Remote Logging Agent Configuration Guide Powerful Authentication Management for Service Providers and Enterprises Authentication Service Delivery Made EASY
Synchronization Agent Configuration Guide Copyright 2013 SafeNet, Inc. All rights reserved. All attempts have been made to make the information in this document complete and accurate. SafeNet, Inc. is not responsible for any direct or indirect damages or loss of business resulting from inaccuracies or omissions. The specifications contained in this document are subject to change without notice. SafeNet and SafeNet Authentication Service are either registered with the U.S. Patent and Trademark Office or are trademarks of SafeNet, Inc., and its subsidiaries and affiliates, in the United States and other countries. All other trademarks referenced in this Manual are trademarks of their respective owners. SafeNet Hardware and/or Software products described in this document may be protected by one or more U.S. Patents, foreign patents, or pending patent applications. Please contact SafeNet Support for details of FCC Compliance, CE Compliance, and UL Notification. Support SafeNet technical support specialists can provide assistance when planning and implementing SafeNet Authentication Service. In addition to aiding in the selection of the appropriate authentication products, SafeNet can suggest deployment procedures that will provide a smooth, simple transition from existing access control systems and a satisfying experience for network users. We can also help you leverage your existing network equipment and systems to maximize your return on investment. SafeNet works closely with channel partners to offer worldwide Technical Support services. If you purchased this product through a SafeNet channel partner, please contact your partner directly for support needs. To contact SafeNet Authentication Service support directly: Europe / EMEA Freephone: Telephone: 0800 694 1000 (UK) +44 (0)1276 608 000 (Int l) North America Toll Free: 800-307-7042 Telephone: +1 613 599 2441 E-mail: sassupport@safenet-inc.com E-mail: sassupport@safenet-inc.com 2
Publication History Date Description Revision 2013.05.31 Initial release 1.0 3
Synchronization Agent Configuration Guide Contents Applicability... 5 Environment... 6 Overview... 7 Configuring the SafeNet Authentication Service Manager... 8 Installing the Agent... 9 Configuring the Agent... 14 4
Synchronization Agent Configuration Guide Applicability The information in this document applies to: SafeNet Authentication Service (SAS) A cloud authentication service of SafeNet Inc. SafeNet Authentication Service Service Provider Edition (SAS-SPE) The software used to build a SafeNet authentication service. SafeNet Authentication Service Private Cloud Edition (SAS-PCE) A term used to describe the implementation of SAS-SPE on-premise. Note: references to BlackShield and CRYPTOCard reflect CRYPTOCard branding prior to acquisition by SafeNet. Over time these references will change to reflect SafeNet branding including program installation locations. Applicability 5
Environment Supported Platforms Windows 2008 SP2 and Windows 2008 R2 Windows 7 Supported Architecture 32-bit 64-bit Additional Software Components IIS 7 Network Port TCP Port 8459 (outbound) TCP Port 8458 (inbound) UDP Port 514 (syslog only optional) Environment 6
Overview SafeNet Authentication Server logs are generated on the service providers servers. SafeNet Authentication Server Remote Logging Agent sends the information displayed in the SafeNet Authentication Service Manager Snapshot window and operator activity information (if configured) and sends it to a receiving agent on n the vendor s local computer, where it can be displayed in the event viewer, syslog or log file. Overview 7
Configuring the SafeNet Authentication Service Manager The SafeNet Authentication Service Manager must be configured as follows: 1. In the SafeNet Authentication Service Manager, select Virtual Servers>Communications. 2. Enter the Authentication Server IP and the Port (default 8459). 3. Click Apply. The following steps (#4, #5, #6) are optional. The agent will be automatically added when you load the bmc file (see Configuring the Agent, page 14). 4. Under Authentication Processing click Logging Agent. 5. Enter the IP address of the vendor s remote computer and click Apply. A new row is created displaying the IP address. Configuring the SafeNet Authentication Service Manager 8
6. Click Add. 7. Click Download. A bmc file is created. 8. Copy the bmc file to the remote (vendor s) computer. Installing the Agent 1. On the remote (vendor s) computer, run the one of the following installation files: SafeNet Authentication Service Logging Agent x64.exe n (64-bit) SafeNet Authentication Service Logging Agent.exe (32-bit) Installing the Agent 9
The Welcome to the InstallShield Wizard for SafeNet Logging Agent window opens. Installing the Agent 10
2. Click Next The License Agreement window opens. 3. Select I accept the terms in the license agreement and click Next. The Customer Information window opens. 4. Enter the User Name and Organization. Installing the Agent 11
5. Select one of the following to determine who can use the application: Anyone who uses this computer (all users) Only for me 6. Click Next. The Destination Folder window opens. 7. The installation folder is displayed. To change the location click Change and browse to the required location. 8. Click Next. The Ready to Install the Program window opens. 9. Click Install to begin installation. Installing the Agent 12
When the process has been completed, the InstallShield Wizard Completed window opens 10. Click Finish to exit the installation wizard.. Installing the Agent 13
Configuring the Agent Note: The following ports are used on the Logging Agent computer: Port 8458 Inbound traffic Port 8459 Outbound traffic To configure the agent: 1. Select Start>All Programs>SafeNet>Agents>Logging Agent. The SafeNet Authentication Service Logging Agent opens. 2. In the Current Organization section, click the Add button. Browse to the location of the LoggingAgentConfigFile.bmc and load the file. The Current Organization section will update showing information about your Virtual Server. Configuring the Agent 14
3. Select the Configuration tab. 4. From the Message Type dropdown list select one of the following: Authentication Message Operator Authentication Message. 5. From the Configuration Send To dropdown list select one of the following: File Event Viewer Syslog Configuring the Agent 15
6. If you selected File, do the following: a. Browse to the folder. b. Enter the required delimiter (it is a CVS file). c. Click Apply. d. To test, click Test and open the CVS file. Configuring the Agent 16
7. If you selected Event Viewer, do the following: a. In the source field select SafeNet Authentication Service Logging Agent. b. Click Apply. c. To test, click Test and open the Event Viewer. Configuring the Agent 17
8. If you selected syslog, do the following: a. In the Primary field enter the IP:Port of the Syslog server. b. In the Secondary field, enter the IP:Port of the secondary (backup) Syslog server, if required. c. Click Apply. d. To test, click Test and open the Syslog. Configuring the Agent 18