Splashtop Center Quick Start Guide

Transcription

V0.97
1
Splashtop Confidential
Table of Contents
1. INTRODUCTION .......................................................................................................................... 3
1.1 Overview .................................................................................................................................... 3
1.2 Splashtop Center Features ......................................................................................................... 3
1.3 System Architecture ................................................................................................................... 4
1.4 System Requirements ................................................................................................................ 5
2. INSTALLATION AND PRODUCT ACTIVATION ............................................................................... 7
2.1 Setup Checklist ........................................................................................................................... 7
2.2 Installation and Activation ......................................................................................................... 8
3. SERVER CONFIGURATION ......................................................................................................... 11
3.1 Server ....................................................................................................................................... 11
3.2 SSL Security .............................................................................................................................. 12
3.3 Add User................................................................................................................................... 14
4. SERVER MANAGEMENT ........................................................................................................... 18
4.1 Device Management ................................................................................................................ 18
4.1.1
Computers ........................................................................................................................ 18
4.1.2
Clients............................................................................................................................... 18
4.1.3
Groups .............................................................................................................................. 19
4.2 Logs .......................................................................................................................................... 21
4.3 License Manager ...................................................................................................................... 22
4.4 Backup ...................................................................................................................................... 23
4.5 Device Activation ..................................................................................................................... 24
4.6 How to Add a Self-signed SSL Certificate in a Mobile Device and Computer .......................... 27
2
1. INTRODUCTION
1.1 Overview
Splashtop Center provides IT organizations with the tools necessary to secure and centrally
manage how users remotely access their computers.
 Centralize management so you can set user access policies and view session activity in


real time.
Host inside your firewall on your own servers to protect sensitive user information and
eliminate external monthly hosting fees.
Enhance access and security so that your mobile users can be more productive by
accessing important company files and software from the road or at home easily and
securely.
This product is comprised of 3 components:
 Splashtop Center – performs Gateway, Relay, user and device management functions.


Splashtop for Business for a mobile device.
Splashtop Streamer for Business software for a remote computer (supports ONLY
Windows today).
1.2 Splashtop Center Features
Splashtop Center allows enterprise to deploy management of enterprise-level remote desktop
services to private cloud environment. Following is the feature list of Splashtop Center.
 Gateway: Connect clients and Streamers.








Relay: Supports cross-firewall connection.
Internet discovery: Connect remotely even when your mobile device is outside the
corporate networks.
Secure session: Support SSL certificate.
User management: Add or delete user accounts. Reset user passwords.
Computer grouping: Set up a group to provide a pool of identically-configured
computers for your employees.
Active Directory support: Integrate with AD domain user.
Device management: Manage client access.
Session monitoring: Monitoring employee usage to see which mobile device is
connecting to which computer, time of connection, and duration of each session.
3


Log: Exportable log for auditing.
Backup: Import/export all configurations.
1.3 System Architecture
Figure 1. Network diagram of DMZ example
A typical deployment option is running the Splashtop Center in the demilitarized zone (DMZ).
As shown in Figure 1above, deploying in the DMZ requires opening port 443 on the firewall to
allow access to services via the Splashtop Center. The IT administrator needs to open port 443
and configure port forwarding for port 443 between public IP (Internet) and private IP (Intranet)
in the firewall. All traffic between Internet client and Intranet Streamer communication and
data transfer will be relayed by the on-premise Relay service of Splashtop Center.
4
Figure 2. Network diagram of Intranet example
An alternative deployment option is placing the Splashtop Center in the Intranet. This option is
for companies who do not have DMZ. Splashtop Center can run in the Intranet and the IT
administrator also needs to open port 443 and configure port forwarding for Splashtop Center in
the firewall.
1.4 System Requirements
 Splashtop Center Server Requirements
 Supported Operating System
Windows Server 2008 R2 (Foundation, Standard, Enterprise, Datacenter, and Web
Edition)


-
Windows 7 (Professional, Enterprise, and Ultimate)
Software Requirement
Installer will bundle Java 7 by default
Requires Microsoft .NET 3.5 SP1 or later
Run with Administrator privilege
Hardware Requirements
Processor: Intel Core i5 2.0 GHz or above
Memory: 4 GB or above
HDD: 10 GB or above
5
 Client Requirements (mobile device)
 Install Splashtop for Business app on iPad or iPhone
OS: iOS version 4.0 or higher
 Install Splashtop for Business app on Android tablet
OS: Android 3.1 or higher
 Install Splashtop for Business Windows client on Windows
OS: Windows 7, Vista, or XP
 Network connection
 Streamer Requirements (host computer)
 Install Splashtop Streamer for Business on a desktop or laptop
 OS: Windows 7, Vista, or XP
 Processor: 1.6 GHz or faster dual-core CPU


Memory: 1 GB or above
Network connection
 Network Requirements
 One IP address and domain name:
If you need a cross-firewall remote session, please prepare a public IP address for the
Splashtop Center, or set port forwarding from the public IP to private IP in your
firewall.
 One port:
On-premise Gateway and Relay port: 443 (default)
Please make sure port 443 is not blocked by your firewall.
6
2. INSTALLATION AND PRODUCT ACTIVATION
2.1 Setup Checklist
Here is a checklist to help you verify that you have performed all the steps needed, from beginning
to end, in order to install Splashtop Center and set up shared resources for your employees to use.
#
Required Items
1
IT Administrator:
Install Splashtop Center and activate the Splashtop Center License.
2
IT Administrator:
Prepare one IP address and one TCP port for the Splashtop Center.
On-premise Gateway and Relay port is port 443 (default). Set up port forwarding
between public IP and private IP if you need external access.
3
IT Administrator:
Set up the Gateway User Account and Password.
4
Employees:
Streamer installation
Install Splashtop Streamer for Business on desktop or laptop.
Fill in the Splashtop Center field, Gateway user email (ID), and Password for Streamer.
Note: May need to allow Streamer through the desktop/laptop firewall.
5
Employees:
Client installation
Install Splashtop for Business on an iPad or other mobile devices.
Fill in the Splashtop Center field, Gateway user email (ID), and Password on the client app.
7
Optional Items
6
IT Administrator:
Prepare one domain name and set up internal DNS (and external DNS for the IP address if
you need external access).
7
IT Administrator:
Set up the Administrator’s ID and Password for the Groups feature. Assign the user to
Admin Authority.
8
IT Administrator:
Import trusted or self-signed SSL certificate in Splashtop Center.
9
Employees:
Import self-signed SSL certificate in mobile device and computer
10
IT Administrator:
Add Active Directory users.
11
IT Administrator:
Check Enable Device Activation option, create activation codes, and send activation codes
to each user.
Employees:
Activate user devices by activation codes.
2.2 Installation and Activation
Please follow the instructions that you were given to download the Splashtop Center package.
1. Install software.
Double-click the Splashtop Center package and the installation process will complete
automatically.
Splashtop Center will be brought up after the Finish button is clicked.
2. To activate Splashtop Center, click the License tab to start the License Manager, shown
below.
8
Online activation:
Your license key was provided to you by your Splashtop contact. Click the Assign License
button and enter your e-mail address and license key. Then click the Activate button to
activate Splashtop Center. The license key needs to be reactivated if you re-install the
software. License Details shows the expiration date, the days remaining until expiration,
and seat count.
Note: In order to activate the license, the system needs to have Internet access to talk to
the license server
9
Offline activation:
Offline activation is for those servers which cannot gain access to the Internet. Check
the Offline activation option and input Email and License Key; Splashtop Center will
generate a Machine code. Please send the Email, License Key and Machine Code to
your Splashtop contact. They will provide an Activation Key for you.
10
3. SERVER CONFIGURATION
3.1 Server
 Gateway tab
On-premise Gateway is a point of entry for Splashtop Center which connects client and
Streamer when they log in to Splashtop Center.
On-premise Gateway port:
Splashtop Center uses the TCP port only. The default gateway and relay port is 443;
please make sure the port is not occupied by other services. If your server domain name
is test.company.com, Splashtop Center field on both the streamer and client will be
test.splashtop.com.
To provide external access service, please set up port forwarding/mapping on your
firewall or router. For example, if your Splashtop Center IP address is a private IP, you
need to set up port forwarding on your firewall to redirect the port from the public IP to
the private IP.
11
3.2 SSL Security
SSL certificate is an optional configuration. You can import your SSL certificate if you
have security concerns. Splashtop Center accepts pfx format for SSL certificates.
1.
2.
Import button:
You can import your trusted or self-signed SSL certificate using the Import function.
Please click the Apply button to make the SSL certificate take effect.
Clicking the Generate button opens this dialog box:
12
If you don’t have an SSL certificate, this dialog box allows you to use Splashtop Center to
generate a self-signed SSL certificate.
For importing the self-signed SSL certificate, please refer to the section entitled How to
Add a Self-signed SSL Certificate in a Mobile Device and Computer. This is
recommended.
3.
4.
Export button:
Backs up your SSL certificate using the Export function.
Remove button:
Use the Remove function if you need to remove the certificate.
The Force SSL on Local LAN connections option on the Security tab provides more
security protection for local LAN connections. The option is unchecked by default to
provide SSL protection for cross-network connections only. Local LAN connections enjoy
better performance without SSL protection. If the option is turned on, all client and
Streamer connections will be protected by SSL.
this option take effect.
Please click the Apply button to make
13
3.3 Add User
 Users: Gateway and Domain (Active Directory)
Splashtop Center supports two user types. Please follow the instructions to add your users in
Splashtop Center.
1. Gateway User is a Splashtop Center user account that only exists on the Splashtop Center
gateway module. This is the typical account for Splashtop Center unless you use Active
Directory.
2.
Domain User is an Active Directory (AD) user which is managed by your IT administrator.
IT administrators can integrate AD users into Splashtop Center.
For more details about user management; please refer to the below sections.
 Add Gateway User
Create Gateway users with activation code. (User sets their password on their own, but
requires providing the user an activation code for the initial setup.)
1. Click Add button on Users tab
2. Generate Activation Code for password creation option is checked by default
3. Enter user Email and click OK button
4. Activation Code List window pops up with activation code
5. Click Copy all to clipboard button to copy the activation code and provide to the user
6. Paste into an email and send to user.
7. User needs to activate from a client device (iOS, Android, or Windows client) – not
streamer system.


Launch Splashtop for Business, then click on “Activate this product” link
Enter account email address and activation code and tap “Activate” button


Then enter password twice to setup
User logs in
Create Gateway users with pre-set password.
1. Click Add button on Users tab
2. Uncheck Generate Activation Code for password creation option
3. Enter user Email and a user password.
4. Email credentials to user.
5. User logs in
14
 Change Password for Gateway Users
The password policy mandates that the password must be at least 6 characters and must
have at least one numeric character. The allowed character sets are:
Alphabet: A-Z
or a-z; Numeric: 0-9.
Users can change their password on the web page.
https://your_Splashtop_Center_URL:port/html/changepassword.html
For example: https://splashtop.com:443/html/changepassword.html.
15
 Add Domain (Active Directory) user
Please join the host server in to the Active Directory domain. Log in as domain user
on Splashtop Center and add AD user. Add user by selecting Domain user in the User
type field.
Enter domain_name\user_name in the User name field and its related Password into
the dialog box shown above.
The User logon name can be any valid domain account. Then you can click the Check
button to verify the domain account. Click the OK button to add AD domain user in
Splashtop Center. Splashtop Center will use the Email property value as the user
account.
16
For example, if you add user “john” from the “splashtop.com” domain, the user
account for Streamer and client would be “[email protected]”. If the Email
property is empty, the User logon name would be the user account.
If a user is removed from AD directly, that user will still be present in Splashtop Center.
However, the account will be disabled as the credential check will fail when querying
against AD.
17
4. SERVER MANAGEMENT
4.1 Device Management
4.1.1 Computers
The Computers tab displays current computers (Streamers) Status, the Last Updated time,
the Computer Name, the User ID, and Streamer Version.
4.1.2 Clients
The Clients tab displays the current clients’ Last Updated time, Client Name, IP Address,
User ID, Platform, and client Version.
18
4.1.3 Groups
To set up a group or “pool” of shared computers, an IT administrator must log in using the
Splashtop Center Administrator’s account on these Streamers.
In Splashtop Center, there is a “Groups” tab.
1. Click on the “Add” button of the “Groups” tab. Then you will get the window above.
2. Enter in a name for the group and select the users that you want to have access to this
group.
3. The Allow everyone to access option allows all users to access the group.
19
4. In addition, you will need to select the computers to be part of this group from the
Computers tab.
5. The Enable auto log out Windows desktop after session disconnects option forces
the connected Windows system to log out automatically after session disconnects.
6. The Enable new Windows users be allowed to log in to shared computers allows new
Windows user who never logs on to the Windows to access the Windows.
20
4.2 Logs
 Logs tab
The Logs tab displays online and offline sessions and shows the Start time, Client name,
Client IP address, User account, Client Platform, Computer (Streamer) name, Group,
Duration of the session, and Connection type of the session. Current online sessions are
displayed with a green indicator in the Status column, and past sessions are indicated
with a gray indicator.
 Export button
If you click the Export button, Splashtop Center will export all session logs in CSV format
to your selected folder.
21
4.3 License Manager
 License details:
This will display your license key, key status, expiration date, and maximum user accounts
(seats).
 Assign License:
Click this button to activate your license key.
 Release License:
Click this button to revoke the current license key.
22
4.4 Backup
1.
The Save all settings to file button will save all your settings to an XML file.
this backup file in case you need to recover your settings.
Please keep
2.
The Restore all settings from file button allows you to use the XML backup file to restore
your settings.
23
4.5 Device Activation
The Enable Device Activation option requires all client devices to be activated.
activated devices can connect with Splashtop Center.
Only the
Enabling the Device Activation option will pop up the Pre-activate client devices window
24
above. This window allows an IT manager to qualify pre-connected devices.
that disabling Device Activation option will invalidate all activation codes.
Please note
In the Users tab, click the Edit button. This brings up the User window above. The Show
Activation Status option allows IT to review the status of the activation codes for each user.
The Request additional Activation Codes function creates more activation codes for the
user.
25
Activate Mobile device:
Using the iPad client as an example:
1.
2.
3.
4.
Launch Splashtop for Business App.
Touch Activate this product link on the Enter your account login page.
Enter Splashtop Center URL, Email, and Activation Code on Activate your product
page above.
Touch the Activate button to activate this device.
26
4.6 How to Add a Self-signed SSL Certificate in a Mobile Device and Computer
Mobile device:
Using the iPad client as an example:
1. Launch https://your_Splashtop_Center_URL:<port>/sslcert from the Safari app.
2. Upon Cannot Verify Server Identity dialog prompt, proceed with Continue.
3. Select Install to trust the self-signed certificate on the iPad device.
Computer:
Windows 7 Streamer as an example:
1. Launch https://your_Splashtop_Center_URL:<port>/sslcert from IE and download the
sslcert.cert file.
2.
3.
4.
5.
Run the command mmc.exe from the Windows 7 Start -> Search bar.
If prompted by UAC to allow the MMC to make changes to this computer, click Yes.
It will bring up a blank MMC console.
From the File menu, select Add/Remove Snap-in…
In the Add or Remove Snap-ins window, choose the Certificates snap-in, then click
the Add > button. It will bring up the Certificates snap-in window.
27
6.
In the Certificates snap-in window, select Computer account, then click the Next >
button. This will bring up the Select Computer window.
7.
In the Select Computer window, select Local computer: (the computer this console is
running on), then click Finish button.
Snap-ins dialog.
This will bring you back to the Add or Remove
28
8.
In the Add or Remove Snap-ins window, then click the OK button.
9.
In the MMC console, select Trusted Root Certification Authorities.
10. In the Action menu, select All Tasks, then select Import… It will bring up a
Certificate Import Wizard dialog as shown below
29
11. In the Certificate Import Wizard window, click the Next > button.
It will bring up File
to Import.
12. In the Certificate Import Wizard window, click the Browse… button to select the
sslcert.cer file which you downloaded in step 1, and then click the Next > button.
It
30
will bring up Certificate Store.
13. In the Certificate Import Wizard window, select Place all certificates in the following
store then Certificate store: Trusted Root Certification Authorities. Click the Next >
button, click the Finish button, and then click OK to finish the Certificate Import
Wizard.
31
14. Exit the MMC console. A “Save console settings to Console1?“ message will display.
No need to save the console, so click the No button.
32

Splashtop Center Quick Start Guide

Transcription

Similar documents

Splashtop Whiteboard-Tutorial-Lefebvre

AlAhliToken

Flatbed

Certificate of Registration Evans Chemetics LP

ISO 9001

Certificate of Registration Glasseal Products Inc.

Certificate of Registration Cosmotronic Inc.

Certificate of Registration Lyn

Certificate of Registration Crissair, Inc.

ISO 9001:2008 Certified - AFC