# NGINX
## Prerequisites
* An existing deployment of NGINX for Linux running over a variety of platforms.
* Specific versions numbers are updated under **Support->Platforms**
## Installation
For deployment instructions follow steps in the Profile
#### Step 1: Download the Installer to the linux machine
Run the following commands from the linux server shell:
`sudo su`
`wget https://sc1.checkpoint.com/nanoagent/nanoegg -O nanoegg`
#### Step 2: Install the Agent
Run the following commands from the linux server shell, from the same location as previous step:
`chmod +x nanoegg`
`./nanoegg --install --token `
{% hint style="info" %}
Make sure you obtain the \ from the [Enforcement **Profile**](https://waf-doc.inext.checkpoint.com/getting-started/deploy-enforcement-point) page, **Authentication** section. you will need it during agent deployment.
{% endhint %}
The installer creates an initial registration with the CloudGuard WAF cloud and downloads the latest version of the agent installation.
It will also add to your nginx.conf the following line:
`load_module /usr/lib/nginx/modules/ngx_cp_attachment_module.so;`
#### Step 3: Configure SSL certificates (optional if the servers do not use HTTPS)
To configure SSL certificates in **NGINX** follow these guides:
* [NGINX](https://nginx.org/en/docs/http/configuring_https_servers.html)
* [NGINX PLUS](https://docs.nginx.com/nginx/admin-guide/security-controls/terminating-ssl-http/)
To configure SSL certificates in **Kong** follow the guide in the following [link](https://docs.konghq.com/gateway/latest/how-kong-works/routing-traffic/#configuring-tls-for-a-route).
#### Step 4: Verify installation
The agent will automatically install, connect and should display a successful connection message within the CloudGuard WAF web portal:
To check agent status after the installation from the Linux server shell, you can run:
`cpnano -s`
