Site Collector
      Back to home
      1. Radiant Help Center
      2. Getting Started
      3. Site Collector

      Install the Radiant Security Agent

      Send your logs to Radiant Security's S3 environment for analysis.

      Overview

      The Radiant Security Agent securely collects and uploads logs from your internal network to Radiant Security’s S3 environment for advanced processing and analysis. By deploying the Radiant Agent, you can centralize log management, enhance security visibility, and ensure seamless data ingestion. The Radiant Agent uses a Docker-based installation, where the Agent runs as a container, simplifying deployment and maintenance.

      Architecture

      The following diagram shows how the Radiant Agent works:

      Captura de Tela 2025-02-17 às 16.55.03

      As shown:

      1. Radiant Agent listens on the specified connector ports to receive the incoming log data. In this example, the ports are for Fortinet (TCP 5514) and PaloAlto Networks (TCP 5515).
      2. Inside the Linux VM, a Docker container runs the Radiant Agent application.
      3. The Buffer Storage temporarily stores log data to prevent any data loss during network interruptions when transferring data to AWS S3.
      4. Data is transferred up to 10x compression, reducing bandwidth usage compared to syslog forwarding.
      5. AWS S3 acts as the central repository for the collected data which Radiant Security then processes.

      Prerequisites

      The following prerequisites need to be met to install the Radiant Agent:

      Important note: These prerequisites are based on a data volume of up to 1MB/s. If the data volume in your case is higher than this, please reach out to Radiant regarding updated specs.

      Host OS Requirements:

      • Linux Ubuntu or RHEL
      • Root permissions required for installation, setting up OS service, etc. (installing software, setting up OS service)
      • High-performance storage (Recommended 200GB)

      Compute Requirements:

      • 4 CPUs and 8GB memory for handling 1MB/s data load
      • Docker version 20.10.x or newer (installation script will update if needed)

      Network Requirements:

      • Ensure outbound traffic to:
        • sts.amazonaws.com:443
        • sts.us-west-2.amazonaws.com:443
        • s3.us-west-2.amazonaws.com:443
        • *.s3.us-west-2.amazonaws.com:443
          Protocol: HTTPS (TCP/443)
      • Each connector type requires a dedicated port (e.g. Fortinet on 5514, Palo on 5515, etc)

      Next Steps

      To set up a Radiant Agent or if you have any questions, please reach out to our Product and Customer Success teams at support@radiantsecurity.ai

       

      Last updated: 2025-02-17