You need to know how to create and edit text files in Linux. For example, you can use vim editor. Here you can find a quick start guide on how to use the Vim editor.
1. Preparation
1.1. System Update
CentOS
$ sudo yum update -y
Ubuntu
$ sudo apt update
$ sudo apt upgrade -y
Reboot system
$ sudo reboot
1.2 Disable SELinux (CentOS only)
$ sudo sed -i 's/SELINUX=enforcing/SELINUX=disabled/' /etc/selinux/config
$ sudo reboot
To verify that SELinux is disabled, you can type:
$ sudo sestatus
SELinux status: disabled
Note: on production servers, usually after installation and verification, you need to re-enable SELinux and configure it accordingly.
1.3 Firewall Configuration (optional)
To access the server from the network, ports 80 and 443 and port 22 (default port for connection via ssh) should be opened:
$ cd ~
$ curl -O https://update.hideez.com/hes/linux_x64_latest.tar.gz
3.2. Extracting files and moving to the /opt directory
$ tar -xvf linux_x64_latest.tar.gz
$ sudo mv HES /opt/
3.3. Configuring the HES
Navigate to the '/opt/HES/' directory and run the HES.Wizard application
$ cd /opt/HES/
$ sudo ./HES.Wizard
next, follow the setup tips and configure the server
3.4. Daemonizing of the HES
We already prepared the configuration file to start and manage the HES server in the /opt/HES/Deploy directory. You need to copy the file HES.service to the /lib/systemd/system/:
You can verify that HES server is running with the command:
$ sudo systemctl status HES
The output of the command should be something like this:
● HES.service - Hideez Enterprise Server
Loaded: loaded (/usr/lib/systemd/system/HES.service; enabled; vendor preset: disabled)
Active: active (running) since Wed 2022-12-21 14:15:03 UTC; 8s ago
Main PID: 929817 (HES.Web)
Tasks: 18 (limit: 4405)
Memory: 103.1M
CPU: 4.817s
CGroup: /system.slice/HES.service
└─929817 /opt/HES/HES.Web
4. Configuring Reverse Proxy Server
To access your server from the local network as well as from the Internet, you have to configure a reverse proxy. We will use the Nginx server for this.
4.2. Creating a Self-Signed SSL Certificate for Nginx
Note 1:
In the production environment, you should take care of acquiring a certificate from a certificate authority. For a self-signed certificate, the browser will alert you that site has security issues.
Note 2:
When generating a certificate, answer a few simple questions, of which Common Name (CN) will be important - here be the name of your site, in our example it is hideez.example.com
Country Name (2 letter code) [AU]:.
State or Province Name (full name) [Some-State]:.
Locality Name (eg, city) []:.
Organization Name (eg, company) [Internet Widgits Pty Ltd]:.
Organizational Unit Name (eg, section) []:.
Common Name (e.g. server FQDN or YOUR name) []:hideez.example.com
Email Address []:.
4.3. Updating Nginx config
We prepared some Nginx configurations for different versions of Linux and placed them in the /opt/HES/Deploy directory. You may just copy the corresponding file or you can review and edit it for your needs.
