How to Configure the Cloud License Manager Service Securely

1.Enable HTTPS in the LMS or load balancer that is in front of the LMS.

2.Ensure that Sentinel LDK License Manager service is active on the machine where Sentinel Admin Control Center (referred to as ACC) will run.

3.Launch ACC on the cloud license manager server:

•To run ACC from a remote machine, enter http://<machine_name or ip_address>:1947 in the address field of the web browser.

•To run ACC on the local machine, enter: http://localhost:1947 in the address field of the web browser.

4.From the ACC navigation pane, go to the Configuration page > Basic Settings tab.

•Follow the provided instructions in the ACC help to enable password protection. Select All ACC Pages.

5.From the ACC navigation pane, go to the Configuration page > Configuring Access from Remote Clients tab.

a.For Allow Access from Remote Clients, select: Identifiable clients only. Non-cloud licenses cannot be accessed.

b.Set Trusted IP Address for EMS for the produce-and-push action. If you are using Cloud Portal, there is no need to set Trusted IP Address.

c.For Public Address for Access With Identity and ACC, specify the public DNS name for the LMS.

d.For Public Port for Access With Identity, specify port 80.

6.In a text editor, open the hasplm.ini file (described in the ACC help system). Add the line port_admin=<port_number>, where <port_number> is any port other than 1947 or 80.

7.Add IP restrictions on the proxy of the cloud license manager so that only authorized networks can access Sentinel Admin Control Center or use Sentinel Admin API.