Server Installation Requirements

Server installation is one of the first actions to be done for any KYP.ai implementation. Before server is installed, a decision on cloud vs. on-premise approach needs to be made. Cloud-based servers are installed and managed by KYP.ai or KYP.ai Implementation Partner, and on-premise servers are installed and managed by your IT.

Infrastructure

As a base, KYP needs 1 machine with the below requirements. It can be setup as a physical machine or a Virtual machine in a cloud provider. 

Additional components like Web Application Firewall etc can be added to the setup.  

All components will run on this machine as docker containers. With more data delivered by users, eg.1000+ please contact KYP.ai Team for more details.  

Below hardware specification assumes server virtualization. In case of using Physical server / Bare metal please ask KYP.ai Team for detailed requirements.

Configuration for OPS monitoring purposes (without screenshot processing): 

Configuration for Process Discovery / PoC purpose (with screenshot processing):

* Storage calculated based on: 30 days screenshots retention, 25% usage of screenshot apps and 12 months of contract.

More detailed hardware calculations can be made based on the below xls form:

For Cloud installation You can find here example machines:

OPS

PD

Network

• Available ports: 
  • 80, 443 - for HTTP(S) desktop connectivity (data delivery) and web application access 
  • 22 - for SSH server maintenance
• Internet or package repository access on the server installation time (OS packages)  
• Outgoing communication based on HTTPS protocol to *.kyp.ai for downloading KYP.ai installation/upgrade packages
• Register DNS entry for the server
• SSL certificate generated for the server domain name
• HTTPS traffic can not be filtered for specific phrases or conditions
• Required network bandwidth 2Mb/s for 50 users

For detailed networking please check "Network Sizing Section"

 Optional:

• In case of Load Balancer usage:
  • Register DNS entry for the load balancer
  • SSL certificate generated for the load balancer
  • Load Balancer traffic on port 443 should be redirected to the server on port 80
• Data collection monitoring outbound communication port to email server on port 587/465, not filters emails sent to monitoring@kyp.ai
• LDAP/Active Directory communication to LDAP server on port 389/636
• Access to user repositories for single sign-on eg. Microsoft Azure AD Server (https://login.microsoftonline.com and https://graph.microsoft.com), OpenID

Backup:

The application has a default setup to keep the last 6 days' backups of the main database on local storage. These parameters can be changed and need to be agreed upon before deployment. The best practice is to keep backups on different storage i.e. AWS S3 and it needs to be configured in a backup script.

Software 

• Operating system - Enterprise Linux Server recommended - Ubuntu 20.04.5 or later, optional - RHEL 8.7 (RedHat) or later, Fedora 37 or later

• The following list contains necessary tools that need to be installed on the server before the KYP installation process, which is needed to run during this process

• KYP.ai packages with system downloaded from KYP.ai repository

Access:

• SSH access to the server by the user (KYP DevOps Team) with root rights granted for installation and daily maintenance
• Constant HTTPS access to the server by the Customer Success team for configuration and data analyze
• Constant access to one virtual machine in the Customer environment for uploading files to the server with preinstalled KYP agent for testing purposes