Information Assurance Software with Reliable Access
Contents
1. authentication mechanisms Administrators should evaluate the need for a firewall for their application environment This product includes components from various open source projects including the WPA_supplicant OpenSSL and WCEcompact Cx7xOpenSourceLicensing txt file included with the zip file you downloaded Note There are several versions of this software These instructions oO are for versions 2 0 and later only which also addresses the CVE 20140 0160 TLS Heartbeat Heartbleed bug problem Browse to the DoD folder and open the Cx7xInfoAssurance txt file to view the version that is currently installed AR10 The AR10 and Apriva BT200 T Smart Card Readers Information Assurance Software with Reliable Access Client Instructions 3 To install the Information Assurance software follow these steps 1 Load the Information Assurance software Configure the terminal If you are using the BT200 T configure the BT200 T 2 3 4 Enable the Apriva Guard software 5 Install certificates 6 Configure Apriva Guard 7 Configure the Reliable Access Client Load the Information Assurance Software If your terminal does not have the Information Assurance software you can easily download the cab file and install it through ActiveSync 1 Download the Information Assurance Software from the Intermec AIT IV website at www intermec com AIT 2 Establish an ActiveSync connection between the terminal and your desktop PC For more2. information see the 70 Series Mobile Computer User Manual 3 Copy the cab file to the Flash Files Store CABFILES directory on the terminal 4 Clean boot the terminal The terminal extracts the cab files required for installation and reboots several times For more information see the 70 Series Mobile Computer User Manual 4 Information Assurance Software with Reliable Access Client Instructions Configure the Terminal To load the Information Assurance software you need to set the correct date and time and disable Assured Radio Deactivation 1 Turn on the terminal 2 When the Agreement screen appears tap OK The Zero Hero Compliance Check screen appears Zero HERO Compliance Check NOT verified for zero inches safe separation distance 0 SSD with HERO unsafe and HERO unreliable munitions 3 Tap OK The Windows screen appears 4 At the top of the Windows screen tap the Title bar and then tap the Clock icon 5 Set the date and time and tap OK Your settings are saved 6 Press the Power button on the terminal twice to cycle power Information Assurance Software with Reliable Access Client Instructions 7 Tap the Title bar again and then tap the Green Shield icon The Wireless Center screen appears Green Shield so 4 4 56 ud A mg Calendar 8 Tap Assured Radio Deactivation to turn on the radios An Alert Message appears A Restart is needed to continue ok cancer 9 Tap
3. OK Your computer restarts 10 For the BT200 T configure it so that it can communicate with your terminal through Bluetooth See the next section For the AR10 connect it to the terminal and install the Information Assurance software files See Enable Apriva Guard on page 10 Information Assurance Software with Reliable Access Client Instructions Configure the BT200 T Configure the BT200 T so that it can communicate with your terminal through Bluetooth 1 Enable Bluetooth 2 Scan this bar code DoD AprivaSmartCardDriver INT cab 3 Tap OK 4 Press the Power button and tap Reboot The terminal restarts 5 Place the terminal in a communications dock 6 Connect the USB adapter to the PDA port on the BT200 T 7 Connect the USB cable to your dock and the USB adapter on the BT200 T Information Assurance Software with Reliable Access Client Instructions 8 Press the Power button on the BT200 T The green LED blinks If an ActiveSync message appears tap X to close it Power button DN Green LED 9 Tap the Windows icon gt Settings gt the System tab gt Apriva Reader 10 Tap Test Connection 4 A T 4 55 Apriva Smart Card Reader Reader Connection USB __ Enhanced USB O Cr Note You must pair with a USB connection before using Bluetooth Test Connection Connection Details Power Version 11 When the test is complete tap OK Infor
4. ar code DoD CacDisableNetOnce cab 2 Select Device and tap Install The terminal restarts Leave Wi Fi Enabled when a CAC is Removed If allowed leave Wi Fi enabled when a CAC is removed 1 Scan this bar code DoD CacEnableNetOnce cab 2 Select Device and tap Install The terminal restarts Information Assurance Software with Reliable Access Client Instructions 13 Configure the Reliable Access Client Configure the Reliable Access Client to connect to your wireless network and to enable FIPS 140 02 DoD standard settings 1 Scan this bar code DoD RACdefaults cab 2 Select Device and tap Install The cab file is installed and the terminal restarts 3 Tap the Windows icon gt Settings gt System gt Intermec Settings 4 Tap Communications gt 802 11 gt Reliable Access Client gt Default 5 In SSID type the SSID name of your network 6 Configure any other settings that you need For more information see the next table Note Modifying any settings other than the SSID may cause the D Reliable Access Client not to operate in FIPS mode 7 Tap OK when you are finished 14 Information Assurance Software with Reliable Access Client Instructions Reliable Access Client Settings Descriptions Security Setting Hide password text Enabled SSID Authentication Algorithm Group Cipher multicast traffic Pariwise Cipher Key Management Protocol EAP Identity Password CA Ce
5. cess Client Settings Descriptions continued Security Setting Description Priority Indicates which profile has the highest priority Enter 0 if multiple profiles are defined Information Assurance Software with Reliable Access Client Instructions flatermec by Honeywell 6001 36th Avenue West Everett Washington 98203 U S A tel 425 348 2600 fax 425 355 9551 www intermec com 2014 Intermec by Honeywell eas All rights reserved Information Assurance Software with Reliable Access Client Instructions P N 943 418 002
6. flatermec Information Assurance Software with Reliable Access Client Contents Contents ii About the Information Assurance Software 0 ccc cc cece cee cece cee eee e nes 3 Load the Information Assurance Software 0 ccc cece cee cece ereenn eee e eens 4 Configure che Terminal roie da weet A eats A ab abodes A r A babes 5 Configure the BTU T 0c hide ta wit da eee EE AT E Beare new ieebe rs N EATA 7 Enable Apriva Guard ics sedemhespivgew acid gh dd wheat A bee as Bele Mee eed 10 Tistall Cent fi Cates 3 sek eset ove bate ers esse a Sao eae rey Rk ae Sos 11 Install the Default E mail Signature Certificate 000 008 11 Install Custom Ce rtiticates s oinin a eG oe SOA eg Se oe eS 12 Configure Apina Guatd iena oa a Cage els Pet EE a eA Mea ee ae eee he 12 Disable Wi Fi when a CAC is Removed 0 0 c cece eee cee cee eens 13 Leave Wi Fi Enabled when a CAC is Removed 000 ccc cece eee ee eee 13 Configure the Reliable Access Client 0 cece cece cece cence ence n eens 14 Information Assurance Software with Reliable Access Client Instructions About the Information Assurance Software The Information Assurance software Cx7xInfoAssurance cab includes both Intermec by Honeywell and a party software to provide Information Assurance capabilities that are required by the AIT IV contract When properly configured the Reliable Access Client provides robust encryption and
7. ificates Choose the certificates you need to load onto your terminal You can choose to load the default E mail Signature certificate or customize which certificates are loaded when you access your terminal with a CAC card Install the Default E mail Signature Certificate Install the E mail Signature Certificate to load the default certificate settings 1 Scan this bar code DoD AGC Cert Email Sign cab 2 Select Device and tap Install The terminal restarts Information Assurance Software with Reliable Access Client Instructions 11 Install Custom Certificates You can install E mail Signature E mail Encryption and CAC Identity certificates certificates may cause longer load times when you log in to the K8 Note Install only the certificates you need Installing unnecessary terminal 1 Scan this bar code DoD AG Cert Custom cab 2 Select the certificates you want to install and tap OK The terminal reboots Configure Apriva Guard Configure the way Apriva Guard interacts with the RAC e Disable Wi Fi when you remove a CAC The connection is enabled when a CAC is inserted and your PIN is validated e Wi Fi is always enabled but Apriva Guard locks down your terminal when you remove a CAC 12 Information Assurance Software with Reliable Access Client Instructions Disable Wi Fi when a CAC is Removed If needed you can easily disable Wi Fi when a CAC is removed from the terminal 1 Scan this b
8. mation Assurance Software with Reliable Access Client Instructions 12 Tap the Version tab 4 A 4 57 Apriva Smart Card Reader Driver Version 02 01 04 _ Connection Details Power Version amp 13 Ifthe driver version is 03 30 26 goto Step 15 If there is a different driver version tap Update 14 Select the AprivaReaderxxxx bin file where xxx is the version number and then tap Yes The BT200 T drivers are updated 15 Tap OK 16 Tap the Connection tab 4 6 4 55 Apriva Smart Card Reader Reader Connection USB C Enhanced USB O Pair Note You must pair with a USB connection before using Bluetooth Test Connection Connection Details Power Version 17 Tap Pair The BT200 T is paired with the terminal 18 Tap OK 19 Tap Bluetooth The BT200 T is configured Information Assurance Software with Reliable Access Client Instructions Enable Apriva Guard Enable Apriva Guard to lock down the terminal if you are using the BT200 T or AR10 1 Optional Install your custom applications 2 Scan this bar code DoD AprivaGuard INT cab 3 Tap OK 4 Scan this bar code DoD IntermecFunk_AprivaConfig cab 5 Select Device and tap Install 10 Information Assurance Software with Reliable Access Client Instructions 6 Scan this bar code DoD start_stop_supp_apps_ cab 7 Select Device and tap Install Install Cert
9. rtificate Privacy Key Description Hides the password text when you enter your password Enables the Reliable Access Client Your network name Select from Open LEAP for Cisco CCX systems or Shared WEP for compatibility for legacy systems Use CCMP for FIPS compatibility Other options include None WEP and TKIP which are not FIPS certified Use CCMP for FIPS compatibility Other options include None WEP and TKIP which are not FIPS certified WPA networks always use CCMP Select from WPA EAP WPA PSK or None Use WPA2 RSN for FIPS compatibility or WPA which is not FIPS certified Select from TLS PEAP or TTLS Enter quick CACCard or the username you want associated Anonymous This setting is not active when using TLS Leave blank for no validation cert_store CA to use the certificate from the Intermediate store or cert_store ROOT for the Root store Default You can also enter the path of the certificate on the file system or specify the hash of the certificate e cert gives you the substring to match in the cert store e hash xxxx allows you to enter the certificate thumb print where xxxx is the thumbprint in hex format Enter quick CACCard to dynamically use the credentials from the CAC card when it is inserted into the smart card reader cert and hash are also available Information Assurance Software with Reliable Access Client Instructions 15 16 Reliable Ac
Download Pdf Manuals
Related Search