Start Demo

Connect a Command appliance to Discover appliances

You can manage multiple Discover appliances from a Command appliance. After you connect the appliances, you can view and edit the appliance properties, assign a nickname, upgrade firmware, check the license status, create a diagnostic support package, and connect to the ExtraHop Web UI, Admin UI, and Web Shell.

The Command appliance connects directly to the Discover appliance over HTTPS on port 443. If it is not possible to establish a direct connection because of firewall restrictions in your network environment, you can connect to the Command appliance through a tunneled connection from the Discover appliance.

Before you begin

  • You can only establish a connection to a Discover appliance that is licensed for the same system edition as the Command appliance (such as Reveal(x)).
  • We strongly recommend that you configure a unique hostname for each Discover appliance. If the IP address on the Discover appliance is changed, the Command appliance can re-establish connection easily to the Discover appliance by hostname.

Generate a token on the Discover appliance

Generate a token on the Discover appliance before beginning the connection procedure on the Command appliance.
  1. Log in to the Administration page on the Discover appliance through https://<extrahop-hostname-or-IP-address>/admin.
  2. In the ExtraHop Command Settings section, click Generate Token.
  3. Click Generate Token.
  4. Copy the token and continue to the next procedure.

Connect the Command and Discover appliances

  1. Log in to the Administration page on the Command appliance through https://<extrahop-hostname-or-IP-address>/admin.
  2. In the ExtraHop Discover Settings section, click Manage Discover Appliances.
  3. In the Discover section, click Connect Appliance.
  4. Type the hostname or IP address of the Discover appliance into the Host field.
  5. Click Connect.
  6. Configure the following fields:

    Token from Discover Appliance: The token that you generated on the Discover appliance.

    Discover Nickname (Recommended): A friendly name for the ExtraHop system. If no nickname is entered, the system is identified by the hostname.

  7. (Optional): Select Reset configuration to remove existing system customizations such as device groups, alerts, and triggers from the ExtraHop system. Gathered metrics such as captures and devices will not be removed.
  8. Click Connect.

Connect to a Command appliance from a Discover appliance

You can connect the Discover appliance to the Command appliance through an SSH tunnel.

We recommend that you always connect appliances directly through the Command appliance; however, a tunneled connection might be required in network environments where a direct connection from the Command appliance is not possible because of firewalls or other network restrictions. After you connect the appliances, you can view and edit the Discover appliance properties, assign a nickname, update firmware, check the license status, create a diagnostic support package, and connect to the ExtraHop Web Shell.

Before you begin

  • You can connect a Discover appliance to multiple Command appliances.
  • You can only establish a connection to a Command appliance that is licensed for the same system edition as the Discover appliance.
  1. Log in to the Administration page on the Discover appliance.
  2. In the ExtraHop Command Settings section, click Connect Command Appliances.
  3. Click Connect Appliance and then and then configure the following fields:

    Host: The hostname or IP address of the Command appliance.

    Note:You cannot specify an IPv6 link-local address.

    Setup password: The password for the setup user on the Command appliance.

    Discover nickname (Optional): A friendly name for the node that appears on the Manage Connected Appliances page. If no friendly name is configured, the hostname for the Discover appliance appears instead.

    Reset configuration: If you select the Reset Configuration checkbox, existing node customizations such as device groups, alerts, and triggers will be removed from the appliance. Gathered metrics such as captures and devices will not be removed.

  4. Click Connect.
Published 2021-04-13 10:05