System Requirements

Installing DeviceLock : System Requirements

System Requirements

DeviceLock DLP includes DeviceLock Service, DeviceLock Enterprise Server, DeviceLock Content Security Server, and management consoles: DeviceLock Management Console, DeviceLock Group Policy Manager, and DeviceLock Enterprise Manager. This section covers system requirements for each of these components.

The computer to run DeviceLock Service must meet the following requirements:

Operating system for DeviceLock Service for Windows	Microsoft Windows XP/Vista/7/8/8.1/10, Windows Server 2003/2003 R2, Windows Server 2008/2008 R2, Windows Server 2012/2012 R2, Windows Server 2016, or Windows Server 2019. Installation is supported on both 32-bit and 64-bit operating systems.
Operating system for DeviceLock Service for Mac	macOS 10.15 (Catalina) or macOS 11.2.3 (Big Sur).
Memory (RAM)	Minimum: 512 MB
Hard disk space	Minimum: 400 MB
Processor	Minimum: Intel Pentium 4
Supported virtualization platforms	Microsoft Remote Desktop Services, Citrix XenDesktop / XenApp, Citrix XenServer, VMware Horizon View, VMware Workstation, VMware Player, Oracle VM VirtualBox, and Windows Virtual PC.
Note: DeviceLock Service can only record user activity on computers running Windows 7 / Windows Server 2008 R2 or later.

The computer to run DeviceLock management consoles must meet the following requirements:

Operating system	Microsoft Windows XP/Vista/7/8/8.1/10, Windows Server 2003/2003 R2, Windows Server 2008/2008 R2, Windows Server 2012/2012 R2, Windows Server 2016, or Windows Server 2019. Installation is supported on both 32-bit and 64-bit operating systems.
Memory (RAM)	Minimum: 512 MB
Hard disk space	Minimum: 1 GB
Processor	Minimum: Intel Pentium 4
Note: •Internet Explorer 9 or later is required to view Relations Charts, operate Search Server, administer Digital Fingerprints, work with the UAM Log, and view reports in Discovery Server. •Internet Explorer 11 or later is required to view User Dossiers. •To view UAM Log records, the console must be installed on a computer running Windows 7 / Windows Server 2008 R2 or later. To view UAM Log videos in the console on Windows Server, the Desktop Experience / Media Foundation feature must be installed. To view UAM Log videos in the console on Windows N or KN, the Media Feature Pack must be installed. For installation instructions, see support.microsoft.com/help/3145500.

The DeviceLock Enterprise Server system requirements are as follows:

Operating system	Microsoft Windows Server 2003/2003 R2, Windows Server 2008/2008 R2, Windows Server 2012/2012 R2, Windows Server 2016, or Windows Server 2019. Installation is supported on both 32-bit and 64-bit operating systems.
Memory (RAM)	Minimum: 1 GB Recommended: 8 GB
Hard disk space	Minimum:1 GB Recommended: 800 GB (in case of local database server)
Processor	Minimum: Intel Pentium 4 Recommended: 2x Intel Xeon Quad Core 2.33 GHz
Database server	Microsoft SQL Server 2005, 2008, 2008 R2, 2012, 2014, 2016, 2017, or 2019, any edition, including SQL Server Express. - OR - PostgreSQL 9.5 (9.5.19 or later), 9.6 (9.6.15 or later), 10 (10.10 or later), 11 (11.5 or later), or 12 (12.0 or later). PostgreSQL ODBC Driver version 9.6.500 or later. The latest driver version is preferred.
Important: With PostgreSQL as the database server, the DeviceLock Enterprise Server provides for collecting and administering Audit Log, Shadow Log, Deleted Shadow Data Log, and Server Log, including the consolidation of these Logs. Other features of DeviceLock Enterprise Server in this case are not available.

The DeviceLock Content Security Server system requirements are as follows:

Operating system	Microsoft Windows Server 2003/2003 R2, Windows Server 2008/2008 R2, Windows Server 2012/2012 R2, Windows Server 2016, or Windows Server 2019. Installation is supported on both 32-bit and 64-bit operating systems.
Memory (RAM)	Minimum: 1 GB Recommended: 8 GB
Hard disk space	Minimum:1 GB Recommended: 800 GB (in case of local database server)
Processor	Minimum: Intel Pentium 4 Recommended: 2x Intel Xeon Quad Core 2.33 GHz
Database server	Microsoft SQL Server 2005, 2008, 2008 R2, 2012, 2014, 2016, 2017, or 2019, any edition, including SQL Server Express.

To install and configure DeviceLock, you need administrator rights. To install and configure DeviceLock only on a standalone computer, you must be a local administrator. To install and configure DeviceLock on computers in an Active Directory domain, you must be a domain admin.

To use DeviceLock on the network, a functioning TCP/IP network protocol is required. However, DeviceLock can also work on standalone computers. A network is needed only if you want to control DeviceLock Service from a remote computer.

Open the following TCP/UDP ports to enable network communication and data exchange among DeviceLock components:

•135 (TCP) - RPC (Remote Procedure Call) endpoint mapper port.

•137 (UDP) - NetBIOS Name Resolution port.

•138 (UDP) - NetBIOS Datagram Service port.

•139 (TCP) - NetBIOS Session Service port.

•445 (TCP) - Server Message Block (SMB) port. Used by the DeviceLock Management Console when managing the DeviceLock Service on remote computers.

•9132 (TCP) - DeviceLock Service’s default port.

•9133 (TCP) - DeviceLock Enterprise Server’s default port. This port is also used by default for log consolidation, and should be open on both the remote and central collection servers.

•9134 (TCP) - DeviceLock Content Security Server’s default port.

Additionally, set the startup type of “Automatic” for the following services:

•Remote Registry

•Remote Procedure Call (RPC)

•Base Filtering Engine

Note: Setting the startup type of the Base Filtering Engine service is required only on Windows 8 or later.

Additional system requirements for Discovery Agents

DeviceLock Discovery Server, an integral part of DeviceLock Content Security Server, can deploy and manage DeviceLock Discovery Agents on client computers. The following requirements apply to Discovery Agent installations:

Operating system	Microsoft Windows XP/Vista/7/8/8.1/10, Windows Server 2003/2003 R2, Windows Server 2008/2008 R2, Windows Server 2012/2012 R2, Windows Server 2016, or Windows Server 2019. Installation is supported on both 32-bit and 64-bit operating systems.
Memory (RAM)	Minimum: 512 MB
Hard disk space	Minimum: 200 MB
Processor	Minimum: Intel Pentium 4

Open the following TCP/UDP ports to enable the Discovery Agent to communicate over the network with other DeviceLock components, and to scan SMB resources:

•135 (TCP) - RPC (Remote Procedure Call) endpoint mapper port.

•137 (UDP) - NetBIOS Name Resolution port.

•138 (UDP) - NetBIOS Datagram Service port.

•139 (TCP) - NetBIOS Session Service port.

•9135 (TCP) - Discovery Agent’s default port.

•445 (TCP) - Server Message Block (SMB) port. Used when scanning SMB resources on remote computers.