SAS Token Validator Proxy Agent Configuration Guide



Similar documents
Configuration Guide. SafeNet Authentication Service. Token Validator Proxy Agent

Remote Logging Agent Configuration Guide

Microsoft IAS and NPS Agent Configuration Guide

SafeNet Authentication Service Token Validator Proxy Agent. Configuration Guide

Configuration Guide. SafeNet Authentication Service. Remote Logging Agent

Configuration Guide. SafeNet Authentication Service AD FS Agent

SafeNet Authentication Manager 8.2 and Windows Azure. Quick Start Guide

Installation Guide. SafeNet Authentication Service

Juniper SSL VPN Authentication QUICKStart Guide

Cisco ASA Authentication QUICKStart Guide

Integration Guide. SafeNet Authentication Service. VMWare View 5.1

LDAP Synchronization Agent Configuration Guide

SafeNet Cisco AnyConnect Client. Configuration Guide

Configuration Guide. SafeNet Authentication Service. SAS Agent for Microsoft Outlook Web Access 1.06

Agent Configuration Guide for Microsoft Windows Logon

Synchronization Agent Configuration Guide

Integration Guide. SafeNet Authentication Service. Using SAS with Web Application Proxy. Technical Manual Template

Integration Guide. SafeNet Authentication Service. SAS Using RADIUS Protocol with Microsoft DirectAccess

Cloud Authentication. Getting Started Guide. Version

Integration Guide. SafeNet Authentication Service. SAS Using RADIUS Protocol with Apache HTTP Server

Integration Guide. SafeNet Authentication Client. Using SAC with Putty-CAC

Configuration Guide. SafeNet Authentication Service. SAS Agent for Microsoft Outlook Web App. Technical Manual Template

SAM Backup and Restore Guide. SafeNet Integration Guide

SAM 8.0 Backup and Restore Guide. SafeNet Integration Guide

Protecting Juniper SA using Certificate-Based Authentication. Quick Start Guide

Microsoft Office 365 Using SAML Integration Guide

Integration Guide. SafeNet Authentication Service. Using SAS as an Identity Provider for Tableau Server

Agent Configuration Guide

Integration Guide. SafeNet Authentication Service. Using SAS as an Identity Provider for Salesforce

Welcome Guide for MP-1 Token for Microsoft Windows

Configuration Guide. SafeNet Authentication Service. SAS Agent for Microsoft Internet Information Services (IIS)

SAM Context-Based Authentication Using Juniper SA Integration Guide

Integration Guide. SafeNet Authentication Client. Using SAC CBA for Check Point Security Gateway

SAS Agent for Outlook Web Access

SafeNet Authentication Service

SafeNet Authentication Service

Integration Guide. SafeNet Authentication Service. Using SAS as an Identity Provider for Drupal

SafeNet Authentication Manager Express. Upgrade Instructions All versions

Sentinel Cloud V.3.5 Installation Guide

Integration Guide. SafeNet Authentication Service. Oracle Secure Desktop Using SAS RADIUS OTP Authentication

Diamond II v2.3 Service Pack 4 Installation Manual

Stellar Phoenix Exchange Server Backup

Integration Guide. SafeNet Authentication Service. Using RADIUS Protocol for Radiator RADIUS Server

Introduction 1-1 Installing FAS 500 Asset Accounting the First Time 2-1 Installing FAS 500 Asset Accounting: Upgrading from a Prior Version 3-1

SafeNet Authentication Service Agent for Windows Logon. Configuration Guide

SAML Authentication Quick Start Guide

Migration Guide. SafeNet Authentication Service. SafeWord/SAMx. Migration Guide: SafeNet Authentication Service. SafeWord/SAMx

Upgrade: SAP Mobile Platform Server for Windows SAP Mobile Platform 3.0 SP02

Patching the Windows 2000 Server Operating System on S8100 Media Servers, IP600 Communications Servers, & DEFNITY ONE Communications Systems

KeyAdvantage System DMS Integration. Software User Manual

Omniquad Exchange Archiving

Upgrade Guide. McAfee Vulnerability Manager Microsoft Windows Server 2008 R2

Pearl Echo Installation Checklist

Batch Eligibility Long Term Care claims

Quick Install Guide. Lumension Endpoint Management and Security Suite 7.1

DESLock+ Basic Setup Guide Version 1.20, rev: June 9th 2014

TSM for Windows Installation Instructions: Download the latest TSM Client Using the following link:

Installation Assistance Windows/Microsoft Updates Updating from Spectra or Upgrading from Spectra 6.x...

Microsoft IIS Integration Guide

ACTi NVR Config Converter User s Manual. Version /06/07

Install SQL Server 2014 Express Edition

4.0 SP2 ( ) May P Xerox FreeFlow Core Installation Guide: Windows Server 2008 R2

SQL Server 2008 R2 Express Edition Installation Guide

Parallels Transporter Agent

FAS Asset Accounting FAS CIP Accounting FAS Asset Inventory SQL Server Installation & Administration Guide Version

Magaya Software Installation Guide

Pro-Watch Software Suite Installation Guide Honeywell Release 4.1

ProSystem fx Document

Cloud Attached Storage

Gemalto SafeNet Minidriver 9.0

SMart esolutions. Install Guide for Xerox SMart esolutions for Windows for Office devices based in Europe. a Xerox remote service platform INSTALL

Installing the BlackBerry Enterprise Server Management Software on an administrator or remote computer

User Guide. CTERA Agent. August 2011 Version 3.0

Premier Installation Guide for SQL Server Administrators

SafeWord Domain Login Agent Step-by-Step Guide

SafeNet Authentication Service

SafeNet Authentication Service

uh6 efolder BDR Guide for Veeam Page 1 of 36

Defender EAP Agent Installation and Configuration Guide

Symantec Backup Exec TM 11d for Windows Servers. Quick Installation Guide

AdminToys Suite. Installation & Setup Guide

Archiving User Guide Outlook Plugin. Manual version 3.1

etoken Single Sign-On

Sage 300 ERP Sage CRM 7.1 Integration Guide

Introduction. Before you begin. Installing efax from our CD-ROM. Installing efax after downloading from the internet

NTP Software QFS for NAS, Hitachi Edition

Interact for Microsoft Office

Table of Contents. Cisco Disabling ICS when Preparing to Install or Upgrade to Cisco VPN Client 3.5.X on Microsoft Windows XP

Millennium Drive. Installation Guide

Sage 300 ERP Sage CRM 7.2 Integration Guide

SAS Agent for Outlook Web App

Strong Authentication for Juniper Networks SSL VPN

Networking Best Practices Guide. Version 6.5

Avalanche Site Edition

PaperClip. em4 Cloud Client. Manual Setup Guide

Strong Authentication for Cisco ASA 5500 Series

Moving PCLaw Data to Another Location (For LexisNexis PCLaw TM version 8.20 and higher)

VERITAS Backup Exec 9.1 for Windows Servers Quick Installation Guide

InventoryControl for use with QuoteWerks Quick Start Guide

Transcription:

SAS Token Validator Proxy Agent Configuration Guide Powerful Authentication Management for Service Providers and Enterprises Authentication Service Delivery Made EASY

Copyright 2014 SafeNet, Inc. All rights reserved. All attempts have been made to make the information in this document complete and accurate. SafeNet, Inc. is not responsible for any direct or indirect damages or loss of business resulting from inaccuracies or omissions. The specifications contained in this document are subject to change without notice. SafeNet and SafeNet Authentication Service are either registered with the U.S. Patent and Trademark Office or are trademarks of SafeNet, Inc., and its subsidiaries and affiliates, in the USA and other countries. All other trademarks referenced in this manual are trademarks of their respective owners. SafeNet hardware and/or software products described in this document may be protected by one or more U.S. patents, foreign patents, or pending patent applications. Please contact SafeNet Support for details of FCC Compliance, CE Compliance, and UL Notification. Support If you encounter a problem while installing, registering or operating this product, please make sure that you have read the documentation. If you cannot resolve the issue, contact your supplier or SafeNet Customer Support. SafeNet Customer Support operates 24 hours a day, 7 days a week. Your level of access to this service is governed by the support plan arrangements made between SafeNet and your organization. Please consult this support plan for further information about your entitlements, including the hours when telephone support is available to you. Contact Method Address Contact Information SafeNet, Inc. 4690 Millennium Drive Belcamp, Maryland 21017 USA Phone United States 1-800-545-6608 International 1-410-931-7520 Email Technical Support Customer Portal support@safenet-inc.com https://serviceportal.safenet-inc.com Existing customers with a Technical Support Customer Portal account can log in to manage incidents, get the latest software upgrades, and access the SafeNet Knowledge Base. 2

Document Part Number: 007-012423-002 Publication History Date Description Revision 2014.03.30 Updates for 3.3.2 release A 2014.03.19 Minor changes Draft 2 2014.02.25 Changed Copyright year, and references to BlackShield where relevant. Draft 1 2013.06.19 Initial release A 2013.12.01 Re-titled for SAS 3.3.1 B 3

Contents Applicability... 5 Environment... 6 Overview... 7 Architecture... 7 Configuring the SafeNet Authentication Service Manager... 8 Installing the Agent... 8 Configuring Token Validator Proxy... 12 Loading and Registering the Key File... 12 Changing Settings after Installation... 13 Token Validator Proxy Logs... 13 4

Applicability The information in this document applies to: SafeNet Authentication Service (SAS) A cloud authentication service of SafeNet Inc. SafeNet Authentication Service Service Provider Edition (SAS-SPE) The software used to build a SafeNet authentication service. SafeNet Authentication Service Private Cloud Edition (SAS-PCE) A term used to describe the implementation of SAS-SPE/PCE. Note: references to BlackShield and CRYPTOCard reflect CRYPTOCard branding prior to acquisition by SafeNet. Over time these references will change to reflect SafeNet branding including program installation locations. Applicability 5

Environment Supported Platforms Windows 2008 SP2 and Windows 2008 R2 Windows 8 Windows 7 Window Vista Windows XP Supported Architecture 32-bit 64-bit Additional Software Components IIS 6 IIS 7 IIS 8 Environment 6

Overview The function of the Token Validator Proxy (TVP) Agent is to implement proxy authentication requests from other agents to SAS. It has two main uses: When working with Network Logon, without TVP you would be required to register each workstation's IP address to SAS and have each workstation communicate directly with SAS. With TVP, each Network Logon agent can be pointed at TVP and only the IP address of their TVP need be registered with SAS. When using SafeNet Authentication Service API with a cloud application such as MS Azure, you cannot be sure of the IP address of the cloud server, nor are you entitled to claim this IP address as your own. To solve this problem you can point your cloud application at the TVP, and register your TVP as their AuthNode. Architecture If each client was to be connected directly to SafeNet Authentication Service, each would require its own IP address to be configured. By using the SafeNet Authentication Service TVP, it needs to be configured just once with the IP address of the SAS AuthNode. Multiple clients can then be connected to SAS through the TVP without further IP addresses being configured. Client 1 SAS (AuthNode) Token Validator Proxy Client 2 Client...n Overview 7

Configuring the SafeNet Authentication Service Manager The SafeNet Authentication Service Manager must be configured as follows: 1. In the SafeNet Authentication Service Manager, select Virtual Servers > COMMS > Auth Nodes 2. Click Add. 3. Add the IP of the TVP computer. 4. Click Apply. Installing the Agent 1. On the TVP computer, run one of the following installation files: SafeNet TokenValidator Proxy x64.exe (64-bit) SafeNet TokenValidator Proxy.exe (32-bit) The Welcome to the InstallShield Wizard for SafeNet Authentication Service TokenValidator Proxy window opens. Configuring the SafeNet Authentication Service Manager 8

2. Click Next The License Agreement window opens. 3. Select I accept the terms in the license agreement and click Next. The Customer Information window opens. 4. Enter the User Name and Organization. Installing the Agent 9

5. Select one of the following to determine who can use the application: Anyone who uses this computer (all users) Only for me 6. Click Next. The Destination Folder window opens. Installing the Agent 10

7. The installation folder is displayed. To change the location click Change and browse to the required location. 8. Click Next. The Authentication Service Setup window opens. 9. Enter the IP address of the SafeNet Authentication Service server. 10. Click Next. The Ready to Install the Program window opens. Installing the Agent 11

11. Click Install to begin installation. When the process has been completed, the InstallShield Wizard Completed window opens 12. Click Finish to exit the installation wizard. Following installation, the SAS Proxied Source Server service is installed on Windows. Configuring Token Validator Proxy Loading and Registering the Key File The Token Validator Proxy (TVP) uses an encrypted key file to communicate with the agents and the authentication server. This ensures all authentication attempts made against the TVP and the server are from valid recognized agents. Loading the Key File The key file must be saved on the client computer and the TVP computer 1. In SAS, select the System tab and download a key file from the Agent Settings section. 2. Using Windows Explorer, change your current working directory to the KeyFile directory by entering "[INSTALLDIR]\KeyFile\" in the address bar, where [INSTALLDIR] represents the installation directory of the TVP. 3. Copy and paste the key file to the KeyFile directory. Configuring Token Validator Proxy 12

Registering the Key File You must register the loaded files 1. In Windows, select start->run, enter regedit, and click OK. 2. Expand HKEY_LOCAL_MACHINE > SOFTWARE > CRYPTOCARD > BlackShield ID > TokenValidatorProxy 3. Double click EncryptionKeyFile 4. In the text box, enter the fully qualified path to the loaded key file that was loaded above. For more details, see the Token Validator Proxy Configuration Notes. To view the Token Validator Proxy Configuration Notes, from the Windows desktop select Start > More Programs > SafeNet >SafeNet Authentication Service > TokenValidator Proxy Configuration Notes Changing Settings after Installation Once installed, the paths to the main SAS server and the backup SAS server can be changed, if required. Main SAS Server Enter the path to the main SAS server in the following registry key: HKEY_LOCAL_MACHINE \SOFTWARE\CRYPTOCard\BlackShield ID\TokenValidatorProxy\PrimaryServiceURL Backup SAS Server Enter the path to the backup SAS server in the following registry key: HKEY_LOCAL_MACHINE \SOFTWARE\CRYPTOCard\BlackShield ID\TokenValidatorProxy\OptionalSecondaryServiceURL Token Validator Proxy Logs TVP logs can be viewed in the Windows Event Viewer. Changing Settings after Installation 13

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information