To discover and automate certificates on network appliances and cloud services, install the DigiCert® sensor software onto a dedicated host that can access those systems over the network.
Make sure your system meets the system and network requirements for installing a DigiCert sensor.
You need root or administrator permissions on the system to install the sensor on it.
Follow these steps to install the Windows version of the DigiCert sensor.
To download the Windows sensor software and activation file in Trust Lifecycle Manager:
From the Trust Lifecycle Manager menu, select Discovery & automation tools > Client tools.
Select Sensor - Windows installer.
Use the download button on the right to download the latest version of the DigiCert sensor installer for Windows. It should have a name like tlm_sensor_N.N.N_win64.zip, where "N.N.N" is the sensor version number.
To get the software activation file, select the Download activation file button under Requirements. In the popup dialog that opens:
(Optional) Select a Business unit to assign the sensor to. If you make a selection here, only users assigned as administrators for that business unit can manage the sensor.
Select the Download button to download the sensor activation file. It is named license.properties.
To install and activate the sensor software on a Windows system:
Unzip the installer you downloaded and run the
.exe
file as an administrator.Select the button to Install. Follow the prompts to install the sensor.
On the final installer screen, make sure the Activate DigiCert Sensor checkbox is selected and select the Finish button.
On the Finish setup and activate screen, select Trust Lifecycle Manager and select the Next button.
Select an option for how the DigiCert sensor will connect to Trust Lifecycle Manager:
Direct, no Proxy: If the sensor will connect directly.
My own proxy server: If connecting through a proxy server. You are prompted to enter the proxy server details.
On the Activate the sensor screen, browse to the activation file you downloaded (license.properties) and select the Activate button.
On the setup completed screen, choose whether to start the sensor service and/or view the README file, then select the Finish button.
Avviso
If you start the sensor service now, it opens a command window to launch it. After launching the service, press any key to continue.
Follow these steps to install the Linux version of the DigiCert sensor.
To download the Linux sensor software and activation file in Trust Lifecycle Manager:
From the Trust Lifecycle Manager menu, select Discovery & automation tools > Client tools.
Select Sensor - Linux installer.
Use the download button on the right to download the latest version of the DigiCert sensor installer for Linux. It should have a name like tlm_sensor_N.N.N_linux64.tar.gz, where "N.N.N" is the sensor version number.
To get the software activation file, select the Download activation file button under Requirements. In the popup dialog that opens:
(Optional) Select a Business unit to assign the sensor to. If you make a selection here, only users assigned as administrators for that business unit can manage the sensor.
Select the Download button to download the sensor activation file. It is named license.properties.
To install and activate the sensor software on a Linux system:
Unpack the installer archive you downloaded (for example,
tar -xzvf <sensor-file>.tar.gz
).Copy the activation file you downloaded (license.properties) into the sensor’s config sub-directory, replacing the existing file there.
From the main sensor installation directory, run the
start.sh
script as root (for example,sudo ./start.sh
).Proceed with the on-screen steps to complete the installation and activation process.
Follow these steps to install the Docker version of the DigiCert sensor.
To download the Docker sensor software in Trust Lifecycle Manager:
From the Trust Lifecycle Manager menu, select Discovery & automation tools > Client tools.
Select Sensor - Docker installer.
Select the download button on the right to download the latest version of the DigiCert sensor installer for Docker. In the popup dialog that opens:
(Optional) Select a Business unit to assign the sensor to. If you make a selection here, only users assigned as administrators for that business unit can manage the sensor.
Select the Download button to download the sensor configuration file for Docker. It is named docker-compose.yml.
To install the sensor software on a Docker system:
Create a directory for the Docker sensor installation.
Copy the docker-compose.yml file you downloaded into the sensor installation directory you created.
Change into the sensor installation directory and run the
docker-compose up -d
command to create and start the sensor container.
To uninstall an existing DigiCert sensor:
Windows: Use the Windows Apps control panel to uninstall the DigiCert sensor software.
Linux: Stop the DigiCert sensor service, then delete the directory where you installed the sensor.
Docker: Change into the sensor installation directory where the docker-compose.yml file is located. Use the
docker-compose down
command to stop the sensor, then delete the directory.
To reinstall a DigiCert sensor: First uninstall the existing sensor as described above, then download and install a new sensor. For Docker, we recommend that you store the docker-compose.yml file for the new sensor in a directory with a different name than any previous sensor.
To configure your sensor as a proxy client, see: Configure proxy client settings for a sensor.
Avviso
For Windows, you are prompted to configure proxy client settings during the install process. For other systems, or if you wish to update the proxy settings under Windows, you must configure the proxy client settings in a separate step.
To configure your sensor to act as a proxy server for DigiCert agents or other clients that request certificates from Trust Lifecycle Manager, see: Use a sensor as a proxy server.
If your organization has a private on-premises instance of DigiCert ONE, see: Additional settings for private on-premises DigiCert ONE users.