Skip to main content

Install GravityZone Business Security Premium BYOL in Microsoft Azure

Abstract

Bitdefender GravityZone Business Security Premium BYOL (Bring Your Own License) is an enterprise security offering in Microsoft Azure Marketplace that protects physical, virtual, mobile, and cloud-based endpoints and email.

Prerequisites

To use Bitdefender GravityZone Business Security Premium BYOL:

  • You have a Microsoft Azure account with access to Azure resources.

  • You have a subscription that allows virtual machines deployment in Azure.

  • You have a GravityZone Business Security Premium license key. If you do not have a license key, contact Bitdefender to obtain one.

  • Your environment meets the requirements for Bitdefender security agents mentioned in the Requirements section.

Communication requirements

The GravityZone Business Security Premium VM comes with the following preconfigured communication ports (on TCP):

  • 80 - access to Web Console (Control Center).

  • 443 - access to Web Console (Control Center).

  • 8443 - traffic management between GravityZone components, including security agents.

  • 8080 - communication between the GravityZone appliance and the security agents.

  • 7074 - downloading updates for GravityZone components.

  • 7075 - downloading updates for GravityZone components.

  • 7077 - communication with Update Server.

In case of distributed deployments, you may need to open additional ports. For details on GravityZone communication ports, refer to GravityZone (on-premises) communication ports.

Deploying GravityZone Business Security Premium in Azure

GravityZone Business Security Premium BYOL is a Linux Ubuntu virtual appliance (VA) that requires an Azure virtual machine to run on. Creating a Linux virtual machine in Azure, which is described further down, follows the Microsoft recommendations. For details, refer to this Microsoft article.

To deploy GravityZone Business Security Premium in Azure, use to the following steps:

  1. Log in to the Azure portal.

  2. Go to Marketplace.

  3. Search for Bitdefender GravityZone Business Security Premium BYOL.

  4. Click the GravityZone tile in the displayed results.

    gz_MS_Azure_BYOL_Marketplace_2_87604_op_en.png

  5. In the Bitdefender GravityZone Business Security Premium BYOL page, click Create.

    gz_MS_Azure_BYOL_Create_2_87604_op_en.png

  6. In the Basics tab, under Project details, select the desired subscription and resource group.

    gz_MS_Azure_BYOL_Create_VM_2_87604_op_en.png

  7. Under Instance details, enter a name for your virtual machine.

    gz_MS_Azure_BYOL_instance_details_2_87604_op_en.png

  8. Select a region where you want to install GravityZone.

  9. For Image, Bitdefender GravityZone Business Security Premium BYOL is already selected. Leave the other options as default.

  10. For Size, select the VM type that accommodates the number of endpoints you want to protect. For example, choose Standard_F8s_v2 if you have up to 250 endpoints in your network.

    For details on the Azure VM recommended sizes, refer to Recommended virtual machines sizes for GravityZone Business Security Premium deployment in Azure.

  11. Under Administrator account, choose the authentication type:

    • SSH public key. For details on how to create a SSH key pair for a Linux VM, refer to this Microsoft article.

    • Password. Enter a username and a password.

      gz_MS_Azure_BYOL_admin_account_2_87604_op_en.png

  12. In the Disks tab, select an OS disk type.

    gz_MS_Azure_BYOL_Disks_tab_2_87604_op_en.png

  13. In the Networking tab, under Network interface, select a virtual network, a subnet and a public IP.

    Alternatively, you can create a new network interface, if needed.

    gz_MS_Azure_BYOL_Networking_tab_2_87604_op_en.png
    gz_MS_Azure_BYOL_Networking_tab_load_balancing_2_87604_op_en.png

  14. Select a network security group or create a new one.

    The network security group is important for providing access to the GravityZone virtual appliance, for updating the environment and installing the Bitdefender security agents.

  15. In the Management tab, keep the displayed options as default.

    gz_MS_Azure_BYOL_Management_tab_2_87604_op_en.png

  16. In the Monitoring tab, select a diagnostics storage account.

    gz_MS_Azure_BYOL_Monitoring_tab_2_87604_op_en.png

  17. In the Advanced tab, keep the available options as default.

  18. In the Tags tab, enter names and values that you consider necessary for categorizing the GravityZone VA.

  19. In the Review + create tab, review the configurations made and click Create.

    gz_MS_Azure_BYOL_Networking_Review___create_tab_2_87604_op_en.png

    The deployment is in progress. Creating the virtual machine may take a few minutes.

Connecting to the GravityZone VA

After the deployment is complete, connect to the GravityZone virtual appliance:

  • Click Go to resource.

    gz_MS_Azure_BYOL_deployment_complete_2_87604_op_en.png
In this section: