The Secure Workstation Post-Login Method for NMAS

You can use the Secure Workstation Post-Login Method for NMAS to deliver a Network policy to Secure Workstation. The Network policy is stored in eDirectory. You can use ConsoleOne to configure the policy. The Network policy contains the same items as the Local policy.

  1. Install the Post-Login Method by using ConsoleOne or the NMAS Method Installer.

    To use the NMAS Method Installer, run methodinstaller.exe, found in the nmas\nmasmethods directory on the Novell SecureLogin 3.51.2 software image or CD.

    You must have at least one NMAS Server, and you must have the NMAS Client installed on your system with Secure Workstation. The Post-Login Method will run on NetWare, Windows, Linux, Solaris, and AIX servers.

    The Post-Login Method is located on the SecureLogin 3.51.2 image or CD in the nmas\nmasmethods\novell\secureworkstation directory. For instructions on installing a login method, refer to the NMAS documentation.

  2. Create at least one NMAS Login Sequence that includes Secure Workstation.

    Using ConsoleOne, right-click the Login Policy Object in the Security container and select Properties. You will see the following dialog box:


    The Login Sequence property page

  3. Click New Sequence, then select a name for the login sequence.

    For example, select Secure Workstation. You can use any name.

  4. Add methods to your login sequence.

    When NMAS executes your login sequence, NMAS executes the methods in the Selected Login Methods list box and then executes the methods in the Selected Post-Login Methods list box. The figure above contains a sequence that executes the Universal Smart Card method and then executes the Secure Workstation method.

    For information on the pcProx and other post-login methods, see User Identification Plug-ins in the Novell Modular Authentication Services Administration Guide.

  5. Configure a policy for the login sequence.

    1. Open the Authorized Post-Login Methods located in the Security container.

    2. Right-click the Secure Workstation container, then select Properties

    3. Select Secure Workstation in the subsequent dialog box.

      The following dialog box is displayed:


      A policy for a login sequence

The Login Sequence list will be populated with each login sequence that contains the Secure Workstation method. You can configure a different policy for each sequence that contains the Secure Workstation method. The policy associated with the [Default] sequence will be applied to any sequence that contains the Secure Workstation method but does not yet have a Network policy configured.

NOTE:  You can create as many login sequences that contain the Secure Workstation method as you need. Also, you can associate a different policy with each sequence and then associate each sequence with a different set of users. For information on configuring login sequence restrictions and configuring a user's default login sequence, see the NMAS Administration Guide.

The ConsoleOne interface for configuring the Network policy is similar to the Local Policy Editor. For more information on the options available when configuring a Secure Workstation Policy, see The Local Policy Editor.