Using Ldap Servers with SSL | VBrick Systems ETV v4.2.1 manual

Server Administration

Using Single Sign-On

TTo use single-sign-on (and avoid username/password prompts), you must do one of the following:

•Access the Portal Server by the alphabetical name (for example http://yourserver).

•Access the Portal Server by the IP address in which case you must also add the Portal

Server to the Local Intranet Zone (Internet Options > Security > Sites). This setting can be

pushed company-wide by an administrator using security policies.

5.Change Internet Explorer's default settings to allow Automatic logon with current

username and password (Go to Internet Options > Security > Custom Level > User Authentication).

Using LDAP Servers with SSL

Installing the Root Certificate

If the LDAP server requires SSL (Secure Sockets Layer) for encryption and authentication, you will need to install the certificate locally on the ETV Portal Server as a Trusted Root

Certificate Authority.

TTo install the root certificate locally on the ETV Portal Server as Trusted Root Certificate Authority:

1.Open Internet Explorer.

2.In the address bar type https://LDAPSERVER:636 where LDAPSERVER is the address of the LDAP Server associated with Certificate Authority (See Resolving Other Security Alerts on page 85) and 636 is the SSL port used to authenticate with the LDAP Server.

3.When Internet Explorer displays a Security Alert dialog (Internet Explorer 6) or certificate error screens (Internet Explorer 7), click View Certificate.

Note Internet Explorer 6 only. All three items in the Security Alert window below must be in compliance. The first item can easily be installed using these instructions; for the middle item, the local CA will need to create a new certificate if it is out of date; for the last item, the name of the certificate will need to match the address entered in the address bar of your browser.

4.A Certificate window will open, click on the Certificate Path tab.

5.If there is more than on certificate listed in the Certificate Path tab, choose the root certificate by selecting the top-most certificate and then clicking View Certificate.

ETV Portal Server Admin Guide

83

Image 95

VBrick Systems ETV v4.2.1 manual Using Ldap Servers with SSL, Using Single Sign-On, Installing the Root Certificate

Contents

VBrick EtherneTV Portal Server Copyright Contents Server Administration Users and User Groups Configuring for SSL VBPresenter Auto Content IngestionEtherneTV Backup Network Video Recording Amino Set Top Box Acns ConfigurationNXG-to-VOD-W Content Migration Purchased Content Ingestion Index Manual System Backup Organization Portal Server v4.2.1 Admin Guide Getting Help Printer-Friendly Font ConventionsRelated Documents Xii Preface Topics in this chapter IntroductionPortal Server Overview Desktop Requirements Server Requirements PC Type Requirements Copyright Protection MySQL Portal Server FeaturesEnd User Features ETV Portal Server Live Broadcasts Administrative Features ETV VOD Servers Portal Server ComponentsVBrick Encoders/Decoders Server Type Description Zone ETV Internet-Based Servers ETV Network Video Recorder ETV Set Top Box Live Portal Server User Interface VB-PC Remote Controller Windows PCs Portal Server InstallationWM IP Receiver Downloading Components Operating System Browser Locked-Down Windows PCsMacintosh PCs Operating System Browser † Configuring a Macintosh for Tunneled StreamsLinux PCs Environment Supported Streams Closed Captions Zone Ports Protocol Description Port Requirements Installing Portal Server License Files Events. See the ETV Portal Server User Guide for License File Description License Errors Admin Console Login Option Description Admin Console Options Enable Internet Explorer 7.0 Configuration Global Assignments Global Settings Submit. Example There will be an all hands meeting today at Only be done if advised by a VBrick technician or Network Restrictions page or the Modify VOD Content page will \Program Files\VBrick\MCS\Presentations Previously configured machines. The settings here apply to Custom Fields Stream Restrictions Servers Using Secure FTP Adding NXG, VOD-W, and VOD-D Servers Add/Modify VOD/FTP Servers Ftp\root Http Adding WM Servers Global Settings Adding Publishing Points to a WM Server Valid publishing point on the server Creating a VOD-WM FTP Server Adding FTP Servers Creating a VOD-D FTP Server Add/Modify Video On Demand Content Folders Creating Subfolders VBricks Security IWS Server Port Control Devices Advanced Settings Adding Control Devices To define a control device Global Settings Adding User-Defined VBIRs Connecting Control Devices Device Baud Rate Passthrough State Configuring Control DevicesDevice Connector Control Device VBIRs Learning IR Commands Downloading External LibrariesSet Top Boxes To add an STB configuration Recorders Select Add Recorders and click Submit Synchronizing the Portal Server and the NVR Script Devices To add a Script Device configuration Creating a Script Scripts Select Add Scripts and click Submit Example Finding VBrick Parameters and Values Add/Modify a URL for a Live Video Stream URLs Stream Type URL Syntax Valid URL Examples Stream Type URL Syntax Add VOD Content Add Non-VOD Content Priority Alert VBrick Systems, Inc Global Settings VBrick Systems, Inc Program Names Manage Playlists Access Logging Extended Logging Properties Using an Excel Spreadsheet Using EthernetTV Reporter Imported Access Log Channel Guide Server AdministrationChannels Stations Add Custom Stations List Add TV Stations Add New Links Add Custom Programs Custom Programs Custom Program Data Edit Custom Programs Modify VOD ContentPurchased Content Expiration VBrick Systems, Inc Status Diagnostics Access Control Expired Content Log Using Ldap Servers LDAP// Points to a specific position in the Ldap tree Using Single Sign-On Configuring IIS for Single Sign-On Installing the Root Certificate Using Ldap Servers with SSLUsing Single Sign-On Click Browse Resolving Other Security Alerts Live Presentations Help UsersUser Groups Resource Groups Logout VBrick Systems, Inc Definitions Users and User GroupsOverview Resources and Resource Groups AuthenticationAuthorization VBrick Database Choose an Authentication Method Configuring Users and User GroupsSetup and Configure ETV Components Ldap Directory Server Create User Groups on the Portal Server Assign Resources to Users or User Groups Configuring UsersCreate Resource Groups on the Portal Server Create Users on the ETV Portal Server VBrick Systems, Inc Add/Modify User Information Assigning Privileges to Users Add/Modify Users Group AssignmentsAdd/Modify Users Resource Group Assignments Add/Modify Live Channel Privileges Allow Access to Specific VOD Content Allow Access to Specific FTP ServersAllow Access to Specific Recorder Servers Allow Access to Specific VOD Servers Allow VBrick Access Allow Content PublishingAllow Content Recording Default Content Recording Priority Alert Privileges Configuring User GroupsSTB Access Schedule Privileges Add/Modify Groups Resource Assignments Add/Modify Group InformationAdd/Modify Groups User Assignments Add/Modify Resource Group Information Add/Modify Users Resource Assignments STB AuthenticationAuthentication by PIN Authentication by Host Name or IP Address 104 Generate a Certificate Request Configuring for SSL Submit a Certificate Request Install the Certificate Securing the Portal Server User Pages Configure ETV Resources for SSL Web Security Securing the Portal Server Admin Pages NVR Overview Network Video Recording NVR 10 Record Licenses NVR 40 Record Licenses NVR Hardware Standalone NVR NVR TypesNVR Performance Considerations Standard NVR Configuring a Standard NVR NVR InstallationNVR Configuration Configuring a Standalone NVR Using an NVR Portal Server Schedule Record VBPresenter Working with Presentations Configuring MCS for VBPresenterConfiguring an MCS FTP User Account Configuring for Live Presentations Configuring an MCS Presentation User Removing a Live Presentation Launching a Live Presentation Launching a Stored Presentation Configuring for Stored Presentations 120 AutoIngest Content Auto Content Ingestion Example ETV Portal Server Admin Guide 123 AutoIngest Content via XML AutoIngestXML Modes Using the XML TemplateMode Description Server. The format for this data is Tag Description Removing MPEG-4 Closed Captions EtherneTV Backup Profile Name MCS Folder Location ETV Backup Profiles Enable the Warm Backup Server Configuring ETV Backup Set Profile IP Addresses Configure the SchedulerEnter License Key Reset Database Backup Versioning Test the Configuration Bringing a Failed Machine Online as a Warm Backup Turning a Warm Backup Server into a Live Server Bandwidth Throttling Software Installation Amino Set Top Box Connecting the Amino Configuring the Amino Changing the IP Address Configuring a Direct Connection Setting the TV Display Format Configuring the Remote Control for a TVConfiguring the Amino for a Widescreen Video Output with a Widescreen 169 TV 140 VOD-W Server Configuration Acns ConfigurationAcns Configuration Portal Server Configuration Acns Server Configuration Verify Installation Topics in this document Rebranding the User InterfaceCustomizing the Portal Server Changing the Title and Header Image Header Image Rebranding the Portal ServerPortal Server Webpage Background Header Search Bar Margins and BordersHeader Search Bar Background Header Search Bar Navigation Text Channel Guide Time Navigation Player’s Title TextChannel Guide Search TextBox Channel Guide Background Search Area Footer Channel Guide Content ListLive Content List Channel Guide Station Menu STB List and Related Html Rebranding Other ETV ComponentsVBrick Set Top Box VBrick IP Receiver Creating an Asset List NXG-to-VOD-W Content Migration Sample Asset List Using the Migration Tool Running the Migration Tool Increasing the Ingestion Rate Destination VoD Server Source VoD Server Schedule Recovering from Migration ErrorsVerifying the Migration 156 Configuring IIS Purchased Content Ingestion 158 Configuring a VOD-W Server Ingesting Content To ingest purchased content to your VOD servers Ingesting Purchased Content Backing Up the Database 162 System Backup Manual System Backup System Restore Index 166