Secure Implementation Guide - SICOM Systems, Inc.
Secure Implementation Guide - SICOM Systems, Inc.
Secure Implementation Guide - SICOM Systems, Inc.
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
OpenVPN<br />
When attempting to connect with a system running MGRNG version 1.42 and higher, you might<br />
be required to connect to the restaurant over a VPN (Virtual Private Networking) connection. This<br />
section details the steps necessary to install, configure, and use the OpenVPN software on your<br />
Windows XP computer. OpenVPN cannot be used on a Windows 9x/Me.<br />
OpenVPN is a software package that <strong>SICOM</strong> <strong>Systems</strong>, <strong>Inc</strong>. has chosen to use as the VPN server<br />
on SL Series terminals. It requires the OpenVPN client to connect to the server. You cannot use<br />
the built-in Windows XP VPN client. OpenVPN supports the use of password and “certificate”<br />
authentication, so called “dual-factor authentication”, that is required for our customers to remain<br />
PCI compliant in their sales environments.<br />
The actual restaurant configuration and the type of access to the system desired will determine if<br />
OpenVPN is needed. A very secure installation will require OpenVPN for all connectivity to the<br />
system. Most configurations will allow browser access via SSL – HTTPS, but will also require<br />
OpenVPN for shell and FTP access. Simply put, most IT department personnel retrieving poll<br />
files or downloading auto-updates of other data files will be required to use OpenVPN or some<br />
other VPN solution.<br />
Certificate needed before continuing<br />
Each user granted access to the system through the VPN will need his own security certificate in<br />
addition to being listed in the Remote Access User edit in the system. The Security Certificate is<br />
good for all restaurants owned by the company. Contact <strong>SICOM</strong> <strong>Systems</strong> for details and<br />
procedures required to obtain these certificates. Remote users need to be re-added if a hard<br />
drive is replaced in the restaurant.<br />
OpenVPN Installation<br />
First, the OpenVPN software needs to be installed on your Windows computer. It requires<br />
Windows XP and will not work on Windows 9x or Me computers. The latest version of the<br />
software is available at http://openvpn.net/download.html The current release as of this<br />
document’s date is 2.0.9. Select the “Windows Installer” download link, and save the file to your<br />
hard drive. Once the file is downloaded, double-click the saved file to begin the installation.<br />
There is also a Graphical User Interface version (OpenVPN GUI for Windows) available at<br />
http://openvpn.se/download.html<br />
Installation of OpenVPN Package<br />
You will see a security warning displayed by Windows. Click “Run” to continue.<br />
27