Skip to main content

Privacera Documentation

Prerequisites for installing Privacera Manager on AWS

These prerequisites are only applicable when you are deploying in AWS Cloud.

Privacera Manager needs to be installed on an EC2 instance. Below are the requirements for creating the EC2 instance with required IAM role and Security Group:

  • EC2 Instance for hosting Privacera Manager

  • AMI: Amazon Linux AMI 64-bit x86 SSD

  • If only Privacera Access Suite, then instance type m5.2xlarge or larger

  • If also using Privacera Discovery, then instance type m5.4xlarge or larger

  • Storage: Primary (Root) volume (/dev/xvda) minimum size 128 GB, General Purpose SSD (gp2)

  • IAM Role: Create a new IAM Role. Name it "Privacera_PM_Role". This can be done in the Instance creation wizard sequence. The policies in this role will be dependent on the services that will be enabled. If you are using deployment type Docker, then you need to add the AWS Identity and Access Management (IAM) on Privacera Platform to the Privacera_PM_Role.

  • Network & VPC with attached Security Group with ports ingress/egress. The ports are depended on the services that will be enabled and the deployment type. More detail is given in below section.

  • Should be able to download packages from Privacera's download site and Docker Hub.

  • If using an air-gapped installation, then install Docker and Docker Compose (version 1.23.1).

Deployment type: Docker

Note

Follow the below steps only if the services are deployed as Docker containers.

  • The Required Ports need to be opened on host where Privacera is installed.

Install Docker and Docker compose
  1. Log on to your Privacera host as ec2-user or a user with sudo privileges.

  2. Install Docker with the following commands:

    sudo yum install -y docker
    sudo sed -i 's/32768:65536/1024000:1024000/g' /etc/sysconfig/docker
    sudo cat /etc/sysconfig/docker
    sudo service docker start
    sudo systemctl enable docker
    sudo usermod -a -G docker ec2-user
    exit
  3. Log back into the same user account as in step 1. (This forces the usermod action).

  4. Install Docker-Compose with the following commands:

    DOCKER_COMPOSE_VERSION="1.23.2" 
    sudo curl -L https://github.com/docker/compose/releases/download/${DOCKER_COMPOSE_VERSION}/docker-compose-`uname -s`-`uname -m` -o /usr/local/bin/docker-compose
    sudo chmod +x /usr/local/bin/docker-compose