Login to participate
Endpoint Management & Virtualization ArticlesRSS

Install Altiris Agent on ESX

ziggy's picture
ziggy
March 25th, 2009
Filed under: , , , , , ,

We all know how much money is saved with going virtual where possible. And with the advances in virtual technologies, this area is growing faster every year. With that said, you have probably figured out that I strongly believe Virtual Environments are the way of the future, just like wireless, grid, and cloud computing.

As stated before, we are a TMS client, and install our Altiris Agents exclusively on our servers. Needless to say, we have many *NIX servers (over 11,000) and all with an Altiris agent on them. The ESX platform being one of them. With over 600 ESX servers (mostly 3.0.1) they have a slightly different OS configuration that a standard Altiris agent installation procedure will not work out of the box.

With the help of my ESX guru, we have developed a script that will install the Altiris agent on the node that the script is ran from. Depending on your environment, specifically firewall and security configurations, this script may work as-is, or with minor tweaks:

#!/bin/bash
mkdir /tmp/altirisagent
cd /tmp/altirisagent
chkconfig firewall --level 2345 off
/usr/sbin/esxcfg-firewall --AllowIncoming
/usr/sbin/esxcfg-firewall --AllowOutgoing
ftp -n <
user anonymous rdp
cd /path/to/your/AltirisAgent
binary
prompt
mget aex-agent-install-config.xml
mget aex-bootstrap.gz
quit
EOF2
cd /tmp/altirisagent
mv aex-agent-install-config.xml .aex-agent-install-config.xml
#chmod u+x
gunzip aex-bootstrap.gz
chmod u+x aex-bootstrap
./aex-bootstrap http://yourNS.serverhere.com
/usr/sbin/esxcfg-firewall --BlockIncoming
/usr/sbin/esxcfg-firewall --BlockOutgoing 
esxcfg-firewall --openPort 52028,tcp,in,AltirisAgent
esxcfg-firewall --openPort 52029,udp,in,AltirisAgent
esxcfg-firewall --openPort 80,tcp,out,AltirisAgent
esxcfg-firewall --openPort 80,udp,out,AltirisAgent

If you place the above lines in a file on one of your ESX 3.x servers, give it execute permissions with this command:

chmod 755

and then run it as root. One minute later you will have an awesome Altiris Agent up and running on your ESX host.

Thank you.

+13 (13 votes)
dougj's picture
dougj
34 weeks 3 days ago

Great article, Ziggy!

Nice to get your insights into this, Ziggy. Thanks for sharing this with us. 

+3 (3 votes)
Eshwar's picture
Eshwar
33 weeks 2 days ago

Thanks for sharing...

 

Thanks,
Eshwar

+1 (1 vote)
rpoag's picture
rpoag
24 weeks 6 days ago

Firewall

Thanks for the script.  We added tcp port 1011 inbound and outbound to get monitor solution working.

Ryan Poag
Campbell & Company, Inc.
If your question has been resolved, please be sure to "Mark as Solution"! Thank you.

0 votes
Tom Gool's picture
Tom Gool
3 weeks 1 day ago

Very cool

This is a very cool way for managing my ESX hosts from within DS

0 votes