HELP DOCUMENTATION E-SSOM DEPLOYMENT GUIDE



Similar documents
SELF SERVICE RESET PASSWORD MANAGEMENT GPO DISTRIBUTION GUIDE

HELP DOCUMENTATION E-SSOM INSTALLATION GUIDE

HELP DOCUMENTATION E-SSOM BACKUP AND RESTORE GUIDE

SELF SERVICE RESET PASSWORD MANAGEMENT BACKUP GUIDE

Create, Link, or Edit a GPO with Active Directory Users and Computers

SELF SERVICE RESET PASSWORD MANAGEMENT CREATING CUSTOM REPORTS GUIDE

SafeWord Domain Login Agent Step-by-Step Guide

SELF SERVICE RESET PASSWORD MANAGEMENT DATABASE REPLICATION GUIDE

HELP DOCUMENTATION E-SSOM BACKUP AND RESTORE GUIDE

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

4cast Client Specification and Installation

Distributing SMS v2.0

Sharpdesk V3.5. Push Installation Guide for system administrator Version

ACTIVE DIRECTORY DEPLOYMENT

Password Manager Windows Desktop Client

PASSWORD COMPLEXITY MANAGER ADMINISTRATOR'S GUIDE

HELP DOCUMENTATION SSRPM CITRIX AND MICROSOFT TERMINAL SERVICES

ContentWatch Auto Deployment Tool

DriveLock Quick Start Guide

Sophos Anti-Virus for NetApp Storage Systems startup guide

Sophos Anti-Virus for NetApp Storage Systems user guide. Product version: 3.0

Using Group Policies to Install AutoCAD. CMMU 5405 Nate Bartley 9/22/2005

ENABLE LOGON/LOGOFF AUDITING

Wavecrest Certificate

Test Note Phone Manager Deployment Windows Group Policy Sever 2003 and XP SPII Clients

Install the Production Treasury Root Certificate (Vista / Win 7)

DeviceLock Management via Group Policy

Setting Up Peak Performance Group Policies

Sophos Anti-Virus for NetApp Storage Systems startup guide. Runs on Windows 2000 and later

SELF SERVICE RESET PASSWORD MANAGEMENT IMPLEMENTATION GUIDE

Outpost Network Security

DigitalPersona Pro Server for Active Directory v4.x Quick Start Installation Guide

Upgrading from MSDE to SQL Server 2005 Express Edition with Advanced Services SP2

Installing Client GPO Software

Installation Guide. . All right reserved. For more information about Specops Inventory and other Specops products, visit

HELP DOCUMENTATION SSRPM WEB INTERFACE GUIDE

Deployment of Keepit for Windows

TECHNICAL DOCUMENTATION SPECOPS DEPLOY / APP 4.7 DOCUMENTATION

Digipass Plug-In for IAS. IAS Plug-In IAS. Microsoft's Internet Authentication Service. Installation Guide

SELF SERVICE RESET PASSWORD MANAGEMENT WEB INTERFACE GUIDE

Promap V4 ActiveX MSI File

Pearl Echo Installation Checklist

SSL Intercept Mode. Certificate Installation Guide. Revision Warning and Disclaimer

DeviceLock Management via Group Policy

Administration Guide. . All right reserved. For more information about Specops Deploy and other Specops products, visit

Installation Manual (MSI Version)

SQL Server Setup for Assistant/Pro applications Compliance Information Systems

SELF SERVICE RESET PASSWORD MANAGEMENT ADMINISTRATOR'S GUIDE

Active Directory Software Deployment

SELF SERVICE RESET PASSWORD MANAGEMENT CITRIX AND MICROSOFT TERMINAL SERVICES

Diamond II v2.3 Service Pack 4 Installation Manual

How to Configure a Secure Connection to Microsoft SQL Server

Cyclope Internet Filtering Proxy

Installation Notes for Outpost Network Security (ONS) version 3.2

Windows Firewall Configuration with Group Policy for SyAM System Client Installation

Symantec Endpoint Encryption Full Disk

Lab A: Deploying and Managing Software by Using Group Policy Answer Key

Specops Command. Installation Guide

NETWRIX WINDOWS SERVER CHANGE REPORTER

User Management Tool 1.5

Cloud Attached Storage

Use 802.1x EAP-TLS or PEAP-MS-CHAP v2 with Microsoft Windows Server 2003 to Make a Secure Network

HELP DOCUMENTATION E-SSOM CONFIGURATION GUIDE

Universal Management Service 2015

User Management Resource Administrator. UMRA Example Projects. Service Management

Configuring File Servers and Active Directory with Domain Services for Windows-Lab

Alpha High Level Description

Browser-based Support Console

Tenrox. Single Sign-On (SSO) Setup Guide. January, Tenrox. All rights reserved.

XenDesktop Implementation Guide

How To - Implement Single Sign On Authentication with Active Directory

How To Enable A Websphere To Communicate With Ssl On An Ipad From Aaya One X Portal On A Pc Or Macbook Or Ipad (For Acedo) On A Network With A Password Protected (

IIS, FTP Server and Windows

ProSystem fx Document

STATISTICA VERSION 9 STATISTICA ENTERPRISE INSTALLATION INSTRUCTIONS FOR USE WITH TERMINAL SERVER

NSi Mobile Installation Guide. Version 6.2

MailStore Outlook Add-in Deployment

Aspera Connect User Guide

LepideAuditor Suite for File Server. Installation and Configuration Guide

Check Point FDE integration with Digipass Key devices

Creating and Issuing the Workstation Authentication Certificate Template on the Certification Authority

Thirtyseven4 Endpoint Security (EPS) Upgrading Instructions

Portions of this product were created using LEADTOOLS LEAD Technologies, Inc. ALL RIGHTS RESERVED.

MadCap Software. Upgrading Guide. Pulse

For Active Directory Installation Guide

Setting Up SSL on IIS6 for MEGA Advisor

SafeNet Authentication Manager Express. Upgrade Instructions All versions

Report Designer and Report Designer Add-In Installation Guide Version 1.0

Installing Windows Rights Management Services with Service Pack 2 Step-by- Step Guide

Connection and Printer Setup Guide

Installation Guide. . All right reserved. For more information about Specops Deploy and other Specops products, visit

How To Configure CU*BASE Encryption

How To Set Up A Vpn Tunnel Between Winxp And Zwall On A Pc 2 And Winxp On A Windows Xp 2 On A Microsoft Gbk2 (Windows) On A Macbook 2 (Windows 2) On An Ip

TROUBLESHOOTING GUIDE

How To Install Ctera Agent On A Pc Or Macbook With Acedo (Windows) On A Macbook Or Macintosh (Windows Xp) On An Ubuntu (Windows 7) On Pc Or Ipad

User Management Tool 1.6

Remedy ITSM Service Request Management Quick Start Guide

Technical Reference: Deploying the SofTrack MSI Installer

Transcription:

HELP DOCUMENTATION E-SSOM DEPLOYMENT GUIDE

Copyright 1998-2013 Tools4ever B.V. All rights reserved. No part of the contents of this user guide may be reproduced or transmitted in any form or by any means without the written permission of Tools4ever. DISCLAIMER - Tools4ever will not be held responsible for the outcome or consequences resulting from your actions or usage of the informational material contained in this user guide. Responsibility for the use of any and all information contained in this user guide is strictly and solely the responsibility of that of the user. All trademarks used are properties of their respective owners.

Contents 1. Introduction 1 2. Installation via GPO 2 2.1. Step 1... 2 2.2. Step 2... 2 2.3. Step 3... 3 2.4. Step 4... 7 3. Upgrading 7 4. Uninstalling 9 5. Index 10 Copyright Tools4ever 1998-2013 i

1. Introduction Enterprise Single Sign On Manager (from here on the abbreviation 'E-SSOM' will be used is an organization-wide Single Sign-On software solution enabling end-users to log in just once, after which access is granted automatically to all the authorized network applications and resources. E-SSOM operates as an extra software layer intercepting all log-in processes and completing the details automatically. E-SSOM is divided into three main software components, knowingly: The E-SSOM Admin Console The E-SSOM Central Service (with the E-SSOM Database) The E-SSOM User Client Software The installation of E-SSOM consists of the following steps: The installation of the E-SSOM Admin Console, the E-SSOM Service and finally the E-SSOM User Client Software. The E-SSOM User Client Software must be installed on each client workstation of all end-users which will use E-SSOM. Instead of installing the software manually on the client workstations separately, it can be distributed and installed automatically on all client workstations, see the figure below: This can be accomplished by using a so-called Group Policy Object or GPO, and can save a lot of time (especially with larger networks). The E-SSOM User Client Software can be upgraded and removed centrally by using the same GPO as well. This document describes how the E-SSOM User Client Software can be installed, upgraded and removed automatically from the client computers in your network by using a GPO. Copyright Tools4ever 1998-2013 1

2. Installation via GPO The installation of the E-SSOM User Client Software by using a GPO consists of the following main steps: 1. Install and configure the E-SSOM Admin Console and E-SSOM Service. 2. Create an installation share for the GPO. 3. Create the GPO. 4. Install E-SSOM User Client Software automatically. 2.1. Step 1 First of all, E-SSOM must be installed by running the E-SSOM setup executable (called: 'SetupSSO.exe'), which is available for download from the Tools4ever website http://www.tools4ever.com. This executable contains all the needed E-SSOM Software Components, knowingly: the E-SSOM Admin Console, the E-SSOM Central Service and the E-SSOM User Client Software. When the download is finished you must run 'SetupSSO.exe', which will start the E-SSOM Setup Wizard. This wizard will guide you through the installation process of E-SSOM, which only installs the E-SSOM Admin Console by default. Once you've finished the installation of E-SSOM, you must start the E-SSOM Admin Console to install and configure the E-SSOM Central Service with the E-SSOM Central Service Installation Wizard. See the "Installation Guide" for more information, of which the latest version is available on the Tools4ever website http://www.tools4ever.com. 2.2. Step 2 To allow the installation of the E-SSOM User Client Software via a GPO, an installation share is needed on which the E-SSOM User Client Software installer package ('SSOUserClientSoftware.msi') will be placed. This package installs among other things the E-SSOM Client Service, the SSO Browser Helper Object, the SSO Hook and the SSO Client User Interface. The default location of this file is: 'C:\Program Files\Tools4ever\SSO\Admin Console\SSO Client Software'. The share must be available for all computers on which the E-SSOM User Client Software must be installed. Perform the steps below to create the installation share: 1. Create a directory (for instance: 'C:\EndUserSoftware\ESSOM') and copy the 'SSOUserClientSoftware.msi' (which is located by default at: 'C:\Program Files\Tools4ever\SSO\Admin Console\SSO Client Software') to this directory. 2. Right click on the created directory and click on 'Properties'. 3. Select the 'Sharing' tab. 4. Select the 'Share this folder' radio button. 5. Enter the name of the new share (for instance: 'E-SSOM'). 6. Click on the 'Permissions' button. 7. Verify that the 'Everyone' group has read permissions. 8. Click on 'OK'. 9. Select the 'Security tab'. 10. Verify that the 'Everyone' group has read permissions. 11. Click on 'OK'. Copyright Tools4ever 1998-2013 2

2.3. Step 3 When you've successfully created the installation share for the GPO, you can create the GPO, which distributes and installs the E-SSOM User Client Software through your network. This section describes how to create this GPO. Perform the steps below to create the GPO: 1. Open the 'Group Policy Management' MMC snap-in. 2. Select the domain and then choose 'Group Policy Objects'. Right click and choose 'New' to create a new GPO. Note: It is possible to edit an existing policy instead, but preferable a new GPO should be used. 3. Enter the name for the new GPO (for instance: 'E-SSOM Distribution Policy'). 4. Select the new GPO policy and click on the 'Edit' button. The 'Group Policy Object Editor' MMC snap-in will be displayed, in which all computer and user policy settings for the current GPO can be configured. 5. Expand the 'Software Settings' item in the 'Computer Configuration' branch. 6. Right click on the 'Computer Configuration -> Software Settings -> Software Installation' item and click 'New -> Package ' to create a new software installation package. 7. Browse to the share created before and select the 'SSOUserClientSoftware.msi' package. Warning: Do not browse to the local directory (for instance: 'C:\EndUserSoftware\ESSOM'), but to the share (for instance: '\\SERVER_A\ESSOM'). If you select the local directory, the package will not be available to the clients in the network. Please note: Do not use an IP address in the share. This wil often cause the installation on the clients to fail. Copyright Tools4ever 1998-2013 3

8. Click on 'OK'. You will be presented with the 'Deploy Software' window: 9. Select the 'Assigned' radio button and click on 'OK'. The 'SSOUserClientSoftware.msi' package will be installed automatically when the GPO has been attached to an OU or domain. 10. Right click on the new package and select 'Properties' from the menu. 11. Edit the name for the package so that it can be easily identified (For instance: 'E-SSOM Version 3.30 build 1085') and click on 'OK'. 12. Right click on the 'Administrative Templates' in the 'Computer Configuration' branch. 13. Select 'Add/Remove templates ' from the menu. 14. Click on 'Add...'. 15. Browse to the location of the E-SSOM Administrative Template file ('SSOClientSettings.adm'), which is used by the GPO to configure several E-SSOM settings (the default location of this file is: 'C:\Program Files (x86)\tools4ever\sso\admin Console\SSO Client Software'). Click on 'Open'. Note: The E-SSOM Administrative Template file ('SSOClientSettings.adm') does not need to be copied to the share (like with the installed package: 'SSOUserClientSoftware.msi'). 16. Click on 'Close'. 17. Expand the 'Administrative templates' item in the 'Computer Configuration' branch. Copyright Tools4ever 1998-2013 4

18. Select the 'Computer Configuration -> Administrative templates -> Classic Administrative templates -> E-SSOM User Client Software' item. This will show all GPO registry settings (see the figure below), which can be defined to configure the E-SSOM User Client Software centrally. Copyright Tools4ever 1998-2013 5

19. For the minimal configuration of the E-SSOM User Client Software, it is required to configure the 'E-SSOM Service Location' GPO setting, so that all installed E-SSOM User Client Software will connect automatically to the E-SSOM Central Service. Double click on the 'E-SSOM Service Location' Setting. This will display the 'SSO Service Location properties', in which you can define the computer name ('Server Name') on which the E-SSOM Central Service is running: 20. Select the 'Enabled' radio button. This will enable the 'Server Name' edit box. 21. Enter the (NETBIOS) name of the computer on which the E-SSOM Service is running in the 'Server Name' edit box and click on 'OK'. 22. Close the Group Policy Object Editor by clicking on the 'X' button. Note: It is not required to define the other E-SSOM GPO settings. A description of these settings can be found in the chapter GPO Registry Settings on page 14. Copyright Tools4ever 1998-2013 6

23. Click on 'Close'. 2.4. Step 4 When the GPO has been created successfully, the E-SSOM User Client Software will be installed on each workstation that is located in the OU or is a member of the domain in which the GPO is created. This step will be performed automatically, and includes the following procedure: 1. Workstation starts. 2. GPO settings are refreshed. 3. The SSOUserClientSoftware.msi package is installed. 4. User can logon. Please note: As of Windows XP step 3 does not occur the first time that the GPO is refreshed. A second reboot is required to install the E-SSOM User Client Software package. This will install the ESSOM User Client Software automatically on the client workstation, by using the shared ESSOM User Client Software installer package ('SSOUserClientSoftware.msi'). From now on the ESSOM Client is installed and an icon has been added to the taskbar of the client workstation. 3. Upgrading When a new version of E-SSOM is released, the currently installed E-SSOM software components can be upgraded to this version. The complete E-SSOM upgrade process consists of the following steps: 1. Upgrade the E-SSOM Admin Console: download and run the latest version of the E-SSOM setup executable (called: 'SetupSSO.exe'), which is available for download at the Tools4ever website http://www.tools4ever.com. 2. Upgrade the E-SSOM Central Service: start the E-SSOM Admin Console and use the E-SSOM Service Installation Wizard to upgrade the current E-SSOM Central Service. 3. Upgrade the E-SSOM User Client Software: upgrade the E-SSOM User Client Software on each client workstation by using the existing GPO. Note: These steps should be performed in the same order as described. This chapter describes how to upgrade the E-SSOM User Client Software by using the existing GPO, which is quite similar to the installation of the E-SSOM User Client Software via a GPO. For more information about upgrading the E-SSOM Admin Console and E-SSOM Central Service, see the "Administrator's Guide", of which the latest version is available on the Tools4ever website http://www.tools4ever.com. Perform the steps below to upgrade the currently installed E-SSOM User Client Software on each client workstation: 1. Copy the new version of the 'SSOUserClientSoftware.msi' file (default location: 'C:\Program Files\Tools4ever\ESSOM\Admin Console'), to the installation share which is used by the GPO (for instance: 'C:\EndUserSoftware\ESSOM'). The old version of this file may be replaced. 2. Open de 'Group Policy Management Editor' MMC snap-in. 3. Select the 'E-SSOM Distribution Policy' or the GPO that you used to install the E-SSOM User Client Software and click on 'Edit'. The 'Group Policy Object Editor' MMC snap-in will be displayed, in which all computer and user policy settings for the current GPO can be configured. 4. Expand the 'Software Settings' item in the 'Computer Configuration' branch and select the 'Software Settings' item from the tree on the left pane. The right pane will display the software packages that are installed with this GPO. Copyright Tools4ever 1998-2013 7

5. Right click on the 'Computer Configuration -> Software Settings -> Software Installation' item and click 'New -> Package ' to create a new upgrade package. 6. Browse to the share that you've created to install the E-SSOM User Client Software via a GPO (see: Create an installation share for the GPO on page 2) and select the 'SSOUserClientSoftware.msi' package. Warning: Do not browse to the local directory (for instance: 'C:\EndUserSoftware\ESSOM'), but to the share (for instance: '\\SERVER_A\ESSOM'). If you select the local directory, the package will not be available to the clients in the network. 7. Click on 'OK'. You will be presented with the 'Deploy Software' window 8. Select the 'Assigned' radio button and click on 'OK'. 9. In the right page, right click on the new (upgrade) package (that is, not the package to be upgraded) and click on 'Properties' from the menu. 10. Edit the name for the package so that it can be identified (for instance: 'E-SSOM Version 3.21 Build 1008'). 11. Click the 'Upgrades' tab. 12. Click on 'Add ' to create or add to the list of packages that you want to upgrade with the new upgrade package. This will display the 'Add Upgrade Package' Window: 13. Select the package that must be upgraded (for instance: 'E-SSOM Version 3.20 1006'). 14. Make sure that the 'Current Group Policy Object (GPO)' radio button in the 'Choose a package from' area is selected and that the 'Uninstall the existing package, then install the upgrade package' in the 'Package to upgrade' area is selected. 15. Click on 'OK' (twice). 16. Right click on the 'Administrative Templates' in the 'Computer Configuration' branch. Copyright Tools4ever 1998-2013 8

17. Select 'Add/Remove templates ' from the menu. 18. Click on 'Add...'. 19. Browse to the location of the E-SSOM Administrative Template file ('SSOClientSettings.adm'), which is used by the GPO to configure several E-SSOM settings (the default location of this file is: 'C:\Program Files (x86)\tools4ever\sso\admin Console\SSO Client Software'). Click on 'Open'. 20. You will be asked if you would like to replace the existing file. Click on 'Yes'. This will replace the old E-SSOM version of the Administrative Template with the new one. 21. Click on 'Close'. 22. Close the Group Policy Object Editor by clicking on the 'X' button. 23. Click on 'OK'. When the GPO has been modified successfully, the E-SSOM User Client Software will be upgraded on each client workstations for which this GPO is applicable. 4. Uninstalling To uninstall E-SSOM, all currently installed E-SSOM software components must be uninstalled separately. The complete uninstallation of ESSOM consists of the following steps: Note: These steps should be performed in the same order as described. 1. Uninstall the E-SSOM User Client Software: uninstall the E-SSOM User Client Software from each client workstation by using the existing GPO. 2. Uninstall the E-SSOM Central Service: start the E-SSOM Admin Console and use the E-SSOM Service Installation Wizard to remove the current E-SSOM Central Service. 3. Uninstall the E-SSOM Admin Console: uninstall the E-SSOM Admin Console by running the E-SSOM setup executable (called: 'SetupSSO.exe') or by using the Windows 'Add or Remove programs' tool. This chapter describes how to uninstall the E-SSOM User Client Software by using the existing GPO. For more information about removing the E-SSOM Admin Console and E-SSOM Central Service, see the "Administrator's Guide", of which the latest version is available on the Tools4ever website http://www.tools4ever.com. Perform the steps below to uninstall the currently installed E-SSOM User Client Software from each client workstation: 1. Open de 'Group Policy Management' MMC snap-in. 2. Select the 'E-SSOM Distribution Policy' or the GPO that you used to install the E-SSOM User Client Software and click on 'Edit'. The 'Group Policy Object Editor' MMC snap-in will be displayed, in which all computer and user policy settings for the current GPO can be configured: 3. Expand the 'Software Settings' item in the 'Computer Configuration' branch and select the 'Software Settings' item from the tree. The right pane will display the software packages that are installed with this GPO. 4. Right click on the 'E-SSOM User Client Software' item and select 'All Task -> Remove ' from the menu. This will display the 'Remove Software' dialog: 5. Check the 'Immediately uninstall the software from users and computers' radio button and click on 'OK'. 6. Close the Group Policy Object Editor by clicking on the 'X' button. 7. Click on 'Close'. When the GPO has been modified successfully, the E-SSOM User Client Software will be uninstalled from each client workstations for which this GPO is applicable. Copyright Tools4ever 1998-2013 9

5. Index I Installation via GPO 2 Introduction 1 S Step 1 2 Step 2 2 Step 3 3 Step 4 7 U Uninstalling 9 Upgrading 7

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information