RWWGuard 2008 Installation Guide

Overview

Purpose of this Guide

This guide describes the procedures and requirements for installing and configuring RWWGuard on Microsoft’s Small Business Server 2008 (SBS2008) and Essential Business Server 2008 (EBS2008).

Audience

This guide is intended for consultants and administrators with a need to add strong authentication to their Remote Web Workplace login facilities on SBS2008 or EBS2008.

RWWGuard Overview

Scorpion Software’s RWWGuard helps protect your small business and enhance its remote access security with the addition of two-factor authentication directly into Remote Web Workplace. This doesn’t impact your choice of what services RWW can provide or how they work, yet it’s a substantially stronger protection to unlock the door. Now you also require a physical key. Combining the standard RWW domain credentials with the one time password (OTP) from your key even eliminates password guessing done inside your business from being used later from the outside.

You have much greater assurance that the remote user connecting in is actually your trusted user, and not some rogue imposter who may have captured the login credentials. And unlike standard RWW access, RWWGuard 2008 records an audit trail showing you summarized and detailed login records of your RWW users.

Evaluating RWWGuard 2008

Requirements

Please review the following information to see if you meet minimum system requirements to use RWWGuard 2008. RWWGuard 2008 has been tested on SBS 2008 and EBS 2008 respectively.

Supported Operating Systems

• Small Business Server 2008
• Essential Business Server 2008

Software Requirements

• Microsoft Internet Explorer 6.0 or later
• .NET Framework 2.0
• Microsoft Installer Services (MSI) 3.0

Other Requirements

• Scorpion Software’s AuthAnvil Two Factor Auth Strong Authentication Server (SAS)

What you need to begin

To begin your installation of RWWGuard 2008 we recommend you collect and prepare the following items:

• RWWGuard 2008 installer file, typically named RWWGuard2008.exe. You can download this installer from the Scorpion Software Customer Portal at http://www.scorpionsoft.com/downloads
• The RWWGuard 2008 Installation Guide. Consider printing out this guide or having it available during your actual installation session(s).
• Administrative access to a supported operating system in which you wish to install RWWGuard 2008. It is recommended that during evaluation you test RWWGuard 2008 in a non-production environment.
• The URL to your Two Factor Auth Strong Authentication Server. ie: https://yourserver.com/AuthAnvil/SAS.asmx

Installation

Installing RWWGuard 2008

1. Download the latest RWWGuard 2008 installer from the Scorpion Software download page at http://www.scorpionsoft.com/downloads
2. Double-click on the exe file to begin the installation.
3. The setup program will prompt you for standard path information like where to install the files, and analyze your IIS configuration to make the proper Virtual Directory for the management console. It will then backup the original Remote Web Workplace files, and install all the new appropriate files.
4. After installation, the setup program will launch the RWWGuard Configuration Wizard.

Configuring RWWGuard 2008

On installation RWWGuard 2008 is initially disabled. RWWGuard 2008 must be configured to communicate to an Two Factor Auth strong authentication server before it can start offering two-factor authentication to remote users.

Enabling RWWGuard Support

When you ready to enable strong authentication for users in Remote Web Workplace, simply select the “Enable Two Factor Auth passcode field in RWW logon page” checkbox.

Selecting the Authentication Policy

With RWWGuard 2008, you can control who is required to prove their identity with an AuthAnvil Two Factor Auth credential or not. Using the “AuthAnvil Authentication Policy”, you can either configure the policy to be:

• Required only for users in the exception list; or
• Required for all users except those in the exception list

Combined with the AD Security Group Exception List, which is a defined Active Directory Security Group, users can be added or removed to adjust the required policy within Remote Web Workplace.

Configuring Two Factor Auth settings

RWWGuard can communicate via web services directly with an Two Factor Auth strong authentication server to validate an OTP Passcode. In the “Two Factor Auth SAS URL” you need to configure the URL where the Two Factor Auth TokenValidator service lies, and the Site ID that your company is configured to.

Example: https://localhost/AuthAnvil/SAS.asmx

NOTE: You may need to configure your firewall to allow for HTTPS to be spoken to/from the server. For safety and security of the user PIN and OTP, it is NOT recommended to use the clear text HTTP protocol.

NOTE: The SBS Server where RWWGuard resides MUST trust the remote digital certificate if connecting to an external Two Factor Auth server. The easiest way to test this is to click the “Verify URL” button in the Configuration tool.

Using RWWGuard 2008

Normal Operations

When RWWGuard 2008 is installed but not enabled, it will continue to provide detailed audit logging in the RWWGuard Event Log. It looks and acts EXACTLY like the traditional Remote Web Workplace logon page, with the one caveat that RWWGuard 2008 does not currently support the “Change Password” functionality if an Active Directory password expires.

When RWWGuard 2008 is enabled, a new OTP Passcode field is added to the logon form.

If a user is required to provide an OTP Passcode, the username is sent along with the OTP Passcode to the configured Two Factor Auth SAS. On success, the active directory credentials are then verified, and finally logon to Remote Web Workplace occurs.

Reviewing Audit Logs

Viewing the Authentication Logs

RWWGuard provides detailed audit logs for all users who use Remote Web Workplace. Included in this are the following fields:

1. Active Directory Username
2. Logon Time
3. Status
4. IP Address

You can view these logs directly in the RWWGuard log in Event Viewer under the Applications and Services Logs.

Conclusion

Congratulations! There is always so much to see in a new product, and you have just successfully completed an installation and review of the key features of Scorpion Software’s RWWGuard 2008 product.

While this Installation Guide can only cover the highlights of RWWGuard 2008 in action, we have been able to see several key points:

1. RWWGuard 2008 is easy to set up and install. As a built in web application on SBS2008 and EBS2008, it blends easily with your existing management process.
2. RWWGuard 2008 protects your small business and enhances its remote access security with the addition of two-factor authentication directly into Remote Web Workplace.
3. RWWGuard 2008 not only highlights logon failures, it allows the administrator to go from high-level detection to detailed analysis of current password policies.

Thank you for taking the time to install RWWGuard 2008. If you have any questions or comments on the RWWGuard 2008, or wish to provide feedback on this document, please feel free to email support@scorpionsoft.com.