Directly contact our Support Team

Installing GravityZone Elite in Microsoft Azure

Bitdefender GravityZone Elite - BYOL (Bring Your Own License) is an enterprise security offering in Microsoft Azure Marketplace that protects physical, virtual, mobile, and cloud-based endpoints and email.

This article describes how to deploy, install and configure GravityZone console in Microsoft Azure.

Prerequisites

To use Bitdefender GravityZone Elite - BYOL:

  • You have a Microsoft Azure account with access to Azure resources.
  • You have a subscription that allows virtual machines deployment in Azure.
  • You have a GravityZone Elite license key. If you do not have a license key, contact Bitdefender to obtain one.
  • Your environment meets the requirements for Bitdefender security agents mentioned in GravityZone Installation Guide.

Communication requirements

The GravityZone Elite VM comes with the following preconfigured communication ports (on TCP):

  • 80 - access to Web Console (Control Center).
  • 443 - access to We Console (Control Center).
  • 8443 - traffic management between GravityZone components, including security agents.
  • 8080 - communication between the GravityZone appliance and the security agents.
  • 7074 - downloading updates for GravityZone components.
  • 7075 - downloading updates for GravityZone components.
  • 7077 - communication with Update Server.

In case of distributed deployments, you may need to open additional ports. For details on GravityZone communication ports, refer to this KB article.

Deploying GravityZone Elite in Azure

GravityZone Elite BYOL is a Linux Ubuntu virtual appliance (VA) that requires an Azure virtual machine to run on. Creating a Linux virtual machine in Azure, which is described further down, follows the Microsoft recommendations. For details, refer to this Microsoft article.

  1. Log in to the Azure portal.
  2. Go to Marketplace.
  3. Search for Bitdefender GravityZone Elite – BYOL.
  4. Click the GravityZone tile in the displayed results.
  5. In the Bitdefender GravityZone Elite – BYOL page, click Create.
  6. In the Basics tab, under Project details, select the desired subscription and resource group.
  7. Under Instance details, enter a name for your virtual machine (for example, GravityZone-Elite).
  8. Select a region where you want GravityZone to be installed.
  9. For Image, Bitdefender GravityZone Elite is already selected. Leave the other options as default.
  10. For Size, select the VM type that accommodates the number of endpoints you want to protect.

    For example, choose Standard_F8s_v2 if you have up to 250 endpoints in your network. For Azure VM sizes recommended with GravityZone Elite, refer to this KB article.

  11. Under Administrator account, choose the authentication type:
    • SSH public key. For details on how to create a SSH key pair for a Linux VM, refer to this Microsoft article.
    • Password. Enter a username and a password.

  12. In the Disks tab, select an OS disk type.
  13. In the Networking tab, under Network interface, select a virtual network, a subnet and a public IP, or create new ones if the case.
  14. Select a network security group or create a new one. The network security group is important for providing access to the GravityZone virtual appliance, for updating the environment and installing the Bitdefender security agents.
  15. In the Management tab, under Azure Security Center, select a diagnostics storage account. Leave the other options as default.
  16. In the Advanced tab, leave the options as default.
  17. In the Tags tab, enter names and values that you consider necessary for categorizing the GravityZone VA.
  18. In the Review + create tab, review the configurations made and click Create.

    The deployment is in progress. Creating the virtual machine may take a few minutes.

Connecting to the GravityZone VA

After deployment is complete, connect to the GravityZone virtual appliance:

  1. Click Go to resource.
  2. In the Overview section, use one of these options to connect to GravityZone VA:
    • Click Connect to log in by using SSH key pair.
    • Use the public IP address to connect in a GUI tool like PuTTY.
  3. Log in to GravityZone VA.
  4. After login, you will be asked for security reasons to change the default password (bd) for bdadmin user. Press C key to change the password.
  5. Log in to the GravityZone appliance console by using bdadmin and the new password.

Setting up GravityZone

Configuring the GravityZone appliance

Once connected to the GravityZone appliance console, you can start setting up GravityZone.

GravityZone includes multiple roles that can run on one or more virtual appliances. The appliance console provides a graphical interface for easy configuration.

Depending on how you distribute the roles, on the size and the design of your network infrastructure, and on the GravityZone features you want to use, you need to deploy one or more virtual machines in Azure.

For details on configuring the GravityZone appliance, refer to the Installing Protection > GravityZone Installation and Setup > Deploy GravityZone section in the GravityZone Installation Guide.

Control Center initial setup

After configuring the GravityZone appliance, connect to Control Center, the management console of GravityZone:

  1. In the address bar of your web browser, enter the public IP address provided in Azure, using the https:// prefix.
  2. In the Product Registration window, click Add and provide the license key required for GravityZone Elite.
  3. Continue with the product registration and Control Center setup.

    For details, refer to the Installing Protection > GravityZone Installation and Setup > Control Center Initial Setup section in the Installation Guide.

Installing protection

After initial setup, you are able to remotely install the Bitdefender security agents and download the necessary installation packages for all security services components by using the Control Center web interface.

For details on installing protection, adding integrations with virtualization providers, including Microsoft Azure, and updating GravityZone, refer to Installation Guide.

For managing protection within your GravityZone environment, refer to Administrator’s Guide.

Can't find a solution for your problem? Open an email ticket and we will answer the question or concern in the shortest time possible.

Rate this article:

Submit