Target
Customers who are introducing HENNGE Access Control in cloud services other than Microsoft 365 / Google Workspace are eligible.
Purpose
Connect cloud services with HENNGE Access Control to perform single sign-on connections and access control.
Notes
1. Please check the necessary items according to the service/use case you are using.
2. The content of this article is based on the product as of August 2024 and may be subject to change without notice thereafter.
Table of Contents
1.1. Collecting HENNGE Device Certificate device information
1.2. Considering HENNGE Access Control operational policies
1.3. Setting HENNGE Access Control operational policies
2. User synchronization from Active Directory to Microsoft 365・HENNGE Access Control
2.1. Organizing users in Active Directory
2.2. Installing HDEPasswordFilter.dll on all Domain Controllers (WS 2016 and later)
2.3. Installing HENNGE Directory Sync Tool
2.4. Creating an API client for running HENNGE Directory Sync Tool
2.5. Initial placement of HENNGE Directory Sync Tool configuration file (config.ini)
2.6. Executing Assign-HDEOnePasswordSyncGroup.bat
2.7. Setting passwords for synchronized users
2.8. Confirming password settings for synchronized users
2.9. Running HENNGE Directory Sync Tool
3. User collaboration settings between HENNGE Access Control and cloud services
3.1. Bulk registration / update / deletion of users
4. End user settings required to use HENNGE Access Control access control
4.1. Installing HENNGE Secure Browser
4.2. Terminal authentication for HENNGE Secure Browser
4.3. Setting to receive OTP (One-Time Password) in the application
4.4. Setting to receive OTP (One-Time Password) via email
4.5. Registration method for Cybertrust DeviceiD Importer for Chromebook
4.6. Issuing HENNGE Device Certificate
4.7. Installing HENNGE Device Certificate
4.8. Confirming the installation status of HENNGE Device Certificate
4.9. Installing the application to load HENNGE Device Certificate
5. Setting access control policies for HENNGE Access Control
5.1. Assigning access policy groups to users
5.2. Testing the operation of access policy group policies
5.3. Assigning browser policy groups to users
6. Connection between HENNGE Access Control and cloud services
6.1. Connecting with services that perform Single Sign-On (SSO)
6.2. User provisioning with services that perform Single Sign-On (SSO)
1. Preparation
1.1. Collecting HENNGE Device Certificate device information
* If you are using HENNGE Device Certificate, please perform this procedure.
When issuing HENNGE Device Certificate, information about the target device is required.
Please select the target device in advance and collect the information.
1.2. Considering HENNGE Access Control operational policies
Consider the operational policies of HENNGE Access Control (such as access control rules and login screen display items).
1.3. HENNGE Access Control Operation Policy Setting
Reflect the operation policy of HENNGE Access Control that has been considered in the actual product settings.
・Login screen settings
・Password-related settings
・Secure Browsers (HENNGE Secure Browser) related settings
・Device certificate settings
・Other settings
2. User Synchronization from Active Directory to Microsoft 365・HENNGE Access Control
* If synchronizing users from Active Directory to HENNGE Access Control, follow this section.
2.1. Organizing Users in Active Directory
2.2. Installing HDEPasswordFilter.dll on all Domain Controllers (WS 2016 and later)
2.3. Installing HENNGE Directory Sync Tool
2.4. Creating an API client for executing HENNGE Directory Sync Tool
2.5. Initial Placement of HENNGE Directory Sync Tool Configuration File (config.ini)
2.6. Executing Assign-HDEOnePasswordSyncGroup.bat
2.7. Setting Synchronized User Passwords
Change the passwords of all users to be synchronized once.
2.8. Confirming Synchronized User Password Settings
2.9. Executing HENNGE Directory Sync Tool
3. User Collaboration Settings between HENNGE Access Control and Cloud Services
3.1. Bulk User Registration / Update / Deletion
・Bulk user registration
・Bulk user update
・Bulk user deletion
4. End User Settings Required to Use HENNGE Access Control Access Control
4.1. Installation of HENNGE Secure Browser
* This section is for customers using HENNGE Secure Browser.
4.2. Device Authentication for HENNGE Secure Browser
* This section is for customers using HENNGE Secure Browser.
4.3. Setting to Receive OTP (One-Time Password) via Application
* This section is for customers using OTP.
4.4. Setting to Receive OTP (One-Time Password) via Email
* This section is for customers using OTP.
4.5. Method to Register Cybertrust DeviceiD Importer for Chromebook
* This section is for customers using HENNGE Device Certificate on Chromebook.
4.6. Issuance of HENNGE Device Certificate
* This section is for customers using HENNGE Device Certificate.
4.7. Installation of HENNGE Device Certificate
* This section is for customers using HENNGE Device Certificate.
4.8. Checking the Installation Status of HENNGE Device Certificate
* This section is for customers using HENNGE Device Certificate.
4.9. Installing an Application to Load HENNGE Device Certificate
* This section is for customers using HENNGE Device Certificate.
- Installation of HENNGE Lock Application
5. Setting Access Control Policies for HENNGE Access Control
5.1. Assigning Access Policy Groups to Users
5.2. Testing the Operation of Access Policy Group Policies
5.3. Assigning Browser Policy Groups to Users
* This section is for customers using HENNGE Secure Browser.
6. Connecting HENNGE Access Control with Cloud Services
6.1. Connecting with Services that Perform Single Sign-On (SSO)
You can download procedures with established connections from this section.
6.2. User Provisioning Operations with Services Performing Single Sign-On (SSO)
This applies to customers who synchronize user information between HENNGE Access Control and specific cloud services.