Follow

Forensic Tools 7.4 Installation Guide

Created by: Tony Herrera
Created date:
Last Updated date:

Overview

This article discusses installing Forensic Tools 7.4, which includes the FTK, Enterprise, LAB, and Quin-C products.  For assistance with licensing or installing Forensic Tools, please contact sales@accessdata.com.

 

Prerequisites

  • Install all current Windows updates.
  • Disable any antivirus/malware scanning software.
  • A physical or virtual dongle with an FTK, Enterprise, LAB, or Quin-C license
    Note: Refer to this article for help activating a virtual dongle.

 

Forensic Tools Installation

  1. Insert or mount the Forensic Tools installation media and launch the autorun.
  2. At the autorun menu, click Install Forensic Tools 64 Bit.
    2020-09-15_11_49_41-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  3. At the AccessData Forensic Tools Suite installer Welcome dialog, click Next.
    2020-09-15_11_51_03-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  4. At the License Agreement dialog, accept the license agreement and click Next.
    2020-09-15_11_52_40-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  5. At the Setup Type dialog, select the product you wish to install from the dropdown menu.  Only choose Quin-C from the dropdown if you do not want FTK, Enterprise, or LAB installed as well.
    2020-09-15_11_55_09-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  6. If you chose FTK, Enterprise, or LAB and also want access to Quin-C, check Enable Quin-C UI. If you chose Enterprise or Lab, and have a Quin-C server installed on a remote machine, check Use remote Quin-C Server and enter the name/IP of your Quin-C server.
    2020-09-15_12_02_11-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  7. Select whether you would like to perform a Default or Advanced installation.
    Note: Default installations should only be done in single-box, single-drive environments.
    2020-09-15_12_03_24-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png

 

“Default” Installation

  1. At the PostgreSQL License Agreement dialog, accept the license agreement and click Install.
    Note: PostgreSQL will only be installed if it is not already on your system from a previous installation.
    2020-09-15_12_04_52-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  2. Wait for the installers to complete.
  3. At the final dialog, click Finish and continue to the Post-Installation section below.
    2020-09-15_12_13_59-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png

 

“Advanced” Installation

  1. At the Custom Setup dialog, check which components to install and click Install.
    2020-09-15_12_59_10-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  2. If you chose to install PostgreSQL, do the following during the AccessData PostgreSQL Setup:
    1. At the Destination Folder dialog, select the desired installation folder.
      2020-09-15_13_06_12-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
    2. At the Data Folder dialog, select the desired database storage folder.
      2020-09-15_13_08_29-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
    3. At the PostgreSQL Port dialog, choose the port that PostgreSQL should use.
      2020-09-15_13_10_46-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
    4. At the PostgreSQL User Create dialog, create a password for the PostgreSQL database administrator account.
      2020-09-15_13_13_33-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  3. If you chose to install the Evidence Processor, do the following during the AccessData Evidence Processing Engine setup:
      1. At the Destination Folder dialog, select the desired installation folder.
        2020-09-15_13_32_35-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
      2. At the Processing Temp Folder and State Folder dialog, choose the folders where you’d like the temporary file stored.
        2020-09-15_13_34_14-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  4. If you chose to install the Forensic Tools, do the following during the AccessData Forensic Tools setup:
      1. At the Configuration dialog, select the desired installation folder, database host, and Quin-C host.
        2020-09-15_13_37_22-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
      2. At the User Credentials dialog, enter the credentials for an account to run the Quin-C service (This account should be a member of the local administrators group, and be a domain-level account in a multi-box environment.  The "Local System" account should only be used if all components, as well as case and evidence storage, will be on one single machine.)
        2020-09-15_13_39_17-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  5. If you chose to enable Quin-C UI, do the following during the AccessData Collab setup:
      1. At the User Credentials dialog, enter the credentials for an account to run the Collab viewer service (This account should be a member of the local administrators group, and be a domain-level account in a multi-box environment.  The "Local System" account should only be used if all components, as well as case and evidence storage, will be on one single machine.)
        2020-09-15_16_01_56-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  6. At the final dialog, click Finish, then reboot if prompted.
  7. Depending on the product you installed, proceed to the correct Post-Installation section below.

 

FTK/Enterprise/LAB Post-Installation

If this is the first FTK/Enterprise/LAB installation on this machine, or there's no existing database or cases, please follow the New Install section.  If you are upgrading from a previous version and have an existing database or cases, scroll down to the Upgrade section.

 

New Install

  1. Launch FTK/Enterprise/LAB from the desktop shortcut.
  2. At the Add Database dialog, complete the following, then click OK:
    RDBMS: PostgreSQL or MSSQL (This should be PostgreSQL if you did a Default installation.)
    Host: Database location (This should be localhost if you did a Default installation.)
    Display Name: Optional friendly name for the database
    Use Default Port: Checked unless your database is using a non-default port.
    2020-09-15_17_18_13-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  3. At the Please Authenticate dialog, complete the following, then click OK:
    Username: "postgres" for PostgreSQL or "sa" for MSSQL (This should be postgres if you did a Default installation.)
    Password: Password for the "postgres" or "sa" user (This should be AD@Password if you did a Default installation.)
    2020-09-15_17_27_52-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  4. When database preparation finishes, at the Add New User dialog, enter the desired credentials for your first Application Administrator, then click OK:
    RDBMS: PostgreSQL or MSSQL (This should be PostgreSQL if you did a Default installation.)
    Host: Database location (This should be localhost if you did a Default installation.)
    Display Name: Optional friendly name for the database
    Use Default Port: Checked unless your database is using a non-default port.
  5. Choose whether to create a password reset file.
  6. Open the Services snap-in (services.msc).
  7. Restart the AccessData Quin-C Self Host Service service.

 

Upgrade

  1. Launch FTK/Enterprise/LAB from the desktop shortcut.
  2. At the Authenticate dialog, enter the credentials of an Application Administrator and click OK.
    2020-09-16_09_53_10-Python_SDK_DevBox_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  3. At the Please Authenticate dialog, complete the following, then click OK:
    Username: "postgres" for PostgreSQL or "sa" for MSSQL
    Password: Password for the "postgres" or "sa" user (This should be AD@Password if you originally did a Default installation.)
    2020-09-15_17_27_52-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png

 

Quin-C-Only Post-Installation

If this is the first Quin-C installation on this machine, or there's no existing database or cases, please follow the New Install section.  If you are upgrading from a previous version and have an existing database or cases, scroll down to the Upgrade section.

 

New Install

  1. If the AccessData Database Configuration Tool window isn't already open, open DBConfig.exe as Administrator (typically located in "[drive]:\Program Files\AccessData\Forensic Tools\[version]\bin").
  2. Click Add Configuration.
    2020-09-15_12_23_07-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  3. Complete the following, then click Create:
    Database Type: MSSQL or Postgres (This should be Postgres if you did a Default installation.)
    Server Name : Port: Database location in the format host:port (Port is only needed when using a non-default port. This should be localhost if you did a Default installation.)
    Create Database: True
    Authentication Mode: Mode to authenticate to your database (This should be Database Authentication if you did a Default installation.)
    System User: When using Database Authentication, this is the database user to use when authenticating (This should be postgres if you did a Default installation.)
    System Password: When using Database Authentication, this is the database password to use when authenticating (This should be AD@Password if you did a Default installation.)
    Application Admin: The desired username for your first FTK/Enterprise/LAB/Quin-C administrator.
    Admin Password: The desired password for your first FTK/Enterprise/LAB/Quin-C administrator.
    2020-09-15_12_25_07-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  4. After the database is created, confirm the Default box is checked next to the entry for your new database.
    2020-09-15_12_40_24-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  5. Close the AccessData Database Configuration Tool window and reboot your computer.

 

Upgrade

  1. If the AccessData Database Configuration Tool window isn't already open, open DBConfig.exe as Administrator (typically located in "[drive]:\Program Files\AccessData\Forensic Tools\[version]\bin").
  2. If your desired database is not already listed, click Add Configuration.
    2020-09-15_12_23_07-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  3. Complete the following, then click Connect:
    Database Type: MSSQL or Postgres
    Server Name : Port: Database location in the format host:port (Port is only needed when using a non-default port.)
    2020-09-15_12_47_25-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  4. Highlight your desired database, and click Update Database.
    2020-09-15_13_56_30-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  5. Select a backup path, set your authentication mode, and click Update.
    2020-09-15_13_58_52-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  6. After the update completes, confirm the Default box is checked next to the entry for your desired database.
    2020-09-15_12_40_24-Install_Test_on_BBONEDELLTOP_-_Virtual_Machine_Connection.png
  7. Close the AccessData Database Configuration Tool window and reboot your computer.
Was this article helpful?
4 out of 5 found this helpful
Have more questions? Submit a request

Comments

Powered by Zendesk