Reveal(x) 360 Setup and Administration Guide
After you receive your initial email from ExtraHop Networks, there are a few procedures you must complete before you can start analyzing your traffic. This guide provides procedures for basic setup and administration of the Reveal(x) 360 system.
Activate your Okta administrator account
The Okta administrator role is granted to the email address provided during sign up.
Important: | You cannot change the user who is granted the Okta administration privilege (OktaAdmin) or assign that privilege to additional users. If you want to grant Okta administration privileges to multiple users, contact ExtraHop support. |
Note: | The ExtraHop Okta implementation includes a subset of Okta features. Some features, such as removing users, are not available. |
Configure your firewall rules
If your ExtraHop system is deployed in an environment with a firewall, you must open access to ExtraHop Cloud Services. For Reveal(x) 360 systems that are connected to self-managed sensors, you must also open access to the ExtraHop Cloud Recordstore.
Open access to Cloud Services
For access to ExtraHop Cloud Services, your sensors must be able to resolve DNS queries for *.extrahop.com and access TCP 443 (HTTPS) from the IP address that corresponds to your sensor license:
- 35.161.154.247 (Portland, U.S.A.)
- 54.66.242.25 (Sydney, Australia)
- 52.59.110.168 (Frankfurt, Germany)
Open access to Cloud Recordstore
For access to the ExtraHop Cloud Recordstore, your sensors must be able to access outbound TCP 443 (HTTPS) to these fully-qualified domain names: bigquery.googleapis.com and oauth2.googleapis.com.
You can also review the public guidance from Google about computing possible IP address ranges for googleapis.com.
Manage Users in ExtraHop Okta
Before users can log in to Reveal(x) 360, the Okta administrator must create users and assign them to groups that determine their privileges.
You cannot remove a user, but you can deactivate a user to remove their ability to access the Reveal(x) system.
Deactivate a user
You cannot remove a user, but you can deactivate a user to remove their ability to access the Reveal(x) system.
- In the Okta Admin Console, from the Directory drop-down menu, select People.
- From the More Actions drop-down menu, click Deactivate.
- Select the checkbox next to the name of the user or users you want to deactivate.
- Click Deactivate Selected.
- In the Deactivate Person dialog box, click Deactivate.
Manage sensors
After you have activated your Okta administrator account, log into your Reveal(x) 360 environment and add sensors to monitor your network traffic.
ExtraHop-managed Reveal(x) sensors for AWS can be selected and deployed from within the Reveal(x) 360 Console.
Self-managed sensors and Trace appliances can also be connected from within the Reveal(x) 360 Console. Note that if you have an existing Command appliance, you must disconnect the Command appliance before connecting your self-managed sensors to Reveal(x) 360.
Thank you for your feedback. Can we contact you to ask follow up questions?