manualshive.com logo in svg

Wyse V10LE, Руководство администратора, Страница: 74 / 92

Поделиться
Скачать
Wyse V10LE Скачать руководство пользователя страница 74

68

Appendix A

authorization, and accounting for many types of network access; including 
wireless and virtual private network (VPN) connections.

 

The FreeRADIUS Server is a daemon for unix and unix-like operating 
systems which allows you to set up a radius protocol server (which can be 
used for authentication and accounting for various types of network access).

 

Cisco Secure Access Control Server (ACS) for Windows provides a 
centralized identity networking solution and simplified user management 
experience across all Cisco devices and security management applications.

Configuring for Transport Layer Security (TLS) Connections Over a LAN

The IEEE 802.1x standard allows a switch port to remain wired or enabled but not permit 
traffic to traverse the switch until the identity of the client is confirmed. IEEE 802.1x is a 
security feature. It defines the process of authenticating a wired or wireless client to allow 
the client to communicate with the network. Wyse ThinOS supports IEEE 802.1x for thin 
clients to be authenticated to access an Ethernet network. To enable this connection, you 
must download certificates from a Certificate Authority (CA), and then install and configure 
them for the thin client.

To configure the authentication options:

1.

Open the 

Network Setup

 dialog box (click the desktop to open the menu, select 

System Setup

, and then click 

Network

).

2.

Click the 

Authentication

 tab.

3.

Select either the 

Wire

 or 

Wireless Authentication Mode

 option (

Wire

 is the default 

mode).

4.

Select the 

Enable IEEE802.1x Authentication

 check box.

5.

In the 

EAP Type 

drop-down list, select an 

Extensible Authentication Protocol

 option 

(either 

TLS

LEAP

, or 

PEAP

.

Tip

In 

Wire

 mode, only the 

TLS

 EAP type is available; in 

Wireless

 mode, the 

TLS

LEAP

, and 

PEAP

 EAP types are available.

6.

Use the following guidelines to configure the 

EAP Type

 option you selected:

TLS

 - If you select the 

TLS

 option, click 

Properties

 to open and configure the 

Authentication Properties

 dialog box (you can use 

Browse

 to find and select the 

Client Certificate file and Private Key file you want). Note that the CA certificate 
must be installed in the device.

LEAP

 - If you select the 

LEAP

 option, click 

Properties

 to open and configure the 

Authentication Properties

 dialog box (be sure to use the correct Username and 

Password for authentication). Note that the maximum length for the username or 
the password is 64 characters.

PEAP

 - If you select the 

PEAP

 option, click 

Properties

 to open and configure the 

Authentication Properties

 dialog box (be sure to select either 

EAP_GTC

 or 

EAP_MSCHAPv2

, and then use the correct Username, Password, and Domain, if 

necessary, for authentication). To configure EAP-GTC, enter the username only, 
and the password or PIN will be asked when authenticating. To configure 
EAP-MSCHAPv2, enter the username, password, and domain (domain\username 
in the username box is supported, but you must leave the domain box blank). Note 
that the CA certificate must be installed in the device (the server certificate is forced 
to be validated).

Содержание V10LE

Страница 1: ...Administrators Guide Wyse ThinOSTM Products C10LE R10L S10 V10L Dual DVI V10LE Issue 092910 PN 883682 08 Rev U...

Страница 2: ...ware see http www microsoft com exporting Ordering Information For availability pricing and ordering information in the United States and Canada call 1 800 GET WYSE 1 800 438 9973 or visit us at http...

Страница 3: ...limites applicables aux appareils num riques de la classe B prescrites dans le R glement sur le brouillage radio lectrique dict par le Minist re des Communications du Canada Device Power Supply Use o...

Страница 4: ...This page intentionally blank...

Страница 5: ...Additional Wyse Zero Desktop Features 12 Wyse Zero Interactive Desktop Guidelines 12 Wyse Zero Toolbar 13 List of Connections 14 Additional Classic Desktop Features 15 Classic Interactive Desktop Guid...

Страница 6: ...out Wyse TCX Software 71 About Wyse Virtual Desktop Accelerator Software 71 Configuring ICA Session Services 72 PNAgent PNLite Installation Guidelines 72 Configuring RDP Session Services 73 B Remote S...

Страница 7: ...n on using these features refer to the Help in your PDF reader Wyse Technical Support To access Wyse technical resources visit http www wyse com support If you still have questions you can submit your...

Страница 8: ...on this guide also includes an appendix that contains all of the supported connect options you can use for ICA and RDP connections It is available at http www wyse com manuals Getting Started Guide Wy...

Страница 9: ...dialog box Enter your User name Password and Domain and then click Login After authentication is successful your available connections are presented for use Although the thin client will default to t...

Страница 10: ...Broker Server box 3 Click OK and then restart the thin client click the Shutdown icon on the Wyse Zero Toolbar to open and use the Shutdown dialog box to restart the thin client Note For more details...

Страница 11: ...the System Settings icon on the Wyse Zero Toolbar and then select Remote Connections Users with a Classic Desktop will see the classic Wyse ThinOS desktop with full taskbar desktop and Connect Manager...

Страница 12: ...ialog box On the Classic Desktop click on the desktop and select Lock Terminal or use the Shutdown dialog box see Additional Classic Desktop Features On the Wyse Zero Desktop use the Shutdown dialog b...

Страница 13: ...ars and is ready for another user Lock Terminal Locks the thin client from use until you log in again Shutdown the system Turns off the thin client Restart the system Logs off the user account the Log...

Страница 14: ...8 Chapter 2 This page intentionally blank...

Страница 15: ...thin client event logs and so on see Accessing System Information Admin Mode Click the Admin Mode button to configure various settings locally on the thin client not broker desktop configurations For...

Страница 16: ...Version to Checking Firmware or error Messages that are helpful for debugging problems Status Tab Displays status information about TCP performance related parameters CPU Busy System Up Time Wireless...

Страница 17: ...sk can be used at the same time however the maximum number of USB sticks including different subareas is 12 It recommended that you use Windows XP Windows Server 2003 or Windows Server 2008 for the se...

Страница 18: ...o open a selection box for toggling between the desktop and currently active connections Lock the thin client at any time by pressing CTRL ALT LEFTARROW or CTRL ALT RIGHTARROW Keyboard shortcuts are s...

Страница 19: ...bar icons Icon What It Does Home Opens the list of available connections see List of Connections System Information Displays thin client system information see Accessing System Information System Sett...

Страница 20: ...en a connection is not functioning properly or you need to reboot the connection Quick Disconnect icon Closes the connection the Close icon is grayed out for connections that are not open Edit icon Op...

Страница 21: ...ng the mouse button on the desktop background or by clicking on the User Name on the taskbar If configured to display by an administrator the volume control is displayed in the right corner of the tas...

Страница 22: ...boxes Network Setup Allows selection of DHCP or manual entry of network settings as well as entry of locations of servers essential to thin client operation This menu selection is disabled for Low pr...

Страница 23: ...eged users cannot view the Connect Manager The command buttons available depend on the privileges of the user and administrator configuration the following default examples are typical High privileged...

Страница 24: ...ings must be made locally Properties Clicking Properties opens the Connection Settings dialog box for the selected connection for more information on the Connection Settings dialog box refer to Advanc...

Страница 25: ...ve the option to set up central configuration smaller environments In general it is recommended that you use central configuration to enable you to automatically push updates and any desired default c...

Страница 26: ...ynamically allocated over DHCP BOOTP Selecting this option enables the thin client to automatically receive information from the DHCP server The network administrator must configure the DHCP server us...

Страница 27: ...ther than DNS will be used to make the connection Enter the DNS Domain and the network address of an available DNS Server The function of the DNS Domain entry is to provide a default suffix to be used...

Страница 28: ...Security tab Access Type For Wireless Option Only Select the access type option either None WPA_Personal WPA2_Personal WPA_Enterprise or WPA2_Enterprise to be used for this wireless communication lin...

Страница 29: ...e must be installed on the thin client the server certificate is forced to be validated Certificate Management Opens the Certificates Browser where you can select the Import From option you want to im...

Страница 30: ...64 or 128 bit encryption key or specified as 10 or 26 hex decimal digits Enable IEEEE 802 1x authentication Select this check box to enable this authentication and activate the EAP Type list of option...

Страница 31: ...rd see Configuring ICA Connections RDP Connection Select None select RDP click Configure Connection and then follow the wizard see Configuring RDP Connections Direct Connection Select Other enter the...

Страница 32: ...er environments and for backward compatibility with Wyse ThinOS 6 x versions Zero Launchpad Displays the new launchpad style GUI designed for VDI use Functionality is accessed through an always availa...

Страница 33: ...pplied through DHCP if DHCP is used Use the following guidelines File Servers Path Allows 128 characters maximum The data specifies part of the path to be used when the server is accessed Multiple fil...

Страница 34: ...defined Connection definitions are controlled by a network administrator and are accessed by the thin client from the user profiles located on a remote server Stand alone user The Connect Manager is...

Страница 35: ...ected connection fails the thin client attempts to connect to the next one on the list Tip The Host Name may be resolved using one of three mechanisms ICA master browser DNS or WINS Master browser is...

Страница 36: ...t renegotiates the color depth to the lower value for example 256 Colors 8 bits Window mode and Full screen mode Select the initial view of the application in a windowed screen or full screen You can...

Страница 37: ...Sound and Disks to have the thin client automatically connect to the devices an ICA session will not automatically connect to a device through a serial port Turn compression off When selected turns co...

Страница 38: ...he thin client connection is to be made you can also use Browse next to the box to make the selection you want For example a list of WTS servers on the local network from which you can select Tip The...

Страница 39: ...mode Select the initial view of the application in a windowed screen or full screen You can toggle between viewing modes by using CTRL ALT UPARROW Auto connect on start up When selected automatically...

Страница 40: ...t Select this to disable this content view so that only the outline of the window moves when dragging it until you drop the window This option can be beneficial as it uses less processing power Font s...

Страница 41: ...the option to set up central configuration smaller environments In general it is recommended that you use central configuration to enable you to automatically push updates and any desired default con...

Страница 42: ...Name Allows entry of a name for the thin client The default is a 14 character string composed of the letters WT followed by the thin client Ethernet MAC address Some DHCP servers use this value to ide...

Страница 43: ...Servers provide the thin client time based on the settings of time zone and daylight saving information If DHCP is used locations can be supplied through DHCP Use the Custom Info tab to enter configur...

Страница 44: ...the monitor is VESA DDC2B Display Data Channel compatible selection of this option allows the thin client to automatically select the best resolution and refresh rate If your monitor is not DDC compa...

Страница 45: ...the following guidelines for the Dual Head tab Supported Dual Monitor Capable Thin Clients Only Dual Head Select Disable to have the two monitors work in a matching state or Enable to have the two mon...

Страница 46: ...le 4 Supported Keyboard Languages Supported Keyboard Languages Arabic Saudi Arabia Arabic Iraq Arabic Egypt Arabic Libya Arabic Algeria Arabic Morocco Arabic Tunisia Arabic Oman Arabic Yemen Arabic Sy...

Страница 47: ...by selecting Swap left and right mouse buttons Use the Volume tab to select the volume settings for connected devices Use the following guidelines for the Serial tab Select Port Select the port to whi...

Страница 48: ...se the Touch Screen tab to configure touch screens that are connected to the thin client USB The tab is available not grayed out when the thin client detects that a touch screen is attached through a...

Страница 49: ...becomes the queue name for other clients using LPR to print to this printer Printer Identification Enter the type or model of the printer This name should be either the device driver name for the pri...

Страница 50: ...ect connected USB printers or Generic Text for non USB connected printers upon connection to Windows hosts The driver name mapping takes place either through a printer mapping file read by the system...

Страница 51: ...a printer mapping file read by the system as part of the global profile wnos ini or by MetaFrame servers through the MetaFrame printer configuration file winnt system32 wtsprnt inf Host Printer Enter...

Страница 52: ...or Setting Up Windows 2003 2008 Servers Setting Up Windows NT4 Servers 1 Navigate to Control Panel Network Services and ensure that the Microsoft TCP IP Printing service is installed If it is not inst...

Страница 53: ...Add Printers Local Printer Create a new port and select LPR PORT Tip If you do not see LPR Port ensure that the Microsoft TCP IP Printing service is installed correctly b Type the thin client IP addre...

Страница 54: ...48 Chapter 5 This page intentionally blank...

Страница 55: ...Zero Toolbar administrators can also click the Admin Mode button on the Login dialog box Classic Desktop click User Name User Name is the user who is logged on and is located at the bottom left side o...

Страница 56: ...direction of a network administrator Using Ping The Ping dialog box executes the ping diagnostic utility and displays response messages Ping is a diagnostic tool that sends an echo request to a networ...

Страница 57: ...t is operational and on the network it responds to the echo request By default echo requests are sent until interrupted by clicking Stop Stop Terminates the ping request and leaves the Ping dialog box...

Страница 58: ...registered host name of the target to be traced Data area Displays round trip response time and identifying information for each device in the path Start Executes the tracert command Stop Terminates t...

Страница 59: ...in this section provide important overview information on the supported service situations you may have when configuring the network services for your Wyse ThinOS environment after becoming familiar w...

Страница 60: ...work either directly through a network cable or through a wireless network device turn it on and begin using the thin client A sign on name and password may be required for access to the session servi...

Страница 61: ...used File Server IP address or DNS name of the FTP server on which the INI files reside and the FTP path on the server to wnos PNAgent PNLite Servers list If PNAgent PNLite is deployed on the network...

Страница 62: ...log box must also be configured locally see the Users Guide Wyse ThinOSTM for wireless configuration instructions After DHCP and Virtual Desktop servers are configured and available simply connect the...

Страница 63: ...irtual Desktop server is contacted Static IP address of the thin client Subnet Mask Default Gateway DNS Domain Name not necessary if DNS is not used DNS Server Address not necessary if DNS is not used...

Страница 64: ...desktop which you can double click to open Locally entered connection definitions are not preserved for the next thin client use after the thin client is powered off and restated Configuring Network S...

Страница 65: ...Servers Configuring Wireless Access Configuring FTP Servers Before you use the information in this section to configure your FTP server be sure you understand and use the following guidelines General...

Страница 66: ...using additional modifications to a central configuration file for the FTP daemon may be necessary to enable anonymous FTP You can try man protftp man wuftpd or man ftpd to access information applica...

Страница 67: ...es are annotated to allow you to use them as a starter set on your FTP server and can be modified to suit your needs The compressed file includes wnos kiosk Example wnos ini file for a kiosk configura...

Страница 68: ...efore you use the information in this section to configure your DHCP server be sure you understand and use the following guidelines General Guidelines The DHCP service provides all thin clients on the...

Страница 69: ...ort or name port option for a PNAgent PNLite server is option 181 in the list of DHCP options in Table 5 Windows DHCP Server Guidelines You can use the DHCP tools available on the Windows server Linux...

Страница 70: ...e Server DNS Optional but recommended 15 Domain Name Optional but recommended See Option 6 28 Broadcast Address Optional 44 WINS servers IP Address Optional 51 Lease Time Optional but recommended 52 O...

Страница 71: ...r requires the slash be specified in order to complete proper access 181 PNAgent PNLiteserver list Optional string The thin client uses the server to authenticate the Windows credentials of the user a...

Страница 72: ...ormerly know as Rapport Optional number Byte word or two bytes array NOTE The value of this option tag when not embedded in Vendor Class Specific Information option is interpreted in reverse order whe...

Страница 73: ...nection it rather than WINS will be used to make the connection These entries are supplied through DHCP if DHCP is used Tip You may use two WINS server addresses separated by a semicolon comma or spac...

Страница 74: ...either the Wire or Wireless Authentication Mode option Wire is the default mode 4 Select the Enable IEEE802 1x Authentication check box 5 In the EAP Type drop down list select an Extensible Authentic...

Страница 75: ...ction Tec USB wireless card is supported Mode Select either the Infrastructure or Ad Hoc option Infrastructure Select Infrastructure for access point wireless networks in which thin clients connect to...

Страница 76: ...ct with the application GUI while all of the application processes are executed on the server ICA connects to NT TSE Windows Server 2003 or Windows Server 2008 Server hosts that have a Citrix MetaFram...

Страница 77: ...ort platforms visit www wyse com tcx About Wyse Virtual Desktop Accelerator Software Wyse Virtual Desktop Accelerator VDA is a software product that when used with Wyse thin clients provides an accele...

Страница 78: ...e Host Names or Application Name text box is left blank a message appears prompting the user to enter the IP Address or Server Name of the ICA server to which to connect An audio input port is availab...

Страница 79: ...purchase TSCALs and install them on the TSCAL server you will not be able to make a connection without a temporary or permanent license It is recommended that any RDP connection which traverses a Dia...

Страница 80: ...74 Appendix A This page intentionally blank...

Страница 81: ...ent A major revision number supersedes a minor revision number when making the comparison In turn the minor version number takes precedence over the build number The image names and date time stamps d...

Страница 82: ...s a legal meta character in manually entered strings Wyse ThinOS software does not recognize a terminator as a legal meta character in a locally entered string Tip Citrix does not supply an ICA client...

Страница 83: ...Non Lockdown Operation For normal operation Low privileged and Non privileged users may access the Network Setup dialog box by temporarily disconnecting the Ethernet cable from the thin client and re...

Страница 84: ...port that the Connection Broker s is are configured to listen on This parameter is optional If omitted ports 80 http and 443 https are automatically used Tip Option tag 161 is used to specify the serv...

Страница 85: ...llation Configuring the Connection Broker HTTP and HTTPS Ports VAS Support To configure the Connection Broker http and https ports use the following guidelines 1 Display the left hand pane In the Prov...

Страница 86: ...matically appended to the dynamically generated username ini To append additional parameters manually create username ini files under the ini directory If a manually created username ini file exists i...

Страница 87: ...and continuously tap the G key during the restart process G key reset impacts all configuration items including but not limited to both network configuration and connections defined in local NV RAM T...

Страница 88: ...Low or None in the INI files the thin client Network Setup dialog box will be disabled the user cannot access it In such a case there may be occasion to access the Network Setup dialog box without wa...

Страница 89: ...Engine create a printer object on the server to use the native driver and ThinPort as a printer port You can use any protocol TCP RDP or ICA because Wyse ThinOS has print clients for all of the protoc...

Страница 90: ...84 Appendix C This page intentionally blank...

Страница 91: ...Tables 1 Shutdown dialog box options 7 2 Toolbar icons 13 3 Connection Options 14 4 Supported Keyboard Languages 40 5 DHCP Options 64...

Страница 92: ...Administrators Guide Wyse ThinOSTM Issue 092910 Written and published by Wyse Technology Inc September 2010 Created using FrameMaker and Acrobat...

Отзывы:

Нет отзывов