Configuring Site Servers


Example of a Root Site Server configuration:


Site Server Topology




Configuration Options: General

1. Type

  • Root - The top level Site Server that reports to the FTK Central service, and can collect from on-network targets.
  • Private - A child Site Server that reports to a parent Site Server, and can collect from on-network targets.
  • Private (Protected) - A child Site Server that reports to a parent Site Server when only one-way communication is allowed, and can collect from on-network targets.
  • Public - A child Site Server that reports to a parent Site Server, and can collect from off-network targets.


2. Friendly Name

A user-defined name to easily identify the Site Server 

3. Logging Level

Level of message detail to record in site_server.log. Default Value: ERROR


4. Agent Port

Port used by on-network agents. Default Value: 3999


5. Catch All Delay(s)

When a Site Server is looking for new jobs every (X) mins, this setting will delay that cycle by the specified interval. This is useful when you mark a particular site server to catch all IP addresses and you want it to execute only if others have failed. 

Default Value: 0


6. Agent Checkin Log

This is available only when the Type is selected as Public. Upon enabling the Agent Checkin Log, a log will be created which will list all the check-in details for the Agent.


Configuration Options: Secure Communications

Note: See Agent Certificate Requirements for Private, Public, and Agent Requirements.


1. Private Certificate

The private certificate used to communicate with the FTK Central service and other Site Servers. 


2. Public Certificate

The public certificate used to communicate with the FTK Central Service and other Site Servers. 


3. Agent Certificate

The private certificate used to communicate with Agents. 


Configuration Options: Database

1. System Password

Password to the locally-installed PostgreSQL database where Site Server stores its settings and metadata. 


2. Database Port

Port used by the locally-installed PostgreSQL database where Site Server stores its settings and metadata. Default Value: 5432



Configuration Options: IP Configuration

1. Internal Addresses/FQDN

Internal (on-network) IP or FQDN of a Public Site Server. 


2. External Addresses/FQDN

External (internet-facing) IP or FQDN of a Public Site Server. 


3. Public Port

Port used for off-network Agent heartbeat/check-in. Default Value: 54545


4. Heartbeat Port

Port used for on-network Agent heartbeat/check-in. Default Value: 54555


5. Client Port

Port used for FTK Central to Root Site Server communication. Default Value: 54321


6. SS to SS Port

Port used for Site Server to Site Server communication. Default Value: 54548



Configuration Options: Results

1. Results Directory or UNC Path

Path to store collected data in temporarily. 


2. Results Share Domain

Domain to use if Results Directory is a UNC path. 


3. Results Share Username

Username to use if Results Directory is a UNC path.


4. Results Share Password

Password to use if Results Directory is a UNC path. 



Configuration Options: Site Server System

1. Parent Instance

The parent of a Private or Public site server, in the format IP/FQDN:Port. 


2. Children Instances

The children of a Root or Private site server, in a comma-delimited list in the format IP/FQDN:Port. 


3. Public Instances

A list of all an environment's available Public Site Servers, in a comma-delimited list in the format IP/FQDN:Port.

NoteThis is used to notify Public Agents of other available Public Site Servers that may be closer/faster.



Configuration Options: Locality

1. Managed Subnet Address(es)

A comma-delimited list of CIDR ranges that includes all targets the given Site Server is allowed to collect from. 


Configuration Options: Configuration

1. Max Client Connections

The number of clients/applications that are allowed to connect to the Client Port. Default Value: 10


2. Max Incoming Threads

The number of threads created for incoming connections from Agents over the Public Port. Default Value: 50


3. Max Outgoing Threads

The number of threads created for outgoing connections to Agents over the Public Port. Default Value: 50


4. Max Event Threads

The number of threads created for handling agent events that were previously added to the Site Server database. Default Value: 50


5. Replication Threads

The number of threads created for replicating data between Site Servers. Default Value: 5


6. Retry Count

The number of retries to make when replicating data. Default Value: 5


7. Retry Delay (ms)

The time between retries. Default Value: 100


Configuration Options: Bandwidth Control

1. bits/second in from SiteServer

Max bandwidth allowed in from other Site Servers. Default Value: Unlimited


2. bits/second out to SiteServer

Max bandwidth allowed out to other Site Servers. Default Value: Unlimited


3. bits/second in from Agent

Max bandwidth allowed in from Agents. Default Value: Unlimited


4. bits/second out to Agent

Max bandwidth allowed in from Agents. Default Value: Unlimited


This article is verified as of version 7.6 SP3