1. Manuals
  2. Brands
  3. Nokia Manuals
  4. Software
  5. NPS6113000 - Secure Access System
  6. Getting started manual

Nokia NPS6113000 - Secure Access System Getting Started Manual

Getting started guide
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
Nokia Secure Access System
Getting Started Guide
Version 3.0
Part No. N450867004 Rev A
Published November 2004

Advertisement

Table of Contents
loading

Related Manuals for Nokia NPS6113000 - Secure Access System

Summary of Contents for Nokia NPS6113000 - Secure Access System

  • Page 1 Nokia Secure Access System Getting Started Guide Version 3.0 Part No. N450867004 Rev A Published November 2004...
  • Page 2 IMPORTANT NOTE TO USERS This software and hardware is provided by Nokia Inc. as is and any express or implied warranties, including, but not limited to, implied warranties of merchantability and fitness for a particular purpose are disclaimed. In no event shall Nokia, or its affiliates, subsidiaries or suppliers be liable for any direct, indirect, incidental, special, exemplary, or consequential damages (including, but not limited to, procurement of substitute goods or services;...
  • Page 3 Singapore 119968 Nokia Customer Support Web Site: https://support.nokia.com Email: tac.support@nokia.com Americas Europe Voice: 1-888-361-5030 or Voice: +44 (0) 125-286-8900 1-613-271-6721 Fax: 1-613-271-8782 Fax: +44 (0) 125-286-5666 Asia-Pacific Voice: +65-67232999 Fax: +65-67232897 031014 Nokia Secure Access System Getting Started Guide...
  • Page 4 Nokia Secure Access System Getting Started Guide...

  • Page 5: Table Of Contents

    Initial Configuration..........13 About the Nokia IPSO Operating System ....... 13 Performing Initial Configuration .
  • Page 6 Specifying User Portal Settings ........45 Nokia Secure Access System Getting Started Guide...

  • Page 7: About This Guide

    For detailed gateway and configuration information, see the Nokia Secure Access System Configuration Guide v3.0. For an overview of the technologies that the Nokia Secure Access System uses, see the Nokia Secure Access System Technology Overview. Conventions This Guide Uses This document uses the following conventions.

  • Page 8: Related Documentation

    Note When you provide information in the Nokia Secure Access System configuration fields, click Save Settings before you select tabs or buttons to ensure that your changes are saved before you go to a new configuration page. Related Documentation For supporting documentation, check the Nokia Secure Access System v3.0 CD-ROM for the following documents: Nokia Secure Access System Release Notes v3.0...

  • Page 9: Installing The Nokia Secure Access System Gateway

    Configuring Nokia Secure Access System Note Your Nokia appliance ships with the Nokia Secure Access System package installed. If the package is not installed, you can install it by using Nokia Network Voyager. For more information, see “Installing the Package with Nokia Network Voyager”...

  • Page 10: Security Platforms

    Nokia IP380 Nokia IP1260 Note To run Nokia Secure Access System, the appliance must have at least 256 MB of RAM installed. For optimum performance, Nokia recommends that at least 512 MB be installed. Operating System The following versions of Nokia IPSO-SB support Nokia Secure Access System v3.0: v3.7 Build 34, 39, 41...

  • Page 11: Web Browser Requirements

    Firefox v0.8 and later Mac OS X Safari Email Client Systems The following is a list of supported email client systems for the Nokia Secure Access System: Microsoft Outlook 98, 2000, 2002, 2003 Outlook Express Lotus Notes client 5.0, 6.5, 6.0.2...
  • Page 12 Installing the Nokia Secure Access System Gateway Table 1 Nokia Secure Access System Task Overview (continued) Check Task overview Where to find information Configure the server certificate Nokia Secure Access System Configuration Guide v3.0 Configure network settings Nokia Secure Access System Configuration Guide v3.0...

  • Page 13: Installing The Hardware

    27. About the Nokia IPSO Operating System Nokia IP security platforms are based on the Nokia IPSO operating system. The Nokia Secure Access System software is installed as a package on the Nokia IPSO appliance. Configure your appliance before you install the Nokia Secure Access System package.

  • Page 14: Configuring Nokia Network Voyager Settings

    Configuring Nokia Network Voyager Settings After you complete the initial configuration, you can access the Nokia Network Voyager configuration menu by using your Web browser. Nokia Network Voyager is an SSL-capable, Web-based element management interface to Nokia IP security platforms.

  • Page 15: Enabling Nokia Network Voyager Web Access With Ssl

    Enabling Nokia Network Voyager Web Access with SSL Secure Socket Layer (SSL) provides a secure way to connect to network appliances by using Nokia IPSO. Before you install Nokia Secure Access System, enable SSL Web access by using Network Voyager.

  • Page 16: Determining If The Package Is Preinstalled

    Installing the Nokia Secure Access System Gateway If you know that an earlier version of Nokia Secure Access System is installed on your appliance, see “To install or upgrade the package with Nokia Network Voyager” on page 19. Determining If the Package Is Preinstalled From Nokia Network Voyager, you can determine if the package is preinstalled on your appliance.

  • Page 17: Initializing When The Package Is Preinstalled

    Nokia Secure Access System package. Verify that Nokia IPSO v3.7, v3.7.1, or v3.8 is installed on your appliance. If your appliance is running an earlier version of Nokia IPSO, you can upgrade to a newer version by obtaining the Nokia IPSO installation file from http://support.nokia.com...

  • Page 18: Installing Or Upgrading The Package With Nokia Network Voyager

    Nokia Network Voyager.” Installing or Upgrading the Package with Nokia Network Voyager This section describes how to install the package by using Nokia Network Voyager. Table 2 shows, by version number, which directory the package installs to on the appliance. These are some of the previous Nokia Secure Access System versions and their corresponding directory locations.
  • Page 19 Installing the Nokia Secure Access Package To install or upgrade the package with Nokia Network Voyager 1. From the Nokia Network Voyager main page, select System Configuration. 2. From the Voyager Configuration page, select Manage Installed Packages. The Manage Packages page opens.
  • Page 20 Installing the Nokia Secure Access System Gateway 4. Select opt/packages/nsas_3_0_0_<timestamp>.tgz. If this option is not present in the list, see “To download the package with Nokia Network Voyager” on page 17. 5. Click Apply to unpack the package. Note The package is first unpacked to the /opt/tmp directory.
  • Page 21 Click here to finish the initial configuration. If you are installing a package, the Nokia Secure Access page opens and begins to generate the random number seed. If you are upgrading the package, the Nokia Secure Access page opens.

  • Page 22: Activating The Package With Nokia Network Voyager

    Installing the Nokia Secure Access System Gateway If the package is enabled, select Click here to sign on to the Nokia Secure Access System. Continue to “To authenticate at the Sign-on page” on page 29. This link points to the gateway configuration system.
  • Page 23 Installing the Nokia Secure Access Package 3. In the Applications group, check that the Nokia Secure Access System package is set to On. 4. Click Apply. 5. Click Save. You do not need to reboot your system. The Nokia Secure Access System package is installed, activated, and enabled.
  • Page 24 If this occurs override the lock by clicking Log In with Advanced Options and select Yes for Override Locks Acquired by Other Users. The Nokia Secure Access System page now shows that the status is enabled. You can now sign on to the Nokia Secure Access System gateway. Continue to “Signing On to the...

  • Page 25: Installing The Package From The Command-Line Interface

    The following response appears: End of new package installation cleaning up ..done If the Network Voyager ports listed are different from 80 or 443, the Nokia Secure Access System package is installed, activated, and enabled. See “Signing On to the Gateway as the Administrator”...

  • Page 26: Newpkg Options

    Installing the Nokia Secure Access System Gateway newpkg Options Table 3 describes the options you can use with the newpkg command. The syntax of newpkg is: newpkg [-o path] [-m media_type] [-l user_name] [-s server_ipaddrs] [-p password] [-n path] Table 3 newpkg Options...

  • Page 27: Signing On To The Gateway As The Administrator

    Signing On to the Gateway as the Administrator After you install, activate, and enable the Nokia Secure Access System package, you can sign on to the gateway as the Administrator from the Sign-on page. To access the Sign-on page, either: Enter the gateway URL into your Web browser.
  • Page 28 Installing the Nokia Secure Access System Gateway Note If Nokia Secure Access System does not appear in the links under the Security and Access Configuration heading, the package is not installed or activated. See “Installing the Nokia Secure Access Package”...
  • Page 29 Note The Sign-On page shows the currently enabled language for the user interface. By default, English is enabled. Nokia Secure Access System supports language packs that allow users to view the system in multiple languages. For more information, see the Nokia Secure Access System Configuration Guide v3.0.
  • Page 30 Installing the Nokia Secure Access System Gateway The Nokia Secure Access System configuration page opens. From the Nokia Secure Access System configuration pages, the administrator can manage and configure the Nokia Secure Access System gateway. Nokia Secure Access System Getting Started Guide...

  • Page 31: Overview Of The Configuration Menu

    Overview of the Configuration Menu Overview of the Configuration Menu After you install the Nokia Secure Access System on your appliance and sign on to the gateway as an Administrator, the main window opens. This section describes the Nokia Secure Access System user interface configuration menu.

  • Page 32: Configuring Nokia Secure Access System

    You can configure the gateway to authenticate the Nokia Secure Access System administrator either by using the same authentication scheme that the Nokia IPSO operating system for the appliance uses, or by using the gateway’s configured authentication methods of the gateway. For instance, the administrator can sign on to the gateway by using a client certificate, or by using a password recognized by a RADIUS or NIS server.

  • Page 33: Installing The License

    Configure License page to install the license, upload a new license or view the current license. Upon initial installation of the Nokia Secure Access System, no license file is present on the gateway. If you do not have a license file, contact your Nokia sales representative or visit the Nokia License Center either at https://support.nokia.com/license...
  • Page 34 Installing the Nokia Secure Access System Gateway 3. Log in to the License Center: Enter your login name and password. Click Register if you are a first time visitor. If you are a first time visitor, your username and password is emailed to you after you complete the new user registration process.
  • Page 35 Configuring Nokia Secure Access System 5. Click Generate Licenses. 6. Cut and paste the host identifier into the Nokia IPSO serial number field. You can obtain this number from the Nokia Secure Access System Configure License page. 7. Click Generate.
  • Page 36 The Configure License page opens. The current license information appears, including the host identifier, license file name, and features of the license. Upon initial installation of Nokia Secure Access System, no license file is present on the gateway. 2. To upload a new license, in the File Name text box enter the file name of the license file stored on your computer, or click Browse to locate the file.

  • Page 37: Configuring A User

    However, a locally-defined user can be authenticated by using an authorization method that communicates with external authorization servers. To configure a user that authenticates to an external server, see the Nokia Secure Access System Configuration Guide v3.0. To add a new user 1.
  • Page 38 The password must contain at least eight characters.The default is eight characters but this number is configurable. The password cannot contain spaces, colons, or control characters. For information about how to change the password, see the Nokia Secure Access System Configuration Guide v3.0.

  • Page 39: Configuring A Group

    The yellow fields allow UTF-8 Unicode. UTF-8 Unicode is used for usernames, descriptions, portal link text, and portal messages. For more information about Unicode, see the Nokia Secure Access System Configuration Guide v3.0. 4. Click Save Settings. Nokia Secure Access System Getting Started Guide...

  • Page 40: Adding A User To A Group

    Installing the Nokia Secure Access System Gateway Adding a User to a Group Use the User Group pages to add a new user group to the gateway and associate users with that group. To add a user to a group 1.

  • Page 41: Configuring A Web Resource

    The Portal Link Text is the text for the hyperlink to the Web Resource as seen on the user portal. For example, you can configure the link text for the resource named Nokia as Go to the Nokia Web site.
  • Page 42 Installing the Nokia Secure Access System Gateway Nokia Secure Access System Getting Started Guide...
  • Page 43 The portal URL must be more specific than the base URL and provides the exact link that is displayed when the user clicks the portal link text. For example:, if the base URL provides access to http://www.nokia.com/, the portal URL can direct them to http://www.nokia.com/welcome.html/ and display the welcome page.

  • Page 44: Configuring Access Control Lists For A Web Resource

    Installing the Nokia Secure Access System Gateway 9. Specify Client-side cookie handling. Default setting is do not allow cookie information from this resource to be sent to the browser. 10. Specify logging. Check the check box to: Enable debug logging for this resource.

  • Page 45: Specifying User Portal Settings

    5. Click Save Settings. The ACL is saved with rules that reflect the allowed user groups for this resource. For information about advanced access control lists, see the Nokia Secure Access System Configuration Guide v3.0. Specifying User Portal Settings Access the user portal pages to specify user portal properties for the Web resource.
  • Page 46 4. Check the Use combined settings of User Groups check box (default). The user’s portal settings now include the portal settings of all user groups to which the user belongs. For more information about user and group settings, see the Nokia Secure Access System Configuration Guide v3.0.
  • Page 47 When the administrator is viewing the Nokia Secure Access System configuration page, they can access their own portal page by clicking the Home link in the upper tool bar on the Nokia Secure Access System configuration page. In a user portal, this link is titled Main.
  • Page 48 Installing the Nokia Secure Access System Gateway Nokia Secure Access System Getting Started Guide...

This manual is also suitable for:

Secure access system

Table of Contents