Home
Installation, Deployment, and Upgrade
Installing Unica Discover involves planning and preparing your environment, installing and configuring prerequisite software, obtaining the Unica Discover installation files, and running the Unica Discover installer.
Discover Network Capture Application Manual
Overview of DNCA maintenance
The maintenance utility performs routine maintenance and logging tasks for Discover DNCA. You can use the utility to help maintain the ability of the DNCA to perform DNCA.
Protecting memcached data from unauthorized access
An attacker with access to the memcached port (port 11211 by default) on the DNCA, can read memcached operational data, read TLS session state for any active sessions, and cause the denial of service by writing specially crafted data (or just clearing the cache).

Installation, Deployment, and Upgrade
Installing Unica Discover involves planning and preparing your environment, installing and configuring prerequisite software, obtaining the Unica Discover installation files, and running the Unica Discover installer.
- Installation and Deployment Manual
- Discover Network Capture Application Manual
  - Discover Network Capture Application Overview
    Network Capture Application from Discover captures and records the complete interaction between the visitor and the web application environment by using a network tap or network switch spanning port. The Network Capture Application software features the following benefits:
  - Installing the Network Capture Application
    The following instructions can be used to assist the installation of your Network Capture Application software.
  - Configuring the DNCA
    The Unica Discover Network Capture Application can be configured through a web-based console or through the configuration files that are stored on the DNCA server. The following information guides you on how to configure the DNCA.
  - Upgrade for DNCA
    It is recommended that you always use the latest version of the Unica Discover Network Capture Application suitable for your version of Unica Discover.
  - Packet Forwarder Overview
    The Packet Forwarder is used to capture and forward hits to a cloud-based DNCA that is operating on a virtual machine.
  - SSL Keys
    For decrypting transmissions by using the SSL protocol, the Unica Discover Network Capture Application must be provided the SSL keys in use in the transaction stream.
  - Performance Measurement
    Performance measurement provides details on the Network Capture software performance and timestamp measurements.
  - Configuring DNCA on Red Hat Enterprise Linux™ (RHEL)
    The following sections contain important information for configuring DNCA in a Red Hat Enterprise Linux™ environment:
  - DNCA monitoring
    You can monitor the passive capturing to diagnose performance issues.
  - Overview of DNCA maintenance
    The maintenance utility performs routine maintenance and logging tasks for Discover DNCA. You can use the utility to help maintain the ability of the DNCA to perform DNCA.
    - Capture health check
      The maintenance utility monitors the capture processes to determine whether they are in good health.
    - Capture restart
      According to a predefined schedule, the maintenance utility stops the capture processes, clears the runtime statistics that are collected, then restarts the processes.
    - Log file location
      For the Unica DiscoverNetwork Capture Application, log files are located in the following directories:
    - Statistics logging
      Statistics log files are generated in the DNCA log directory.
    - Time synchronization
      The utility synchronizes the current date and time with the current date and time of a Unica Discover server that is running the Discover Transport Service. The maintenance log file contains the output of the time synchronization task if it is enabled.
    - Manual configuration
      You can manually configure the maintenance utility by editing the configuration file for the utility.
    - Protecting memcached data from unauthorized access
      An attacker with access to the memcached port (port 11211 by default) on the DNCA, can read memcached operational data, read TLS session state for any active sessions, and cause the denial of service by writing specially crafted data (or just clearing the cache).
  - DNCA frequently asked questions (FAQ)
    The following content contains frequently asked questions or scenarios that can be used to help isolate or fix an issue with your Network Capture Application.
  - Downloading Privacy Configuration
  - Enabling web console access through a single IP address
    You can specify a single IP address which can access the web console. Limiting access to a single IP address helps to prevent unauthorized access through an unknown system.
  - Applying authentication when accessing the web console
    You can improve security by enabling authentication to the web console.
- Unica Discover Session Archiving Installation Guide
  As you prepare for an installation, you need to gather some items, review hardware and software requirements, and then you can perform the installation.
- Discover Upgrade Manual

Protecting memcached data from unauthorized access

An attacker with access to the memcached port (port 11211 by default) on the DNCA, can read memcached operational data, read TLS session state for any active sessions, and cause the denial of service by writing specially crafted data (or just clearing the cache).

About this task

DNCA uses memcached and libmemcached to manage a shared cache of shadowed TLS session state, so that it can decrypt a resumed TLS session.

The cache is used whenever TLS decryption is enabled, even if there is only one DNCA.

DNCA uses memcached with authentication disabled. The memcached data is not encrypted by default, but a customer can configure the system to encrypt the data (although with an AES key, that is easy to determine).

To protect memcached data from unauthorized access, perform the following steps:

Procedure

Create a user name and password by running the following script:
```
cd /usr/local/dncauser/sbin
   ./sasl-username-password.sh
```
Verify the username has been added to the SASL database by running the following command:
```
cd /usr/local/dncauser/sbin
     ./sasldblistusers2 -f $installed_path/sasldb
```
Update the DNCA configuration by running the following command:
Note: If you are running in the memcached pool, then the username and password must be same across the pool.
```
cd /usr/local/dncauser/sbin/etc/
```
1. For a new DNCA installation:
  Locate the Pool Section of xml and edit the following lines:
```
vim dcx-conf.xml
    <SaslAuth>true</SaslAuth>
    <MemcachedUser>username</MemcachedUser>
    <MemcachedPassword>userpassword</MemcachedPassword>
```
2. For an upgrade of your DNCA installation:
  Locate the Pool section of xml and add the following lines: (refer dcx-conf-defaults.xml):
```
vim dcx-conf.xml
    <SaslAuth>true</SaslAuth>
    <MemcachedUser>username</MemcachedUser>
    <MemcachedPassword>userpassword</MemcachedPassword>
```

Have feedback?
Google Analytics is used to store comments and ratings. To provide a comment or rating for a topic, click Accept All Cookies or Allow All in Cookie Preferences in the footer of this page.