InsightVM and Nexpose Virtual Appliance Guide

Deploying the Virtual Appliance

Read this section to learn how to deploy the Virtual Appliance in one of the supported environments.

Supported environments

The Virtual Appliance is tested and supported in the following environments:

  • VMware Player 4.x or later
  • VMware Workstation 8.x or later
  • VMware vCenter 4.x, 5.x
  • VMware ESX(i) 5.x

Downloading the Virtual Appliance

Rapid7 provides the Virtual Appliance as an Open Virtualization Format (OVF) file. Download the
file from an e-mail that Rapid7 sent to you, and note the location of the downloaded file.
Nexpose Virtual Appliance Deployment Guide

Deploying in VMware Player

  1. In VMware Player, click File | Open.
  2. In the Files of type: dropdown list, select the group that includes *.ova.
    VMware Player displays the Open Virtual Machine window.
The Open Virtual Machine window

The Open Virtual Machine window

  1. Locate the downloaded Virtual Appliance file, and click Open.
    The VMware Player displays the Import Virtual Machine window.
The Import Virtual Machine window

The Import Virtual Machine window

  1. Optional: Rename the Virtual Appliance file name if desired.
  2. Specify the storage location for the Virtual Appliance.
  3. Click Import.
    The import process converts the Virtual Appliance file to a Virtual Machine
    Disk Format (VMDK) file.
    When the import process is complete, the Virtual Appliance appears on the list
    of available virtual machines in VMware Player.
  4. Select the Virtual Appliance, and click Play virtual machine.
    VMware Player displays a window with for the Virtual Appliance as it starts
    up.
Playing the Virtual Appliance

Playing the Virtual Appliance

Deploying in VMware Workstation

  1. In VMware Workstation, click File | Open.
    VMware Workstation displays a navigation window for locating the file.
  2. In the drop-down list next to the File name: field, select Open Virtual Machine
    Format Images.
The navigation window for locating the Virtual Appliance file

The navigation window for locating the Virtual Appliance file

  1. Locate the downloaded Virtual Appliance file, and click Open.
    VMware Workstation displays the Import Virtual Machine window.
The Import Virtual Machine window

The Import Virtual Machine window

  1. Optional: Rename the Virtual Appliance file name if desired.
  2. Specify the location for the Virtual Appliance once it is imported.
  3. Click Import.
    The import process converts the Virtual Appliance file to a Virtual Machine
    Disk Format (VMDK) file.
  4. Nexpose Virtual Appliance Deployment Guide
    When the import process is complete, select the Virtual Appliance from the
    list of available virtual machines in VMware Workstation.
  5. Click Power on this virtual machine.
    VMware Workstation displays a window with for the Virtual Appliance as it
    starts up.
Powering on the Virtual Appliance

Powering on the Virtual Appliance

Deploying in vCenter or VMware ESX(i)

  1. In vCenter or VMware ESXi, click File | Deploy OVF Template...
    The Deploy OVF template window appears.
The Deploy OVF template window

The Deploy OVF template window

  1. Locate the downloaded Virtual Appliance file, and click Next.
    The OVF Template Details panel appears for configuring Virtual Appliance set-
    tings.
The OVF Template details panel

The OVF Template details panel

  1. Read and accept the license agreement.
The license agreement

The license agreement

  1. Enter a name for the Virtual Appliance.
  2. Select an inventory location, and click Next.
  3. Select a host or cluster for the Virtual Appliance, and click Next.
  4. Select a resource pool, and click Next.
  5. Select a data store, and click Next.
  6. Select Thick Provision (recommended setting) for the disk format, and click
    Next.
  7. Select a network mapping, and click Next.
  8. In the Networking Properties pane, enter network-related information for the
    Virtual Appliance
    OR
    If you are using network auto-configuration through DHCP, leave the fields
    blank, and click Next.
The Network Properties pane

The Network Properties pane

  1. Click Finish.
  2. When the import process is complete, select the Virtual Appliance from the
    list of available virtual machines.
Powering on the Virtual Appliance

Powering on the Virtual Appliance

  1. Click Power on. Then click the Console tab to view a window for the Virtual
    Appliance appears as it starts up.

Administering the Virtual Appliance

After the Virtual Appliance starts, you can log onto it to perform any necessary administrative func-
tions. The operating system for the Virtual Appliance is Ubuntu 12.04, and your account includes
sudo permissions.
When startup is complete, the Virtual Appliance window displays a logon prompt. Enter the default
user name and password. Both are nexpose.

Logging onto the Virtual Appliance

Logging onto the Virtual Appliance

It is strongly recommended that you change the Virtual Appliance logon password. To do so, enter
the following command:
passwd

In response to the following prompts, enter your current password, enter your new password, and
then re-enter the new password for confirmation.
You will need the IP address of the Virtual Appliance in order to log onto to the Web interface and
start performing Nexpose operations. To find out the address, run the following command:
ifconfig eth0

The Virtual Appliance displays its IP address.

Updating the host's operating system

As a security best practice, make sure to keep your operating system current with the latest updates.
To apply an update, take the following steps:

  1. Access the operating system of your Virtual Appliance host using SSH or by
    opening a terminal.
  2. Run the following command to update all operating system packages to the
    latest versions:
    sudo apt-get update && sudo apt-get upgrade

Logging onto the Security Console

You perform all Security Console operations through a Web-based interface, which supports the browsers listed at https://www.rapid7.com/products/nexpose/system-requirements/.

To log onto the Security Console take the following steps:
TIP: If there is a usage conflict for port 3780, you can specify another available port in the [installation_directory]\nsc\conf\httpd.xml file. You also can switch the port after you log on.

  1. Start a Web browser.
    Enter the URL for the Virtual Appliance. Indicate HTTPS protocol, and
    specify port 3780.
    Example: https://10.0.0.1:3780
    Your browser displays the Logon window.
  2. Enter the default user name (nxadmin) and password (nxpassword).
    User names and passwords are case-sensitive and non-recoverable.
    NOTE: It is highly recommended that you change your credentials after logging on the first time.
    NOTE: If the logon window indicates that the Security Console is in maintenance mode, then either an error has occurred in the startup process, or a maintenance task is running.
  3. Click the Logon button.
  4. If you are a first-time user and have not yet activated your license, the Security
    Console displays an activation dialog box. Enter your product key.
    If you do not have a product key, click the link to request a key for the Com-
    munity Edition. Doing so will open a page on the Rapid7 Web site, where you
    can register to receive a key by e-mail.
    OR
    Go to the Rapid7 Web site (rapid7.com) to request evaluation versions of
    other Nexpose editions, such as Enterprise Edition.
    After you receive the product key, log on again and enter the product key in the
    activation window.
    NOTE: If the Security Console displays a warning that authentication services are unavailable, and your network uses an external authentication source, have your Global Administrator verify that the source is online and correctly configured.
  5. Click Activate to complete this step.
    The Security Console displays the Home page.
  6. Click the Help link on any page of the Web interface for information on how to use the application.

After you log on, you’re ready to start using the Virtual Appliance. For simple steps to get started with scanning and running reports, download the quick-start guide by clicking the Support link that
appears on any page of the Web interface. For more detailed instructions, download the user’s guide from the Support page, or click Help.

InsightVM and Nexpose Virtual Appliance Guide