ON PREMISES SOLUTIONS

Install GravityZone Elite in Microsoft Azure

Bitdefender GravityZone Elite - BYOL (Bring Your Own License) is an enterprise security offering in Microsoft Azure Marketplace that protects physical, virtual, mobile, and cloud-based endpoints and email.

Prerequisites

To use Bitdefender GravityZone Elite - BYOL:

  • You have a Microsoft Azure account with access to Azure resources.

  • You have a subscription that allows virtual machines deployment in Azure.

  • You have a GravityZone Elite license key. If you do not have a license key, contact Bitdefender to obtain one.

  • Your environment meets the requirements for Bitdefender security agents mentioned in GravityZone Installation Guide.

Communication requirements

The GravityZone Elite VM comes with the following preconfigured communication ports (on TCP):

  • 80 - access to Web Console (Control Center).

  • 443 - access to Web Console (Control Center).

  • 8443 - traffic management between GravityZone components, including security agents.

  • 8080 - communication between the GravityZone appliance and the security agents.

  • 7074 - downloading updates for GravityZone components.

  • 7075 - downloading updates for GravityZone components.

  • 7077 - communication with Update Server.

In case of distributed deployments, you may need to open additional ports. For details on GravityZone communication ports, refer to GravityZone (on-premises) communication ports.

Deploying GravityZone Elite in Azure

GravityZone Elite BYOL is a Linux Ubuntu virtual appliance (VA) that requires an Azure virtual machine to run on. Creating a Linux virtual machine in Azure, which is described further down, follows the Microsoft recommendations. For details, refer to this Microsoft article.

  1. Log in to the Azure portal.

  2. Go to Marketplace.

  3. Search for Bitdefender GravityZone Elite – BYOL.

  4. Click the GravityZone tile in the displayed results.

    87604_1.png
  5. In the Bitdefender GravityZone Elite – BYOL page, click Create.

    87604_2.png
  6. In the Basics tab, under Project details, select the desired subscription and resource group.

    87604_3.png
  7. Under Instance details, enter a name for your virtual machine (for example, GravityZone-Elite).

    87604_4.png
  8. Select a region where you want GravityZone to be installed.

  9. For Image, Bitdefender GravityZone Elite is already selected. Leave the other options as default.

  10. For Size, select the VM type that accommodates the number of endpoints you want to protect. For example, choose Standard_F8s_v2 if you have up to 250 endpoints in your network. For Azure VM sizes recommended with GravityZone Elite, refer to Recommended virtual machines sizes for GravityZone Elite deployment in Azure.

  11. Under Administrator account, choose the authentication type:

    • SSH public key. For details on how to create a SSH key pair for a Linux VM, refer to this Microsoft article.

    • Password. Enter a username and a password.

      87604_5.png
  12. In the Disks tab, select an OS disk type.

    87604_6.png
  13. In the Networking tab, under Network interface, select a virtual network, a subnet and a public IP, or create new ones if the case.

    87604_7.png
  14. Select a network security group or create a new one. The network security group is important for providing access to the GravityZone virtual appliance, for updating the environment and installing the Bitdefender security agents.

  15. In the Management tab, under Azure Security Center, select a diagnostics storage account. Leave the other options as default.

    87604_8.png
  16. In the Advanced tab, leave the options as default.

  17. In the Tags tab, enter names and values that you consider necessary for categorizing the GravityZone VA.

  18. In the Review + create tab, review the configurations made and click Create.

    87604_9.png

    The deployment is in progress. Creating the virtual machine may take a few minutes.

Connecting to the GravityZone VA

After deployment is complete, connect to the GravityZone virtual appliance:

  • Click Go to resource.

    87604_10.png