abylon LOGON

Only abylon ENTERPRISE Im Funktionsumfang dieser Version  and abylon LOGON Im Funktionsumfang dieser Version

The software abylon LOGON offers a comfortable way to protect your computer against illegal access. You only need to train your smart card, your removable media (e. g. memory stick), or a CD/DVD with your windows login data and in the future this medium is your authentication for the computer. The input of a master-password is possible as extended protection. By leaving your computer you need only to pull the smart card or the removable media and your computer locked or logged out automatically. Thus protect your computer against snoopier views and data theft without large training. For professional users various certificate smart cards are supported. During the registration to the computer only the smart card or the USB-Token (e.g. Aladdin eToken) must be insert.

Features:

Window

1. Accounts Show the current used Logon medium with all accounts.
2. Show Account-Management next time Skip the Account-Manager dialog.;

In abylon SETTINGS on the side Common can be activate the dialog!
3. Add Create a new logon account for the current used media.
4. Delete Remove the selected logon account.
5. Logon Execute the logon procedure without delay.
6. Cancel Closes the dialog without further action!
7. Time index Time in seconds, after the logon procedure execute automatically.

Tutorial

I. Create a logon account in the setting window

You can use an extremely long window-logon-password, because you don't remember this permanently. In Future you use for logon the media only. (Note this password at a safe place to prevent the lose of your password in case that your media is defect or lost!)

1. Settings Open the side Logon in the abylon SETTINGS.
2. Create a new account The creation of a new Logon Account made in the Setting dialog with the following buttons:

or Create account for inserted card

Following open the Options dialog to change or create a Logon Account.

 
3. Insert smartcard/USB-Token/-Stick/CD
You are occur to insert the used media for the logon process.

Currently possible media types

  • Certificate Smartcard / Token
  • EC / HBCI Moneycard (with Chip)
  • Memory-Card
  • External Memory-Device (e.g. USB-Stick)
  • CD / DVD
  • RFID-Radio-Card
  • NOTE: Is your preferred medium not supported? Depending on the version individual media can be disabled!  For questions or additional hardware support, please use our support form!

The individual media types can be deactivate in the abylon SETTINGS on the side Logon > Extended!
4. Enter logon registration data Enter you correct logon registration data, such Username, Password and Domain / Workgroup.
The input is conclude and the account is create with Ok.
5.  Two-factor authentication Following can be define, if the Logon Account is additionally save with a password.

If you choose , you must enter the desired password two times and confirm with .
If you choose , then the medium is enough to login to the computer.
6. SecureID The SecurID is a so-called emergency password. This can alternatively be entered to login, if the medium is defect or loss.

The corresponding SecureID for the card appears in the following window. This you can write to letter or copy via the clipboard.

II. Create a new logon account during the logon process

This option can be deactivate in abylon SETTINGS on the side Logon > Extended!

1. Start Switch on you computer and start the operating system like used.
2. Insert smartcard/USB-Token/-Stick/CD
You are occur to insert the use media for the logon process.

Currently possible media types

  • Certificate Smartcard / Token
  • EC / HBCI Moneycard (with Chip)
  • Memory-Card
  • External Memory-Device (e.g. USB-Stick)
  • CD / DVD
  • RFID-Radio-Card
  • NOTE: Is your preferred medium not supported? Depending on the version individual media can be disabled!  For questions or additional hardware support, please use our support form!

The individual media types can be deactivate in the abylon SETTINGS on the side Logon > Extended!
3. New Media The software recognizes that for this media no account exist. With Yes a new account create.
4. Enter logon registration data Enter you correct logon registration data, such Username, Password and Domain / Workgroup.
The input is conclude and the account is create with Ok.
5. Account-Management The window Account-Management show the media type (inclusive ID) and the new account. With Add can create additionally new accounts and with Delete can remove the selected account.

The logon process occur automatically after the present time (7) or directly with Logon.

III. abylon LOGON in use

1. In use After the creation of an account you need in the future only to insert your media (e.g. Smartcard or the USB-Stick) and the logon process occur immediately. Only with certificate-based tokens or with activated option Enter Logon-password for Symmetrical Cards you must still enter your appropriate password.
2. When removing the media... Possible options:
  • ...Do nothing [Ctrl]: Nothing is done after removing your media.
  • ...Lock Computer [Shift]: After removing your media, the computer will be Locked
  • ...Logout Computer [Alt]: After removing your media, the computer will be Logout.
  • ...Shutdown Computer [Alt+Ctrl]: After removing your media, the computer will be Shutdown.

This setting is ignored, if the shown button (brackets) is pressed simultaneously during the removing of the media. For example the computer is loged out in any case, if the Alt-button is pressed.
3. Alternative logon

If you should lose or forgot your media, you can switch with Cancel to the normal windows logon!

The button Cancel can be deactivate in abylon SETTINGS. In case of defect or loss media contains this the risk of block the complete access to the computer.

IV. Central administration of login accounts in the LAN network

1. Creation of the accounts on the server

Open abylon SETTINGS on the server create the logon accounts on site 'Logon Accounts'. The directory and file name is display in column 5.
2. Shareing To connect from external computers on the logon account files, you need to share the program directory 'Enterprise' or 'Logon'.
3. Settings on the clients

Activate the Administration mode in the setting dialog and select the option Use local area network (LAN) with XML-Control- and preference files to manage user-settings.

The Administration server is the program directory on the server, such as '\\[SERVER NAME]\[SHARING]\[PFATH]'. The logon account files must be stored in the subdirectory 'DATA\LOGON', without changing the folder structure.

About the synchronization of logon accounts:
Comparison of accounts between server and client:
- Older accounts are replaces by newer ones
- Deleted accounts on the server are also delete on the clients
- New accounts on the server will be copied to the client
NOTE The synchronization of accounts is done immediately after the login and then once per hour!

V. Central administration of login accounts on a Web server

1. Creation of the accounts

Open abylon SETTINGS on the server create the logon accounts on site 'Logon'. The directory and file name is display in column 5.
2. Copy The logon account files must be copy on a Web server. It should be noted that the directory structure with the sub-folder 'data\logon' is present.

Note that some Web server are case sensitive
3. Settings on the clients

Activate the Administration mode in the setting dialog and select the option Use WEB-SERVER with XML-Control- and preference files to manage user-settings.

Als Administrationsserver wird die Web-Adrersse angegeben, z. B. 'http://www.webserver.de/[PFAD]:[PORT]'. Der zu verwendende Port kann mit Doppelpunkt hinter der Web-Adresse angegeben werden (Standart Port 80). Die Logon-Dateien müssen im Unterverzeichnis 'data\logon' liegen.

The administration server is the web address, for example, 'http://www.webserver.de/[PATH]:[PORT]'. The port can be select with colon behind the web address (standard port 80). The login account files must be stored in the subdirectory 'data\logon'.

Login
Unless the user has an online connection, before the login the account file is downloaded and stored locally. If the account file is NOT available, so the login will be denied.
NOTE If on the web server stored a file with the extension 'rmv' , the associated local account file will be removed.

See also

(c) 2001-2009 abylonsoft (Last Update / Stand 10.08.2009)