2.1 Understanding Requirements

Review the following sections and ensure that your environment meets all requirements before you install the OpenText Cloud Bridge Agent.

2.1.1 Access Prerequisites

You must have administrator privileges on the server where you install the OpenText Cloud Bridge Agent. In addition, you must have the following rights:

  • Access to the installer of a supported Linux® operating system. For more information, see Hardware and Software Requirements.

  • Access to the relevant repositories to install or upgrade the operating system and the Docker® or Podman container.

  • Access to outbound TCP port 9092 to allow outbound TLS communication from the on-premises OpenText Cloud Bridge Agent to the OpenText Cloud Bridge API in the AWS™ (Amazon® Web Services™) OpenText cloud (*.aws.confluent.cloud).

    IMPORTANT:You must use DNS filtering because OpenText cannot provide specific hosts.

  • Access to the AWS™ download site to download the OpenText Cloud Bridge Agent package on port 443.

  • Access rights for each server on which you plan to install the Agent for high availability.

If you are using OpenText Identity Governance with OpenText Cloud Bridge, you must also have:

  • Access from your on-premises OpenText Cloud Bridge Agent to the on-premises authentication directory or directories for OpenText Advanced Authentication and other applications from which you expect to collect data as part of the OpenText Identity Governance collection processes

  • Internal access to your OpenText Cloud Bridge Agent using a supported browser on port 8080

IMPORTANT:OpenText Advanced Authentication can use the following user lookup attributes by default for authentication purposes to OpenText Advanced Authentication and OpenText Identity Governance:

  • Microsoft® Active Directory™: mail, sAMAccountName, and userPrincipalName

  • OpenText™ eDirectory: cn and mail

Every OpenText Advanced Authentication repository has a configured Base DN. The value found on the specified Base DN for a specific user must be unique for the authentication service to work. This means that repeated values for a given user trying to authenticate will result in an authentication error.

2.1.2 Hardware and Software Requirements

This section provides the minimum hardware and software requirements for each server on which you install the OpenText Cloud Bridge Agent.

NOTE:OpenText recommends that you host the Agent on a dedicated server. If your organization has a dedicated server with sufficient resources, it is possible for the Agent to co-exist with other containers. However, ensure that the Agent does not have to compete for resources.

If you do install the OpenText Cloud Bridge Agent on the same server with another on-premises product, the installation order is not important.

Table 2-1 OpenText Cloud Bridge Agent Server Requirements

Category

Minimum Requirement

Processors

4 CPUs

Memory

16 GB of RAM

Hard disk space

200 GB

NOTE:If you are using non-standard Linux® partitioning and you are partitioning /var/tmp, ensure that at least 16 GB of the required 200 GB are allocated to this partition.

VM environment

(Conditional) If you plan to install the Agent on a virtual machine, VMware® ESXi 6.7 or later.

Operating system

One of the following Linux® operating systems:

  • Ubuntu® 18.04 LTS Server Edition or later patched version of 18.x

  • Red Hat® Enterprise Linux® Server 8.3 or later patched version of 8.x

  • SUSE™ Linux® Enterprise Server 15.1 or later patched version of 15.x

IMPORTANT:Having FIPS enabled at the operating system level is not currently a supported configuration for the OpenText Cloud Bridge Agent.

NOTE:Ensure that wget and awk are installed before you attempt to deploy the OpenText Cloud Bridge Agent container.

Container

One of the following:

  • Docker® 19.03.x or later

  • Podman 1.6.4 or later

Browser

One of the following to access the OpenText Cloud Bridge Agent console:

  • Google® Chrome™ (latest version)

  • Mozilla™ Firefox™ (latest version)

NOTE:You must configure a DNS entry for your LDAP server in order to use a secure connection. You will not be able to connect over SSL (port 636) if you are using a host file.