Hyper Converged Infrastructure (HCI/aSV)

Sangfor HCI and aSV provide a unified infrastructure combining compute, storage, networking, and built-in security to simplify deployment, operations, and services.
{{ $t('productDocDetail.guideClickSwitch') }}
{{ $t('productDocDetail.know') }}
{{ $t('productDocDetail.dontRemind') }}
6.11.1R1
Hyper Converged Infrastructure (HCI/aSV) {{ breadTitle }} User Manual HCI Cluster Initialization Sangfor aSecurity (aSEC) Deployment aSEC Deployment
{{sendMatomoQuery("Hyper Converged Infrastructure (HCI/aSV)","aSEC Deployment")}}

aSEC Deployment

{{ $t('productDocDetail.updateTime') }}: 2026-01-05

Precautions

  1. Only support deploying Sangfor aSecurity on Sangfor HCI 6.8.0 version currently.
  2. Have aSecurity (aSEC) licensed.
  3. You must change the Security (aSEC) password once every three months.

Steps

  1. In the Compute page, click New, select Import VM, navigate to aSecurity, and click Deploy Now to import the virtual machine file.

  1. Import the virtual machine vma file, select the Group, Datastore, Storage Policy, and Run Location, then import the virtual machine.

Graphical user interface, website Description automatically generated

  1. After successfully importing the virtual machine, Edit the virtual machine to configure the network interface. Check the Enable checkbox on Connect to edge interface, then Enable IPv4 Address to edit the IP Address, Netmask, and Gateway for aSEC virtual machine as its management network. (It is required to ensure the communication between the HCI management interface is reachable, and it is recommended to be on the same network segment as the HCI management interface).

Graphical user interface, text, application Description automatically generated

  1. Navigate to System > Port Management to enable the Correlated Security Service. Otherwise, it is unable to visit the aSecurity platform.

A screenshot of a computer Description automatically generated

  1. Power on the aSEC virtual machine and enter into the console to configure the platform correlation.

Step 1.Input the password of Sangfor aSecurity to login. It is required to change the password for first-time login. The default password is Sfcsec@123. The password policy is as follows:

Password length should be 8 to 64 characters.

It must contain uppercase letters, lowercase letters, numbers, and special characters such as ~`@#%&<>"',;_-^$.*+?=!:|{}()[]/ .

It cannot be the same as or contain the username.

The same character cannot appear consecutively, such as aaa, 11, etc.

Cannot use the common characters (including uppercase and lowercase) of sangfor/sinfor/dlanrecover.

Graphical user interface, application Description automatically generated

Graphical user interface, application, Teams Description automatically generated

Graphical user interface, application Description automatically generated

Graphical user interface, application, Teams Description automatically generated

If there is no password change within 10 minutes or the password change fails, it will prompt an internal error, and the session will be timed out. You need to log in again to change the password.

Step 2.After successfully logging in, select Platform Authentication to enter the HCI platform authentication page.

Cluster IP: HCI cluster IP.

Username/password: HCI super admin login credentials.

Step 3.Click Authenticate to complete the aSEC virtual machine deployment.

Graphical user interface, application Description automatically generated

Graphical user interface, application, Teams Description automatically generated