HL-Server - Lab-Volt
Contents
1. HLOGIN 29809 The following message should be displayed indicating that the command has been carried out correctly Login to HL Server Hardlock 29809 successful station is given authorized access until the following command is entered at which point the station is no longer registered in the login table HLOGOUT 29809 The following message appears indicating that this has been performed correctly Logout from HL Server Hardlock 29809 successful Please refer to Section 9 for a detailed description of the two utility programs 1 7 Aladdin Monitor The new Aladdin Monitor AKSMON replaces the HLSAdmin program The program enables end users to e Check all HL Servers in the network e Access a local service under NT e Perform license updates HL LiMaS Language setting The Aladdin Monitor is available in German and English by linking language DLLs The end user can change the language setting The default setting depends on the corresponding system setting HL Server 1 6 HL Server Hardlock in a Network New Functions for Hardlock LiMaS The program makes it easier for end users to administer Hardlock modules which have been encoded for Hardlock LiMasS e The occupation of the individual slots is displayed e Data for updates of the Hardlock modules can be exported and imported directly via the Aladdin Monitor 1 8 Aladdin DiagnostiX The new Aladdin DiagnostiX tool makes it easier to solve problems e2. rrrrrrnvrrnvrnvrrrvvrrverrverrvverveerenrrrerrrerrrerrerverveenn 12 7 12 4 What to Do When the Computer Crashes ooocicccciciccinicccnonccnonconcncononoos 12 7 12 5 HL Server TSR and Other TSR PrograMS oocococccccnconcnioconinconcnconcnrononcnnos 12 8 12 6 Multitasking Windows amp OS 2 and DOS TSR rnrnnrnrnrnnrssonrsvonesvenesrrrennnnenn 12 8 12 6 1 Windows 3 x and DOS TSR ocononionioconinionocoonoc coonsnininan n s 12 8 12 6 2 Windows for Workgroups and DOS T8SR co occonocooo0 0 o 12 8 12 6 3 Windows 9 x ME Windows NT 2000 XP rrrerrrrnvvrrrrernrernvenn 12 9 12 6 4 OS 2 DOS Box LAN Server and DOS TSR eee 12 9 12 7 Several HL Server Systems in a Network oocococcocioconcnooccncocononcnoncnnoss 12 10 12 7 1 One Hidden Additional License oooooooo 12 10 12 7 2 Novell NetBIOS EmulatiON o ococconoccononcononcononcnnonoooo 12 11 12 7 3 Extreme Network Load c ccccssssssssssssssssssssssersersersansesees 12 11 12 7 4 MED SN 12 12 A AA A 13 1 HL Server HL Server Hardlock in a Network 1 1 1 HL Server Hardlock in a Network 1 1 General HL Server makes it possible to use the Hardlock protection system in a network The Hardlock module which enables your protected applications to be run is connected to a central server computer The protected applications then access this protection module via the network You can d
3. 5 1 Search sequence 12 2 Server protocols 1 3 13 3 W WIdWSusipdaiaad aa 12 8 Windows II see 1 3 Windows 9 X ME sassen 12 9 Windows 9x ME nsss 1 3 Windows for Workgroups 12 8 Windows NT 2000 XP 1 3 12 9 HL Server
4. 8 24 Command Line Switches timeout MIN D N W Used for specifying the amount of time after which the login entry of a station that has crashed should be deleted from the login table Arguments MIN 0 No timeout 10 9999 Timeout in minutes 15 Default setting Use Experience shows that computers often crash and can only be restarted by performing a warm boot or hardware reset This is particularly true when a program is being developed and or tested When this occurs the login entry for the workstation affected remains in HL Server The login table gradually becomes cluttered with entries that are no longer being used To avoid this use this switch to specify a certain amount of time after which a login entry should automatically be deleted from the login table if the workstation logged on does not access the Hardlocks This frees up space in the login table for other applications When manually implementing software protection make sure you specify a long enough timeout value so that your application is sure to check HL Server within this time If this does not happen the login entry will simply be deleted This occurs for example when a program is waiting for an entry in an input routine without a Hardlock check Therefore when using manual implementation be sure to use as high a timeout value as possible or deactivate the check altogether Example HLSERVER i m 29809 t 45 Installs HL Server with a timeout of 45 minutes
5. HL Server TSR and its utility programs output the error level codes listed below These codes can be requested by corresponding customer specific batch programs Please note that the error level codes must be in descending order when testing HL Server 11 2 Error Messages NR Errors caused by bad parameters Function not supported Network timeout occurred Not logged in Hardlock not found Network error Access not possible Memory de allocation failed Client server version mismatch HL Server Troubleshooting Tips and Notes 12 1 12 Troubleshooting Tips and Notes This section provides you with troubleshooting guidelines tips for working with certain configurations and information on using HL Server with other software Be sure to read the readme files on the Hardlock software CD which contain information on these subjects that was not yet available when the manual was printed 12 1 Searching for the HL RUS License File ALF When coding Hardlock modules for a network license information is stored in a file with the extension ALF HL Server searches for the license information in the folder in which HL Server is itself located as an application or a service This behavior can be altered by specifying an environment variable Under Windows NT 2000 XP 1 Select System Environment in the Windows Control Panel 2 Enter HL_LICENSEDIR as the Variable and the required folder as the Value Note You c
6. CHECKEXPDATE functions etc to occupy release and check slots Defined behavior You should program the manual implementation so that your application behaves in a defined manner if HL Server is not available e g network interruption This can be done for example by sending a message to the user or by terminating the program in a normal manner For more information on this subject refer to the HL API Manual HL Server HL Server as Win32 Application HLS32 3 1 3 HL Server as Win32 Application HLS32 3 1 General HL Server for 32 bit Windows comprises three parts a service that runs under Windows NT 2000 XP see Section 4 an application for Windows 9x ME and the Aladdin Monitor AKSMON for central administration of several HL Server in the network that can be used both under Windows 9x ME and under Windows NT 2000 XP Please note that none of the programs mentioned runs under Win32s the 32 bit upgrade for Windows 3 x HL Server can only be loaded once on each computer Up to ten Hardlock modules are supported on each HL Server At the protocol level the Win32 HL Server supports IPX NetBIOS and TCP IP The IPX page can be addressed by all IPX clients The clients provide IP support for Win16 and Win32 TCP IP must be accessible through Windows sockets WSOCK32 DLL This is the case for example in Windows NT 2000 XP Windows 9x ME and WfW 3 11 with MS TCP IP Other WINSOCK implementations should also run HL Server
7. Server for displaying system data and testing the security modules NLMs can also be administered managed through this interface 7 2 Installation The relevant files for HL Server as a DOS TSR are located in the HLSERVERIDOS folder on the Hardlock CD The following files are needed for installation on the customer s computer HLSERVER EXE HLSERVER OVL and HLSERVER HLP Only the HLSERVER EXE file is absolutely essential for command line operation If you also want to use the menu interface and online help incorporated in it the HLSERVER OVL and HLSERVER HLP files must also be available The customer has to take the following steps HL Server 7 2 HL Server as DOS TSR e Copy HLSERVER EXE and HLSERVER OVL e Load the protocol driver e g IPX and or NetBIOS e Connect the Hardlock module to any printer port LPT port on the computer or install HL Server Internal see the Hardlock Technical Manual HL Server can now be started e g in command line mode 1 Change to the folder in which you installed the HL Server software 2 Start the software by entering the program name and the module address in this example the module address of the demo module HLSERVER I m 29809 Following this the installation can be tested from a client computer 7 3 Command Lines for DOS TSR By default HL Server can be called as an NLM as follows HLSERVER module 29809 The table below contains further switches which can either be use
8. The timeout value can also be changed later for the DOS TSR in the case of NLMs this can only be done from the menu interface The timeout in HL Server 32 cannot be changed With the Aladdin Monitor and HL Server Service the timeout cannot be changed currently HL Server Command Line Switches 8 25 uninstall D N Used to remove HL Server from memory Arguments Use None Uninstalls HL Server You cannot uninstall HL Server while other stations in the network are logged on to one of the Hardlocks Otherwise the application programs would no longer have access to the Hardlocks and would crash For this reason the system prompts you with the following message when trying to uninstall HL Server when the login table is not empty Login table not empty uninstall anyway y n If you enter Y the system uninstalls HL Server even if there are entries in the login table with the repercussions described above Example HLSERVER u Uninstalls HL Server If the login table is not empty the message above is displayed HLSERVER uf Uninstalls HL Server The message above is not displayed even if the login table is not empty uf uninstall force HL Server Utility Programs 9 1 9 Utility Programs 9 1 HLOGIN Use HLOGIN EXE to manually log on to HL Server for test purposes Enter the module address of the desired Hardlock and a task ID optional The task ID must be a hexadecimal number of up to eight dig
9. among several module addresses This configuration is not very safe and should only be used for test purposes Specifying the module addresses is necessary for the DOS TSR only Win32 NetWare and Linux HL Servers support the autoadd feature Hardlocks are added automatically when the first client attempts an access Example HLSERVER i m 29809 4 m 29822 6 Installs HL Server and integrates two Hardlocks in the network with the specified addresses Four spaces in the login table are reserved for the first Hardlock six for the second This divides for example an HL Server with 10 licenses into two module addresses If you do not specify the number of entries the system assigns all available entries to the Hardlock first entered and no entries remain for the second Hardlock this assumes of course that no limits were placed on the number of licenses in the EEPROM of the first Hardlock HL Server Command Line Switches 8 17 name SNAME D N Used for defining a name for HL Server Arguments SNAME No blanks and a maximum of 12 characters may be used Use HL Server systems can be installed in up to 250 computers in a LAN segment In order to identify the individual HL Servers in the network e g for performing administrative tasks via the HL Server interface each HL Server can be assigned a name during installation If no name is entered the system uses the default name HLSERVER under DOS under NetWare the name of the NetWare
10. ao EN EE 1 5 5 ORRE 8 10 12 2 K Kill Stopping the HL Server 5 3 L LAN SENG Rois di 12 9 License data A reer seer 12 1 HL Server Linux Command line switches 5 2 HL Server for LINUX ccccseecereeees 5 1 dai 5 1 Possible client protocols 1 2 possible server protocols 1 2 Server types aars 1 3 A EE E 12 9 A N 10 1 o 10 1 SIOGINGISA DIG aar 8 15 Edda 10 1 M MOMO ternas 8 19 Microsoft Windows network 12 8 module N HAME ora 8 17 NEG MP 12 2 NOBE Us 12 8 NetBIOS nnvrrrrererererererernn 8 10 12 2 12 8 Netware sana 1 3 Netware SFT IIl 6 1 Network protocol layer 1 2 Network shell 10 1 NN 6 1 10 1 Ne 10 1 HL Server Novell NetBIOS 12 10 O OE eee eee tne een eee 1 3 12 9 p POSS WOlG RR 8 18 DAS atada 8 18 Peer to peer urumumvnmnmnemne 12 8 Protocol driver iseevvrererrarsersesene 10 1 Q SCI OUI errar a E 8 19 R Receive buffers n 8 8 RENNE 10 1 TENNE ae 8 20 S SAP NET 12 2 Search Aladdin License File 12 1 Search strategy cesses 12 5 SCAN dd 8 21 8 23 SE N 10 1 e aero ere E N 8 22 STREAMS NEM ono 6 1 T MGCP Pra tte tal ona 12 4 o 8 24 JEg EE RE ET 10 1 Index U lineas 8 25 USB Hardlock in a network 1 1 Linux installation o oooc
11. configuration since the Remote menu was selected for the first time e g a new HL Server uninstall of HL Server computer down bridge deactivated etc 7 4 8 Exit Menu There are several ways to exit the HL Server menu interface and return to DOS e Use the menu with the keyboard or mouse Choose the Exit menu with CTRL arrow key and press the ESC key e Use the keyboard without the menu You can leave HL Server directly at any time and from any menu by using the ALT X key combination or by pressing the ESC key HL Server Command Line Switches 8 1 8 Command Line Switches This section describes the command line switches with which HL Server can be started Not all switches can be used with the different versions TSR NLM Win32 Please refer to a description of the relevant HL Server types in sections 3 to 6 for an overview of which switches are available in each case Availability is identified as follows in the descriptions below D HL Server as DOS TSR N HL Server as Netware NLM W HL Server as 32 bit Windows application WSVC HL Server as NT Service Win32 L HL Server for Linux Prefix the individual switches with a or symbol without a following space Use spaces to separate the individual switches from one another Use a colon to link together switches and their arguments Do not insert a space in this case You can either enter the full name of a switch or in the case of several switches just the fi
12. counter for accesses to the security module also counts accesses made for administrative purposes such as LOGIN and LOGOUT since they also involve checking the Hardlock The current entries of the Hardlocks login table are also shown The following data is provided for each login entry e No Running table number e Address The 12 character hexadecimal hardware address of the network adapter of the logged in client is displayed in this column e Task ID The task ID of the logged in client is displayed in this column This ID is either generated automatically by HL Crypt or by the application developer during manual implementation with Hardlock API The task ID enables several programs to use HL Server simultaneously from one computer without affecting one another e g in several Windows Windows 9 x ME Windows NT 2000 XP OS 2 or DESQview DOS boxes e Timeout The time still remaining until the timeout period expires for each login entry is displayed in this column Login table entries are automatically deleted when this time is up e Date Time Date and time columns reflect when the individual entries were made to the login table Deleting a Login Table Entry Use this function to delete existing entries from the table This is done as follows 1 Mark the entry you want to delete by clicking it with the mouse or moving the marker bar to it with the cursor keys 2 Press the DEL key or click on the Del field in the bottom l
13. drive Copy the file in the Server name SYS SYSTEM folder of your NetWare server so that you do not have to enter the path when starting the NLM HL Server 6 2 HL Server as Netware NLM Application e Connect the Hardlock module to any printer port LPT port on the computer or install HL Server Internal see the Hardlock Technical Manual HL Server can now be installed and started from the system console of the server LOAD HLSERVER Following this the installation can be tested from a client computer see section 0 6 3 Command Line Switches By default HL Server can be called as an NLM as follows load HLSERVER It is not essential to specify the module address The system searches for the module addresses of located Hardlock modules when there are checks and adds them Uninstall as follows unload HLSERVER The table below contains further switches which can either be used written out in full or in their abbreviated form Please refer to section 8 for a detailed description of the individual switches il Displays switches that can be used with HL Server install Installs HL Server You must always specify a Can be omitted module address module n m module n m Module address of the Hardlock to be served Can be omitted you can enter up to ten addresses with one the HLS call n refers to a decimal module address automatically m is an optional switch for limiting the searches
14. for number of login entries to the number Hardlocks when specified other limitations such as the there are checks number of licenses purchased cannot be exceeded comm s s Used for specifying one or more network protocols If you do not set this switch HL Server supports all protocols available on the computer simultaneously s refers to the IPX or NetBIOS protocols HL Server HL Server as Netware NLM Application 6 3 name s Defines a name for HL Server no blanks Default name is the maximum of 12 characters Assigning a name of the name to HL Server makes it easier to NetWare server differentiate between HL Servers for administrative purposes logindisable Prevents further logins to HL Server timeout n Used for specifying the amount of time after which a login entry of a station that has crashed should be deleted from the login table The default timeout value is 15 Values between 0 timeout deactivated and 9999 may be entered password s Defines a password for deleting a remote login entry The system will prompt you to enter this password if you try to delete a login entry using the user interface auto Automatically returns to the console screen after installation search n n Specifies port addresses for the Hardlock search sequence HL Server HL Server as DOS TSR 7 1 7 HL Server as DOS TSR 7 1 General HL Server software runs under MS DOS or PC DOS version
15. in the DOS box you should not use any switches other than the ones listed above 12 7 Several HL Server Systems in a Network You can run up to 250 HL Server systems per network segment Hardlocks with the same module address but different coding can only be distinguished from one another if the client program identifies them with the REFKEY and VERKEY switches of the HL_LOGIN function see the HL API Manual HL Crypt always performs this identification automatically You can use as many local Hardlocks as you like in addition to the HL Server systems You cannot use Hardlock with the same module address but different base codes subcodes on the same HL Server Use different module addresses for Hardlocks with different coding Otherwise you cannot use them together even in local operation 12 7 10ne Hidden Additional License If a protected application is set up to be used with both a local and remote Hardlock when used on an HL Server computer it will access the local Hardlock No login entry will be made to HL Server This means the application can be used by one more user than there are spaces in the login table To prevent this issue different module addresses to the local and remote Hardlock e g the application uses either the local Hardlock 12345 or the remote Hardlock 12346 If you do not wish to assign different addresses keep this loophole in mind when issuing licenses 12 7 2 Novell NetBIOS Emulation
16. this manual are based on this module address HL Server 1 2 HL Server Hardlock in a Network 1 3 Mode of Working and Resources 1 3 1 On the Client Applications which use a Hardlock supplied by the HL Server log themselves on to the HL Server Login and can then use this remote Hardlock as they would a local Hardlock connected directly to the computer Libraries for remote access are integrated in the application to be protected either automatically with HL Crypt see the HL Crypt Manual or manually see the Hardlock API Manual All other stations in the network that want to use one of the Hardlocks supplied by the HL Server do not require any extra software beyond the installed network protocols The following protocols are possible for the various applications Possible client protocols nasos PP es ema lt a Ae When the protected application accesses the Hardlock module it is entered in a login table on the server which offers space for the same number of entries as you have assigned for your software licenses When the maximum number of simultaneous users has been reached no more applications can be started until an entry is freed up by a logout The entry can be released automatically if the application does not access the Hardlock module for a certain length of time The timeout time is defined during implementation 1 3 2 On the Server HL Server directly accesses the network protocol layer Consequently to use
17. 3 0 or higher The HLSERVER EXE TSR program requires depending on the number of Hardlocks and login entries managed and active protocols approximately 70 KB of main memory It can be loaded into the high memory area DOS 5 0 UMBs QEMM etc HL Server can only be loaded once on each computer For it to be used in a network HL Server software must be loaded as a resident program with the necessary switches HL Server software can only be loaded once on each computer Only stable applications that are not liable to crash the computer due to errors should be used on the HL Server computer If the server computer crashes applications which depend on HL Server also cease to operate correctly The computer gives priority to background programs responsible for controlling the network These programs demand a great deal of computing time As a result application programs running in the foreground may be slowed down considerably depends on the size of the network and frequency of network checks HL Server can be controlled directly from the command line layer This makes it possible to implement HL Server functions in batch programs The various functions are input in the form of switches when the program is activated The switches are listed in section 7 3 HL Server can also be used with a menu interface The functions are more or less identical The DOS menu interface offers a range of additional functions not required for actually operating HL
18. B module is connected 12 2 2 Syntax The syntax of the environment variable reads as follows HL SEARCH Port Protocol Port comprises the I O address in hexadecimal form and a port ID p parallel Normal parallel port s serial Normal serial port e ECP Parallel port in ECP mode n NEC Japan Japanese NEC models have a different port assignment Consequently this switch enables a special handling routine to be activated This means a separate NEC API is not required C Compaq Contura Docking The multiplexer of the docking base used for switching between the Base parallel port and Ethernet adapter is reset to the parallel port for checking a Hardlock i IBM PS 2 The IBM PS 2 ID corrects an error when reprogramming the port of certain video drivers under Windows The system cannot find Hardlock once Windows is started Previously this was done internally by the Hardlock API This function can now only be activated by using the environment variable HL Server Troubleshooting Tips and Notes 12 3 Protocol defines the protocol used for accessing HL Server The following key words are currently supported IPX HL Server searched for via IPX or SAP HL Server searched for via TCP IP NetBIOS HL Server searched for via NetBIOS Example 1 SET HL SEARCH 378p The system only searches for the Hardlock at the local parallel port with the address 0x378 Example 2 SET HL SEARCH 378e 2f8s The
19. HL Server the system must be wired as a network and a network protocol e g TCP IP IPX or NetBIOS must be installed HL Server HL Server Hardlock in a Network 1 3 HL Server can only be loaded once on each computer Possible server protocols nasos PP eme E E A a e o HL Server modules are available as an external plug both USB and parallel and as an internal plug in card ISA MCA and PCI For further see the Hardlock Technical Manual A HL Server can support up to ten DOS up to three HL Server modules on one computer at the same time A separate login table is created for each of these modules The maximum number of login entries is limited to 250 licenses per module However you can limit the total number of login entries permitted to between one and the maximum number of 250 in practical operation 1 4 HL Server Types HL Server can run under various operating systems Refer to the following table to see which type of HL Server you need for which operating system and in which section this type of server is described Win32 service NT 2000 XP HLS32SVC EXE IPX TCP IP NetBIOS HLS32 EXE Win32 application 95 98 ME HLS32 EXE IPX TCP IP NetBIOS TPCIP Novell Netware HLSERVER NLM IPX TCP IP Windows 3 1x HLSERVER EXE IPX NetBIOS HLSERVER EXE IPX NetBIOS OS 2 HLSERVER EXE IPX NetBIOS HL Server 1 4 HL Server Hardlock in a Network 1 5 Installation Under Windows 9 x ME and NT 2000 X
20. HL Server Hardlock in a Network addin SECURING THE GLOBAL VILLAGE 2003 Aladdin Document HL Server HL mn 06 2003 1 1 A03909 Revision 8 2 Date June 1 2003 Contents 1 Contents HL Server Hardlock in a Network uraravsvrnvnvsvrvrnvnvrvrnvnvrvrnvnvnervvnvsererneneervrnenenn 1 1 tl GA 1 1 12 TENESTE 1 1 1 3 Mode of Working and RESOUICES cceccssessssssesssssscssseeesesersasersasesesenes 1 2 EST On Me Claras 1 2 TILA MO alada 1 2 1 47 HL Server Ty DOS resna 1 3 12D ISI Nr rr A ANOS 1 4 1 6 Testing the HL Server InstallatiON ocoooconicnoniononcnncconcncononrononcononroos 1 5 17 Aladdin MON acapara 1 5 cl cis hcasc nec sechebs has eitedad echoed aes echei nee 1 6 1 9 Hardlock End Users Manual ccscssssssssssesssessssesssesssessssesssessseesiseneae 1 6 Implementation and LicenSsing urrsr vrsvrvrvvnvrvvnvnvvnvnvrnvnvrnvsvsvenvrnrvvrnesvsnenesnenerernenn 2 1 2 1 Licensing with HL Server and HL LiMAS ooonccccciccocicccnnncononocononconononooss 2 1 22 Licensing without ALMAS oi ii 2 2 2 3 Automatic Implementation with Espresso HL Crypt o occninccnoncononoo 2 3 2 4 Manual Implementation with Hardlock API coocccocccnonoonconconconoronoo 2 3 HL Server as Win32 Application HLS32 rrvrvrvvnvnvnvsvrvrvvnvnvsvsvrvvnvnvnenvsvservvnvnenns 3 1 Sk a RE EE ete eeer er eter reer etree er 3 1 3 2 Command LING SWIICHES aria 3 1 3 3 The
21. HL Server Interface HLS32 EXE mnrrevrsvorvrverveververveverversrvervesvenerversene 3 2 HL Server as NT Service HLS32SVC rnrnrnvrnrnvrnvnvnnvnvrnvnvrnvnernvnerernenernenernenener 4 1 SM INCU AM scat sce a e o A 4 1 4 2 Command Line Switches for Installation osoerororerrrsrrrerrnrsvrrrrrrverenrrnnnnn 4 1 HL Server 1 2 HL Server Hardlock in a Network 4 3 Command Line Switches for Control HLS32CMD EXEB 4 2 4 4 Control Using the Aladdin Monitor cccooncncnnoncncncononcononcononconcncnnonons 4 2 5 HEST IT 5 1 Dbh ET ge EE tac aati chee a E E NE 5 1 E ee 5 1 5 3 Command Line gt Witches una 5 2 54 Stopping ME HL Se Ve urocrccanancanaralconalanparlratraige 5 3 6 HL Server as Netware NLM Application rn svravsvrnvrvrnvnvrnvnvrnvnernrnervvnvnernenernenener 6 1 Geer 6 1 A TS GU LG O O 6 1 63 Command Line SWitCheS ua ae 6 2 7 HL Server as DOS TR Aae 7 1 Tai GT 7 1 La SAA 7 1 7 3 Command Lines for DOS TS Rana italia 7 2 74 IMENS DOS TR PP 7 3 7 4 1 Using the Menu Interface oooccooionicccnoonocccnoononcononnoncononconconancononos 7 3 7 4 2 Description of Menus and FUNCHIONS ccccncocccccccnconcononninnnnnononaninnnos 7 4 TE olas Mel 7 4 AA NSA ME Jakka 7 5 TE SEG EE EE EE EE 7 5 AS LOCA Mela NE ET A Tee 7 6 LAT REE NA AIN AE 7 9 TAS EIVOR 7 10 8 Command Line S Witches coins 8 1 Swiich Arguments Verslbh usansesmuass
22. ITEEP Use EDITEEP EXE to modify the Hardlock EEPROM configuration files You can read the processed EEP files directly from the CP EYE Crypto Programmer software Example EDITEEP APPLI004 CP EYE Memory File Editor 42 62 03 Aug 95 c 1990 98 Aladdin Wonderbyte Production Team Current File FOUR EEP HL Server Demo Hardlock 1616 Application Hardlock 01001000 Logins 0004 48 42 User RAM User RAM User RAM User 40481 19528 Il navigate Tab Hex ASCII F8 swap hi lo ESC abort F10 save exit The screen shot above shows an example of licensing for four simultaneous users This is done by programming the Logins nnnn signature in the EEPROM of the Hardlock nnnn refers to the number of licenses as a decimal value four figures padded with zeros 0 from the left This permits you to alter the number of licenses at any time by simply exchanging or reprogramming the HL Server Network Hardlock without having to modify the software EDITEEP is simple to use e Use the arrow keys to move the cursor to the input field e Use the tab key to toggle between ASCII and hexadecimal input e Press ESC to abort the editing procedure without saving it e Press the F10 key to save the changes in the current file and exit the program The EEPROM contents of a Hardlock cannot be directly altered using EDITEEP HL Server Utility Programs 9 3 9 4 HHT Use this test program to scan all local printer ports for H
23. L Server Network Hardlock and display their permissible license entries HL Server Hardlocks on a board are not recognized by the program if connected to their programming cable cable included in shipment HL Server Brief Explanation of Terms 10 1 10 Brief Explanation of Terms Client Server A system in which the services or resources of one station are made avallable to several others in a network Client The term client refers to programs which can use the services of HL Server from anywhere in the network in order to check the Hardlock and perform licensing functions Server The server or HL Server refers to the computer on which the HL Server program runs and from which it places its functions at the disposal of the network Serve To provide a service via the network HL Server places Hardlock functions at the disposal of the network Protocol driver Program responsible for controlling communication with the network i e the exchange of data packages in the network for example IPX NetBlOS lt is directly linked to the board driver of the network adapter Network shell Program that recognizes accesses to the network drive and or network services and transfers them to the protocol driver for example NETX Remote n adjective used to describe a service or device that is accessed via the network The unit is not located locally Login The act of identifying oneself to a network and
24. P The HLSW32 EXE file is provided to install the HL Server application and service With this file your customer can install the following e HL Server for Win32 HLS32 EXE e HL Server as a NT service HLS32SVC EXE e Drivers for Hardlock In addition to the file HLSW32 EXE you should also provide your customer with Aladdin Monitor for the central administration of all HL Server in the network As an alternative you can also integrate routines for installing HL Server and the required Hardlock drivers into your programs To do this use the driver installation API and the Hardlock Server installation API For a more detailed description please refer to the HINSTALL HLP file driver installation API and the HSIAPI PDF file server installation API See also the HL API Manual Under Linux The installation of HL Server for Linux is described in Section 5 Under Novell The installation of HL Server for Novell is described in Section 6 Under DOS and OS 2 The installation of HL Server for Novell is described in Section 7 HL Server HL Server Hardlock in a Network 1 5 1 6 Testing the HL Server Installation After installation HL Server is loaded The registered module can now be used by all computers in the network in the examples this module is the demo module with module address 29809 All stations can now test access of the currently used Hardlock To do so start the HLOGIN EXE program and enter the module address
25. Server Example LOAD HLSERVER i m 29809 n PRODUCTION HL Server 8 18 Command Line Switches password PASS D N W Used for defining a password for deleting remote entries Arguments PASS You can use up to eight alphanumeric characters both capital and lower case letters are permitted and the numbers 0 to 9 Use When installing HL Server you can assign a password to prevent unauthorized users from deleting a login entry If such a password has been assigned remote login entries can only be deleted from the login table with this password Example HLSERVER i m 29809 p Secret HL Server Command Line Switches 8 19 quickoff D Used for deactivating the cache when accessing the Hardlock memory Arguments None Use To access Hardlock memory more quickly all read accesses are managed in a cache Use this switch to deactivate the cache This is not recommended for normal operation since it slows down the system considerably This switch is basically designed for test purposes and special applications Example HLSERVER i m 29809 q HL Server 8 20 Command Line Switches remove WSVC Removes the HL Server Service from the system Arguments None Use This switch permanently removes the HL Server Service from the system To be able to use HL Server 32 on a Windows NT 2000 XP PC the HL Server Service software must be installed Example W HLS32SVC remove Please note that this s
26. The Novell NetBIOS emulation has certain peculiarities that can affect operation with HL Server e Setting up the group name when installing HL Server can require a great deal of time especially in a network with multiple segments e When first accessing the NetBlOS after loading the NETBIOS EXE and later at irregular intervals the emulation executes various initialization procedures which can be very time consuming s a result functions such as Select and Rescan in HL Server Troubleshooting Tips and Notes 12 11 the Remote menu may take considerably longer than in real NetBIOS networks or with IPX e f you first install an HL Server on a computer with the IPX protocol then load the NetBlOS and finally activate the graphical interface of HL Server When you execute Rescan in the Remote menu via IPX and NetBlOS depending on the size of the network the NetBIOS emulator will probably not function correctly These problems are only particular to Novell NetBIOS emulation they do not occur in other NetBlOS networks 12 7 3Extreme Network Load If the network is subject to an extreme load for example if a file server is streamed via a workstation or a stress test is performed on a very large number of computers the HL Server client may no longer be able to access its HL Server The HL Server program itself and the client routines are equipped with sophisticated timeout and retry mechanisms However at some point i
27. abbreviated according to their first letter You must specify either the a or d options Examples hlserver d HL Server starts as a daemon without registering any Hardlock Whenever a client application requests an unknown Hardlock HL Server searches for the Hardlock and automatically adds it when available It is recommended that you insert hiserver d into the appropriate startup script of the machine The daemon writes its start stop events and adds removes a hardlock in the syslog normally in var log messages Hlserver m 29809 d HL Server HL Server for Linux 5 3 HL Server starts as a daemon and tries to register Hardlock 29809 If the Hardlock is not found the daemon immediately stops 5 4 Stopping the HL Server The daemon is stopped by the kill lt processid gt command HL Server uses Posix threads so it appears several times in the process list Therefore when you kill the first thread the others will stop automatically The application can be stopped with 4C HL Server HL Server as Netware NLM Application 6 1 6 HL Server as Netware NLM Application 6 1 General The NLM program HLSERVER NLM can be installed directly on the Novell file server and runs under NetWare version 3 1x and higher It cannot be used with Netware SFT HL Server can only be loaded once on each computer Be sure to use a recent version of the files CLIB NLM and STREAMS NLM to ensure trouble free operation Thes
28. an only specify local folders for the service because the HL Server service cannot access other folders via the network 3 The changes take effect next time the service is started HL Server then searches the specified folder looking for files with the ALF extension Aladdin License File lt detects the correct license by means of the correlation with the serial number Under Windows 95 98 ME 1 Open the AUTOEXEC BAT file 2 Specify the environment variable as follows SET HL LICENSEDIR directory Example SET HL LICENSEDIR C MYAPP LICENSE 3 Save the changes HL Server 12 2 Troubleshooting Tips and Notes The changes take effect next time the computer is started HL Server then searches the specified folder looking for files with the ALF extension Aladdin License File lt detects the correct license by means of the correlation with the serial number 12 2 Specifying the Search Sequence 12 2 1 Background It is possible to explicitly specify a search sequence with Hardlock API version 3 25 and higher This is done through environment variables By defining a specific search sequence conflicts when the system automatically searches the LPT port addresses can be avoided e g with network cards configured for LPT addresses An API search for a Hardlock on the serial port can only be activated by means of the environment variable Note The search sequence will always begin with a check to see whether a Hardlock US
29. anks Default name is maximum of 12 characters Assigning a HL Server name to HL Server makes it easier to differentiate between HL Servers for administrative purposes logindisable Prevents further logins to HL Server timeout n Used for specifying the amount of time after which a login entry of a station that has crashed should be deleted from the login table The default timeout value is 15 Values between 0 timeout deactivated and 9999 may be entered password s Defines a password for deleting a remote login entry The system will prompt you to enter this password if you try to delete a login entry using the user interface boxsize n Defines the number of receive buffers to be Only required in b n used extreme cases quickoff Deactivates the cache when the Hardlock memory is being accessed 7 4 Interfaces for DOS TSR 7 4 1 Using the Menu Interface The TSR menu interface offers several test functions for HL Server administration Installed NLMs can also be managed with these test functions TSRs can be installed completely via the menu interface The TSR menu interface is organized as follows e The individual menus are arranged one under the other at the left side of the screen in the menu field The menu currently active is marked by small triangles and a black shadow HL Server 7 4 HL Server as DOS TSR e The individual menu functions options that can be selected from the currently activ
30. can be controlled directly from the command line layer This makes it possible to implement HL Server functions in batch programs The various functions are input in the form of switches when the program is activated Please refer to Section 3 2 for an overview of the possible switches HL Server 32 can be operated both with a menu interface and using the command line The functions are more or less identical The Win32 interface offers a range of additional functions e g for displaying system data and testing the security modules 3 2 Command Line Switches By default HL Server can be called as a Win32 application as follows HLS32 It is not essential to specify a module address The system searches for the module addresses of located Hardlock modules when there are checks and adds them autoadd The table below contains further switches which can either be used written out in full or in their abbreviated form Please refer to section 8 for a detailed description of the individual switches HL Server 3 2 HL Server as Win32 Application HLS32 Displays switches that can be used with HL Server install Installs HL Server You must always specify Can be omitted a module address module n m module n m Module address of the Hardlock to be Can be omitted served you can enter up to three the HLS addresses with one call n refers to a automatically decimal module address m is an optional searches fo
31. ches 8 11 display D Used to display a status bar at the top of the screen Arguments None Use Use this command to activate and deactivate a status bar in DOS when installing HL Server and at any later point in time Do not use this option when working with Windows 3 x and HL Server This can lead to distortions in the Windows display Example HLSERVER d Switches the status bar on and off when HL Server is loaded as a resident program HLSERVER i m 29809 d Activates the status bar during installation The HL Server status bar Hardlock 1 Hardlock 2 Hardlock 3 number of packets time 19 s 16 44 15 max Login Entries receivied sent actual Login Entries modul address HL Server 8 12 Command Line Switches enable PROT W Activates network protocols on the system Arguments PROT Valid switch is NetBIOS Use This switch activates the NetBIOS protocol for the 32 bit HL Server Example HLS32 e netbios Please note that enabling NetBIOS under Win9 x ME may result in long delays when HL Server is started HL Server Command Line Switches 8 13 forceNT W Forces the Windows 9 x ME Server HLS32 to start under Windows NT 2000 XP Arguments None Use This switch starts HLS32 for test purposes even under Windows NT 2000 XP This procedure is not recommended for normal server operation Please use the HL Server Service provided for Windows NT 2000 XP Example HLS32 i
32. d to avoid burn in effects All that is displayed on the screen is the HL Server worm to show that the computer is running and that the HL Server program is activated After selecting the Lock Console option the system immediately prompts you to enter a password You can enter alphanumeric characters capital or lower case letters and the numbers 0 to 9 To reactivate the keyboard simply reenter the Lock Console password Note Do not confuse this password with the password switch used for deleting login table entries 7 4 6 Local Menu This menu is used for selecting the module address you want to use and performing test functions for local Hardlocks and HL Server Hardlocks This menu is very important and covered thoroughly in the sections below Select Use this menu option to perform the following e Entering 1 to 3 local Hardlocks to be made available by HL Server for use in the network e Selecting one of the three active local Hardlocks for the EyeTest and Logins options in the Local menu e Limiting the number of login entries for certain Hardlocks e Entering Module Addresses The default setting for the first Hardlock in the list is the demo Hardlock address 29809 Use the arrow keys to move the bar to one of the three lines to enter other module addresses or use the mouse Press ENTER Change the module address or enter a new address Confirm with ENTER You also have the option of limiting the number of en
33. d Notes Although it might seem logical to try to correct this problem by regularly reading the hardware clock and then resetting the software clock this is not advisable since doing so disturbs the time response of HL Server Since the network s normal operation is not affected by the clock s incorrect time you should not make any adjustments to the software clock If in special configurations the discrepancy between the software clock and hardware clock becomes too great after continuous operation of HL Server you can activate the mic Midnight Time Correction switch when installing the TSR hiserver i m 29809 mt HL Server Index 13 Index A Aladdin License File 12 1 Andas 12 1 application command line switch 8 6 A tae ies 8 7 B DONS O is nmanties 8 8 C GBNR 6 1 Cent Varia 10 1 60 go Seeereerrerere creer creer cre eter ree reer 8 9 GOMMI aner 8 10 Compaq Contura srsvrverrnrsvrvorrvenenrnn 12 2 D daemon command line switch 8 2 A O 8 10 O EE 8 11 DO Apo A E O rerrenrrere tT 1 3 Driver installation AP 1 4 E EDITE ER ads 9 2 FER Ne 9 2 DE ncad 8 12 13 1 F TEN arve 8 13 H Malo Ga corisscenean 7 8 A sree ere tee seers ener 9 3 N 7 8 A EE 9 1 FLO GOUT 5 A 9 1 ES oe PR A thet es 3 2 AA aise 3 2 HL Server installation Te CCC CEE E 1 4 PUSS Les 12 2 Tee RE 8 14 Installation ts
34. d written out in full or in their abbreviated form Please refer to section 8 for a detailed description of the individual switches Displays switches that can be used with HL Server install Installs HL Server You must always specify Can be omitted a module address module n m module n m Module address of the Hardlock to be HL Server for DOS m n m served you can enter up to three does not support addresses with one call n refers to a automatic adding decimal module address m is an optional of Hardlocks switch for limiting the number of login entries to the number specified other limitations such as the number of licenses purchased cannot be exceeded uninstall Exits HL Server and removes it from the U main memory If there are any entries still in uf without check the login table the system will ask you if you are sure you want to uninstall HL Server The uf switch is designed to let programmers suppress this check HL Server HL Server as DOS TSR 7 3 display Generates status information on Hardlocks being served logins data packets at the top of the screen must be set before booting Windows 3 x comm s s Used for specifying one or more network protocols If you do not set this switch HL Server supports all protocols available on the computer simultaneously s refers to the IPX or NetBIOS protocols name s Defines a name for HL Server no bl
35. ds a Hardlock module to a running server remove Removes a Hardlock module from a running server moduleaddr timeout minutes Defines the server timeout enable protocol Activates the protocol TCP IPX NetBIOS disable protocol Deactivates the protocol TCP IPX NetBIOS NetBIOS is only selected and not deactivated until after a restart 4 4 Control Using the Aladdin Monitor You can install remove start and stop the HL Server Service using the Aladdin Monitor Use the commands in the Service menu in order to do this Please refer to the online help HL Server HL Server for Linux 5 1 5 HL Server for Linux 5 1 General HL Server for Linux provides the same functionality as the HL Server for Win32 including LiMaS support An application using the HL Server cannot recognize any difference between a server earmarked for Linux applications and one designed for Win32 or NLM The Hardlocks used to protect applications are the same therefore when selecting a HL Server opt for a system that best fits your customers network environment HL Server for Linux supports IP UDP protocol and uses port 3047 IANA registered for communication When using a demo Hardlock specify module address 29809 and therefore you can test the HL Server without requiring a specific HL Server Hardlock 5 2 Installation HL Server can be started either as a daemon d or as a console application a The console application mode can b
36. dule is encoded This licensing cannot be bypassed by altering it using software You can define the memory content during encoding with Cappuccino see the HL Bistro Manual or using the EDITEEP utility program see Section 9 3 Note If you are working with the standard loader HL Crypt for DOS programs option n you cannot assign licenses The standard loader is only logged on to HL Server while the application is being loaded Afterwards it automatically logs back out and is completely deleted from memory While the program is running no login permanently remains in HL Server This permits any number of applications to run as long as an HL Server with the correct module address is found at system startup This feature is useful HL Server Implementation and Licensing 2 3 if you want to license your application without any limit on the number of users per network 2 3 Automatic Implementation with Espresso HL Crypt You have to enable network access to the Hardlock module during automatic implementation with HL Crypt see the HL Crypt Manual or Espresso see the HL Bistro Manual You can also enable both types of access local and via a network In that case the program first searches for an appropriate Hardlock module locally and then on the network Espresso Call up Hardlock Settings and select the Search for HL Server via the Network option You can also specify the timeout here This value defines the period of time after w
37. e files should at least be from 1993 Updates are available free from the website of the distributors Make sure you load all files included in an update package Unfortunately HL Server can not detect whether CLIB NLM is new enough before using it If you notice that public symbols are missing most often IsColorMonitor this is a sign for a very old CLIB NLM HL Server can be controlled directly from the command line layer using straightforward entries This makes it possible to implement HL Server functions in batch programs NGF The various functions are input in the form of switches when the program is activated The switches are listed in section 6 3 HL Server for NLM can also be operated using a standard Novell user interface 6 2 Installation The relevant files for HL Server as an NLM are located in the HARDLOCK HLSERVER NLM folder on the Hardlock CD The following files are needed for installation on the customer s computer HLSERVER NLM and optional HLSERVER CFG and HLSERVER NFC Only the HLSERVER NLM file is required for command line operation To start the HL Server easily as an NLM we recommend that you also use the files HLSERVER CFG configuration file and HLSERVER NCF simple batch file The following steps have to be taken at the customer s site e You need to access the server console Make sure that you have authorized access under Netware e To start the NLM make sure the HLSERVER NLM file is on the network
38. e menu are displayed across the top of the screen in the function bar The currently active function is displayed with a yellow background e The menu interface can be controlled both via the keyboard and mouse e Use CTRL arrow keys to select a menu or function with the keyboard e Use the arrow keys to select individual options within a function window e Press the F1 function key or the right mouse button to obtain online help information on the current menu function Press ESC to return to the active menu function 7 4 2 Description of Menus and Functions Most of the menu commands of the HL Server menu interface are self explanatory Since many functions are the same as the switches described earlier in the section on command line switches we will not describe them again here In the following sections the HL Server menus those which are displayed in the vertical bar and their sub menus horizontal bar are explained 7 4 3 Status Menu The functions of this menu provide you with information on the current status of the local HL Server The functions include About Provides you with information on the current version number of the HL Server version number of the Hardlock API being used and the operating status of HL Server resident or not can be recognized through the HL Server network icon Main Provides information on local Hardlocks if installed indicates to what extent HL Server is being used and offers othe
39. e used to track possible problems as it shows a trace of all client requests similar to the trace window displayed by HLS32 EXE on Win32 when double clicking the Hardlock Icon HL Server for Linux can be monitored and administered by the AKSMON Aladdin Monitor utility running on a Win32 terminal HL Server for Linux fully supports the Hardlock LiMaS license management functions and the Hardlock classic functions for USB parallel and internal Hardlocks Before HL Server for Linux can be started the Hardlock drivers aksparlnx o and aksusbd must be installed Please refer to the install txt file of the Hardlock driver for further information HL Server 5 2 HL Server for Linux 5 3 Command Line Switches HL Server is started from the console with hlserver options The following command line switches are supported Display hl a Pura apc a unas daemon module n m Module address max logins of Hardlock up to 10 times Optional modules added through the auto add feature timeout n Timeout value in minutes Values between 1 and 9999 O no timeout Default value is 15 Enable zombie mode for timed out logins HL Server usually deletes connections when the sessions run in a timeout In zombie mode these sessions are retained until there is a request for a new connection and there are no more entries are available in the login table In this case the oldest entry will be overwritten All parameters may be
40. ed by HL Server is available under WINDOWS HLSERVER EXE is called in the autostart group Since this is a TSR program make sure the DOS box does not terminate after the program is exited e WW network and Novell NetWare in combination Both the Microsoft NetBEUI and Novell IPX are used with the ODI driver of the network adapter With this configuration certain router information packets triggered by for example an HL Server access are incorrectly sent The range of symptoms extends from HL Server not being accessed to loss of server access may only happen sporadically To get HL Server Troubleshooting Tips and Notes 12 9 around this problem would take too much time and would have significant side effects We only recommend using HL Server in the first solution described above The second configuration should only be used as a temporary solution in exceptional cases Since WfW has not been upgraded this problem will continue to exist until a new version comes out i e the network routines of the new version have been completely redesigned and the problems thus no longer occur 12 6 3 Windows 9 x ME Windows NT 2000 XP You can install the TSR HL Server in a DOS box under Windows NT 2000 XP or Windows 9 x ME However it is no longer supported due to the various disadvantages associated with the use of a DOS box in the Windows environment closing the box terminates HL Server In this case use the 32 bit HL Server or the HL S
41. efine how many accesses to the Hardlock module without HL LiMaS or the individual slots with HL LiMaS can take place at the same time In order to use HL Server your customers need to have e A functioning network e A parallel USB or internal Hardlock Server module e Installed HL Server software to control access to the Hardlock module as a Win32 application or a Windows NT 2000 XP Service Linux application or daemon and the classic variants for NetWare NLM and DOS TSR e Optional Aladdin Monitor for central administration of several HL Server in the network Please refer to section 1 3 for information about possible operating systems and protocols Relevant terminology is explained in section 10 Network access to the Hardlock module must be allowed for during implementation manual or automatic However you do not then have to decide on only one access type you can also allow both access types In that case the system first searches for the Hardlock module locally and then on the network Please refer to section 2 for more information about implementation when using HL Server and the licensing options with and without LiMas 1 2 Testing HL Server You can test all HL Server functions in demo mode HL Server automatically activates demo mode can handle 10 login entries if you specified you were using the demo Hardlock during installation The demo Hardlock required has been assigned module address 29809 All examples in
42. erver Service Note If you should run into difficulties installing HL Server under Windows 9 x ME you can force the system to generate a log file by entering HLS32 m xxxxx logfile The file will be named hls32 log and stored in the current Server folder It contains valuable information about the successful progress of the respective protocol initializations 12 6 40S 2 DOS Box LAN Server and DOS TSR You can install HL Server in a DOS box under OS 2 but after you close the box HL Server is no longer available to the application In some versions of the OS 2 LAN Server the NetBIOS name services for DOS boxes are deactivated default setting No HL Server can be found without the name services this also applies to other software such as Stomper and Exac Enter the following command directly after activating a DOS box in any event before trying to access the network to activate name services LTSVCFG s 10 c 10 n 10 nl 1 The LTSVCFG COM program is part of the LAN server and is automatically installed with it Switch explanations S Number of NetBlOS sessions C Number of NetBIOS commands n Number of NetBIOS names ni 0 name services deactivated ni 1 name service activated HL Server 12 10 Troubleshooting Tips and Notes Be sure to set name services to n1 1 The other switches s c and n may have to be adjusted to your particular configuration If HL Server or HL Server client is the only program which uses NetBIOS
43. f the network is too overloaded communication ceases This problem also occurs with Novell Netware when the network is overloaded no file server can be accessed In this case the HL Server client routines function as if the requested Hardlock was not available This problem occurs more frequently on slow HL Server computers than on fast ones This is because fast computers are able to respond to more requests before the network timeout has elapsed than slow computers You can only remedy the problem by lessening the load on the entire network Individual measures which can be taken depend on the given situation and cannot be covered within the scope of this manual 12 7 4Time DOS You may have noticed that after lengthy copying sessions via the network the time noted by the software in your computer not the hardware clock is behind This is due to the fact that when the network adapter is severely loaded the ticker interrupt is sometimes skipped The ticker interrupt ensures that the computers software clock continues running The hardware clock is normally only read when you boot the system This problem does not occur with the client routines of HL Server However this problem may occur on the computer on which HL Server is resident If for example you run a number of remote stress tests for a few hours the time in the HL Server computer may differ slightly from the actual time HL Server 12 12 Troubleshooting Tips an
44. he clients provide IP support for Win16 and Win32 TCP IP must be accessible through Windows sockets WSOCK32 DLL This is the case for example in Windows NT 2000 XP Windows 9x ME and WfW 3 11 with MS TCP IP Other WINSOCK implementations should also run HL Server can be controlled directly from the command line layer This makes it possible to implement HL Server functions in batch programs The various functions are input in the form of switches when the program is activated Please refer to sections 4 2 and 4 3 for an overview of the possible switches 4 2 Command Line Switches for Installation By default HL Server can be installed and started as an NT Service as follows hls32svc install hls32svc start It is not essential to specify the module address The system searches for the module addresses of located Hardlock modules when there are checks and adds them HL Server The table below contains further switches Please refer to section 8 for a detailed description of the individual switches Displays switches that can be used with HL Server install Installs HL Server You must always specify a None module address module n m Stars the HL Server Service Stops the HL Server Service Removes the HL Server Service 4 3 Command Line Switches for Control HLS32CMD EXE You can use HLS32CMD EXE if you want to control the NT Service via a command line rather than with the Aladdin Monitor add mouleaddr Ad
45. hich an entry in the login table is deleted if the client no longer accesses the Hardlock module HL Crypt Use acc 1lr local or via the network or ace r exclusively via the network e g HL Crypt myprogram exe m 29809 acc lr If you are using HL LiMaS you must also define during automatic implementation what are the conditions which have to be met in order for the protected program file to start see Section 2 1 2 4 Manual Implementation with Hardlock API Enabling network access When logging in using HL LOGIN or HLM LOGIN enter I CARE local or via the network or NET DEVICE only network access as the access mode e g hlresult HL LOGIN 29809 NET DEVICE RefKey VerKey Checking licenses without HL LiMaS In addition to the login you can also check how many entries are possible in the table and how many entries there currently are You can do this while the program is running To do this use the HL MAXUSER possible entries and HL USERINF current entries functions This only makes sense if you are not using HL LiMaS because with LiMasS licenses are only assigned per slot and not per Hardlock module Assigning slots and checking licenses with HL LiMaS HL Server 2 4 Implementation and Licensing If you are using HL LiMaS you can make the ability of program sections to run dependent on certain conditions Use the HLM OCCUPYSLOT HLM FREESLOT HLM CHECKALLSLOTS HLM CHECKSLOT HLM CHECKCOUNTER HLM
46. imum Use To increase speed the packet received must be stored in a buffer If only a few stations access HL Server you can save resident memory approx 400 bytes per buffer by reducing the number of receive buffers If there are many stations in the system this number can be increased The default setting is generally sufficient Example HLSERVER i m 29809 b 80 Increases the number of receive buffers used to 80 HL Server Command Line Switches 8 9 comm PROT PROT D W N Used for selecting one or more network protocols Arguments PROT IPX and NetBlOS can be used as switches Use Use this switch to define which protocol drivers you wish HL Server to support If you do not specify this switch the system will support all available network protocols Example HLSERVER i m 29809 c ipx HL Server functions are only made available for IPX HL Server 8 10 Command Line Switches daemon L Starts HL Server for Linux as a daemon rather than as application Arguments none Use Starts HL Server for Linux as a daemon The daemon writes the start stop events and adds removes a hardlock in the syslog usually in var log messages The daemon is stopped by kill lt processid gt The HL Server uses Posix threads so it appears several times in the process list Therefore when you kill the first thread the others will stop automatically Example hlserver d HL Server Command Line Swit
47. ine of the function window to delete the table entry 3 This step only applies to remote table entries If you protected the login table entries with a password using the options function in the setup menu the system will prompt you to enter a password 4 A warning message is displayed The login table entry is not deleted until you have confirmed deletion by pressing the Y key Press any other key to cancel the procedure HL Server HL Server as DOS TSR 7 9 Note Once you have deleted the login entry for a given workstation the Hardlock is no longer available to this workstation How the program running on that workstation will react depends on the way in which the Hardlock was implemented e g Hardlock checking only when the program starts or with background checking Your application should attempt to reestablish contact with HL Server if this occurs In any event it should behave in a defined manner See section 2 4 Stress Use this menu function to subject local Hardlocks that have been specified in Select to a stress test The system randomly performs read and encryption accesses for the selected Hardlocks Successful and incorrect events are tallied and displayed successtul events in yellow incorrect events in red In addition the total number of accessing procedures and accessing speed in packet units second are displayed in the function window at the bottom Note The indicated value for accessing speed is incor
48. is automatically logged off also see description of timeout switch 2 Use the HLOGOUT test program to delete entries of a workstation from the login table This call can be included in the AUTOEXEC BAT file for example so that when the computer is rebooted the table entries occupied by the workstation are automatically deleted Enter an asterisk for the task ID If a workstation was not logged on nothing will happen then 3 Use the LOCAL and REMOTE functions in the LOGINS menu to delete entries in the login table The last method can be protected with a password to prevent unauthorized persons from deleting entries 12 5 HL Server TSR and Other TSR Programs If you are using memory resident programs that export part of their code or data to the hard disk or to an EMS XMS load these programs after you load HL Server These programs swap part of the main memory to disk and then load their own code when they are activated If the HL Server program was in the area of memory being exported by one of these programs it would be overwritten during swapping and the network interrupts would get lost HL Server 12 8 Troubleshooting Tips and Notes Examples of such programs are QTSR and SideKick PLUS 12 6 Multitasking Windows amp 0S 2 and DOS TSR Be careful when using multitasking programs such as Software Carousel DESQview NetWare Access Server and Windows on the HL Server computer Depending on your particular configurati
49. its The entry can be in either decimal e g 1234 or hexadecimal e g 6af3 form The task ID appears in hexadecimal form in the menu interface HLOGIN 29809 Logs on to the demo Hardlock without a task ID the task ID 0 is used internally HLOGIN 29809 1234 Logs on with the task ID 1234 HLOGIN 29809 FILL Fills the login tables of all the Hardlocks available in the network with the module address 29809 Use this program to fill the HL Server login table for test purposes or simply to test whether HL Server is functioning correctly For a brief description of the program enter HLOGIN without any switches 9 2 HLOGOUT As the counterpart to HLOGIN HLOGOUT EXE allows you to manually log off from HL Server Again you must specify a module address and task ID optional HLOGOUT 29809 Logs off from the demo Hardlock without a task ID the task ID 0 is used internally HLOGOUT 29809 1234 Logs off with the task ID 1234 hexadecimal Enter an asterisk as task ID to log off all entries with the given module address from the workstation from which you initiated HLOGOUT regardless of the task ID HLOGOUT 29809 Logs off all task IDs of this workstation from all demo Hardlocks For a brief description of the program enter HLOGOUT without any switches It is not possible to logout other workstations i e those with a different node address using HLOGOUT HL Server 9 2 Utility Programs 9 3 ED
50. m 29809 f HL Server 8 14 Command Line Switches install D Used for installing HL Server software Arguments None Use Used for installing HL Server Depending on network topology and the protocols being used installation may take several minutes During this time the entire network is scanned for nodes and all segments of the network are identified for later operations Example HLSERVER i Installs HL Server HL Server Command Line Switches 8 15 logindisable D N W Used to prevent other stations from logging on to the login table Arguments None Use With this switch you can enable disable further loggings on to the login tables Use this switch for test and maintenance purposes to prevent further users from logging on Example HLSERVER 1 When working with an NLM HL Server this command can only be issued from the NLM user interface HL Server 8 16 Command Line Switches module MOD LIZENZ D N W L Used to inform HL Server of the Hardlock module address Arguments MOD Module address of the application Hardlock LIZENZ Number of licenses reserved for the Hardlock optional Use Specifies the module address of the Hardlock to be served To use HL Server with more than one Hardlock you can enter up to ten only 3 for DOS systems addresses You can restrict the number of entries in the login table for each Hardlock if for example you wish to distribute the total available licenses
51. n retry HL Server can only be removed if it was the last TSR program loaded R R More than x modules HL Server can only serve up to ten DOS three TSR NLM specified Hardlocks you have specified more than three Hardlocks with m nnnn Invalid option xxxxx The system does not recognize the option you have TSR NLM specified Enter HLSERVER to obtain a list of valid options Keep failed The TSR could not be started because of an TSR incompatible DOS version HL Server is not installed HL Server is not installed The options you have TSR entered can only be processed if there is a resident HL Server or if an HL Server is loaded with this call Network driver not found Either the specified network driver is not loaded or no TSR network driver is loaded at all HL Server is already HL Server has already been installed TSR NLM installed R R No HL Server Hardlock No HL Server Hardlock found found No Hardlocks specified At least one module address must be entered when TS loading HL Server Illegal timeout value The value for the timeout switch must be set to 0 TSR NLM no timeout or to a value between 10 and 9999 TSR was not started please The DOS HL Server was started under Windows TSR use HLS32 under Windows 9 x ME or Windows NT 2000 XP Please use the 32 9 x ME Please use bit HL Server HLS32 under Windows 9 x ME or HLS32SVC under Windows HLS32SVC under Windows NT 2000 XP NT 2000 XP Error level codes
52. nce depending on the size of the network this procedure can take some time it is only carried out the first time this menu is called HL Server 7 10 HL Server as DOS TSR All available remote Hardlocks are displayed and can be selected for the EyeTest and Stress menu functions To page through long tables that do not fit on a single screen use the arrow keys or click the mouse on the arrows in the left margin of the table Note The functions EyeTest and Logins in the Remote menu can only be used if there is still space available in the login tables of the respective Hardlocks This test must also log on to gain access to Hardlock As do all logins this affects the peak value If no entries are available in the login table you will not be granted access and a message to this effect will be displayed Rescan In the Remote menu choose Rescan to perform another search for all remote Hardlocks available in the network and update the internal tables of the HL Server menu interface This function lets you update the table of available remote Hardlocks whenever necessary The module addresses optional names of HL Server network addresses and network protocols in abbreviated form with which the menu interface accessed the HL Servers are displayed All network protocols specified in the Setup menu under Options are used in the search Use this function if you think that something may have changed in the network or in the HL Server
53. ncountered by your customers Aladdin DiagnostiX enables end users to e Check Hardlock modules e Generate reports containing relevant information driver version network information etc e Configure Hardlock Environment settings The generated reports which you receive from your customers assist you to provide solutions to problems affecting your customers use of deployed Hardlock modules Aladdin DiagnostiX is shipped with an online Help system There is also a special section on the tool in the Hardlock End User Manual See below for more information 1 9 Hardlock End Users Manual We provide you with an end user manual which helps to avoid problems during utilization of the Hardlock protection system The manual contains information about e The Aladdin DiagnostiX utility e Update mechanisms and programs when using HL LiMasS e HL Server System including the new Aladdin Monitor e Possible ways of avoiding and rectifying problems in particular when using Hardlock in a network The manual can be downloaded from the Aladdin website HL Server Implementation and Licensing 2 1 2 Implementation and Licensing 2 1 Licensing with HL Server and HL LiMaS If you are using HL LiMaS when encoding Hardlock Server modules you can set up licenses for different components by means of slots see also the HL LiMaS Addendum You can use up to 32768 slots and assign up to 32767 licenses per slot Licensing involving users pe
54. on such programs can severely jeopardize the performance of HL Server Always load HL Server before starting the multitasking program Make sure HL Server was installed properly before making the computer available for use 12 6 1 Windows 3 x and DOS TSR Windows 3 x and HL Server are generally very compatible However be sure to load HL Server before starting Windows The HL Server status bar should not be activated when Windows is being started You can call the menu interface from a DOS box but do not perform an install or uninstall The system will let you install HL Server in a DOS box under Windows but after you close the box HL Server will no longer be available to the application 12 6 2 Windows for Workgroups and DOS TSR Using Windows for Workgroups WfW together with HL Server can cause problems The performance of both systems can be jeopardized The WiW network functions are unstable in both simple peer to peer operation and when used with NetWare ODI drivers Below is a description of the various possible configurations e WfW without peer to peer functions Only install Windows support for the following network is selected WfW runs like Windows 3 1 in this mode HL Server TSR and the accessing application operate together without any problems e WIW as a peer to peer network Microsoft Windows network and No additional network are installed in the network setup The NetBIOS which can be us
55. or server before you can use its functions Login table A list of users currently logged on to the system The total number of logins permitted at any given time is usually limited licensed Logout The process of terminating a session with a network and or server The functions of the network are then no longer available Resources may be released TSR Stands for Terminate and Stay Resident A DOS program that remains loaded in memory and passes control functions on to the operating system while it continues running in the background NLM Stands for NetWare Loadable Module In the NetWare 386 server operating system from Novell NLM is the equivalent to the EXE extension in DOS Node network device such as the network adapter of a computer that is identified through a unique address HL Server 10 2 Brief Explanation of Terms In this manual it is assumed that the server computer and client computer are not identical and are linked through a network The client and server exchange information via the network HL Server Error Messages 11 1 11 Error Messages Resident HL Server is When uninstalling HL Server it was found out that T damaged the storage area of the resident program has been overwritten possibly by another TSR program HL Server cannot be uninstalled The computer should T S be rebooted as soon as possible S Remove TSR loaded after Other TSR programs were loaded after HL Server HL Server the
56. ow 4 If no environment variable has been defined the search takes place via DNS or HOSTS for the station HLSERVER 5 If no address has been found the search takes place via broadcast in the local sub network To transfer IP packets Winsock calls are used with a corresponding 16 or 32 bit WINSOCK DLL Please note that during installation many Internet clients install their own WINSOCK DLL CompuServe AOL T Online In this case accessing IP can cause the Internet service provider to be dialed if the HL Server is not found via IPX and NetBIOS You then need to exclude IP from the search with the following command SET HL SEARCH IPX NETBIOS The environment variable HLS IPADDR has been introduced in order to optimize the search via the TCP IP protocol It allows you to specify one or more IP addresses or names However if several addresses are specified at the same time in contrast to HL_SEARCH you cannot predict which of the specified HL Servers will ultimately be used Example SET HLS IPADDR 192 9 209 17 luzie aladdin de HLS_IPADDR can also be used to specify broadcast addresses if required SET HLS IPADDR 192 9 209 255 192 9 201 255 HL Server Troubleshooting Tips and Notes 12 5 Since IP networks generally have considerably greater differences in propagation time than IPX networks e g WAN routes the limits for timeouts and retries for the clients must be set fairly generously The default values are set so
57. port address 0x320 if SET HL SEARCH 320p is specified Entering an incorrect port address can thus lead to conflicts Programs encrypted with HL Crypt version 5 64 or higher HLWCrypt version 4 06 or higher and HLCWin32 version 1 03 or higher search for the Hardlock according to the rules outlined above The search sequence of serial ports is only supported by API version 3 50 and higher HL Server Troubleshooting Tips and Notes 12 7 12 3 Ports Sockets and Filters When accessing HL Server via IPX or TCP IP clients send their requests to a certain port or socket These requests can only reach HL Server if the ports and sockets in question are not blocked by routers firewalls and alike e Under IPX the sockets 6666h and 7777h are used e Under TCP IP the ports 3047 udp and 3047 tcp are used Please make sure that communication through these ports sockets is possible if you want to use these port calls If you use the security function in TCP IP under Windows NT 2000 XP remember to open the ports 3047 udp and 3047 tcp 12 4 What to Do When the Computer Crashes When client computers crash unused login entries may accumulate in the login table of a Hardlock This blocks space for new entries HL Server software provides three ways of deleting these entries from the login table 1 Specify a value for the timeout function Any workstation that does not access the HL Server Network Hardlock being served during this time
58. r switch for limiting the number of login Hardlocks and entries to the number specified other checks for a limitations such as the number of licenses maximum of 10 purchased cannot be exceeded addresses comm s s Used for specifying one or more network protocols If you do not set this switch HL Server supports all protocols available on the computer simultaneously s refers to the IPX or NetBIOS protocols timeout n Used for specifying the amount of time minutes after which a login entry of a station that has crashed should be deleted from the login table The default timeout value is 15 Values between 0 timeout deactivated and 9999 may be entered password s Defines a password for deleting a remote login entry The system will prompt you to enter this password if you try to delete a login entry using the user interface forceNT Forces HLS32 to start even under Windows If not specified a NT 2000 XP reference to the service is displayed under NT 2000 3 3 The HL Server Interface HLS32 EXE The HL Server interface offers a list of all active HL Server modules and their properties e Module Module address of the HL Server Hardlock e Logins Current number of users logged on e Peak Peak value of logged on users since the server started e Limit Number of released licenses e Reg Number of server requests checks HL Server HL Server as Win32 Application HLS32 3 3 e E
59. r data on the operational status of the Hardlocks The of Overloads information is particularly important It indicates how often HL Server was overloaded regardless of how long it has been running If overloads occur frequently during normal operation install HL Server on a faster computer that can process incoming checks more quickly Tasks Provides information on the internal multitasking system of HL Server This information is primarily used for service purposes Below is an explanation of the individual tasks Installation initialization uninstallation Hardlock Hardlock accesses HL Server administration HL Server HL Server as DOS TSR 7 5 IPX IPX network driver NetBIOS NetBIOS network driver Interrupt tasks for receiving checks via the network protocol specific Network Provides information on the current status of the network such as socket numbers buffer size and counter for received and sent packets 7 4 4 Install Menu Use this menu to install HL Server directly from the menu interface This menu provides you with all the options you need for installation Install Press ENTER to initiate installation of HL Server with the displayed command line switches See the Command Line Switches section for a description of the individual switches This sub menu lets you specify a name for the server If you wish to serve other Hardlocks in the Local submenu specify in Select up to three HL Server boa
60. r slot replaces licensing involving users per HL Server module and therefore makes it possible to achieve a greater granularity in assigning licenses With HL LiMaS you define the conditions required for each program file to start when you are protecting the program files You can use a counter slots and expiration dates individually and in combination when doing this The first matching condition is used for each program start The license information is stored both in the memory of the Hardlock module and in a license file with the file name extension ALF Aladdin License File see section 12 1 The following steps are required for licensing e When protecting your programs define under which conditions the program starts When doing this you can make the program start dependent on the license for a slot on valid expiration dates and on a global counter with Espresso HL Crypt or with manual implementation using HL API e When you are encoding the HL Server module for your customer define how many licenses there are for each slot which expiration dates apply globally or for the individual slots and what is the top limit of the counter e g using Cappuccino The higher granularity means the licensing procedure is slightly more complicated when HL LiMaS is used As a result take particular care when assigning the conditions and run through the various possibilities afforded by your licensing system in a precise fashion Example for
61. rds these boards must of course be present Uninstall Use this menu to remove a resident HL Server from the main memory Be sure to read the information on the uninstall switch Options This sub menu provides additional program functions For more information see the appropriate sections in section 8 display switch password switch logindisable switch comm switch The verbose debug display option is used for internal maintenance purposes and can only be activated with the password of our support team It is usually not necessary to use this function Change Timeout This option is used for specifying the amount of time after which a login entry of a station that has crashed should be deleted For more information see the timeout switch in the Command Line Switches section 8 7 4 5 System Menu Use this menu to display the memory allocations of the local computer and to disable this computer with an installed HL Server HL Server 7 6 HL Server as DOS TSR Memory Map Used for displaying the memory allocation of the main memory The areas occupied by HL Server are indicated This function is only available if you are working with MS DOS version 4 0 or higher Lock Console This menu function protects the computer on which you have installed HL Server from inputs by unauthorized users If an unauthorized person attempts to make an entry the keyboard locks once the password has been entered and the screen is cleare
62. rect due to the time required for the current counter status to be displayed in the graphic interface The maximum accessing speed actually achievable without the menu interface is significantly higher than the displayed value Normally no incorrect events should occur i e the red numbers should be zero If incorrect events are registered the source of the error should be identified and eliminated Otherwise applications that access HL Server may not run correctly An exception to this rule is when you place one single HL Server under stress from several workstations simultaneously with the Stress function in the Remote menu This results in a checking frequency many times higher than normal This may overload the network When applications are being operated under normal conditions the additional network load produced by HL Server is not noticeable 7 4 7 Remote Menu The functions of this menu address remote Hardlocks rather than local Hardlocks Select EyeTest Logins Stress These menu functions are used and operate almost exactly the same as those with the same name described in the Remote menu The Hardlocks of all work stations within a network served by HL Server programs are addressed When running the stress test only the first 10 Hardlocks located are used When the Remote menu is selected for the first time after the graphic interface is activated the entire network is scanned for available remote Hardlocks Si
63. rrors Number of failed server requests Double click the corresponding HL Server Hardlock address to open a window displaying all available login locations with their current assignment node or IP address of the client and Task 1D timeout counter reading as well as login date To retrieve more information about the current status of your HL Server double click the Hardlock icon in the upper left corner of the HL Server interface This opens another window containing more detailed information about events presently occurring on HL Server It is here you will find information about every single API function called the sender node or IP address current execution status as well as the transfer protocol used HL Server HL Server as NT Service HLS32SVC 4 1 4 HL Server as NT Service HLS32SVC 4 1 General HL Server for 32 bit Windows comprises three parts a service that runs under Windows NT 2000 XP an application for Windows 9x ME and the Aladdin Monitor for central administration of several HL Server in the network that can be used both under Windows 9x ME and under Windows NT 2000 XP Please note that none of the programs mentioned runs under Win32s the 32 bit upgrade for Windows 3 x HL Server can only be loaded once on each computer Up to ten Hardlock modules are supported on each HL Server At the protocol level the 32 bit HL Server supports IPX NetBIOS and TCP IP The IPX page can be addressed by all IPX clients T
64. rst letter The two command lines below for example function exactly the same Examples HLSERVER module 29809 5 timeout 10 HLSERVER m 29809 5 t 10 HL Server 8 2 Command Line Switches Command line switches application Starts HL Server as an application auto Automatically returns to the console screen after N installation Defines the number of receive buffers to be used comm s s Used for specifying one or more network protocols If you do not set this switch HL Server supports all protocols available on the computer simultaneously s refers to the IPX or NetBIOS protocols Starts HL Server as a daemon L display Generates status information on Hardlocks being served logins data packets at the top of the screen must be set before booting Windows 3 X forceNT Forces HLS32 to start even under Windows NT 2000 XP install Installs HL Server You must always specify a module address module n m logindisable Prevents further logins to HL Server module n m Module address of the Hardlock to be served you can enter up to three DOS ten Win NLM Linux addresses with one call n refers to a decimal module address m is an optional switch for limiting the number of login entries to the number specified other limitations such as the number of licenses purchased cannot be exceeded This parameter is only required for DOS other implementations support a
65. s Version Brief description of switch Arguments List of arguments that can be used with this switch Use More detailed description of switch Information on how it is used Example Example and brief description of how the switch is used If the command line is preceded by LOAD this switch can also be used with HL Server NLMs If the command line is preceded by a W the command can also be used for the 32 bit HL Server The one letter command abbreviation is used in the examples The various HL Server programs are symbolized by HLSERVER Replace this entry by the following for the specific program D HLSERVER N load HLSERVER W HLS32 WSVC HLS32SVC L HL Server for Linux HL Server 8 6 Command Line Switches application L Starts the HL Server for Linux as an application rather than a daemon Arguments None Use Starts HL Server for Linux as an application Each incoming request is displayed on screen The application can be terminated by C Example hlserver a HL Server Command Line Switches 8 7 auto N Used for automatically returning to the console screen Arguments None Use Used for automatically returning to the console screen after installing HL Server Example LOAD HLSERVER i m 29809 a HL Server 8 8 Command Line Switches boxsize NUMBER D Used for defining the number of receive buffers to be used Arguments NUMBER 6 Minimum 16 Default setting 128 Max
66. system searches for the Hardlock at the local parallel port with the address 0x378 To do this the port is switched from ECP mode back to normal mode while the Hardlock is being accessed If the system cannot find the Hardlock it searches for it at the serial port with the address 0x2f8 Example 3 SET HL SEARCH IPX 278p The system first searches for a Hardlock supplied by the HL Server using IPX SAP If it is not able to log on to the HL Server it searches for the Hardlock at the local parallel port with the address 0x278 Example 3 SET HL SEARCH 378p 278p 3BCp IPX NETBIOS IP This corresponds to the automatic search sequence HL LOGIN with DONT CARE if the environment variable is not set This entry is thus redundant Note The search sequence can be directly specified through direct programming of the low level API HL Server 12 4 Troubleshooting Tips and Notes 12 2 3 HL Server Client for TCP IP When using the 32 bit HL Server for Win9 x ME or Windows NT 2000 XP please bear in mind that the search sequence of the protocols if you are not using HL SEARCH depends on the client Thus e 16 bit search sequence IPX NetBIOS IP IP is searched last in order to change the former behavior as little as possible e 32 bit search sequence IP IPX IP is searched first since this search is generally considerably faster than via IPX or NetBIOS Search sequence for IP addresses 1 Environment variable HLS IPADDR see bel
67. that the HL Server should be found with an existing 64 Kbit connection SET HLS WAIT Sets the delay between two retries in milliseconds Default TCP IP 1000 IPX 200 min 200 max 30000 SET HLS RETRIES Sets the number of retries until the DONGLE NOT FOUND message is returned Default 5 min 2 max 30 Note The defaults vary however SET HLS_WAIT changes the values for IPX and TCP IP 12 2 4 Search Strategy Please keep the following points in mind when specifying the access type with the HL LOGIN function With HL LOGIN MODAD LOCAL DEVICE the system searches all local ports without the environment variable By specifying the environment variable you can direct the system only to search local addresses parallel and serial It is not possible subsequently to instruct the system to extend its search to the network With SET HL SEARCH IPX 278p only the address 0x278 is used The IPX entry is ignored With SET HL SEARCH IPX a Hardlock will not be found since the entry is overruled by the access type specified with HL LOGIN HL LOGIN returns error code 15 INVALID ENV With HL LOGIN MODAD NET DEVICE the system searches all supported protocols for an appropriate HL Server without an environment variable HL Server 12 6 Troubleshooting Tips and Notes By specifying the environment variable you can only restrict the protocols used for searching lt is not possible subsequently to instruct the s
68. the corresponding port address performs a test encryption the initial character string base string and the encryption result encrypted are displayed and displays the contents of the ROM and RAM You can either display the contents of the EEPROM and RAM in Big Endian high bytes left low bytes right or Little Endian Intel standard low bytes left high bytes right Use either the TAB key or click the switching field marked by square brackets to toggle between the two display modes A check mark V appears when Big Endian is activated You can switch to other module addresses directly without having to leave the EyeTest menu function Click the module address input field or move the selection bar to the input field with the cursor keys Press ENTER This deletes the old module address You can now enter a new module address Logins Operational data for the Hardlock specified under Select is displayed in the window of this menu function This data includes Login Count The following count values for the login table are shown in this line e active Current number of login entries e peak Highest number of login entries at any one time beginning from when HL Server was loaded as a resident program HL Server 7 8 HL Server as DOS TSR e max Maximum number of login entries permitted for the given Hardlock E Y E Requests Number of times the Hardlock has been accessed since HL Server was started Note The
69. tries permitted to the login table optional 0 indicates no limitation cf description of the module switch in the Command Line Switches section 8 HL Server HL Server as DOS TSR 7 7 Selecting a Hardlock If as described above several local Hardlocks are activated one of these Hardlocks can be selected for the EyeTest and Logins functions described below Note An HL Server computer cannot support more than one HL Server board with identical module addresses but different subcodes If this is the case the HL Server licenses are added together but only the first Hardlock found in the port sequence LPT1 LPT2 LPT3 is used for encryption Adding up the HL Server licenses can of course also be used deliberately to enhance an HL Server Combining Hardlocks with the same module address is possible on different HL Server computers However Hardlocks with the same module address must be encrypted differently company code subcode in order for them to be correctly identified also see the HL API Manual If several HL Servers serving the same Hardlocks are installed in one network the licenses are added together The operation principle is that login checks are answered by the fastest HL Server which still has free entries in its login table HL Severs with login tables that are already full do not respond EyeTest Use this function to test the local Hardlock specified in Select This test identifies and displays
70. unarsssukdessarisaransene 8 5 o eee 8 6 HL Server Contents auto N 8 7 BOXSZENUMBER D spanna A 8 8 comm PROTLPROT DWN estaca ota 8 9 denn Miss enan o E 8 10 display Dira 8 11 male PROT Wise toi daa 8 12 A deten vatententetantieeansianuiea cetuneeratts 8 13 install Dira 8 14 logindisable UNN vr 8 15 module MODLLZENZ DN WIL sizes ciccvsveetecauessiedasts dexsngopeeadasdedsndsidencbnesdeadvel 8 16 Name SINAIVIE PBN 8 17 0ASSWOrd PASS ADN Wii gene ietdeaien 8 18 SGUICKOIE Dios 8 19 TENNE NN dnd id 8 20 Sea RORTLPRORT AN aaa 8 21 Stat WSVE ape N eee 8 22 a o OE 8 23 timeout MIN DE icounda 8 24 MER PN 8 25 9 Ul Program S aia 9 1 9 1 REO Nuria aran 9 1 qe FOG ud 9 1 93 EDIFEEP comisaria arrasa lca 9 2 9 4 HHT 9 3 10 Brief Explanation of Terms cian ii 10 1 TL Emor MISAS anea aa teh tesc ee staetescatestis atenca ete arated 11 1 HL Server 1 4 HL Server Hardlock in a Network 12 Troubleshooting Tips and Notes rsvrsrsvrnvavanvnvnvrnvnvrnvnvrnvnvsvrnenernvsvrnevernenerernnnn 12 1 12 1 Searching for the HL RUS License File ALF o ococconccccnonccanncoos 12 1 12 2 Specifying the Search Sequence ooccocociccococicocncnnococononoonnoncncononcnnonenancnnons 12 2 12 2 1 e A EE eee 12 2 12 2 2 SL T E E E EE 12 2 12 2 3 HL Server Client for TCP IP ooconoocociciccccicccnnncononcononcononconinnos 12 4 12 2 4 e SES 12 5 12 2 5 Se EEE EE EE 12 6 12 3 Ports Sockets and Filters
71. using slots Conditions for the program to start e TEXT program runs if there is a license free for slot 1 or slot 2 e TABLE program runs if there is a license free for slot 2 HL Server 2 2 Implementation and Licensing Hardlock encoding for the customer e Slot 1 has one license e Slot 2 has three licenses Application 1 Auser starts TEXT and TABLE One license for slot 1 first condition and one license for slot 2 are used 2 Asecond user starts TABLE license for slot 2 is used 3 Athird user starts TEXT Since there is no longer a license available for slot 1 the second condition is used a license for slot 2 is used 2 2 Licensing without HL LiMaS Without HL LiMaS you can define the number of licenses for accessing the Hardlock module when using HL Server Up to 250 licenses are possible You can limit the number of licenses by storing a signature in the RAM area or in the ROM area of the Hardlock memory The format of the signature is Logins nnnn The four digit number is entered in decimal notation signature in the RAM area is fundamentally non secure because it can be altered using software The only advantage is that you can alter the licensing without having to re encode the module If you want to keep this option open then we recommend that you use HL LiMaS because this provides just such an update option in a more convenient and secure way A signature in the ROM area is defined when the Hardlock mo
72. utoadd whereby a hardlock is automatically added upon the first client request name s Defines a name for HL Server no blanks maximum of 12 characters Assigning a name to HL Server makes it easier to differentiate between HL Servers for administrative purposes password s Defines a password for deleting a remote login entry The system will prompt you to enter this password if you try to delete a login entry using the user interface HL Server Command Line Switches 8 3 quickoff Deactivates the cache when the Hardlock memory is being accessed remove search n n Specifies port addresses for the Hardlock search N sequence start Starts the HL Server Service Stops the HL Server Service timeout n Used for specifying the amount of time after which a login entry of a station that has crashed should be deleted from the login table The default timeout value is 15 Values between 0 timeout deactivated and 9999 may be entered uninstall Exits HL Server and removes it from the main U memory If there are any entries still in the login uf sup table the system will ask you if you are sure you presses want to uninstall HL Server The uf switch is checking designed to let programmers suppress this check HL Server 8 4 Command Line Switches Switch descriptions The switch descriptions are structured as shown on the following page HL Server Command Line Switches 8 5 Switch Argument
73. witch cannot be shortened Before you remove HL Server Service once and for all it must be halted with one switch HL Server Command Line Switches 8 21 search PORT PORT N Used for specifying the order in which the system searches for the HL Server Hardlock Arguments PORT Port address in hexadecimal form Use Use this switch to explicitly define a search sequence This can prevent conflicts that occur when the LPT port addresses are searched automatically for example LPT addresses of configured network adapters Example LOAD HLSERVER i m 29809 s 378 278 During installation of HL Server the system only searches for an HL Server Hardlock at the parallel port addresses 378 and 278 both hexadecimal HL Server 8 22 Command Line Switches Start WSVC Starts the Hardlock Service Arguments None Use With this switch the HL Server Service can be started by using the command line version Example HLS32SVC start Please note that this switch cannot be shortened Before the HL Server Service can be started it must be installed with install HL Server Command Line Switches 8 23 stop WSVC Ends the HL Server Service Arguments None Use This switch terminates but does not remove the HL Server Service Example HLS32SVC stop Please note that this switch may not be shortened Should you wish to remove the HL Server Service once and for all enter the switch remove HL Server
74. ystem to extend its search to local ports With SET HL SEARCH IPX 2 8s only the IPX protocol is used The 2f8s entry is ignored With SET HL SEARCH 278p a Hardlock will not be found since the entry is overruled by the access type specified with HL LOGIN HL LOGIN returns error code 15 INVALID ENV With HL LOGIN MODAD DONT CARE the system first searches all local parallel ports without the environment variable lt then searches for an appropriate HL Server with all supported protocols You can restrict the search in any way you like by specifying the environment variable 12 2 5Comments If the environment variable does not contain a single valid entry the HL LOGIN function returns error code 15 INVALID ENV It does not matter whether the environment variable is in small or capital letters When working with Windows 9x ME programs remember that the environment variable must be set before Windows starts Subsequent modification in a DOS box has no effect on Windows programs Under Windows NT 2000 XP you can set the environment variable in the control panel under System Environment HL_SEARCH must be set with the port identifier e in order to ensure correct ECP port handling under Windows NT 2000 XP This is because the Hardlock device driver cannot check the port mode as in the case of 9x ME Specifying a port address ensures that your specific hardware is supported For example the system searches for the Hardlock at
Download Pdf Manuals
Related Search