Home » Symantec Manuals » Computer Software » Symantec 14541094 » Manual Viewer

Symantec 14541094 User Guide - Page 210

Configuring pcAnywhere to use public-key encryption

UPC - 037648640480

Add to My Manuals
Save this manual to your list of manuals

Page 210 highlights

210 Securing your computer and sessions Using encryption to protect data This option is not applicable for pcAnywhere encoding. 6 Click OK. Configuring pcAnywhere to use public-key encryption In public-key encryption, pcAnywhere uses a digital certificate to verify the identity of the person who is attempting to connect and send data. It then uses symmetric encryption algorithms to secure the session. Some configuration is required to ensure that both the host and remote users have access to the appropriate key pairs. To use public-key encryption in pcAnywhere, the host and remote users must do the following: ■ Provide each other with copies of their digital certificates. ■ Set up a certificate store that contains the certificates of those users who will connect to their computers. ■ Locate certificates and private keys when the host computer is running as a service. ■ Configure a connection item to use public-key encryption. When you select public-key encryption, pcAnywhere only allows connections with computers that are also using public-key encryption. Connections with computers that are set to any other encryption level are denied. Creating a certificate file to send to another user Certificates are data documents that contain identification information that includes the user's name, public key, issuing authority, and data signature. Symantec pcAnywhere requires that you use Microsoft-compatible certificates. You can obtain these from a commercial certificate authority (for example, VeriSign or Entrust) or from an internal certificate server. You can create a certificate file by exporting your certificate in Microsoft Internet Explorer. Use any export format that does not include the private key (for example, PKCS#7 with a .p7b file extension). Send the file to the computer to which you want to connect using a secure method. Alternatively, the other user can download your certificate from the certificate authority. Follow the certificate authority's instructions for finding and downloading another user's certificate.

Section	Page
Symantec pcAnywhere User's Guide	1
Technical Support	4
Contents	9
1. Introducing Symantec pcAnywhere	19
About Symantec pcAnywhere	19
What's new in Symantec pcAnywhere	20
Components of Symantec pcAnywhere	21
How Symantec pcAnywhere works	22
Understanding the difference between a host and a remote	22
About connecting over the Internet	23
Issues that affect performance	26
What you can do with Symantec pcAnywhere	28
Where to find more information	29
2. Installing Symantec pcAnywhere	31
Preparing for installation	31
Symantec pcAnywhere system requirements	31
User rights requirements	35
Installation options	36
If you have a previous version installed	40
Symantec pcAnywhere installation	40
Installing the full product version	41
Installing a custom version	42
Running the setup program manually	42
Post-installation tasks	43
Registering Symantec pcAnywhere	43
Starting Symantec pcAnywhere	43
Modifying installation settings	44
Updating Symantec pcAnywhere	45
Uninstalling Symantec pcAnywhere	45
3. Navigating in Symantec pcAnywhere	47
Selecting a view mode in Symantec pcAnywhere	47
Starting a connection in Basic View	48
Viewing or editing connection settings	52
Working in Advanced View	53
Organizing column headings in the Symantec pcAnywhere window	54
Customizing the Symantec pcAnywhere navigation bar	55
Closing the main product window upon connection	56
About the Connection Wizard	56
What you need to know before you connect	57
Ways to connect to another computer remotely	57
About the start modes for remote connections	59
About the Session Manager	60
Changing how active sessions appear in the Session Manager	61
Showing or hiding options on the Session Manager navigation bar	62
Resizing the Session Manager navigation bar	63
Showing or hiding the Session Manager navigation bar	63
Managing pcAnywhere preferences	63
About customizing network connections	64
Customizing modem connections	65
Customizing European ISDN connections	66
Customizing direct connections	67
4. Allowing others to control your computer	69
Managing host connections	69
Adding a host connection item to Favorites	69
Locating a recent host connection item	70
Ways to set up a host computer	70
Using the Connection Wizard to configure a host connection	70
Configuring a host using advanced properties	72
Knowing which connection device to use for host sessions	74
Configuring a host network connection	75
Selecting a network card	76
Changing the default port numbers on the host	77
Configuring a host modem connection	77
Configuring an ISDN connection on a host	78
Configuring a direct connection on a host	79
Setting the host startup options	80
Setting end of session options	81
Configuring a host computer to use directory services	83
Specifying a host name	84
Ways to start a host session	84
Waiting for a connection from a remote computer	85
Calling a remote computer	85
Accepting a host invitation	86
What you can do during a host session	86
Working with the host online menu	87
Letting multiple remote users hold a conference	87
Chatting online with the remote user	89
Ending a host session	89
5. Controlling another computer remotely	91
Managing remote connections	91
Adding a remote connection item to Favorites	91
Locating a recent remote connection item	92
Ways to set up a remote computer	92
Using the Connection Wizard to configure a remote connection	93
Configuring a remote connection using advanced properties	94
Knowing which connection device to use for remote sessions	95
Configuring a remote network connection	96
Customizing the data port range for remote connections	98
Changing the default port numbers on the remote	99
Configuring a remote modem connection	99
Configuring a direct connection on a remote	103
Configuring a remote computer to use directory services	104
Connecting through a pcAnywhere Gateway or an Access Server	105
Modifying connection speeds	106
Adjusting video performance settings	107
Automatically logging on to the host computer	108
Automatically reconnecting if the host is busy	109
Ways to start a remote control session	109
Starting a remote connection item	110
Waiting for a host connection	110
Connecting to another computer using Quick Connect	111
What you can do during a remote control session	117
Taking a snapshot	119
Changing display settings during a remote control session	119
Changing the background colors	121
Configuring remote printing	121
Transferring the contents of the Windows clipboard	122
Chatting online with the host user	123
Connecting to multiple hosts	123
Ending a remote control session	124
Connecting to a computer that does not have a host running	124
Connecting to a computer using Quick Deploy and Connect	125
Configuring initial host properties for Quick Deploy and Connect	126
About reconnecting to a host using the Quick Deploy and Connect feature	133
Editing the Quick Deploy and Connect host properties	134
How pcAnywhere works in a Windows recovery environment	135
6. Supporting computers and servers remotely	137
About Symantec pcAnywhere Remote Management tools	137
User rights requirements for remote management	137
Ways to start a remote management session	138
What you can do during a remote management session	139
Managing tasks remotely	140
Running DOS commands	141
Viewing services	143
Viewing and editing system files	145
Viewing and editing the system registry	146
Viewing the event log	147
Viewing and uninstalling programs	148
Restarting or shutting down a host computer during a remote management session	148
Locking a computer or logging off a user during a remote management session	149
Sending system state commands to one or more computers	150
Ending a remote management session	153
7. Transferring files and folders	155
About pcAnywhere File Transfer	155
Going to a recently visited file location	156
Tagging all files in a folder	157
Tagging all folders in a directory	157
Tagging files using wildcard characters	157
Tagging files by date modified	158
Managing files and folders	158
Comparing folders	159
About file transfer preferences	160
Selecting a start-up location	160
Selecting an overwrite option	161
Increasing file transfer performance	161
Ways to start a file transfer session	162
Transferring files between computers	162
Canceling a file transfer operation	163
Pausing a file transfer operation	163
Viewing the Command Queue during a file transfer operation	164
Changing file transfer settings during a session	164
About synchronization and cloning	165
Synchronizing folders	165
Synchronizing folders by file type	165
Cloning a folder	166
8. Automating file transfer and management tasks	167
About the Command Queue	167
Using command queue files to automate tasks	168
Using environment variables	169
Working with command queue files	169
Arranging items in the queue file	174
Adding remote connection items to a command queue file	175
Selecting file handling options for command queues	176
Selecting end of session options for command queues	177
Creating a command queue file during a session	182
Pausing the Command Queue	182
Removing a command from the command list	182
Arranging commands in the command list	182
Saving a command queue file	183
Generating a command queue report on-demand	183
Running a command queue file	184
Running a command queue file during a session	184
Running a command queue file without starting a session	184
Scheduling a command queue file to run automatically	186
9. Securing your computer and sessions	189
Protecting a host computer from unauthorized access	189
About authentication in pcAnywhere	190
Configuring logon security	194
Securing the host computer upon connection	195
Hiding the host name from network search results	196
Calling back remote users	197
About access rights	198
Configuring caller rights	198
Setting time limits for callers	199
Blocking connections by days or times	200
Restricting access to computer drives	201
About session security	202
Restricting control of the keyboard and mouse	203
Setting inactivity time limits for sessions	204
Using encryption to protect data	204
About the Symantec Cryptographic Module	205
About symmetric encryption	205
About public-key encryption	206
Understanding the performance trade-offs	206
How pcAnywhere works with encryption	207
Configuring pcAnywhere to use pcAnywhere encoding	207
Configuring pcAnywhere to use symmetric encryption	208
Denying connections from computers that use lower encryption	209
Configuring pcAnywhere to use public-key encryption	210
Protecting configuration settings	214
Ways to assess host security	215
Running the Host Assessment Tool	216
Specifying the location of the host connection items	217
Analyzing scan results	217
Getting more information about scan results	218
Learning more about security features	218
Saving scan results	219
10. Monitoring and recording sessions	221
Monitoring events in Symantec pcAnywhere	221
Sending logging events to an SNMP trap	221
Generating a pcAnywhere log file	223
Logging events in the Windows Event Viewer	224
About logging information to a central server	224
Managing log files	226
Creating an activity log report	226
Archiving or deleting log file data	227
About recording and replaying sessions	228
Recording a remote session	228
Automatically recording a remote session	229
Automatically recording a host session	229
Replaying a recorded session	230
Saving information from a recorded session	232
11. Connecting across multiple platforms	233
About Symantec pcAnywhere CrossPlatform	233
Installing Symantec pcAnywhere CrossPlatform	233
Installing pcAnywhere CrossPlatform on Windows	234
Installing pcAnywhere CrossPlatform on Linux	234
Installing pcAnywhere CrossPlatform on Mac OS X	235
Starting pcAnywhere CrossPlatform	236
Connecting to a host computer through pcAnywhere CrossPlatform	237
Securing CrossPlatform connections	237
Encrypting your CrossPlatform sessions	238
Connecting to a serialized host	239
Configuring a host session on a Linux or Mac OS X computer	239
Changing subnet settings for CrossPlatform host searches	240
Navigating in a CrossPlatform session	241
Transferring files during a CrossPlatform session	243
Transferring clipboard content in a CrossPlatform session	244
Increasing video performance during a CrossPlatform session	244
Using ezScroll to navigate during a CrossPlatform session	245
Saving and opening CrossPlatform connection files	245
Ending a CrossPlatform session	246
12. Connecting from a Web browser	247
About Symantec pcAnywhere Web Remote	247
About Web Remote setup	248
Starting the Web Remote from the installation CD	249
Starting the Web Remote from a hard drive, server, or removable media	249
Ways to secure your Web Remote session	250
How the Web Remote secures the logon process	251
About Web Remote encryption	252
Configuring session encryption	253
Using a serial ID to secure a connection on Web Remote	254
Editing port settings in Web Remote	255
Ways to connect to a host through Web Remote	255
Connecting to a host in the host list	255
Connecting to a host by manually entering connection information	256
What you can do during a Web Remote session	257
Transferring clipboard contents on Web Remote	258
Increasing video performance during a Web Remote session	259
Using ezScroll to navigate during a Web Remote session	259
Ending a Web Remote session	260
13. Connecting from a mobile device	261
About Symantec pcAnywhere Mobile	261
What you can do in Symantec pcAnywhere Mobile	262
Getting help on your device	262
Symantec pcAnywhere Mobile installation	263
Symantec pcAnywhere Mobile system requirements	263
If you have a previous version of Symantec pcAnywhere Mobile installed	264
Installing Symantec pcAnywhere Mobile	264
Uninstalling Symantec pcAnywhere Mobile	267
Starting Symantec pcAnywhere Mobile	269
Ways to connect another computer from a mobile device	269
Configuring a custom connection item on your mobile device	270
Including logon information in your mobile connections	272
Connecting through a pcAnywhere Gateway or Access Server	273
Encrypting your mobile sessions	274
Using a serial ID to secure mobile connections	276
Specifying the host ports for mobile connections	276
Adding subnet addresses to a host search on your mobile device	277
Starting a mobile session from a custom connection item	278
Starting a mobile connection from Quick Connect	278
Navigating in the Symantec pcAnywhere Mobile session screen	280
Modifying navigation preferences during a mobile session	282
Improving performance during a mobile session	283
Performing remote control tasks from a mobile device	284
Starting a remote management session in Symantec pcAnywhere Mobile	284
What you can do during a remote management session	285
Viewing or changing program status from a mobile device	285
Stopping and starting processes from a mobile device	286
Locking your computer or logging off a user from a mobile device	288
Restarting or shutting down a host computer from a mobile device	289
Running DOS commands from a mobile device	290
Ending a mobile session	291
Managing connection items on a mobile device	292
Renaming a connection item on a mobile device	292
Copying a connection item on a mobile device	292
Organizing connection items on a mobile device	293
Removing a connection item from a mobile device	293
About closing Symantec pcAnywhere Mobile	293
14. Managing Symantec pcAnywhere Gateway	295
About Symantec pcAnywhere Gateway	295
Installing Symantec pcAnywhere Gateway	296
About the Gateway Manager	297
Starting pcAnywhere Gateway	298
Changing the launch preferences	299
Changing the pcAnywhere Gateway computer name	299
Hiding the pcAnywhere Gateway computer in search results	299
Securing the Gateway	300
Monitoring events	300
Editing port settings for pcAnywhere Gateway	302
Configuring pcAnywhere Gateway to allow incoming modem connections	302
Choosing how pcAnywhere Gateway discovers hosts	303
Adding or removing a subnet for Gateway host searches	303
Docking to a Symantec pcAnywhere Access Server	303
Ending a pcAnywhere Gateway session	304
Stopping the pcAnywhere Gateway service	304

Match case Limit results 1 per page

This option is not applicable for pcAnywhere encoding.

Click

Configuring pcAnywhere to use public-key encryption

In public-key encryption, pcAnywhere uses a digital certificate to verify the identity

of the person who is attempting to connect and send data. It then uses symmetric

encryption algorithms to secure the session.

Some configuration is required to ensure that both the host and remote users

have access to the appropriate key pairs. To use public-key encryption in

pcAnywhere, the host and remote users must do the following:

■

Provide each other with copies of their digital certificates.

■

Set up a certificate store that contains the certificates of those users who will

connect to their computers.

■

Locate certificates and private keys when the host computer is running as a

service.

■

Configure a connection item to use public-key encryption.

When you select public-key encryption, pcAnywhere only allows connections with

computers that are also using public-key encryption. Connections with computers

that are set to any other encryption level are denied.

Creating a certificate file to send to another user

Certificates are data documents that contain identification information that

includes the user's name, public key, issuing authority, and data signature.

Symantec pcAnywhere requires that you use Microsoft-compatible certificates.

You can obtain these from a commercial certificate authority (for example,

VeriSign or Entrust) or from an internal certificate server.

You can create a certificate file by exporting your certificate in Microsoft Internet

Explorer. Use any export format that does not include the private key (for example,

PKCS#7 with a .p7b file extension). Send the file to the computer to which you

want to connect using a secure method.

Alternatively, the other user can download your certificate from the certificate

authority. Follow the certificate authority's instructions for finding and

downloading another user's certificate.

Securing your computer and sessions

Using encryption to protect data

210