Configure the DeviceLock Enterprise Server

Appendix: Consolidating the Logs in the Cloud Using OpenVPN : Configuring On-premises Servers : Configure the DeviceLock Enterprise Server

Configure the on-premises DeviceLock Enterprise Server as follows:

•Assign a fixed port to the server, such as port 9133, by using the TCP port parameter in Server Options.

•Redirect the consolidation-related traffic of the on-premises DeviceLock Enterprise Server to the OpenVPN server on the cloud computer, and configure certificate-based authentication:

1. Double-click the Log consolidation parameter in Server Options.

2. In the dialog box that appears, in the Consolidation server field, enter the IP address of the OpenVPN server.

This is the server address from the OpenVPN subnet defined by the server parameter in the server configuration file. Thus, with this parameter set to 10.8.0.0 255.255.255.0, the IP address of the OpenVPN server is 10.8.0.1.

3. Click the button next to the Consolidation server field and supply the public key of the DeviceLock certificate in the dialog box that appears. This must be the certificate the private key of which is installed on the cloud server.

•Configure the sending of the client’s IP address and port number to the cloud server:

1. In the Windows Registry editor (regedit) on this on-premises computer, open the following registry key:
HKLM\SOFTWARE\SmartLine Vision\DeviceLockEnterpriseServer

2. In this registry key, create a value with the following settings:

•Name: SlaveRemoteAddress

•Type: REG_SZ

•Data: The IP address of this OpenVPN client’s IP address (such as 10.8.0.6) followed by a colon with the number of the port assigned to the DeviceLock Enterprise Server on this on-premises computer. Example: 10.8.0.6:9133

The on-premises server will have submitted this data to the cloud server when sending a consolidation request. In this way, the cloud server will become aware of the IP address and port for communicating with this on-premises server.