$ mkdir twistlock $ tar -xzf twistlock_<VERSION>.tar.gz -C twistlock/
Onebox provides a quick, simple way to install both Console and Defender onto a single host. It provides a fully functional, self-contained environment that is suitable for evaluating Twistlock. Install Onebox with the twistlock.sh install script.
Your host meets the minimum system requirements.
You have a license key.
Ports 8081 and 8083 are open. Ports 8081 (HTTP) and 8083 (HTTPS) serve the Console UI. You can configure alternative ports in twistlock.cfg before installing.
Port 8084 is open. Console and Defender communicate with each other on this port.
Download the latest Twistlock release to the host where you want to install Onebox.
Extract the tarball. All files must be in the same directory when you run the install.
$ mkdir twistlock $ tar -xzf twistlock_<VERSION>.tar.gz -C twistlock/
Configure Twistlock for your environment.
Open twistlock.cfg and review the default settings. The default settings are acceptable for most environments.
If your Docker socket is in a custom location, update twistlock.cfg before continuing. By default, Twistlock expects to find the Docker socket in /var/run/docker.sock. If it’s not located there on your host, open twistlock.cfg in an editor, find the DOCKER_SOCKET variable, and update the path. |
Install Twistlock.
$ sudo ./twistlock.sh -s onebox
-s
|
Agree to EULA. |
-z
|
(Optional) Print additional debug messages. Useful for troubleshooting install issues. |
onebox
|
Install both Console and Defender on the same host, which is the recommended configuration.
Specify |
Verify that Twistlock is installed and running:
$ docker ps --format "table {{.ID}}\t{{.Status}}\t{{.Names}}" CONTAINER ID STATUS NAMES 764ecb72207e Up 5 minutes twistlock_defender_<VERSION> be5e385fea32 Up 5 minutes twistlock_console
Create your first admin user and enter your license key.
Open Twistlock Console. In a browser window, navigate to 'https://<CONSOLE>:8083', where <CONSOLE> is the IP address or DNS name of the host where Console runs.
Create your first admin user.
Consider using admin as the username. It’s a convenient choice because admin is the default user for many of Twistlock’s utilities, including twistcli.
Enter your license key.
Use the twistlock.sh script to uninstall Twistlock from your host. The script stops and removes all Twistlock containers, removes all Twistlock images, and deletes the /var/lib/twistlock directory, which contains your logs, certificates, and database.
Uninstall Twistlock.
$ sudo ./twistlock.sh -u
Verify that all Twistlock containers have been stopped and removed from your host.
$ docker ps -a
Verify that all Twistlock images have been removed from your host.
$ docker images
Install Defender on each additonal host you want to protect.