Setting Up the Server

The following procedures outline the steps necessary to set up your servers to support the terminal server integration. Based on your server's environment, determine which set of steps to follow.

You must match the appropriate files from the installation source to your environment. Otherwise, the extensions will not function properly. If you later install or uninstall the Novell Client, you must modify the SecureLogin modules to match.

Your SecureLogin terminal server components must match the version of SecureLogin you are using. When you upgrade to a new version of SecureLogin, you must also upgrade the integration components.


Copying Protocol Files

WARNING:  If you skip this step, Windows will not function properly.

Copy the following files to the Windows system directory (for example, c:\winnt\system32):


Setting Up GINA


Servers with the Novell Client

  1. Set up a Novell login extension.

    Copy srv\nw\slina.dll to the Windows system directory (for example, c:\winnt\system32).

  2. Register the login extension.

    At the srv\nw directory, double-click Register NT LoginExt.reg.


Servers without the Novell Client

  1. Replace the server GINA.

    Copy srv\ms\sl_tsgina.dll to the Windows system directory (for example c:\winnt\system32).

  2. Register GINA.

    At the srv\ms directory, double-click winlogon_server.reg.

  3. Reboot the server.


Configuring OnDemand

If you have set up a Microsoft Terminal Server with Novell ZENworks® OnDemand ServicesTM installed, you don't need to install any new components for SecureLogin. OnDemand relies on the DeFrameTM ICA or RDP plug-ins as the client. No workstation components are necessary. When a user authenticates to the Citrix session, Novell SecureLogin launches.

If you use the SecretStore option with OnDemand Dynamic User Creation, make the following changes to the EnableUserProfileDirectory value in the HKEY_LOCAL_MACHINE\SOFTWARE\NOVELL\NICI registry key:

Value Type Description

EnableUserProfileDirectory

DWORD

NICI user files are created in the Application Data\Novell\NICI directory in the user's profile directory

The NICI installation program does not create EnableUserProfileDirectory. Therefore, this value is disabled.

NOTE:  If the user profile directory is enabled, NICI does not set the Access Control Lists (ACLs) on this directory. NICI relies on the existing security properties (ACLs, inheritance, and ownership) of the user's profile directory.

To configure a DeFrame application object to launch Internet Explorer, with Internet Explorer using the ICA protocol:

  1. In ConsoleOne®, right-click the Application object.

  2. Select DeFrame, then click Application Setup.

  3. Add prolauncher.exe.

    Enclose path\applicationname in quotation marks (for example, "c:\Program Files\Novell\SecureLogin\prolauncher.exe" "c:\Program Files\Internet Explorer\iexplore.exe").

  4. Install the SecureLogin client at the Citrix/DeFrame server.