Assureon Installation Guide Client Certificates. for Version 6.4

Similar documents
Secure IIS Web Server with SSL

S/MIME on Good for Enterprise MS Online Certificate Status Protocol. Installation and Configuration Notes. Updated: November 10, 2011

Step-by-step installation guide for monitoring untrusted servers using Operations Manager

Best Practices for Security Certificates w/ Connect

Using SSL to Secure Client/Server Connections

BROWSER-BASED SUPPORT CONSOLE USER S GUIDE. 31 January 2017

Dohatec CA. Export/Import Procedure etoken Pro 72K FOR USERS OF ETOKENS [VERSION 1.0]

ms-help://ms.technet.2004apr.1033/ad/tnoffline/prodtechnol/ad/windows2000/howto/mapcerts.htm

NBC-IG Installation Guide. Version 7.2

Nimsoft Service Desk. Single Sign-On Configuration Guide. [assign the version number for your book]

Internet Explorer/ Edge/ Chrome/ Opera (Windows) Edition

Microsoft Dynamics GP Web Client Installation and Administration Guide For Service Pack 1

Microsoft ADFS Configuration

About the Citrix Usage Collector (versions 1.0 and 1.0.1)

TIE1.80InstallationGuideUK

AMS Device View Installation Guide. Version 2.0 Installation Guide May 2018

RB Digital Signature Proxy Guide for Reporters

Access SharePoint using Basic Authentication and SSL (via Alternative Access URL) with SP 2016 (v 1.9)

Sending Secure and Encrypted Messages with GroupWise 6.5: User s Guide

SPNEGO SINGLE SIGN-ON USING SECURE LOGIN SERVER X.509 CLIENT CERTIFICATES

Using Hypertext Transfer Protocol over Secure Sockets Layer (HTTPS)

SCCM Plug-in User Guide. Version 3.0

ZENworks Mobile Workspace Installation Guide. September 2017

Media Writer. Installation Guide LX-DOC-MW5.1.9-IN-EN-REVB. Version 5.1.9

Hypertext Transfer Protocol over Secure Sockets Layer (HTTPS)

VMware AirWatch Integration with Microsoft ADCS via DCOM

2012 Peer Small Business Data

Wavecrest Certificate SHA-512

Reconfiguring VMware vsphere Update Manager. Update 1 VMware vsphere 6.5 vsphere Update Manager 6.5

Configuring Secure Communication to Oracle to Import Source and Target Definitions in PowerCenter

Integration Guide. SafeNet Authentication Client. Using SAC CBA for VMware Horizon 6 Client

AccessVia Publishing Platform

Policy Manager for IBM WebSphere DataPower 7.2: Configuration Guide

etoken Integration Guide etoken and ISA Server 2006

Nexsan Assureon 8.2. Product Release Notes for Nexsan Assureon. Release Date: July 2017

Registration and Renewal procedure for Belfius Certificate

StarWind iscsi SAN Software: Using StarWind Tape Redirector and CA ARCserve Backup

Hypertext Transfer Protocol Over Secure Sockets Layer (HTTPS)

Upgrade Guide. NovaBACKUP xsp NovaStor. All Rights Reserved.

AD Enterprise 6.5 Installation & Upgrade Guide Contents

Installing and Configuring vcenter Multi-Hypervisor Manager

VMware Horizon JMP Server Installation and Setup Guide. 13 DEC 2018 VMware Horizon 7 7.7

Workspace ONE UEM Certificate Authority Integration with Microsoft ADCS Using DCOM. VMware Workspace ONE UEM 1811

VMware vrealize Configuration Manager Backup and Disaster Recovery Guide vrealize Configuration Manager 5.8

Installation and Configuration Guide

V1.0 Nonkoliseko Ntshebe October 2015 V1.1 Nonkoliseko Ntshebe March 2018

10ZiG Technology. Thin Desktop Quick Start Guide

SC-T35/SC-T45/SC-T46/SC-T47 ViewSonic Device Manager User Guide

Upgrading the Secure Access Unified ID System to Equitrac Office Equitrac Corporation

Getting Started Guide

Integration Guide. SafeNet Authentication Manager. Using SAM as an Identity Provider for Tableau Server

SecuRemote for Windows 32-bit/64-bit

User guide NotifySCM Installer

Revised: 08/02/ Click the Start button at bottom left, enter Server Manager in the search box, and select it in the list to open it.

Enterprise Vault.cloud CloudLink Google Account Synchronization Guide. CloudLink to 4.0.3

Using SSL/TLS with Active Directory / LDAP

Install Certificate on the Cisco Secure ACS Appliance for PEAP Clients

Lasso Continuous Data Protection Lasso CDP Client Guide August 2005, Version Lasso CDP Client Guide Page 1 of All Rights Reserved.

Metasys Database Manager Installation Instructions Code No. LIT Software Release 9.0 Issued August 2017

Scenarios for Setting Up SSL Certificates for View. Modified for Horizon VMware Horizon 7 7.3

Reconfiguring VMware vsphere Update Manager. 17 APR 2018 VMware vsphere 6.7 vsphere Update Manager 6.7

SOA Software Policy Manager Agent v6.1 for WebSphere Application Server Installation Guide

Enabling Microsoft Outlook Calendar Notifications for Meetings Scheduled from the Cisco Unified MeetingPlace End-User Web Interface

INSTALLATION INSTRUCTIONS Data Management Software Suite

Configuring Windows 7 VPN (Agile) Client for authentication to McAfee Firewall Enterprise v8. David LePage - Enterprise Solutions Architect, Firewalls

HPE Enterprise Integration Module for SAP Solution Manager 7.1

MANUFACTURER RamSoft Incorporated , Adelaide St E Toronto, ON M5C 3E4 CANADA

Shavlik Protect. Upgrade Guide

Dell Storage Compellent Integration Tools for VMware

Configuring Funk Odyssey Software, Avaya AP-3 Access Point, and Avaya

Odette CA Help File and User Manual

Document Signing Certificate Getting Started Guide

SOA Software Intermediary for Microsoft : Install Guide

SAP Business One Integration Framework

Scenarios for Setting Up SSL Certificates for View. VMware Horizon 6 6.0

Quick Start Guide. Takes only a few minutes to read. Quickest way to transfer leads into your ACT! database

Installation Instructions for Free Scheduler Plus Software IBS Show Promotion

VMware Horizon JMP Server Installation and Setup Guide. Modified on 19 JUN 2018 VMware Horizon 7 7.5

KYOCERA Net Viewer User Guide

KYOCERA Device Manager Installation and Upgrade Guide

Integration Guide. SafeNet Authentication Manager. Using SAM as an Identity Provider for SonicWALL Secure Remote Access

Installing the WinSCP Secure FTP Client

GB-OS. Certificate Management. Tel: Fax Web:

Access to RTE s Information System by software certificates under Microsoft Windows 7

SOA Software Policy Manager Agent v6.1 for tc Server Application Server Installation Guide

Configuring Alfresco Cloud with ADFS 3.0

Connect Install Guide

Authentication Services ActiveRoles Integration Pack 2.1.x. Administration Guide

CCH ProSystem fx Engagement. Conversion Guide Version 7.x

Wired Dot1x Version 1.05 Configuration Guide

Microsoft Network Device Enrollment Service

Installation and User Guide Worksoft Certify Content Merge

Managing the SSL Certificate for the ESRS HTTPS Listener Service Technical Notes P/N Rev 01 July, 2012

Novell ZENworks Asset Management 7.5

How to Connect with SSL Network Extender using a Certificate

Prophet 21 Middleware Installation Guide. version 12.16

Installation and Configuration Guide for Visual Voic Release 8.5

SSH Communications Tectia SSH

XLmanage Version 2.4. Installation Guide. ClearCube Technology, Inc.

Configuration Guide. SafeNet Authentication Service. SAS Agent for Microsoft NPS Technical Manual Template

Transcription:

Client Certificates for Version 6.4

Publication info 2011 Nexsan Technologies Canada Inc. All rights reserved. Published by: Nexsan Technologies Canada Inc. 1405 Trans Canada Highway, Suite 300 Dorval, QC. H9P 2V9. CANADA Telephone: 514.683.1020 Fax: 514.683.1554 www.nexsan.com Assureon Installation Guide Certificates Version 6.4 Publication date: August 24, 2011 Trademarks Assureon is a registered trademark of Nexsan Technologies. SATABlade, SATABoy and SATABeast are trademarks of Nexsan Technologies. Microsoft, Microsoft Windows, Microsoft Internet Explorer, Microsoft SQL Server, and Microsoft Visual Studio.NET are registered trademarks of Microsoft Corporation. No part of this document may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying, recording or by any information storage and retrieval system, without prior permission in writing from Nexsan Technologies. The information in this manual is believed to be correct at the time of publication. However, Nexsan Technologies makes no warranty, express or implied, about the accuracy of the information and reserves the right to revise this document or make changes to the products described herein at any time without notice and without obligation. Nexsan Technologies is not liable for any loss of data, damage to databases or other software, or any other losses arising from the use of this manual. 2

Certificates Contents About this guide...4 Audience...4 How to use this guide...4 Prerequisites...4 Overview...5 Create User Certificate...6 Export the user certificate to file.cer file...8 Export the user certificate to file.pfx file...11 Install and Configure User Certificate on client...14 Configure Assureon Client Service to use the certificate...16 Map User Certificate...18 Set Organization Security (ADAM only)...19 3

About this guide This guide contains detailed information on configuring the Assureon client to use certificate authentication. Audience This guide is intended for end-users who with to use digital certificates (which includes ADAM) as their authentication mechanism. Do NOT perform the procedures described in this manual if the customer is using the Windows Trust authentication or anonymous access security mechanisms. How to use this guide This guide is intended to be performed from beginning to end. Prerequisites To perform the procedures described in this guide, you will need an Assureon system where the Windows operating system and Assureon have been installed. In addition, you will need an Assureon client to have been installed. 4

Certificates Overview If a customer is planning to use the digital certificate or ADAM security models, the Assureon client must be configured to use digital certificates. The steps are as follows: Create User certificate and export it (in 2 formats) Map certificates to Assureon users Install certificates on client machines Map certificates to organizations (ADAM only) 5

Create User Certificate A user certificate is used by Assureon to authenticate clients to the server. The user certificate is created on F001 and exported and installed on the client machine. It is also copied and mapped on all Assureon front-ends. If a server goes down, the user can still be authenticated. To create and install a user certificate: 1. On the primary Assureon server (F001), launch IE and point to https://localhost/certsrv to request a user certificate from the Certification Authority. Be careful to use https and not http. 2. If prompted, enter the domain\assureonadmin user and password. 3. Click Request a certificate, then advanced certificate request. 4. Click Create and submit a request to this CA. 5. In the Identifying Information section, specify the following Name for the certificate: Nexsan Authentication Certificate FSWcomputerName. For the other fields, use the customer information. 6. For Type of Certificate Needed, select Client Authentication Certificate. 7. For Key Options, verify that the following are selected: Create new key set CSP: Microsoft Enhanced RSA and AES Cryptographic Provider Key Usage: Both Automatic key container name Key Size: 1024 Mark keys as exportable 8. For Additional Options, verify and specify the following: Request Format: CMC Hash Algorithm: sha1 Friendly Name: type: Nexsan Authentication Certificate FSWcomputerName. This name will appear when selecting the certificate from Assureon Client Services. 9. Click Submit. The Web Access Confirmation dialog is displayed. 10. Click Yes. The Certificate Issued page appears. 11. Click Install this certificate. A Web Access Confirmation dialog is displayed. 6

Certificates 12. Click Yes to install the certificate. The certificate is installed. 7

Export the user certificate to file.cer file The.cer file is used for mapping. 1. Still in IE, click Tools, Internet Options, Content tab, Certificates. The Certificates dialog appears. 2. In the Personal tab, click on the user certificate you just created and click Export. The Welcome to the Certificate Export Wizard appears. 8

Certificates 3. Click Next. The Export Private Key dialog appears. 4. Select No, do not export the private key and click Next. The Export File Format dialog appears. 9

5. Select the DER encoded binary X.509 (.CER) option and click Next. The File to Export dialog appears. 6. Specify a file name and the Assureon Installers location, for example, \\localhost\installers\fswcomputername, and click Next. The Completing the Certificate Export wizard dialog appears. 7. Click Finish. The Export was successful message appears. 8. Click OK. 10

Certificates Export the user certificate to file.pfx file The.p7b file is used for installing the exported certificate on another computer. 1. In the Certificates dialog, click on the user certificate you created and click Export. The Welcome to the Certificate Export Wizard appears. 2. Click Next. The Export Private Key dialog appears. 3. Select Yes, export the private key and click Next. The Export File Format dialog appears. 11

4. Select both the Personal Information Exchange PKCS #12 (.PFX) and Include all certificates in the certification path if possible options. 5. Click Next. The Password dialog appears. 6. Specify a password and click Next. 12

Certificates 7. The File to Export dialog appears. Specify a file name and the Assureon Installers location, for example, \\localhost\installers\fswcomputername, and click Next. The Completing the Certificate Export wizard dialog appears. 8. Click Finish. The Export was successful message appears. 9. Click OK. 10. Close the Certificates dialog. 11. Click OK to close the Internet Options dialog. 13

Install and Configure User Certificate on client To use certificates between the Assureon client and server, the certificate must be installed and configured on the client. Install certificate on client 1. Login to the client as the user who will be running the Assureon client services. The certificate must be installed under the same account or else the certificate cannot be loaded. If you are using ADAM, login as the user who installed ADAM. 2. Launch Windows Explorer and access the Installers folder on the server. 3. Copy the.pfx file certificate you created on page 11 to the client. 4. Right-click the.pfx file and chose Install PFX. The Welcome to the Certificate Import Wizard dialog appears. 5. Click Next. The File to Import dialog appears. 14

Certificates 6. The correct file is already selected, so click Next. 7. Type the password. The only option that should be selected is Include all extended properties. Click Next. 8. Certificate Store dialog appears. Keep the default and click Next. 15

9. The Completing the Certificate Import Wizard dialog appears. Click Finish. A Security Warning appears. 10. Click Yes to install the certificate. The import was successful message appears. 11. Click OK. Configure Assureon Client Service to use the certificate 1. On the client machine, right-click the Client Service Taskbar icon and select Options. 2. Click the Authentication tab. 16

Certificates 3. Select the Use Client Certificate option and then select the Client Certificate called Nexsan Authentication Certificate from the list. 4. Click OK. 5. When prompted to restart the Assureon Client Services (called FSW Monitor, Assureon FSW Service and Assureon Events Manager), click Yes. 6. If you get a warning, click OK. 17

Map User Certificate User certificates must be mapped to an Assureon user account in order to access archived files. For example, a certificate mapped to User1 who is a member of the FSOrganizations, Org1.AssureonUsers and Org1.Assureon.Class1 Assureon security groups will have access to the files stored using the Class1 classification. Perform this procedure on all front-end servers: 1. Copy the.cer file in the installers folder on F001 to the server. 2. Launch the Assureon System Administration console, and click Advanced, IIS Administration. 3. In the Certificate Mapping area, click Browse and open the user certificate file (.cer) you copied from the F001 installers folder. 4. Type a Mapping Name, and then specify a user and password that is a member of one or more Assureon Active Directory classifications. Typically, if files are stored and read by an application, such as an email archive, the AssureonEdge account is used. Note: include the domain name in the Account field. 5. Click Add. The mapping is added to the table. 18

Certificates Set Organization Security (ADAM only) If you are using the ADAM security model, you must also map a certificate to an organization. On F001 and F101 (if applicable) only: 1. Launch the Assureon System Administration console, and click Advanced, IIS Administration. 2. In the Certificate Mapping area, use your mouse to select the certificate serial number you want to associate to an organization. 3. Press Ctrl-C to copy the serial number. 4. In the System Administration console, click the Organization Security tab. The Organization Security page is displayed. 5. Select an Organization. 6. Click in the Certificate Serial Number box and press Ctrl-V to paste the serial number. 7. Click Add. The table is refreshed with the new mapping. 19

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback