Map requirements
Review the requirements before you install and use Map.
Tanium dependencies
In addition to a license for the Map product module, make sure that your environment also meets the following requirements.
Component | Requirement |
---|---|
Tanium™ Core Platform |
|
Tanium™ Client |
For more information about specific Tanium Client versions, see Tanium Client Deployment Guide: Client host system requirements. One of the following Tanium Client versions is required, depending on OS:
* = MacOS earlier than 10.15.x Catalina
If you use a client version that is not listed, certain product features might not be available, or stability issues can occur that can only be resolved by upgrading to one of the listed client versions. |
Tanium products | If you selected Install with Recommended Configurations when you installed Map, the Tanium Server automatically installed all your licensed modules at the same time. Otherwise, you must manually install the modules that Map requires to function, as described under Tanium Console User Guide: Manage Tanium modules.
Modules at the following minimum versions are required:
The following modules are optional, but Map requires the specified minimum versions to work with them:
|
Tanium™ Module Server
Map is installed and runs as a service on the Module Server host computer. The impact on the Module Server is minimal and depends on usage.
Endpoints
Supported operating systems
The following endpoint operating systems are supported with Map. Map uses the Tanium™ Client Recorder Extension to gather data from endpoints.
Operating System | Version | Notes |
---|---|---|
Windows |
| For Windows 7 endpoints, update to Windows 7 SP2 or later whenever possible. Windows 7 SP1 requires Microsoft Windows Update KB2758857. |
macOS | Same as Tanium Client support. See Tanium Client User Guide: Host system requirements. | |
Linux |
| The Client Recorder Extension does not support CentOS and Red Hat Enterprise Linux versions 5.3 and earlier. Endpoints require version 5.4 or later of CentOS or Red Hat Enterprise Linux. The Client Recorder Extension provides SELinux policies for the following distributions and versions:
At this time, SELinux is not supported on other Linux distributions. For Linux endpoints:
Disable SELinux. In the /etc/sysconfig/selinux file, set SELINUX=disabled. |
Disk space requirements
The Map database on each endpoint contains a record of the TCP connections from the past 24 hours. The size of this database depends on the number of TCP connections. In most cases, the maximum size of the database is 200 MB.
CPU and memory requirements
The CPU demand on the endpoint averages less than 1%. A minimum of two CPU cores per endpoint is required. The Tanium Client Recorder Extension cannot operate on fewer than 2 CPU cores.
A minimum of 4 GB RAM is recommended on each endpoint device.
Host and network security requirements
Specific ports and processes are needed to run Map.
Ports
Source | Destination | Port | Protocol | Purpose |
---|---|---|---|---|
Endpoints | 80 | TCP | Application discovery | |
443 | TCP | Application discovery | ||
17272 | TCP | Application discovery | ||
17473 | TCP | Application discovery |
Configure firewall policies to open ports for Tanium traffic with TCP-based rules instead of application identity-based rules. For example, on a Palo Alto Networks firewall, configure the rules with service objects or service groups instead of application objects or application groups.
For Tanium as a Service ports, see Tanium as a Service Deployment Guide: Host and network security requirements.
Security exclusions
If security software is in use in the environment to monitor and block unknown host system processes, your security administrator must create exclusions to allow the Tanium processes to run without interference. For a list of all security exclusions to define across Tanium, see Tanium Core Platform Deployment Reference Guide: Host system security exclusions.
Target Device | Notes | Process |
---|---|---|
Module Server | <Module Server>\services\map-service\node.exe | |
<Module Server>\services\endpoint-configuration-service\TaniumEndpointConfigService.exe | ||
Windows endpoints | 7.2.x clients | <Tanium Client>\Python27\TPython.exe |
7.4.x clients | <Tanium Client>\Python38\TPython.exe | |
7.4.x clients | <Tanium Client>\Python38\*.dll | |
<Tanium Client>\TaniumCX.exe | ||
Linux endpoints | 7.2.x clients | <Tanium Client>/python27/bin/pybin |
7.4.x clients | <Tanium Client>/python38/python | |
<Tanium Client>/TaniumCX | ||
macOS endpoints | <Tanium Client>/TaniumCX |
Target Device | Notes | Process |
---|---|---|
Windows endpoints | 7.4.x clients | <Tanium Client>\Python38\TPython.exe |
7.4.x clients | <Tanium Client>\Python38\*.dll | |
<Tanium Client>\TaniumCX.exe | ||
Linux endpoints | 7.4.x clients | <Tanium Client>/python38/python |
<Tanium Client>/TaniumCX | ||
macOS endpoints | <Tanium Client>/TaniumCX |
User role requirements
Privilege | Map Administrator1,2 | Map Operator1,2 | Map Read Only User1 | Map Service Account1,2,3 | Map Endpoint Configuration Approver1,2 |
---|---|---|---|---|---|
Show Map Access Map workbench | |||||
Map Application Definition Read Read map application definitions | |||||
Map Application Definition Write Edit map application definitions | |||||
Map Application Configuration Service Register, use, write endpoint configuration items for Map | |||||
Map Operator Settings Read Read most map settings | |||||
Map Operator Settings Write Edit most map settings | |||||
Map Settings Read Read all map settings | |||||
Map Settings Write Edit all map settings | |||||
Map Endpoint Configuration Approve Approve endpoint configuration items for Map | |||||
1 This role provides module permissions for Tanium Trends. You can view which Trends permissions are granted to this role in the Tanium Console. For more information, see Tanium Trends User Guide: User role requirements. 2 This role provides module permissions for Tanium Endpoint Configuration. You can view which Endpoint Configuration permissions are granted to this role in the Tanium Console. For more information, see Tanium Endpoint Configuration User Guide: User role requirements. 3 |
Permission | Role Type | Content Set for Permission | Map Administrator | Map Operator | Map User | Map Read Only User | Map Service Account | Map Endpoint Configuration Approver |
---|---|---|---|---|---|---|---|---|
Read Action Group | Micro Admin | |||||||
Execute Plugin | Advanced | Reserved | ||||||
Execute Plugin | Advanced | Map | ||||||
Execute Plugin | Advanced | Trends | ||||||
Execute Plugin | Advanced | Endpoint Configuration | ||||||
Read Plugin | Advanced |
Last updated: 1/12/2021 1:29 PM | Feedback