Admin Guide

About Hideez Enterprise Server

What is it used for?

  • manages Hideez keys, integrates related workstations and stores digital identification information

  • authenticates and legitimates workstations and keys Hideez

  • controls all Hideez company keys, integrates them with existing infrastructure, assigns keys to users

  • FIDO2 authentication (If you want to use Fido2 authentication inside Hideez Ecosystem, please follow this instruction. If you want to use FIDO2 for all enterprise take a glance here)

What are the possibilities of using HES?

  • Downloading a list of groups and users from AD

  • Managing users and keys Hideez

  • Remote delivery of credit cards for keys

  • Remotely removing or blocking Hideez Key keys from the ecosystem.

System requirements

OS:

  • Windows Server 2016 x64

  • CentOS 7 x64

  • Ubuntu 18.04, 18.10, 19.04 x64

Misc:

  • Static IP

  • 4 GB of RAM

  • 4 GB of disk space

  • MySQL server 8.0

For the functionality of importing groups and users from Microsoft Active Directory to work, the HES server must be installed on the Windows platform OR you need to join your Linux server to the AD.

Note: it is possible to install the server on other versions of Windows or Linux, but for this you may need to modify the installation scripts yourself.

First steps with Hideez Enterprise Solution

Our experts can set up a test server in the cloud for you so that you can try out its features. In the future, you need to install the server yourself inside your local network. To do this, follow these steps:

Step 1: Obtaining the API Key

API Key is required so that your HES server can communicate with the Hideez License Server and obtain the licenses necessary for the keys to work. To do this, you can request a pilot. The resulting API Key must be registered in the server settings in Step 4.

Step 2: Deploying Hideez Enterprise Server

Follow the instructions for Windows or Linux. And a docker installation guide for Linux.

If you use Linux and need the AD integration, join your Linux server to the AD

By default, access to the new server: login - [email protected] password - admin

Step 3: Obtaining administrator rights on the server

Login to the server using the login [email protected] and the password admin. Go to Settings -> Administrators and invite a new administrator to your email. Follow the link in the letter, think up and set your password to enter the site. After you log in with your account, delete the administrator [email protected].

Step 4: Configuring the server

Go to Settings -> Parameters. Fill in the following parameters:

  • Licensing API Key: enter the key obtained in step 1

  • Licensing API Address: enter “https://hls.hideez.com”

  • Server Name: enter any name, for example “HES 1”. This name will be used in letters sent by the server. This parameter is generally necessary only if you have more than one server - this way you can distinguish from which server the message came.

  • Server URL: enter the URL where you configured your server. This is the same URL that is now displayed in the address bar of the browser, up to the first / character. For example, if you are currently on the page “https://hideez.somecompany.com/Settings/Parameters”, copy “https://hideez.somecompany.com”

Save your entries.

Step 5: Adding keys to the server

When you purchase hardware keys, we mark in our database their belonging to your company. Thanks to this, the keys can be downloaded from the HLS Server and entered into your database automatically. To do this, go to Devices, click the Sync button in the upper right corner of the window.

If for some reason your keys are not imported, contact support.

After adding the keys to the server, please check and make sure that they have the installed latest firmware. Firmware upgrade takes just a minute!

Step 6: Obtaining licenses

After the keys are imported into the database, you need to obtain licenses for them. Follow the instructions in the section How to get licenses. You will need to wait until your order is processed (goes to the Completed status) and then proceed to the next step - setting up clients.

Step 7: Installing the Hideez Client application on the user's computer

The Hideez Client application should be installed on all workstations where users will log in using Hideez keys.

You can find the latest version of Hideez Client here. You can find installation instructions here.

After installing Hideez Client, make sure that the HES and Dongle indicators show a successful connection to the server and the USB dongle.

Step 8: Configuring the server

Now that everything is finally configured, the time has come:

  1. Add Users to your server and assign them keys.

  2. Add their accounts (credentials and passwords).