|After you finish the deployment, you should update your server and apply any latest patch. Check out this article to learn how: How to update the Teramind Server (On-Premise / Private Cloud deployment).|
You can download a PDF version of the deployment guide by clicking the button below:
VMware ESXi 6.7 Deployment
|Note: The following deployment instructions are for a single-node setup (deployment without any App Server). For a multi-node deployment, follow the additional instructions on this article: How to setup an on-premise multi-node deployment.|
|1||Setting up the virtual machine
On your VMware or Hyber V environment – either through its client or web interface.
|2||Setting up the IP, network and the machine role(s)
On a console interface for the VM you created in Step 1.
|3||Setting up the account and finishing installation
From the Teramind Dashboard.
|4||Installing the Teramind Agent (optional)
Several options available.
Teramid On-Premise Overview
Teramind is the world’s leading platform for employee monitoring, insider threat detection, data loss prevention and workforce productivity optimization solutions. All Teramind solutions are available to deploy On-Premise. This deployment guide will help you discover what you can expect from your Teramind On-Premise deployment and provide you with installation prerequisites, step by step instructions, technical and support information.
|Architecture||Self-contained, Linux-based VM|
|Data Center||Deploy in your own data center|
|Server||Managed by you, VHD provided by Teramind|
|Updates||Periodic, single file, uploaded to the dashboard|
|Backups||Managed by you|
|Scalability||Horizontally scalable, from 1 to 50,000+ concurrent sessions.|
|Support||Installation assistance, 24/7 follow-the-sun, enterprise SLA|
Benefits of Deploying Teramind On-Premise
Here are some benefits you can expect if you choose to deploy Teramind On-Premise:
|Control Your Environment
Use your own infrastructure and only pay for resources you consume (i.e. CPU, storage, memory). Full control of your environment means you can provide the SLA you need.
Choose how much storage you want allocated for OCR, user data and application meta data. The nodes will communicate with the master nodes and each other automatically making storage management easier.
|Flexible Deployment Options
Deploy the entire Teramind server with a single OVA/VHD. Support for VMware ESXi and Hyper-V gives you freedom to deploy Teramind on many environments.
|Control Your Own Backup
Control how often and when backups are taken. Teramind On-Premise supports both on-demand and scheduled backups.
Single file model for security, patch management and feature deployment. One-click deployment from the dashboard makes it easy to keep your server running smoothly.
Export data to SIEM, IDS/IPS and other threat analytics systems via syslog. Active Directory integration and REST-based API opens up possibility for coordinated security orchestration.
|Security and Compliance
You control all aspects of security and compliance including firewall, SSL, VLAN, SSH tunnels, 2FA, IP whitelisting on your firewall etc. Your security measures combined with Teramind’s built-in support for HIPAA, GDPR, PCI DSS and other compliance-specific policy and rules, Teramind On-Premise is ideal for customers in government, healthcare, finance and other regulated industries.
Primary Server Requirements
Deployments for under 1000 concurrent users can be hosted on one all-inclusive server, in most cases. CPU and system memory should be provisioned based on the expected number of concurrent monitored sessions, according to the following table:
|Concurrent Users||Server Requirements||CPU/RAM Requirements|
|Up to 100||1 Teramind App Server (VM)||CPU: 4 cores
RAM: 6 GB
|Up to 500||1 Teramind App Server (VM)||CPU: 8 cores
RAM: 16 GB
|Up to 1, 000||1 Teramind App Server (VM)||CPU: 16 cores
RAM: 24 GB
1,000 or more concurrent users
|1 Teramind App Server (VM) per 1,000 concurrent users||CPU: 16 cores
RAM: 24 GB
|1 Teramind Database Server (VM)||CPU: 16 cores
RAM: 32 GB
OCR Server Requirements
|You need to set up at least one OCR Database Node and one Mining Node for the OCR features to work.|
|No of Users||Server Requirements||CPU/RAM Requirements|
|Less than 200 users||1 OCR Database Node||CPU: 4 cores
RAM: 8 GB
Disk: 100 GB
|1 OCR Mining Node||CPU: 16 cores
RAM: 16 GB
Disk: 24 GB
|Larger deployments of 200 or more users||1 OCR Database Node||CPU: 4 cores
RAM: 8 GB
Disk: 100 GB
|1 OCR Mining Node per 200 users||CPU: 16 cores
RAM: 16 GB
Disk: 24 GB
|You will need to adjust the disk size as you add or remove video recordings over time. See the Storage Requirements section below for more information.|
The Teramind virtual appliance comes with a primary volume of 24 GB. This volume contains the Teramind server application and database. The size of this volume can be increased at a later point in time.
|Storage for Screen Recordings||
The simplest way to add storage is from your hypervisor, by simply adding a second volume. Teramind will automatically detect, format, and mount the volume once you add it to the virtual appliance. If you use Hyper-V, this volume should be a VHDX file (not VHD).
You can also use a NAS or any filesystem over NFS, or any S3-compatible storage engine. You can contact us for configuration detail.
The size of this second volume can be estimated based on the number of sessions that will be recorded. With the default settings, for sessions with one screen doing normal work activity, you can expect approximately 1 GB per 160 hours.
You can adjust retention policies and recording preferences in monitoring settings at any time. This storage is low-access and can be on magnetic / non-SSD media.
* At the moment, Teramind on Mac has limited functionalities. You can check out what features are supported here.
* Ideally, terminal servers should have a maximum of about 30 users or less depending on the number of screens and monitoring settings. Otherwise you may have performance impact.
|Load||Approximately 30 MB – 50 MB memory and 1-3% CPU utilization, depending on user activity|
|Visibility||Hidden or revealed desktop agents available|
|Bandwidth||Approximately 10 kbps upstream depending on user activity level & number of screens|
|Offline Storage||Teramind features offline recording on the Silent/Hidden Agent (Windows). This means that in case of network downtime, the agent will save all data locally, and continue to enforce policy. Once connection is re-established, the agent will upload the data to the server at a throttled pace. The offline storage buffer is configurable in monitoring settings, and takes approximately 1GB per 160 hours of work time.|
|Detailed agent specifications can be found here.|
|Teramind Server Image – the OVA (VMware) or the VHD (Hyper-V) file||Provided by Teramind on the Self-Hosted Portal at: www.teramind.co/portal.|
|Teramind License Key|
|Teramind Agent Installer – EXE / MSI / DMG file (Mac)|
|Available IP Address||Supplied by you.|
|Virtualization Environment||Supplied by you.
Teramind supports the VMware ESXi 6 and up and Hyper-V virtualization platforms in production.