HP SA3000 Series Getting Started Manual Download

Page: 1 / 46

hewlett-packard sa3000 series

vpn client deployment tool

getting started guide

Hewlett-Packard Company

HP: 5971-0888

P/N: A01447-003

March 2001

Summary of Contents for SA3000 Series

Page 1: ...hewlett packard sa3000 series vpn client deployment tool getting started guide Hewlett Packard Company HP 5971 0888 P N A01447 003 March 2001 ...

Page 2: ...ii ...

Page 3: ...ing applications Hewlett Packard Company may make changes to specifications and product descriptions at any time without notice This Hewlett Packard SA3000 Series VPN Client Deployment Tool Getting Started Guide as well as the software described in it is furnished under license and may only be used or copied in accordance with the terms of the license The information in this manual is furnished fo...

Page 4: ...iv ...

Page 5: ...talling the VPN Client Software Files Installing the VPN Client Software Files 3 1 Using the VPN Client Deployment Tool for the First Time Using the VPN Client Deployment Tool for the First Time 4 1 Creating an E mail Template File 4 2 Starting the VPN Client Deployment Tool 4 4 Logging In to the VPN Client Deployment Tool Manager 4 5 Adding a Corporation Entry 4 6 Adding a Device Entry 4 8 Adding...

Page 6: ...vi Hewlett Packard SA3000 Series VPN Client Deployment Tool Getting Started Guide ...

Page 7: ...Hewlett Packard SA3000 Series VPN Client Deployment Tool Getting Started Guide Getting Started Getting Started Getting Started 1 1 VPN Client Deployment Tool Components 1 2 ...

Page 8: ...Hewlett Packard SA3000 Series VPN Client Deployment Tool Getting Started Guide Getting Started ...

Page 9: ...se Notes before you begin the installation After you install the application online Help is avail able in the VPN Client Deployment Tool Manager to help you per form further tasks For more information on how to use and further set up the VPN Client Deployment Tool see the online Help in the application You can also view the online Help independently on your workstation or from the software CD ROM ...

Page 10: ...to write to the VPN Client Deployment Tool Database at one time Scans the VPN Client Deployment Tool Database to generate the user list Deploys e mail notifications VPN Client Deployment Tool Database The VPN Client Deployment Tool Database stores the device tunnel client and product profile user and corporation information on those users who receive e mail notifications and HP SA3000 Series VPN C...

Page 11: ...he self extracting executable to the requesting remote user Report Tool Components The VPN Client Deployment Tool comes with several extra tool components to help you make reporting data easy Create Audit Report Tool This program creates a text file that contains a list of users who have logged in to the VPN Client Deployment Tool Web server to download the VPN Client files Create User Report Tool...

Page 12: ...Getting Started 1 4 Hewlett Packard SA3000 Series VPN Client Deployment Tool Getting Started Guide ...

Page 13: ...VPN Client Deployment Tool Getting Started Guide Installing the VPN Client Deployment Tool Installing the VPN Client Deployment Tool Before You Install the VPN Client Deployment Tool 2 1 Installing the VPN Client Deployment Tool 2 5 ...

Page 14: ...Hewlett Packard SA3000 Series VPN Client Deployment Tool Getting Started Guide Installing the VPN Client Deployment Tool ...

Page 15: ...VPN Client Deployment Tool Release Notes for more information CAUTION When you install or upgrade the VPN Client Deploy ment Tool you must reboot your Windows NT Server To avoid additional network downtime install the application during scheduled maintenance periods Otherwise your users could experience connection difficulties to your Web server IIS Script and Permission Types Ensure that the IIS ...

Page 16: ...es by clicking Start and selecting Programs Administrative Tools Internet Services Manager Internet Information Services 2 In the tree like structure that appears in the left pane expand the entry for the Web site that is hosting the VPN Client Deployment Tool This may be listed under Default Web Site 3 Right click on SCRIPTS and select Properties 4 Select the Virtual Directory tab 5 Ensure that t...

Page 17: ...yment Tool Manager and Servlet select Install Manager and Serv let or if you need to install a single component select either the VCDT Manager or VCDT Servlet entry Installing the VPN Client Deployment Tool Manager If you select Install Manager and Servlet the VPN Client Deployment Tool Manager is installed first If you want to install the Servlet first or by itself select Install VCDT Servlet and...

Page 18: ...lient Deployment Tool Servlet begins automatically after the Manager finishes if you selected the option to install both the Servlet and Manager together 1 The VCDT Servlet Welcome dialog box appears Click Next The Software License Agreement dialog box appears 2 Click Yes to agree to the software license agreement The Select Components dialog box appears 3 Confirm that the JRun 2 3 is selected and...

Page 19: ...f your Manager Database and Web server are on sep arate computers and you have a firewall installed between them you must allow access to the TCP port that the Web server uses to connect to the database By default this is port 2638 10 Click Next If you are installing JRun for the first time the JRun Information dialog appears 11 Click OK The Setup Complete dialog box appears 12 Select Yes I want t...

Page 20: ...Installing the VPN Client Deployment Tool 2 6 Hewlett Packard SA3000 Series VPN Client Deployment Tool Getting Started Guide ...

Page 21: ...wlett Packard SA3000 Series VPN Client Deployment Tool Getting Started Guide Installing the VPN Client Software Files Installing the VPN Client Software Files Installing the VPN Client Software Files 3 1 ...

Page 22: ...Hewlett Packard SA3000 Series VPN Client Deployment Tool Getting Started Guide Installing the VPN Client Software Files ...

Page 23: ...rectory and is accessed from a command prompt You must install the VPN Client on the computer where your Manager and Database are located Note To use this utility the VPN Client Deployment Tool data base must be running The Product Installation Utility requires both source and destination parameters to install the VPN Client Software from the CD ROM to the Windows NT or Windows 2000 Server install...

Page 24: ...to your hard disk When you have finished installing the software you should have a directory structure similar to the one listed here c Inetpub ftproot smdt VPN 6 80 NAM c Inetpub ftproot smdt VPN 6 75 INT NAM indicates the North American Release of the VPN Client software INT indicates the international release of the VPN Client Each of the directories that are created has appropriate software su...

Page 25: ...st Time Using the VPN Client Deployment Tool for the First Time 4 1 Creating an E mail Template File 4 2 Starting the VPN Client Deployment Tool 4 4 Logging In to the VPN Client Deployment Tool Manager 4 5 Adding a Corporation Entry 4 6 Adding a Device Entry 4 8 Adding a Tunnel Entry 4 9 Creating a Client Profile 4 11 Creating a Product Profile 4 13 Adding a User or Group Entry 4 15 ...

Page 26: ...Hewlett Packard SA3000 Series VPN Client Deployment Tool Getting Started Guide Using the VPN Client Deployment Tool for the First Time ...

Page 27: ...s of a device to be assigned to a user or group See Adding a Device Entry page 4 8 Add at least one tunnel You must include the device name you are going to establish a tunnel with the tunnel name authentication type tunnel protocol and port number See Adding a Tunnel Entry page 4 9 Add at least one client profile You must include the client profile name a tunnel association on the Client Profile ...

Page 28: ...meters when it sends e mail to the user Parameters must be enclosed in caret characters within the body of the template file There are four e mail template file parameters username The user s description value from the VPN Client Deployment Tool Database If description is blank the user s Name value is used instead webserverurl The URL of your Internet Information Server IIS Web server userid The ...

Page 29: ...t Servlet directory and the file name is notification txt you should input C Program Files HP SA3000 VPN VPN Client Deployment Tool Smdt notification txt into the Email Template File field 4 Click Save Example E Mail Template File Copy and modify the following e mail template file into your text editor to create your own message Dear username Please go to the following web page to download the HP ...

Page 30: ...this document Before you start the VPN Client Deployment Tool ensure that IIS Admin Services are running The VPN Client Deployment Tool Database is a part of these services and should start automatically when you start Windows NT or Windows 2000 Server Steps To start the VPN Client Deployment Tool 1 Ensure that the VPN Client Deployment Tool Database is running The database is installed as a servi...

Page 31: ...e VPN Client Deployment Tool Manager 1 In the Login Name field enter admin 2 In the Password field enter admin Note The Login Name and Password are case sensitive 3 Click Login If you already added corporation entries the Corporation Selection dialog box appears Otherwise if this is the first time you are logging in the Setup window appears here You must add a corporation entry before continuing w...

Page 32: ...ing a corporation for the first time the Setup window automatically appears after the initial login and the Continue Login button appears but is disabled at this point 2 Click Clear 3 In the Corporation Name field enter an abbreviated name for the corporation The Corporation Name field is 1 to 8 characters 4 In the Description field enter the full name of the corporation The Description field is 1...

Page 33: ...og file will reside 12 In theVNICSfield enter thenumberofvirtual networkinterface controllers you want the VPN Clients to be able to use The default number is 2 The reason for this is when the VPN Client is installed the default number of VNICS installed is also 2 For more information on what VNICS are and how they work within the VPN Client see the topic Sample vpnclient ini File in the VPN Clien...

Page 34: ...NS entry of the device This IP address is the one that the client uses to negotiate a tunnel with the gateway device 6 In the Automatic Device Configuration area you may select the Device can be polled check box to automatically extract its configuration Otherwise go to step 10 7 In the Poll IP Address DNS Entry field enter the IP address or DNS entry to be used to obtain the device configuration ...

Page 35: ...Clear 3 In the Device Name field select the device name from the drop down list 4 In the Tunnel Name field enter a descriptive name for the tunnel 5 In the Authentication Type drop down list select the method of authentication The default is VPNG 6 Select the Multi user check box if the tunnel you are creating is a multiuser tunnel The default is a clear check box indicating a single user tunnel 7...

Page 36: ...protocol defined in the Protocol Field The default port number is 2233 Port numbers 1025 through 65 535 are available 11 In the Group Userid Name field enter the name of the user or group defined for that tunnel 12 In the Challenge Phrase field enter the challenge phrase for the device 13 Click Save The tunnel entry you created appears in the list box with the information you specified appearing i...

Page 37: ...nd side navigation bar click Profiles The Profiles window appears 2 Click Clear 3 In the Profile Name field enter a descriptive name for the profile 4 Click Save The user entry you created appears in the list box with the information you specified appearing in the appropriate columns The Edit Profile button becomes active 5 Click Edit Profile A window appears showing you a list of tunnels you prev...

Page 38: ...ote The ACL Match Method area is for use with IPSec tunnels only User s full email address The client sends the user s full e mail address as entered in the Users window for au thentication for example jdoe hp com Domain The client sends just the domain name of the user s e mail address as entered in the Users window for authentication for example hp com Other domain Enter a domain of your choice ...

Page 39: ...e for the profile 5 In the VPN Version drop down list select the version of the VPN Client you want assigned to the product profile This list only contains as many entries as there are different versions of the VPN Client you have installed in your C InetPub ftproot smdt directory See Chapter 3 Installing the VPN Client Software Files 6 Select the setting to specify which mode of user logon to use...

Page 40: ...indicates that the configuration file can be modified by the user This is the default mode 8 Select whether you want the VPN Client to be minimized upon logon This parameter is independent of the Minimize after logon check box that appears in the VPN Client Logon window The following switches are available yes This parameter indicates that the client minimizes after logon This is the default mode ...

Page 41: ...Note You cannot delete the Everyone group or remove its group status You can however rename it to something more meaningful such as your corporation name Steps To add a user or group entry 1 In the left hand navigation bar click Users The Users window appears 2 Click Clear 3 In the User Name field enter the identity of the user For example if user John Smith s network user name is jsmith enter jsm...

Page 42: ...n use the default option If you use the default option the user or group receives its product profile by inheriting it from the group See Creating a Product Profile earlier in this document for more information 11 Click Save The user entry you created appears in the list box with the information you specified appearing in the appropriate columns 12 Click Assign Client Profiles to associate a previ...

Page 43: ...fault value is 0 In the Certificate Renewal days field enter the certificate renewal period in hours The default value is 0 If you select SecurID authentication enter the default SecurID user name in the User Name field 15 Click Save The user entry you created appears in the list box with the information you specified appearing in the appropriate columns If you need to give many users the same VPN...

Page 44: ...Using the VPN Client Deployment Tool for the First Time 4 18 Hewlett Packard SA3000 Series VPN Client Deployment Tool Getting Started Guide ...

Page 45: ...template files 4 2 G getting started 1 1 groups adding 4 15 I IIS Scripts and Permission Types 2 1 installing 2 3 before you install 2 1 Manager 2 3 overview 1 1 Servlet 2 4 VPN Client 3 1 installproduct bat 3 1 L launching VPN Client Deployment Tool See starting logging in to corporation 4 5 logging in to manager 4 5 Login Name field 4 5 M Manager installing 2 3 logging In 4 5 N none logon parame...

Page 46: ...nt Deployment Tool Getting Started Guide Index U User Report Tool 1 3 users adding 4 15 V VPN Client Deployment Tool components 1 2 database functions 1 2 Manager functions 1 2 Servlet functions 1 2 starting 4 4 using for the first time 4 1 ...

Search results

Summary of Contents for SA3000 Series

Reviews:

Related manuals for SA3000 Series

Brands by name

Popular brands

HP SA3000 Series, Getting Started Manual

Search results

Summary of Contents for SA3000 Series

Reviews:

Related manuals for SA3000 Series

Brands by name

Popular brands