IDA Pro3.1.2.安装（3.1.2.Installation）

Because the Lumina server delegates user management to the Hex-Rays Vault server, please make sure the Hex-Rays
Vault server is properly installed.

The Lumina server installer will require the host & port of the Hex-Rays Vault server in order to create the lumina.conf file
that will be used by server.

The Lumina server can be installed on Linux servers. We have tested it on Debian and Ubuntu, but other major flavors of
Linux should be fine too.

To install the server, run the Lumina installer as root and follow the instructions (the server will not require root
permissions; only the installer does.)

TIP 

If your Linux system is based on systemd (e.g., Debian/Ubuntu, Red-Hat, CentOS, ...), it is recommended to
let the installer create systemd units so that the server will start automatically at the next reboot.

Activating the server license
NOTE 

If you already requested Lumina server activation with Hex-Rays Vault server, you can skip this part.
In order for the Lumina server license to be activated, it must be bound to a Host ID (an Ethernet MAC address.)

From a command prompt, run /sbin/ifconfig, and lookup the "ether" address for the network interface through which
the server will be accessible.

>/sbin/ifconfig
enp4s0: flags=4163 mtu 1500
[...snipped...]
ether bf:e2:91:10:58:d2 txqueuelen 1000 (Ethernet)
[...snipped...]

In this case, our mac address is: bf:e2:91:10:58:d2

Go to https://hex-rays.com/activate , and submit both the ida.key file and your MAC address. You will then receive
another e-mail with instructions to download the following files:
• lumina.crt
• lumina.key
• lumina.lic

Installing the server license
Those need to be copied in the Lumina installation directory. As root:
>cd /opt/lumina
>cp .../path/to/lumina.crt .
>cp .../path/to/lumina.key .
>cp .../path/to/lumina.lic .
>chown lumina:lumina lumina.crt lumina.key lumina.lic
>chmod 640 lumina.crt lumina.key lumina.lic

Creating the initial database schema
At this point, the server should be ready to run.

CAUTION 

If your system is already in production and hosts files, skip this section. Using the --recreate
-schema option as in the example below, will re-create an empty database and lose all data.
For the Lumina server to work, it needs to have a proper database schema to work with (at this point, the MySQL
database (i.e., "lumina_db") must already exist but is still empty.)

That is why, on the first install, you will need to initialize the database the server will use:
>sudo -u lumina ./lumina_server_teams --config-file lumina.conf --recreate-schema
Hex-Rays Lumina Server Teams v8.0 Hex-Rays (c) 2022
2022-09-02 10:28:30 Database has been initialized; exiting.
If you see "Error: Cannot connect to lumina db" please refer to troubleshooting section.

Testing the server
Now that the server is installed and has a database to work with, we can test that it works:
>sudo -u lumina ./lumina_server_teams --config-file lumina.conf \
--certchain-file lumina.crt \
--privkey-file lumina.key
Hex-Rays Lumina Server Teams v8.0 Hex-Rays (c) 2022
2022-09-22 12:14:37 Listening on 0.0.0.0:65432...
Good, the server appears to run! (If you are observing more worrying messages than this one, please refer to the
troubleshooting section.)

At this point, you may want to either let the server run, or stop it (Ctrl+C will do) and restart it using systemd:

>systemctl restart lumina.service

...and make sure it runs:
>ps aux | grep lumina_server_teams
lumina 78812 0.0 0.0 ...

If you don’t see a running lumina_server_teams process, please refer to the systemd diagnostic tools (e.g., journalctl)
for more info.

中文翻译：

由于Lumina服务器将用户管理委托给Hex-Rays Vault服务器，请确保正确安装了Hex-Rays Vault服务器。

安装Lumina服务器需要提供Hex-Rays Vault服务器的主机和端口信息，以创建将被服务器使用的lumina.conf文件。

Lumina服务器可以安装在Linux服务器上。我们已经在Debian和Ubuntu上进行了测试，但其他主要的Linux发行版也应该可以。

要安装服务器，请以root身份运行Lumina安装程序并按照说明进行操作（服务器不需要root权限，只有安装程序需要）。

提示

如果您的Linux系统基于systemd（例如，Debian/Ubuntu，Red-Hat，CentOS等），建议让安装程序创建systemd单元，以便服务器在下次重新启动时自动启动。

激活服务器许可证

注意：如果您已经使用Hex-Rays Vault服务器请求了Lumina服务器激活，则可以跳过此部分。

为了激活Lumina服务器许可证，必须将其绑定到主机ID（以太网MAC地址）。

从命令提示符运行/sbin/ifconfig，并查找通过该接口可访问服务器的网络接口的“ether”地址。

/sbin/ifconfig

enp4s0:flags=4163 mtu 1500

[...snipped...]

ether bf:e2:91:10:58:d2 txqueuelen 1000(Ethernet)

[...snipped...]

在这种情况下，我们的MAC地址为：bf:e2:91:10:58:d2

前往https://hex-rays.com/activate，并提交ida.key文件和您的MAC地址。然后，您将收到一封电子邮件，其中包含下载以下文件的说明：

•lumina.crt

•lumina.key

•lumina.lic

安装服务器许可证

需要将这些文件复制到Lumina安装目录中。作为root：

cd/opt/lumina

cp.../path/to/lumina.crt.

cp.../path/to/lumina.key.

cp.../path/to/lumina.lic.

chown lumina:lumina lumina.crt lumina.key lumina.lic

chmod 640 lumina.crt lumina.key lumina.lic

创建初始数据库模式

此时，服务器应该已准备就绪。

警告：

如果您的系统已经在生产环境中托管文件，请跳过本节。如下所示，使用--recreate-schema选项将重新创建一个空数据库并且会丢失所有数据。

为了使Lumina服务器正常工作，它需要有一个适当的数据库架构（此时，MySQL数据库即“lumina_db”必须已经存在，但仍然是空的）。

因此，在第一次安装时，您需要初始化服务器将要使用的数据库：

sudo-u lumina./lumina_server_teams--config-file lumina.conf--recreate-schema

Hex-Rays Lumina Server Teams v8.0 Hex-Rays(c)2022

2022-09-02 10:28:30数据库已初始化;退出。

如果看到“Error:Cannot connect to lumina db”，请参考故障排除部分。

测试服务器

现在，服务器已安装并具有要使用的数据库，我们可以测试其是否正常工作：

sudo-u lumina./lumina_server_teams--config-file lumina.conf--certchain-file lumina.crt--privkey-file lumina.key Hex-Rays Lumina Server Teams v8.0 Hex-Rays(c)2022 2022-09-22 12:14:37正在监听0.0.0.0:65432...

很好，服务器似乎可以运行！（如果您观察到比这更令人担忧的消息，请参阅故障排除部分。）此时，您可能希望让服务器运行，或者停止它（Ctrl+C），然后使用systemd重新启动：

systemctl restart lumina.service

...并确保它在运行：

ps aux|grep lumina_server_teams lumina 78812 0.0 0.0...

如果您没有看到正在运行的lumina_server_teams进程，请参考systemd诊断工具（例如journalctl）以获取更多信息。