HealthCast

Configure Using FTP and wnos.ini

This section describes how to configure your WTOS (version 8.3.1 and above) thin clients to use Lynx server. In order to use this method you will need:

Requirements

  • FTP server (these instructions assume you are using Microsoft IIS)

  • wnos.ini file

  • client certificate (available from HealthCast or you may use your own)

  • CA certificate (only needed when the Lynx server certificate is not issued by a public certificate authority such as GoDaddy or Comodo)

Steps

Follow these three steps to configure the WTOS thin client to use the Lynx server.

Step 1

Create the following folder structure on your FTP server (this assumes you are using Microsoft IIS on a Windows system to enable FTP access):

C:\inetpub\ftproot\wnos\cacerts

Step 2

Copy these files into the C:\inetpub\ftproot\wnos\cacerts folder:

  • Client certificate .pfx file (If you received this file from HealthCast this file will be called dell-wyse-client.pfx)

  • Certificate Authority (CA) public certificate (you won’t need to do this if the Lynx server certificate is signed by a public CA such as GoDaddy or Comodo)

Step 3

Create a wnos.ini file (or edit your existing wnos.ini). Include the following information and put the wnos.ini file in the C:\inetpub\ftproot\wnos folder.

Sample wnos.ini file:

# Replace https://your-lynx-server-fqdn:port with the actual Fully-Qualified Domain Name #(FQDN) and port of the Lynx server. For example: https://lynx.example.com:443 # The ClientCertificate parameter specifies the name of the .pfx file to use for authenticating# to the server. You will need to change the value of this parameter if you are using your own # .pfx file # Note: the next line is being line-wrapped in this document but should be a single line in the # wnos.ini file

HealthCastServer=https://your-lynx-server-fqdn:port LogLevel=3 SecurityMode=high ClientCertificate=dell-wyse-client.pfx

Autoload=1

Priviledge=high

Signon=yes

# The item(s) in this list will prepopulate the Domain drop down list that the user sees when

# registering a prox card. If you only have one Windows domain, then only add that one domain

# to the list. Example: Domainlist=MYDOMAIN

Domainlist=FIRSTDOMAIN;SECONDDOMAIN;THIRDDOMAIN

Note

Dell/Wyse clients will need this domain name in order to avoid the user having to manually input it when using self-service password reset. Otherwise, you may find SSPR will not work because the domain will be missing due to user oversight during the reset process.

# The next two lines tell the thin client to install the certificate file named dell-wyse-client.pfx

# and to use the specified encrypted password to access the private key in the certificate file

# You will need to change these values if you are using your own client certificate

AddCertificate=dell-wyse-client.pfx 
password-enc=BMKFPAFBLCLHEJAHNFBHLPHAGBPOEDGE
In this section: