Prerequisites

To get started, follow the instructions from the Anjuna Policy Manager Secure Deployments repo on Github. The repo includes scripts to quickly deploy the Anjuna Policy Manager.

Github: anjunasecurity/apm-secure-deployments

Make sure you have at least a Contributor Role for the Azure subscription where you want to deploy the Anjuna Policy Manager.

Once you have a running instance of the Anjuna Policy Manager (APM), you can perform administrative operations using the APM CLI.

Access the Anjuna Resource Center to get the Anjuna Policy Manager  — anjuna-policy-manager.2.2.0001.tar.gz

You can use the “API” button to copy a wget command to download Anjuna Policy Manager to your instance from the command line, without the need to access the Anjuna Resource Center UI again.

Extract the APM tarfile:

Optional - Install the APM CLI on your system:

The APM CLI needs to know how to connect to and verify the APM Server.

First, set the address of the APM Server:

Alternatively, set the --addr command-line parameter when you call the APM CLI.

Second, set the management authentication token of the APM Server:

Alternatively, set the --token command-line parameter when you call the APM CLI.

Third, set the CA certificate to verify the APM’s TLS certificate against it:

Alternatively, set the --ca-cert command-line parameter when you call the APM CLI.

Suppose you are not using an FQDN (fully qualified domain name) for the Anjuna Policy Manager. In that case, you must update your local /etc/hosts file in order to point the APM’s hostname to the right IP address. This operation requires root permissions (sudo).