Netskope Help

Configure the Management Appliance

To configure the management plane appliance:

  1. Login to the management plane appliance using the credentials nsadmin/nsappliance. You should see the nsshell prompt.

  2. Your appliance is in the factory default condition and needs to be initialized by using the initialize command. You will be prompted for the admin email address, which will be used as the primary admin username, and an initial password for it (you will be prompted to change it the first time you access the Web UI):

    initialize
    initializing the box...
    enter admin email:
    enter admin password:
    retype password:
    setting up user...
    done.
    setting admin password...
    done.
    initialization successful. setting up sftp user...
    all done.
    
  3. After initialization completes, enter configure to start configuration mode to set the hostname. When finished, enter save to activate the configuration:

    configure
    Entering configuration mode
    
    set system hostname mp01
    save
    Restarting config agent
    Restarting messenger
    Restarting ssh tunnel service
    Configuration saved
    
  4. Set the required inbound interface on the appliance by entering these commands:

    set interface inbound ip <IP address>
    set interface inbound gw <gateway address>
    set interface inbound netmask <subnet mask>

    Tip

    To review your entries, enter show interface.

  5. Set the DNS server IP address by entering this command:

    set dns primary <dns server IP address>
  6. Enter save and wait for the prompt to return. This may take as long as 4 or 5 minutes while the appliance fully configures itself for the first time.

    save
    Restarting all services
    Restarting networking services
    Restarting resolvconf
    Restarting DNS proxy
    Restarting management plane
    Configuration saved
    
  7. Now that you have configured the inbound IP address for the management appliance, try to connect to it using your preferred ssh client. Here is an example using PuTTY running on Windows:

    PuttyManagementAppliance.png

    In this example, you logged in using 192.168.64.90 for the IP address specified for the inbound interface. When the connection is open, you can log in using the nsadmin/nsappliance credentials.

    If the connection is successful, all further configuration changes should be done over ssh. If the connection is not successful, you can adjust the network settings over IPMI as described in step 2 above.

  8. Enter exit to leave configuration mode.

  9. Enter exit to leave the management plane console.

    Note

    All further configuration changes should be made using this SSH access method.

  10. Access SSH and enter configure to start configuration mode.

  11. Get your license key from your Netskope tenant UI (Settings > Security Cloud Platform > On-Premises Infrastructure), and then enter this command to set the license key:

    set system licensekey <licensekey>

    Note

    A license key is only required if you will be downloading upgrade packages from the Netskope cloud.

  12. Point this device to the management appliance in the Netskope cloud using this command:

    set management-plane location <cloud URL>

    The appliance connects to the services available in the Netskope cloud using these URLs:

    • https://config.goskope.com:443

    • https://download.goskope.com:443

    • https://messenger.goskope.com:443

    Note

    For international configurations, use eu.goskope.com or de.goskope.com.

  13. Enter save.