Goliath Service Accounts & Firewall Settings Please see the Table of Contents below for the appropriate service account and firewall settings information. Table of Contents I. Goliath Service Accounts... 2 A. Goliath Performance Monitor... 2 B. Goliath Logon Simulator for Citrix... 2 C. Goliath Logon Simulator for VMware Horizon View... 2 D. Goliath Logon Simulator for Microsoft RDS... 3 E. Goliath for NetScaler... 3 II. Goliath Firewall Settings... 4 A. Goliath Intelligent Agent for Goliath Performance Monitor & Logon Simulator... 4 B. Goliath Server for Goliath Performance Monitor & Logon Simulator... 4 C. Goliath Performance Monitor Hypervisor Monitoring... 4 D. Goliath for NetScaler Server... 4 III. Goliath Performance Monitor & Logon Simulator Antivirus Exclusions/Filters:... 5
I. Goliath Service Accounts You can create one account with the following rights for Goliath Performance Monitor and/or Logon Simulator. A. Goliath Performance Monitor SQL (for Goliath DB)* DBO Needs to be a domain account and is applied to the Goliath Database. VMware vcenter Read-only Admin Needs to be defined at the vcenter level, not at Datacenter or lower for read-only Citrix XenApp / XenDesktop Read-only Citrix Admin 7.X** *only needed if using an external ** If also using the Logon Simulator, Full Citrix Admin Rights are required At least read-only admin rights within Citrix Studio and local admin rights on the delivery controller B. Goliath Logon Simulator for Citrix Citrix XenApp / XenDesktop 7.0-7.7 Full Citrix Admin Full admin rights within Citrix Studio and local admin rights on the delivery controller Citrix Simulation Account Access to apps and Needs rights to launch the applications and C. Goliath Logon Simulator for VMware Horizon View VMware Simulation Account Access to apps and Needs rights to launch the applications and
D. Goliath Logon Simulator for Microsoft RDS Windows Simulation Account Access to apps and Needs rights to launch the applications and E. Goliath for NetScaler NetScaler Read-Only This account is only required for NetScaler performance monitoring
II. Goliath Firewall Settings A. Goliath Intelligent Agent for Goliath Performance Monitor & Logon Simulator (Includes Citrix XenApp Servers, Citrix XenDesktop VDI s, Virtual Machines, Workstations and Simulation Endpoints) Source Destination TCP Port Traffic Notes Agent Location Goliath Server 8282 Outbound Agent connection. Default port listed, port can be modified. Monitoring Endpoints/Workstations that reside outside your network will require the following: NAT policy on the firewall to allow agent communication inbound via TCP 8282 (default port, this can be changed) Public IP address of the firewall B. Goliath Server for Goliath Performance Monitor & Logon Simulator Source Destination TCP Port Traffic Notes (Anywhere) Goliath Server 8282 Inbound Agent connection. Default port listed, port can be modified. (Anywhere) Goliath Server 80 Inbound Web console connection. Default port listed, port can be modified. Goliath Server (Anywhere) 80 Outbound Web console connection. Default port listed, port can be modified. C. Goliath Performance Monitor Hypervisor Monitoring Source Destination HTTP Port Traffic Notes Goliath Server VMware 443 Outbound VMware connection Goliath Server Citrix XenServer 80 Outbound Citrix XenServer Connection D. Goliath for NetScaler Server Source Destination Port/HTTP Request Traffic Notes (Anywhere) GFN Server TCP 80 Inbound Web Console Access GFN Server (Anywhere) TCP 80 Outbound Web Console Access AWS GFN Server http://s3.amazonaws.com/ Inbound Product Updates GFN Server AWS http://s3.amazonaws.com/ Outbound Product Updates Goliath License GFN Server https://license.goliathtechnologies.com/ Inbound License Key Validation Server GFN Server Goliath https://license.goliathtechnologies.com/ Outbound License Key Validation NetScaler Management IP License Server GFN Server UDP 4739 Outbound Appflow Data
III. Goliath Performance Monitor & Logon Simulator Antivirus Exclusions/Filters: While not a-typical, we have been exposed to client environments which require antivirus filtering, or exclusion rules needing implemented due to the antivirus software conflicting with the Goliath Intelligent Agent. For that reasoning, we do recommend implementing exclusion rules which consist of the following: Directory Exclusions: o \Program Files\MonitorIT This is the install directory of the agent o \Program Files (x86)\monitorit This is the install directory of the Goliath Server Process Exclusions: o RPMAgent.exe This is the process which is launched by the Agent s Service o RPMCCS.exe This is the process which is launched by the Server s Service o LogonSimulator.exe This is the process which is launching the Logon Simulator