White Paper. Fabasoft Folio Cross-Domain License Check. Fabasoft Folio 2015 Update Rollup 2



Similar documents
White Paper. Fabasoft Folio Thin Client Support. Fabasoft Folio 2015 Update Rollup 2

White Paper. Configuration of Fabasoft Folio Printer Ports. Fabasoft Folio 2015 Update Rollup 2

White Paper. Installation and Configuration of Fabasoft Folio IMAP Service. Fabasoft Folio 2015 Update Rollup 3

White Paper. Deployment of ActiveX Controls via Microsoft Windows Active Directory. Fabasoft Folio 2015 Update Rollup 2

White Paper. Fabasoft on Linux Performance Monitoring via SNMP. Fabasoft Folio 2015 Update Rollup 2

White Paper. Creation of Online Help for Fabasoft Folio. Fabasoft Folio 2015 Update Rollup 2

White Paper. Fabasoft app.test Load Testing. Fabasoft app.test 2015 Update Rollup 2. Fabasoft app.test Load Testing 1

White Paper. Fabasoft on Linux Cluster Support. Fabasoft Folio 2015 Update Rollup 2

White Paper. Fabasoft on Linux - Preparation Guide for Community ENTerprise Operating System. Fabasoft Folio 2015 Update Rollup 2

How To Install Ctera Agent On A Pc Or Macbook With Acedo (Windows) On A Macbook Or Macintosh (Windows Xp) On An Ubuntu (Windows 7) On Pc Or Ipad

NAS 206 Using NAS with Windows Active Directory

How-to: Single Sign-On

Parallels Plesk Panel

How To Configure CU*BASE Encryption

Configuration Task 3: (Optional) As part of configuration, you can deploy rules. For more information, see "Deploy Inbox Rules" below.

Integration Package for Microsoft Office SharePoint3

Mixed Authentication Setup

Laserfiche Web Access 8 and Kerberos Configuration in a Windows Server 2008 and IIS 7 Environment. White Paper

BusinessObjects Enterprise XI Release 2

DriveLock Quick Start Guide

Security Assertion Markup Language (SAML) Site Manager Setup

White Paper. Fabasoft Folio Environment Variables. Fabasoft Folio 2015 Update Rollup 2

Automating client deployment

Using Internet or Windows Explorer to Upload Your Site

Domain Controller Failover When Using Active Directory

Enabling Kerberos SSO in IBM Cognos Express on Windows Server 2008

Application Note. ShoreTel 9: Active Directory Integration. Integration checklist. AN June 2009

CLEO NED Active Directory Integration. Version 1.2.0

Deploying Remote Desktop Connection Broker with High Availability Step-by-Step Guide

Smart Policy - Web Collector. Version 1.1

Install SQL Server 2014 Express Edition

Improving Performance of Microsoft CRM 3.0 by Using a Dedicated Report Server

Using Entrust certificates with Microsoft Office and Windows

Entrust Managed Services PKI

Administering the Web Server (IIS) Role of Windows Server

Optimization in a Secure Windows Environment

Monitoring Oracle Enterprise Performance Management System Release Deployments from Oracle Enterprise Manager 12c

TopEase Single Sign On Windows AD

ACS 5.x and later: Integration with Microsoft Active Directory Configuration Example

Monitor Print Popup for Mac. Product Manual.

Integration with Active Directory

Configuring IBM Cognos Controller 8 to use Single Sign- On

Microsoft Dynamics GP Release

Windows SharePoint Services Installation Guide

How to Configure Microsoft System Operation Manager to Monitor Active Directory, Group Policy and Exchange Changes Using NetWrix Active Directory

Entrust Managed Services PKI. Configuring secure LDAP with Domain Controller digital certificates

INTEGRATION GUIDE. General Radius Config

PowerLink for Blackboard Vista and Campus Edition Install Guide

Table of Contents. Cisco Unable to Access Productivity Services from Services on Cisco IP Phone

How To- Create Local Account and Active Directory Authentication EventTracker Enterprise

NETWRIX ACCOUNT LOCKOUT EXAMINER

Desktop Web Access Single Sign-On Configuration Guide

RoomWizard Synchronization Software Manual Installation Instructions

Creating IBM Cognos Controller Databases using Microsoft SQL Server

SWCS 4.2 Client Configuration Users Guide Revision /26/2012 Solatech, Inc.

Sophos SafeGuard Native Device Encryption for Mac quick startup guide. Product version: 7

WatchDox for Windows. User Guide. Version 3.9.5

SafeGuard Enterprise Web Helpdesk. Product version: 6 Document date: February 2012

How To Set Up Chime For A Coworker On Windows (Windows) With A Windows 7 (Windows 7) On A Windows 8.1 (Windows 8) With An Ipad (Windows).Net (Windows Xp

NTP Software File Auditor for Windows Edition

Installation Guide. . All right reserved. For more information about Specops Inventory and other Specops products, visit

SafeGuard Enterprise Web Helpdesk. Product version: 6.1

Veritas Cluster Server Database Agent for Microsoft SQL Configuration Guide

Administering the Web Server (IIS) Role of Windows Server 10972B; 5 Days

Active Directory Solution 1.0 Guide

Enterprise Vault Installing and Configuring

Operating System Installation Guide

Office365Mon Developer API

Connector for Microsoft Dynamics Configuration Guide for Microsoft Dynamics SL

Use Enterprise SSO as the Credential Server for Protected Sites

Creating and Issuing the Workstation Authentication Certificate Template on the Certification Authority

Management Reporter Integration Guide for Microsoft Dynamics GP

Configuring Single Sign-on from the VMware Identity Manager Service to Dropbox

Web Work Module User s Guide

Microsoft Dynamics GP. Workflow Installation Guide Release 10.0

Setting Up Scan to SMB on TaskALFA series MFP s.

SafeGuard Enterprise Web Helpdesk

Windows Domain Network Configuration Guide

Check Point FDE integration with Digipass Key devices

NetBackup Backup, Archive, and Restore Getting Started Guide

Rebasoft Auditor Quick Start Guide

ProgressBook CentralAdmin User Guide

WirelessOffice Administrator LDAP/Active Directory Support

Using Microsoft Windows Authentication for Microsoft SQL Server Connections in Data Archive

Configuring Single Sign-on from the VMware Identity Manager Service to AirWatch Applications

Endpoint Security Console. Version 3.0 User Guide

PaperStream Connect. Setup Guide. Version Copyright Fujitsu

Configuring Active Directory with AD FS and SAML for Brainloop Secure Dataroom Setup Guide

Unity Error Message: Your voic box is almost full

Active Directory Adapter with 64-bit Support Installation and Configuration Guide

CRM to Exchange Synchronization

Metalogix SharePoint Backup. Advanced Installation Guide. Publication Date: August 24, 2015

Configuring Multiple ACE Management Servers VMware ACE 2.0

Web Deployment on Windows 2012 Server. Updated: August 28, 2013

Approved SCOM Health Check Report Installation Guide

Lepide Exchange Recovery Manager

Configuring Controller 8.2 to use Active Directory authentication

Transcription:

White Paper Fabasoft Folio Cross-Domain License Check Fabasoft Folio 2015 Update Rollup 2

Copyright Fabasoft R&D GmbH, Linz, Austria, 2015. All rights reserved. All hardware and software names used are registered trade names and/or registered trademarks of the respective manufacturers. No rights to our software or our professional services, or results of our professional services, or other protected rights can be based on the handing over and presentation of these documents. Fabasoft Folio Cross-Domain License Check 2

Contents 1 Introduction 4 2 Software Requirements 4 3 Requirements 4 4 Functionality of the Cross-Domain License Check 4 5 Configuration 5 5.1 Fabasoft Folio Web Services 5 5.2 Fabasoft Folio Domain With the Imported Licenses of All Users (Main Domain) 6 5.3 Other Fabasoft Folio Domains 6 6 License Update of Existing Fabasoft Folio Domains 7 7 Installation of New Fabasoft Folio Domains 7 Fabasoft Folio Cross-Domain License Check 3

1 Introduction This document describes the functionality and configuration of the cross-domain license check. The cross-domain license check enables centralized management of Fabasoft Folio licenses. 2 Software Requirements System environment: All information contained in this document implicitly assumes a Microsoft Windows environment. Supported platforms: For detailed information on supported operating systems and software see the software product information on the Fabasoft distribution media. Note: The cross-domain license check is supported in Fabasoft products from version 6.0 Production. All participating Fabasoft Folio domains have to carry this or a later version. The version-independent cross-domain license check is supported in Fabasoft products from version 6.1 Production. All participating Fabasoft Folio domains have to carry this or a later version. 3 Requirements The use of cross-domain license check is possible from an installation of two Fabasoft Folio domains. Thereby one of the Fabasoft Folio domains in which the license for all registered users and hardware units is imported is used as main domain. The license check for all further Fabasoft Folio domains and any existing clients is done via this main domain. In the main domain at least one Fabasoft Folio web service has to be available. All Fabasoft Folio users within the network of the cross-domain license check must also be created in the main domain as a User. In the other Fabasoft Folio domains for the Microsoft Windows user account under which the Fabasoft Folio web services are running Trust this user for delegation to any service (Kerberos only) must be selected. The authentication has to be done via Kerberos. The cross-domain license check is only available for a Microsoft Windows system environment. 4 Functionality of the Cross-Domain License Check The Fabasoft Folio license is read by the other Fabasoft Folio domains using a Fabasoft Folio web service by means of the Check and retrieve product license information (COOSWCLM@1.1:GetProductLicenseInfo) action and is stored to objects of the Cached Software Product License (COOSWCLM@1.1:CachedLicense) object class. An object of this object class contains the license information for a licensed software product. For a Registered User license these objects are stored in the Cached User Licenses (COOSWCLM@1.1:usercachedlics) object pointer property for backward chaining. For a Workstation license these objects are stored in the Cached Workstation Licenses (COOSWCLM@1.1:wscachedlics) object pointer property for backward chaining. These so-fetched licenses are recognized in the main domain to the user or the workstation, as if the user would work directly with the main domain. Fabasoft Folio Cross-Domain License Check 4

The license information will be used in the corresponding Fabasoft Folio domains until they expire. This happens, for example when crossing the effective date, or by manipulation of contents or key. An invalid license is automatically replaced by a new license (if available) from the main domain. 5 Configuration 5.1 Fabasoft Folio Web Services For proper licensing of a user, the user has to be authenticated by the Fabasoft Folio web service of the main domain. If Fabasoft Folio web services are used in the further Fabasoft Folio domains that delegation must be enabled for these. Necessary configuration settings on the Microsoft Windows Active Directory domain controller: 1. Click Start > Administrative Tools > Active Directory Users and Computers. 2. Navigate to the Users folder of the corresponding Microsoft Windows domain. 3. Open the properties of the user account that is used for running the Fabasoft Folio web services and the application pool. 4. On the Delegation tab, select Trust this user for delegation to any service (Kerberos only). Then the Service Principal Name for the user under which the Fabasoft Folio web services are running has to be set. This determines that this user may be used as a service user on the specified computers. 1. On the Microsoft Windows Active Directory domain controller install the setspn.exe command line tool. 2. Enter in the command line the following command, where FQDNServerMachine is the fully qualified domain name of the computer where the Fabasoft Folio web services are installed. ServiceUser is the Microsoft Windows domain user account. Fabasoft Folio Cross-Domain License Check 5

setspn.exe A HTTP/<FQDNServerMachine> <ServiceUser> Note: The fully qualified domain name of the computer has to be used, not the NetBIOS name. 5.2 Fabasoft Folio Domain With the Imported Licenses of All Users (Main Domain) In the COOSWCLMD@1.1:LicensingConfig configuration object of the main domain is determined, which Fabasoft Folio domains and Fabasoft Folio clients are allowed to read license information from this Fabasoft Folio domain. 1. In the Domain Administration click "Configuration Objects" and edit the properties of the COOSWCLMD@1.1:LicensingConfig configuration object. 2. Let the URL of Licensing Service area empty. In the Licensed Domains box, enter all Fabasoft Folio domain IDs which are intended for the cross-domain license check, except the main domain. Additionally a locally created software component has to be specified, so that the settings will not be lost by an update. Note: All Fabasoft Folio users in the network of the cross-domain license check also have to be created in the main domain as a User. 5.3 Other Fabasoft Folio Domains When in the COOSWCLMD@1.1:LicensingConfig configuration object of a Fabasoft Folio domain a URL of Licensing Service is entered, the mechanism of the cross-domain license check is used. 1. Enter in the URL of Licensing Service box the URL of a Fabasoft Folio web service of the main domain. Additionally a locally created software component has to be specified, so that the settings will not be lost by an update. 2. For a user, on the Advanced tab, using the Check License Locally option can be defined, if for this user a local license check is done. Result, this user can log in, even if the cross-domain license check is not available. For this purpose, a local valid license must be available. This setting should be made for the system administrator to allow access to the system in an Fabasoft Folio Cross-Domain License Check 6

emergency. 6 License Update of Existing Fabasoft Folio Domains For existing Fabasoft Folio domains the license for the main domain has to be imported to the main domain. Additionally the licenses for the other Fabasoft Folio domains have to be imported to the corresponding domains. They serve as collateral, so that an administrator can log in, even if the cross-domain license check is not available. Note: Make sure, the Fabasoft Folio domains are configured for cross-domain license check (see chapter 5 Configuration ). 7 Installation of New Fabasoft Folio Domains For the installation process of a new Fabasoft Folio domain or for creating a Fabasoft Folio client a separate license is required. This license is used for defining the domain ID and it allows a single user to access the Fabasoft Folio domain. To make the Fabasoft Folio domain generally accessible for users, the appropriate configuration settings for the cross-domain license check are necessary (see chapter 5 Configuration ). Fabasoft Folio Cross-Domain License Check 7