Identity Finder for Linux

Minimum Requirements

Red Hat Linux (RHEL) 5.0 to 5.9

or

Red Hat Linux (RHEL) 6.0 to 6.9

Prerequisites

Contact ISEC@csuchico.edu to obtain a copy of the Identity Finder installer for Linux.

Permissions to the Identity Finder console must be setup ahead of a configuring a search so that results can be viewed.

Downloading and Installing Identity Finder

The Identity Finder Linux client does not include a GUI environment, and functions entirely from the terminal.

To extract and install the Linux client, the following commands should be run from the terminal:

  • tar -zxvf IdentityFinderCustom.tgz
  • sudo ./install.sh

Starting a Search

To begin a new Identity Finder search, from the terminal, invoke the folowing command:

  • IdentityFinderCmd -jobmode

The search will include all files (excluding common binary file formats, such as .EXE, .DLL, .MP3) and folders beginning at the root folder level of the server.

Once the search has completed, you will see information displaying run statistics of the search:

 run statistics of the search

Handling Search Results

Results for the endpoint will automatically post within the (1) Results pane located in the Identity Finder Console.

You will need to navigate to (2) Simple Tags and locate your system under the (3) RHEL Systems group in order to handle each item in the (4) Results window accordingly.

Identity Finder Console

Once you results are handled on the console, re-run the scan to confirm that all actions taken  (Shred, Quarantine, Ignore, etc.) have been uploaded to the server and are reflected in the console.

Was this helpful?
100% helpful - 1 review

Details

Article ID: 11690
Created
Mon 3/14/16 12:47 PM
Modified
Mon 7/6/20 11:39 AM