ProductName requirements

Review the requirements before you install and use ProductName.

Tanium dependencies

In addition to a license for ProductName, make sure that your environment meets the following requirements.

Component Requirement
Tanium™ Core Platform 7.2 or later
Tanium™ Console UI
Tanium™ Client
Tanium products If you clicked the Install with Recommended Configurations button when you installed ProductName, the Tanium Server automatically installed all your licensed modules at the same time. Otherwise, you must manually install the modules that ProductName requires to function, as described under Tanium Console User Guide: Manage Tanium modules.

Modules at the following minimum versions are required:

  • <OtherProductName> <version>

The following modules are optional, but ProductName requires the specified minimum versions to work with them:

  • <OtherProductName> <version>
Computer groups When you first log into the Tanium Console after a fresh installation of Tanium Server 7.4.2 or later, the server automatically imports the computer groups that ProductName requires: . For earlier versions of the Tanium Server, or after upgrading from an earlier version, you must manually create the computer groups: see Create computer groups.

Tanium™ Server

Tanium™ Module Server

ProductName is installed and runs as a service on the Module Server host computer. The impact on the Module Server is minimal and depends on usage.

Endpoints

Supported operating systems

The following endpoint operating systems are supported with ProductName. 

  • Windows
  • macOS 
  • Linux
Operating System Version Notes
Windows Same as Tanium Client support. See Tanium Client User Guide: Host system requirements.
macOS 10.11 and later  
Linux

Red Hat Enterprise Linux 6.x, 7.x

CentOS 6.x, 7.x

 

ProductName does not deploy packages to endpoints. For Tanium Client operating system support, see Tanium Client User Guide: Host system requirements.

Disk space requirements

Processor requirements

Third-party software

Host and network security requirements

Specific ports and processes are needed to run ProductName.

Ports

The following ports are required for ProductName communication.

Component Port Direction Purpose
Module Server   Outbound  
  Inbound

Security exclusions

If security software is in use in the environment to monitor and block unknown host system processes, your security administrator must create exclusions to allow the Tanium processes to run without interference.

Table 1:   ProductName security exclusions
Target Device Process
Module Server "<Tanium Module Server>\services\ProductName\node.exe" service.js
<Tanium Module Server>\services\twsm-v1\twsm.exe
Endpoints <Tanium Client>\Patch\tanium-Patch.min.vbs
<Tanium Client>\Patch\scans\wsusscn2.cab

1 = Where nnn corresponds to the action ID.

2 = Exception is required if Volexity Surge is used for memory collection.

Internet URLs

If security software is deployed in the environment to monitor and block unknown URLs, your security administrator might need to add the following URLs to the whitelist.

  • List here

User role requirements

The following tables list the role permissions required to use ProductName. For more information about role permissions and associated content sets, see Tanium Core Platform User Guide: Managing RBAC.

Table 2:   ProductName user role permissions
Permission ProductName Administrator ProductName User ProductName Read Only User

Show ProductName1

View the ProductName workbench


2

2

2

ProductName Module Read

Read access to the ProductName module


2

2


ProductName Module Write

Write access to the ProductName module





ProductName Settings Write

Write access to global settings in the ProductName module




1 To install ProductName, you must have the reserved role of Administrator.

2 Denotes a provided permission.

Table 3:   Provided ProductName Advanced user role permissions
Permission Content Set for Permission ProductName Administrator ProductName User ProductName Read Only User
Read Sensor Reserved
Read Sensor Default
Write Package ProductName
Table 4:   Provided ProductName Micro Admin and Advanced user role permissions
Permission Role Type Content Set for Permission ProductName Administrator ProductName User ProductName Read Only User
Read User Group Micro Admin  
Read Sensor Advanced Default
Write Package Advanced ProductName
Table 5:   Optional roles for ProductName
Role Enables
ProductName User Create, edit, or delete ...
Tanium Administrator Create scheduled actions for ...