AIX links

Deploying the Tanium Client to AIX endpoints

On AIX endpoints, the Tanium Client is installed as a system service. The default installation directory for Tanium Client files is /opt/Tanium/TaniumClient. The following procedures describe how to use the endpoint CLI to install the Tanium Client. For details on using the CLI, see CLI on Non-Windows endpoints.

Prepare for installation

  1. Ensure that the AIX endpoint meet the basic requirements for the Tanium Client.
  2. Contact Tanium Support for the Tanium Client installer file: TaniumClient-<client_version>-powerpc.pkg.
  3. Work with your network security team to ensure that host and network firewalls are configured to allow inbound and outbound TCP traffic on port 17472.

    The installation process does not modify any host-based firewall that might be in use.

  4. Install the IBM XL C++ runtime environment file set (xlC.rte) if it is not yet installed. The required xlC.rte version depends on the AIX and Tanium Client version:
    • Endpoints running AIX 7.1.3 or earlier and client 7.2: xlC.rte 13.1.3.1 or later
    • Endpoints running AIX 7.1.4 or later regardless of the client version: xlC.rte 16.1.0.0 or later
    • Endpoints running client 7.4 regardless of the AIX version: xlC.rte 16.1.0.0 or later

    Install xlC.rte as follows:

    1. Access the operating system CLI on the endpoint.
    2. Determine the version of the currently installed package:

      lslpp -l xlC\.*

      If the bundle is already installed, skip to Install the Tanium Client on AIX. Otherwise, perform the remaining steps.

    3. Obtain the appropriate xlC.rte bundle for your system from IBM Fix Central.
    4. Download the xlC.rte bundle to your endpoint.
    5. Extract, unzip, or untar the bundle to the /usr/sys/inst.images directory.
    6. Install the bundle:

      sudo installp -aXYgd /usr/sys/inst.images -e /tmp/install.log all

    7. Review the installation log /tmp/install.log for any errors.

Install the Tanium Client on AIX

  1. Sign into the target computer.
  2. Copy the Tanium Client installer file  TaniumClient-<client_version>-powerpc.pkg to a temporary location on the target computer.
  3. Run the following command to install the package and generate a default configuration file:

    sudo installp -agqXYd ./TaniumClient-<client_version>-powerpc.pkg TaniumClient

  4. Use the CLI to configure the following basic Tanium Client settings:
    ServerName or ServerNameListIn a deployment with a standalone Tanium Server, set the ServerName to the server FQDN or IP address. In a deployment with Tanium Zone Servers or multiple Tanium Servers, set the ServerNameList to the FQDN or IP address of each server, separated with a comma.
    LogVerbosityLevel

    The following decimal values are best practices for specific use cases:

    • 0: Disable logging. This is the best practice value for clients installed on sensitive endpoints or virtual desktop infrastructure (VDI) endpoints.
    • 1 (default): This is the best practice value during normal operation.
    • 41: This is the best practice value during troubleshooting.
    • 91 or higher: Enable the most detailed log levels for short periods of time only.
    ResolverThe default hostname resolver for Tanium is getent. Because AIX generally does not have the getent command, add the Resolver=nslookup setting.

    For details on additional settings that you can configure, see Tanium Client settings.

    cd <Tanium Client installation folder>
    sudo ./TaniumClient config set ServerNameList ts1.example.com,ts2.example.com,zs1.example.com,zs2.example.com
    sudo ./TaniumClient config set LogVerbosityLevel 1
    sudo ./TaniumClient config set resolver nslookup

  5. Copy the tanium-init.dat file (Tanium Client 7.4 or later) or tanium.pub file (Tanium Client 7.2) from the Tanium Server to the Tanium Client installation folder on the AIX endpoint. For details, see Tanium Console User Guide: Download infrastructure configuration files (keys).
  6. Start the Tanium Client service:

    startsrc -s taniumclient

    Before proceeding, wait a few minutes for the Tanium Client to register.

  7. Verify that the client installed correctly and can communicate with the Tanium Server. From the Main menu, go to Administration > Management > Client Status. If the installation and registration succeeded, the client appears in the grid.

    To find a specific Tanium Client, enter a text string in the Show Rows Containing field above the grid to filter it by Host Name or Network Location (IP address).


Manage the Tanium Client service on AIX

The Tanium Client on AIX uses the IBM AIX System Resource Controller (SRC) to manage the client service.

To start the Tanium Client service:

startsrc -s taniumclient

To stop the Tanium Client service:

stopsrc -s taniumclient

To verify that the Tanium Client service is available:

lssrc -s taniumclient

Uninstall the Tanium Client on AIX

To uninstall the Tanium Client on AIX:

installp -u TaniumClient