Online Help > Installation > Client

Terminal Services

Description

 

Password Vault Manager has an excellent support for running under a Terminal Services environment. A master configuration file can be created to distribute settings for all new users of the system or even to update existing user's configuration.

 

BadgeInfo48x48

Roaming user profiles must be used for this procedure to apply.

 

ShieldWarning48x48

The Devolutions Web Login was created for a normal desktop environment. It uses inter process communication (IPC) with the client application. Using it on a terminal services server introduces a level of risk that may be unacceptable for corporate users.

 

If you insist on using it, it is critical that each user is assigned a distinct port and that port be kept secret. The first copy of the client application that starts will be able to use the port exclusively, ALL other Devolutions Web Login that call on that port will get the responses.

 

Procedure

 

1.After installing Password Vault Manager, configure it as you prefer. We really recommend going through all the configuration options and finding the set of options that you wish to distribute. The data sources are of special interest because it is much better if they are configured by an administrator. You can even take the opportunity of locking the data sources to protect against any modification by the users. Please refer to Lock Data Source for more information.

 

ShieldWarning48x48

When using an Advanced Data Sources, in order to have effective logging, proper session security, and user based features, it is CRITICAL that each user has their own account to authenticate against the data source.

 

Redistributing a data source registration should follow one of the following patterns:
 

oThe data source is configured to always ask the user name and password;

oYou are using integrated security against SQL Server;

oYou use environment variables for the user name, and require the password.
(we recommend %USERDOMAIN%\%USERNAME% or %USERDNSDOMAIN%\%USERNAME%)

 

2.When Password Vault Manager is configured to your liking, use File - Options, Export Options. This will allow you to choose exactly the data sources to include, as well as the various categories of settings. Please refer to Export Options for further details. Save the file with the name default.cfg

 

3.Move that file in the installation folder of Password Vault Manager, if you have used the default installation settings, it is under %ProgramFiles(x86)%\Devolutions\PasswordVaultManager.

 

Workflow

 

New users

 

Whenever a new user creates a profile on the system, Password Vault Manager detects the presence of the default.cfg file and uses it as a template to create the user's configuration file.

 

Existing users

 

BadgeCaution48x48

If the user chooses to ignore the new configuration file when presented with the dialog below, he will not be presented with the choice until the date/time of the default.cfg file has changed.

 

BadgeInfo48x48

If the main concern is deploying a new license key, and you are using of of the Advanced Data Sources, you should rather use the Data source settings - Serial feature.

 

Whenever Password Vault Manager is started and it detects a new default.cfg file, the following dialog will appear:

 

clip3329

 

By selecting Use new configuration (lose mine), the user's configuration is simply overwritten. If you only wish to update the Password Vault Manager license key after a renewal, choose Retrieve new registration only.