ICG installation by the UMS.

      For security reasons, the username should be long (20 to 30 characters) and cryptic.

      Username "icg" Is Reserved

      Do not use "icg" as a username for the remote installer; this is the username under which the Tomcat server is running.

    • Under Password and Confirm password, enter a strong password (20 to 30 characters are recommended)
  3. Click  and review the settings.
  4. Click .
  5. Click  and note the Public IP address.

Configuring the ICG Server

  1. In the sidebar menu, go to Networking.
  2. Click .
  3. Edit the data as follows:
    • Destination port ranges: Enter "8443".
    • Protocol: Select TCP.
    • Name: Change to "Port_8443".
  4. Click .

Installing the ICG

  1. Follow the instructions under Providing the Certificates.
  2. Follow the instructions under Installing the IGEL Cloud Gateway.

Connecting the Devices

 Follow the instructions under Connecting the Devices.