PMC Deployment Machine Prerequisites

PMC must be deployed from a local or mapped drive on your computer. Prior to starting the deployment of PMC, ensure that you copy the PMC deployment media to a local or mapped drive.

You need three types of machine for the PMC deployment:

Ensure you take snapshots of your virtual machines prior to deployment so you can roll back in case of any issues.

The PMC deployment tool installs a specific version of the Service Fabric Runtime, it is not a prerequisite. The PMC deployment tool will fail if it's already installed. Once you have deployed PMC to your cluster, do not upgrade the Service Fabric Runtime unless BeyondTrust has confirmed that it is compatible.

Ensure that there are no pre-existing security products and or restrictive GPOs are present on these servers that can interfere with the install.  Once PMC is installed, the security products and settings can be restored back to the nodes.

When you introduce new media to a machine, it is common for the package to be tagged as coming from the internet, which causes issues when you run the scripts. To resolve this issue, do one of the following:
  • Right-click the package and select Properties. On the General tab, check the Unblock box and click OK.
  • Within PowerShell, and from the root folder of the build media following extraction, type:
  • dir -recurse | unblock-file

Deployment Machine

The Deployment machine must be running: Windows 10 or Windows Server 2016.

You need to open port 5895 from the deployment machine to all nodes and port 1433 (or SQL Server port used) to SQL Server. Ports 8443, 19000, 19080 must be open from deployment machine to the Service Fabric nodes, and 9443 to the Portal node.

Cluster Nodes

The PMC deployment supports three or five node deployment. Each deployment node must be running Windows Server 2012 R2 or Windows Server 2016. The PMC Deployment Wizard installs Microsoft Service Fabric on each node; you do not need to install this as a prerequisite.

All ports below should be open in-between each of the nodes, as well as 1443 (or SQL Server port used) from the nodes to SQL, as these are required for the runtime of the application.

  • 8443
  • 9443
  • 19080
  • 19000
  • 1433

SQL Server Machine

The SQL Server machine is used for both the PMC management databases and reporting database, if configured. The SQL Server machine must be running SQL Server 2012 R2 or SQL Server 2016. You also need to install SQL Server Management studio to manage your databases.

You need a SQL account with administration rights for the PMC database creation. SQL server also needs to be in Mixed mode to allow for the use of a SQL account.

If you are using reporting, you must install the Privilege Management Reporting database prior to running the PMC deployment wizard as the wizard configures the connection to the Privilege Management database for you.

For more information, please see Privilege Management Reporting Database Prerequisite.

SQL Server Express is not supported.