ECS Service USER GUIDE

Similar documents
Remote Access via Cisco VPN Client

Cisco s AnyConnect VPN Client (version 2.4)

VII. Corente Services SSL Client

Secure Access Troubleshooting Rewrite related issues (Core/Web Based Access)

Fireware-Essentials. Number: Fireware Essentials Passing Score: 800 Time Limit: 120 min File Version: 7.

VI. Corente Services Client

License Manager Client

SSL VPN User Guide. Access Manager Appliance 3.2 SP2. June 2013

Aventail Connect Client with Smart Tunneling

NetExtender for SSL-VPN

CHAPTER 7 ADVANCED ADMINISTRATION PC

Pulse Secure Desktop Client Release Notes

Skandocs Installation and Connectivity Guide What you need to know to successfully utilise the Internet connectivity in Skandocs

SA Supported Platforms

Business Connect Secure Remote Access Service (SRAS) Customer Information Package

Single Antenna Multi Channel Modem

DIGIPASS Authentication for Cisco ASA 5500 Series

Stonesoft Management Center. Release Notes Revision A

Test - Accredited Configuration Engineer (ACE) Exam - PAN-OS 6.0 Version

mycsunsoftware REFERENCE GUIDE

Parallels Remote Application Server

DIGIPASS Authentication for Check Point VPN-1

SSL VPN Service. Once you have installed the AnyConnect Secure Mobility Client, this document is available by clicking on the Help icon on the client.

Taskbar for Windows. Contents. Overview. Prerequisites. Versions. PositiveID Support. Installer

Freshservice Discovery Probe User Guide

Stonesoft Management Center. Release Notes Revision B

NetConnect to GlobalProtect Migration Tech Note PAN-OS 4.1

Hollins University VPN

JN0-355 Q&As. Junos Pulse Secure Access, Specialist (JNCIS-SA) Pass Juniper JN0-355 Exam with 100% Guarantee

BIG-IP Access Policy Manager : Application Access. Version 13.0

BIG-IP Access Policy Manager : Portal Access. Version 13.0

Remote Access VPN. Remote Access VPN Overview. Licensing Requirements for Remote Access VPN

Enhancing VMware Horizon View with F5 Solutions

Installation Guide V2.2

Stonesoft Management Center. Release Notes Revision B

How to Configure a Client-to-Site L2TP/IPsec VPN

Connectware Manager Getting Started Guide

UIP1869V User Interface Guide

Novell Access Manager

Model No. KX-HCM110A. Trademarks... 2 Abbreviations... 2 Troubleshooting... 3

Receiver (Updater) for Mac 2.1

Link Gateway Initial Configuration Manual

Procedure for Connecting to OIL VPN

Pulse Connect Secure. Network Connect and Windows Secure Access Manager (WSAM) Error Messages. Product Release 8.1

HTG XROADS NETWORKS. Network Appliance How To Guide: PPTP Client. How To Guide

AUSTRALIAN DEALER ACCESS

Setup PureVPN Windows Software

The SSL device also supports the 64-bit Internet Explorer with new ActiveX loaders for Assessment, Abolishment, and the Access Client.

IMC inode Intelligent Client v7.0 (E0106) Copyright (c) Hewlett-Packard Development Company, L.P. and its licensors.

AT&T Cloud Web Security Service

Clientless SSL VPN Overview

Avalanche Remote Control User Guide. Version 4.1

Contents. Platform Compatibility. Directory Connector SonicWALL Directory Services Connector 3.1.7

Inspection of Router-Generated Traffic

Desire2Learn WebDAV User Guide

Implementing DVN. directpacket Product Guide

Stonesoft Management Center. Release Notes for Version 5.4.6

Novell Access Manager

Contents. Platform Compatibility. Directory Connector SonicWALL Directory Services Connector 3.1.7

SA Supported Platforms

Step-by-Step Configuration

Lab Configuring and Verifying Extended ACLs Topology

Sophos Connect. help

FUJITSU Cloud Service S5. Introduction Guide. Ver. 1.3 FUJITSU AMERICA, INC.

Juniper Exam JN0-696 Security Support, Professional (JNCSP-SEC) Version: 9.0 [ Total Questions: 71 ]

Application Note 3Com VCX Connect with SIP Trunking - Configuration Guide

SonicWALL strongly recommends you follow these steps before installing Global VPN Client (GVC) 4.0.0:

XLmanage Version 2.4. Installation Guide. ClearCube Technology, Inc.

Pulse Secure Desktop Client

Novell Access Manager

Sophos Firewall Configuring SSL VPN for Remote Access

Application Note Asterisk BE with SIP Trunking - Configuration Guide

CyberP3i Course Module Series

SSL VPN Server Guide. Access Manager Appliance 3.2 SP2. June 2013

File services. Domains, DNS DHCP. Server Scripts. Intranet and Extranets. Web services. HNC COMPUTING - Network Concepts

MRU Secure Remote Access Service (SRAS) External User Guide

How to Configure a Remote Management Tunnel for an F-Series Firewall

Parallels Remote Application Server

ActivIdentity 4TRESS AAA Web Tokens and F5 BIG-IP Access Policy Manager. Integration Handbook

StoneGate Management Center Release Notes for Version 4.2.1

LevelOne FBR User s Manual. 1W, 4L 10/100 Mbps ADSL Router. Ver

Broadband Router DC-202. User's Guide

Aspera Connect Windows XP, 2003, Vista, 2008, 7. Document Version: 1

Step-by-Step Configuration

Installation & Configuration Guide Version 1.6

DIGIPASS Authentication for O2 Succendo

SonicWALL Secure Remote Access Appliances. SonicWALL SRA SSL VPN 5.5 User s Guide

vcloud Director User's Guide 04 OCT 2018 vcloud Director 9.5

RU-VPN2 - GlobalProtect Installation for Windows

Access Gateway 9.3, Enterprise Edition

FAQ. General Information: Online Support:

SonicWALL Security Appliances. SonicWALL SSL-VPN 200 Getting Started Guide

How to Configure Mobile VPN for Forcepoint NGFW TECHNICAL DOCUMENT

Troubleshooting. Table of Contents. Network Camera. Troubleshooting Indoor Use only. Model No. BB-HCM311

Troubleshooting AB Tutor Control Connection problems

Pexip Infinity and Amazon Web Services Deployment Guide

CompTIA Security+ CompTIA SY0-401 Dumps Available Here at:

Can Delete Sharing Folder Windows 7 Access Denied

Network Camera. Model No. BB-HCM403A. Troubleshooting... 3

vcloud Director User's Guide

Transcription:

ECS Service USER GUIDE

TABLE OF CONTENTS 1. Preface... 3 2. Prerequisites... 4 2.1. Compatible platforms:... 4 2.2. Connection to Volvo... 4 2.2.1. Antivirus and Firewall... 4 2.2.2. Firewall Configuration... 5 3. Limitations... 5 4. Installation of client software... 6 4.1. Installation... 6 5. How to use ECS... 8 5.1. Connect... 8 5.2. Disconnect... 10 6. Change Password... 11 7. Troubleshooting... 11 7.1. Access denied Invalid username or password... 11 7.2. I cannot reach my server through ECS... 11 7.3. I cannot reach my server through ECS, even though everything is correct in the ECSgroup (IP, port and protocol), and my server is listening on correct port.... 11 7.4. I can reach my server through ECS, but cannot login to the server... 11 Page 2 of 11

1. Preface About this document This document is a user guide for the Extranet Connect Service. It contains information about installation, configuration and use of the service. There is also a part covering the most common problems and how to deal with them. Extranet Connect Service (ECS) The Extranet Connect Service is a general tool for external users who need secure communication to appointed Volvo applications. ECS gives a user access to exactly those applications that he/she is authorized to use. It also secures the data traffic during the transport over a public network, like the Internet. ECS consists of two parts, one client software (hereafter called the ECS-client) and one central VPN-gateway (hereafter called the ECS-gateway). The ECS-client is used to encrypt/decrypt the traffic to and from the ECS-gateway. The ECS client can be installed on a PC with Microsoft Windows operating systems. Besides to encrypt/decrypt the traffic to and from an ECS-client, the ECS-gateway forces the user to authenticate before the communication can start. It also decides which applications a user have access to on the Volvo network. Page 3 of 11

2. Prerequisites 2.1. Compatible platforms: Platform Operating System Browsers and Java Environment Windows Vista Enterprise/Ultimate/Business/Home Basic/Home Premium with Service Pack 1 or 2 on 32 bit or 64 bit platforms Windows 10 32/64bit Enterprise/Ultimate/Professional/Home Basic/Home Windows 8.1 32/64bit Enterprise/Ultimate/Professional/Home Basic/Home Windows 7 Enterprise/Ultimate/Professional/Home Basic/Home Premium on 32bit or 64 bit platforms XP Professional with SP2 or SP3 on 32 bit or 64 bit 2000 Professional SP4 XP Home Edition SP3 XP Media Center 2005 Windows 2003 server SP2, 32bit and 64 bit Internet Explorer 11.0 Internet Explorer 10.0 Internet Explorer 9.0 * Internet Explorer 8.0 * Internet Explorer 7.0 * Internet Explorer 6.0 * Sun JRE 5/1.5.07 and above Microsoft JVM for Windows 2000 Linux and MAC clients are available but will not be supported by Volvo IT. More information and available versions can be found in the Network Connect section at: http://www.juniper.net/techpubs/software/ive/6.x/releasenotes/sa-supportedplatforms-65.pdf User registration and authorization ECS users must be registered in Volvos e-business directory with authorization to run appointed applications. Each ECS group has one or many approvers that are responsible for the users in his/her ECS group. Contact your approver if you have any questions about your user account. 2.2. Connection to Volvo 2.2.1. Antivirus and Firewall The PC running ECS must have an up to date antivirus (not older than one week) and firewall software installed and running. The ECS service may enforce that both a firewall and antivirus software is installed and enabled at ECS login. Page 4 of 11

2.2.2. Firewall Configuration The ECS service is available via Internet. Make sure that the connection is transparent for the protocols used by ECS (see Firewall configuration below). The ECS client communicates on different ports to establish a secure VPN tunnel to the ECS gateway. If there is a traffic filtering device (e.g. firewall) or software protecting the ECS client PC the following traffic must be allowed through to Internet: TCP port 443 (HTTPS) For better performance it is also recommended to allow: UDP port 500 (IKE) UDP port 4500 (NAT-T) The client will automatically try to use the best connection method available. 3. Limitations ECS can only be used on standard Windows single user PC's (multi user environments like Citrix may not work) The ECS-client software does not protect the PC from attacks from e.g. the Internet. No security for the PC itself is included in the ECS service. Other installed VPN clients can interfere with the ECS VPN client. Before calling support you need to uninstall other VPN clients to make sure they do not interfere. A user-id can only be used by one user at a time. Multiple sessions with the same user-id Causes unexpected behaviors and are NOT allowed Page 5 of 11

Installation of client software Before you start The installation must be done from a user account with Administrator privileges. 3.1. Installation The VPN-client can be found at: Download ECS VPN-client Select which OS you are running, download and install the application. If you are running on a Windows system, please also install the PulseSecureInstallerService_x.xRx.msi (Mac and Linux software is available, but not supported by HCL.) When the installation is complete, the Pulse icon will appear in the taskbar. Open the application and add an ECS connection Page 6 of 11

Add the Server URL to which your ECS group has been configured; https://ecs-emea.volvo.com (Europe) https://ecs-americas.volvo.com (Americas) https://ecs-asia.volvo.com (Asia) https://ecs-australia.volvo.com (Australia) https://ecs-sa.volvo.com (South America) Page 7 of 11

4. How to use ECS 4.1. Connect Note! You need to change your initial password before you can start using ECS. This can be done at the password change page at www.volvogroup.com/ecs Open the Pulse Secure application, and click connect Page 8 of 11

If you have been told to use one time passwords using Digipass or SMS-OTP, you shall select ECS-DIGIPASS or ECS-SMS-OTP option. Press the Connect button. Fill in the username and password/digipass password, and press Connect. If you login with SMS-OTP, a new window will be displayed to enter the OTPpassword, which you have received in your phone. Page 9 of 11

The green sign indicates that you have a safe tunnel to the ECS gateway. The tunnel will only permit traffic to the resources that you are registered for. Traffic to all other resources will be sent out to the local network as usual (split tunneling). You are able to resolve Internet as well as internal DNS names when connected. Start your applications or tools that you want to use. Traffic to all resources that you are allowed to reach will be sent down the secure tunnel to the ECS gateway and then further to the final destination. 4.2. Disconnect Press the Disconnect button to log off and end the secure session. Page 10 of 11

5. Change Password If you receive a new password it must be changed before you can use ECS. If you have forgotten your password Please contact your approver. Please provide a valid email address. For more information please visit the password page at: www.volvogroup.com/ecs 6. Troubleshooting 6.1. Access denied Invalid username or password If you recently have received a new password make sure that you have changed it. If you are using SMS-OTP to login, also make sure that your phone number is registered on you user account. Please contact your approver. 6.2. I cannot reach my server through ECS Make sure that correct IP, port and protocol is ordered for your ECS-group. Please contact your approver. 6.3. I cannot reach my server through ECS, even though everything is correct in the ECS-group (IP, port and protocol), and my server is listening on correct port. A DICA may be required in this case, depending on the circumstances. Please contact a delivery coordinator to investigate the need for a DICA request. Also for investigating the correct measure, please contact cs@volvo.com 6.4. I can reach my server through ECS, but cannot login to the server ECS only provides a communication link to the server, not the login. Please contact the server owner to be able to login to the server. Page 11 of 11

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback