• No results found

Technical specifcation

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "Technical specifcation"

Copied!
7
0
0

Loading.... (view fulltext now)

Download now ( 7 Page )

Full text

(1)

Technical specifcation

ITSM Cockpit

Page: 1 / 7

(2)

Table of contents

Introduction... 3

Key generation... 4

I.ITSM Cockpit Key Generator installation...4

II.Create a new key fle...5

III.Add a new machine to an existing key fle...6

Key installation... 7

I.ITSM Cockpit Manager...7

II.ITSM Cockpit Portal...7

III.ITSM Cockpit Engine...7

Page: 2 / 7

(3)

Introduction

By default, all sensitive information in the ITSM Cockpit database, such as passwords, are encrypted using a secret key contained in the application binaries. This means that an attacker with access to an EXP database and the application binaries will be able to gain full access to the sensitive information stored in this database. Hence, the protection level of the sensitive data depends on the protection level of the database.

If the protection of the database cannot be guaranteed or is not considered suffcient, it is possible to use a system-specifc encryption key. Without this key, it is not possible to access any sensitive information stored in the ITSM Cockpit database. To further strengthen security, this key can be bound to a fxed set of MAC addresses. The application will only accept such a key if one of the active MAC addresses of the machine running it matches one of the addresses specifed in the key fle.

If no MAC address is specifed for a key, it will work on any machine. Note that it if you choose to do this, you need to make sure that the confguration directories containing the key fle are protected accordingly.

Warning:

Using a system-specifc key means that the protected data will be inaccessible without it. This means that the loss of the key fle means the loss of all this data. It must be backed up accordingly. Another important impact to consider is that it is currently not possible to change the encryption key for an existing EXP database. This means you need to generate the key before a system is installed.

Page: 3 / 7

(4)

Key generation

I. ITSM Cockpit Key Generator installation

Download the “ITSM Cockpit Key Generator”.

https://download.itsm-cockpit.com/tools/ITSM_Cockpit/itsm-cockpit-key-generator-V100-setup.exe

Execute the setup program (administration rights necessary): kitsm-cockpit-key-generator-XXXX-setup.exe Select “Next”.

Select “All users”.

Modify the default installation directory (C:\koaly\key-generator) if necessary. Modify the default shortcut directory (Koaly\Koaly Key Generator) if necessary. Select “Next”.

Select “Finish”.

Launch the Generator (Start\Koaly\Koaly Key Generator)

It can be used to create a key fle as well as add or remove MAC addresses from an existing key fle.

Page: 4 / 7

(5)

II. Create a new key fle

Quick method:

To generate a new key fle, simple start the ITSM Cockpit Key Generator application, optionally add a set of MAC addresses, defne a password and then save the fle (fle name: koaly.key)

This default method will generate a random key. The key:

• If you want to create a fle with a random key, use File / New (random key)

• If you want to specify a key explicitly, use File / New (existing key). You will be asked to enter a key in the form of a string of 32 ASCII characters.

Page: 5 / 7

(6)

• If you want to add a set of authorized MAC addresses, use the MAC addresses management menu.

Password:

To protect a key fle from modifcation, a password may be assigned. Modifying a password-protected key fle is only possible after typing the correct password.

III. Add a new machine to an existing key fle

To add a new machine to an existing system, its MAC address needs to be added to the koaly.key fle. This can be done by loading the fle in the ITSM Cockpit Key Generator application. After typing the key password, the new MAC address can be added. After saving the new key fle, it needs to be deployed to all services on this machine as described above.

Note that is recommended, albeit not necessary, to distribute the modifed key to all services in the systems (managers, portals and engines).

Page: 6 / 7

(7)

Key installation

I. ITSM Cockpit Manager

To install a key for a new system, you may use the following procedure: • After installing the binaries for the ITSM Cockpit Manager • Generate the koaly.key fle

• Copy the koaly.key fle to the confguration directory (default: c:\koaly\management-interface\conf) • Continue the normal installation procedure for the Manager

Once the ITSM Cockpit Manager is confgured, change the password of the user koalyadm through the “Tools” menu in ITSM Cockpit Manager.

II. ITSM Cockpit Portal

For each portal added to the system, you need to copy the key fle to the corresponding confguration directory as follows:

• After installing the ITSM Cockpit Portal binaries • Generate the koaly.key fle

• Copy the koaly.key fle to the confguration directory (default: c:\koaly\exp\portal\conf) • Continue the installation procedure for the Portal

III. ITSM Cockpit Engine

For each engine added to the system, you need to copy the key fle to the corresponding confguration directory as follows:

• After installing the ITSM Cockpit Engine binaries • Generate the koaly.key fle

• Copy the koaly.key fle to the confguration directory (default: c:\koaly\exp\engine\conf) • Continue the installation procedure for the Engine

Document end

Page: 7 / 7

References

Download now ( PDF - 7 Page - 78.79 KB )

Related documents

A simplicial branch and duality bound algorithm for the sum of convex–convex ratios problem

We have presented and validated a simplicial branch and duality bound algorithm for globally solving the sum of convex–convex ratios problem with nonconvex feasible region..

!fu sst u. ly ee 4L I CHECKED By. OfirTsrdht. 4lr,. ?so >40 d30 G70

(*1) Traceable to relevant Intemational Standards (*2) For Specification, See Permissible Deviation Column. (+3) UUT Deviation calculated from

Interim Administration in Higher Education

This study attempts to add to the limited research and knowledge regarding the need for interim preparedness, the support that interims need as they serve as leaders in

MR GMAT AnalyticalWriting 6E

Discuss how well reasoned you find this argument. In your discussion be sure to analyze the line of reasoning and the use of evidence in the argument. For example, you may need

Light Fields for Face Analysis

The remainder of the survey is organized as follows: Section 2 introduces the light-field function and the novel features provided by the images captured by the devices

The Urban Teacher Programme at Wheelock College in Boston Massachusetts: Models of Recruitment, Retention and Teacher Preparation

The Programme has been recognised as a model of good practice, in terms of its recruitment procedures, student retention and preparing teachers to teach in culturally diverse

PROCEEDINGS OF THE CITY COUNCIL Rapid City, South Dakota. June 2, 2014

Motion was made by Lewis, second by Laurenti to (No. LF052814-14) Authorize Winter Storm Atlas Equipment Purchases. A substitute motion was made by Scott, second by Petersen

The role of structural embeddedness in an IT outsourcing network

Our research attempts to reveal how structural embeddedness can affect the decision- makings of clients and vendors and their resulting outcomes in an ITO network and