hands-on - data secure basic setup
TRANSCRIPT
-
8/17/2019 Hands-On - Data Secure Basic Setup
1/5
1
SOLUTION DELIVERYTRAINING MATERIAL
DATASECURE 5 SERIES HANDS-ON SESSION
DATASECURE BASIC CONFIGURATION
PRE-REQUISITES:
1. Course topics: Encryption Basics,
2. DataSecure appliance with 5.x firmware and NULL Modem cable (RS232)
3. Server: Microsoft Windows 2003 server SP2.
When setting up DataSecure for ProtectFile lab, refer to ProtectFile Hands-on prerequisites for furthercomponents installation.
DURATION OF SESSION:
60 Minutes
THE AIM OF THE HANDS-ON SESSION:
At the end of this hands-on session you will know how to:
1. Perform DataSecure FirstRun
2. Configure DataSecure Network
3. Connect to DataSecure using web browser and SSH
4. Familiarize with the DataSecure GUI
5. Connect DataSecure to Active Directory for LDAP Administrator creation (for ProtectFile)
6. Backup configuration
-
8/17/2019 Hands-On - Data Secure Basic Setup
2/5
2
SOLUTION DELIVERYTRAINING MATERIAL
STEP BY STEP WALKTHROUGH DATASECURE:
PART I – DATASECURE FIRSTRUN
Step 1: Connect DataSecure appliance to power, network and NULL Modem cable
1. Verify you have a Null modem cable (included with the DataSecure appliance), Ethernet cable (not
included with the DataSecure appliance) and Power cable (included with the DataSecure appliance) .
2. Place the DataSecure appliance in your data center/ lab.
3. Plug one end of the null modem cable into the serial port on the back panel of the DataSecure appliance.
4. Use the Ethernet cable to connect the Ethernet interface on the back of the DataSecure appliance to the
network.5. Connect the power cable from the power supply on the back panel of the DataSecure appliance to an AC
power source.
6. Turn on the master power switch on the back panel of the DataSecure appliance.
7. Unscrew the front plate of the DataSecure appliance to access the front panel components.
8. Press the power switch on the front panel.
9. Reattach the front plate.
Step 2: Execute FirstRun
1. Start a terminal emulation session using HyperTerminal or PUTTY2. Use the following port settings:
VT100/ANSI
8 data bits
1 stop bit
9600 bps
Parity-none
Hardware flow control
3. When the system prompts you to begin setup, select “y”
4. Enter new admin password (use complexity)
5. Enter time information:
Time zone
Current date and time
6. Enter network information (same network as your domain controller and client):
IP Address
Subnet Mask
Default Gateway
-
8/17/2019 Hands-On - Data Secure Basic Setup
3/5
3
SOLUTION DELIVERYTRAINING MATERIAL
Hostname
Port for web administration (9443 is default)
PART II – CONNECT TO THE DATASECURE APPLIANCE
Step 1: Connect using SSH
1. On the server, open PUTTY
2. Leave port 22 (SSH)
3. Enter the DataSecure IP address as setup in Part I, step 6
4. Enter admin username5. Enter admin password
6. Type “help” to see a list of available CLI commands
Step 2: Connect using web browser (Management Console)
1. Open your web browser
2. In the address bar type https://ip-address:port i.e. https://192.168.0.1:9443
3. Accept the certificate warning
4. You are presented with the DataSecure Login screen
5. Enter admin username
6. Enter admin password
7. Click on Log In
8. You are presented with the DataSecure Home screen
PART III – DATASECURE GUI
Step 1: Home Tab
1. After login to the DataSecure appliance, the Home Tab opens
2. Under System Summary, inspect the Product version and the Software version of the appliance
3. Verify the correct date, time and time zone
4. Inspect the DataSecure licenses
5. Check the Recent Actions log, you should see your login details
https://192.168.0.1:9443/https://192.168.0.1:9443/https://192.168.0.1:9443/https://192.168.0.1:9443/
-
8/17/2019 Hands-On - Data Secure Basic Setup
4/5
4
SOLUTION DELIVERYTRAINING MATERIAL
Step 2: Device Tab – NTP Settings
1. Navigate to the Device Tab in the Management Console
2. Click on Date & Time 3. Under NTP Settings click Edit
4. Select Enable NTP
5. In the NTP Server 1 field, enter: pool.ntp.org
6. Click Save
If working with Pro tec tF i le proceed with next step. If not, skip directly to Step 4 .
Step 3: Device Tab – LDAP Administrator Settings [for ProtectFile only]
1. Click on Administrators 2. Select LDAP Administrator Server
3. Under LDAP Administrator Server Properties, click Edit
4. Enter the IP Address of your Active Directory Domain Controller
5. Enter LDAP port: 389
6. Don’t select Use SSL and Trusted Certificate Authority
7. Leave Timeout at default
8. Enter administrator username in Bind DN in a form of [email protected]
9. Enter administrator’s password in Bind Password
10. Click Save to save the settings
11. Click LDAP Test to verify the settings are correct12. After successful LDAP verification, click Edit under LDAP Schema Properties
13. In the User Base DN , enter the directory top level in a form of dc=demo,dc=com
14. In the User ID Attribute , enter sAMAccountName
15. In the User Object Class , enter organizationalPerson
16. In the User List Filter , enter (&(objectClass=user)(objectCategory=person))
17. In the Search Scope , enter Subtree
18. Click Save to save the settings
19. In the Device Configuration Menu , click on Administrators
20. Click on Create LDAP Administrator
21. Click the Browse button22. You are presented with a list of users from the directory
23. Select the user you want to use and click Select
24. Select High Access Administrator
25. Click Create
26. The user is created and added to the list of the appliance administrators
27. Select the newly created user and click Check Administrator
mailto:[email protected]:[email protected]:[email protected]:[email protected]
-
8/17/2019 Hands-On - Data Secure Basic Setup
5/5
5
SOLUTION DELIVERYTRAINING MATERIAL
Step 4: Device Tab: Maintenance - Backup & Restore
1. Select Backup & Restore
2. Select Create Backup 3. Click on Select All and Continue
4. Provide Backup Name
5. Provide Backup Description
6. Provide and confirm the backup password
7. Leave the default Internal option selected
8. Click on Backup
9. The backup file is created on the DataSecure appliance