• Web Front-End Installation Guide HOPEX V3 EN
  • Prerequisites
    • Operating System
    • .Net
    • Visual C++ Redistributable for Visual Studio 2015
    • .NET Core 2.1 Runtime & Hosting Bundle
    • Required roles
    • Desktop heap configuration
    • Configuration of SSL / TLS
    • Windows User(s) for MEGA HOPEX
      • Define Group permissions
      • Define MUST Licence Access
      • Define COM Access rights
  • MEGA HOPEX Setup
    • Choosing your setup type
    • Web Front-End Standalone Setup
    • Advanced Setup
      • Choice Screen
      • Advanced Parameters
  • Completing Installation
    • Define “Windows User for MEGA HOPEX” files Access Rights
    • Tune IIS
    • Configure Web Content expiration
  • What's next?
  • Testing the Installation
    • Testing MEGA HOPEX (Web Front-End)
    • More required configuration
      • Word, Excel and PDF exports
      • Reports (MS Word)
      • Required options configuration
      • Allowing the use of verbose logs and activation
    • URL Rewrite
  • Troubleshooting
    • Check that the Site Service Provider is running
    • Restarting Internet Information Services
    • Referencing a New Environment
    • Disabling Data Execution Prevention
    • Loosening Internet Explorer Security Settings
    • Manage http 503 error
• Cluster Deployment – HOPEX V3 Installation Guide
  • Prerequisites
    • Operating system
    • Tweaks
      • Users
      • hosts file
    • Server Windows 2016
    • Installing .Net 4.7
    • Windows users for MEGA
    • Define the group permissions
    • Define the COM rights
    • Create folders
    • Give rights on the proper folder
      • Web/Application Servers
      • RDBMS Server
  • Install MEGA on the Web Servers
  • Install MEGA on the MWAS Application Servers
  • Install MEGA on the SSP Application Servers
  • Finish the installation
    • Create share folders
      • License share
      • Environment share
      • MegaSite share
    • Configure the license
    • Update the Desktop Heap
    • Install SQL Server native client
    • Centralize the MegaSite
    • Managing the RDBMS setup
      • Instance and databases
      • Configure the default connection string
    • Creating an environment
    • Creating a repository
    • Configure the mega account
      • Provide a password
      • Create assignments
    • Configure the services
    • Declare the SSP nodes
    • Test the web client
    • IIS Tuning
      • Application pools recycling
      • Manage expiration of HTTP response headers
    • Diagnostic Tools
      • Latency test with hrping
      • “RDBMS Diagnostic” Tool
    • Activation and deployment of stored procedures for SQL Server
  • Annex
    • The log files
    • Restart the web application
      • Automatic restart with a Mega tool
    • Configure SMTP
  • Deployment Types
    • Standalone Deployment
    • Horizontal scaling Deployment
    • Vertical scaling Deployment
    • Vertical scaling Deployment (detailed view)
  • Common deployment requirements
    • Web Client
    • Application Server
    • File Server
    • Database Server
  • Communication
    • Between Web Client and Web server (Web Application Server)
    • Between Environment SSP or MIK and Database server (SQL Server)
    • Between Environment SSP or MIK and mail server
    • Between Environment SSP or MIK and file server (file access, license access)
    • Between Environment SSP and LDAP Server
  • Inside
    • Administration tools
    • Anti-virus Configuration
    • Authentication
    • Cluster, scalability and load balancing
    • Data access
    • Data storage
    • Document management
    • Error and trace logfiles
    • Full search and indexing
    • Licensing
    • Mail system
    • Multi-language
    • Physical backup
    • Redo logs and activity tracking
    • Regular administration tasks
    • Reporting
    • Security
    • Services and running processes
    • Supervision
    • System caches
    • Technical documentation
  • FAQs
    • What about HTML browsers other than Edge, Firefox and Chrome?
    • What is web storage for HTML browsers?
    • What is supported for Azure?
    • What is Mozilla Firefox ESR?
    • What is the list of minor restrictions for Edge / IE / Firefox?
    • Are IE 9.0/10/11 still supported?
    • Is Windows Server 2008 R2 still supported?
    • Are SQL Server 2008/2008 R2/SQL Server 2012 still supported?
    • Are there requirements or recommendations regarding security policies (GPOs)?
    • How to configure HTTPS?
    • It is possible to use a Must licence that is not located on the SSP Application Server?
    • Can the HOPEX web Front-End run on a web server other than IIS?
    • Can HOPEX solutions and products run on a mobile platform?
    • What are the web technologies used by HOPEX Platform?
    • What about other database servers?
    • Are there supervision tools?
• How to Migrate to HOPEX V3
  • Main steps to migrate data to HOPEX V3
  • Prepare upgrade of data
    • Check metamodel, locks, workspaces and workflows
    • Verify that GBMS storage is no longer used
    • Verify that Windows Front-End is no longer used for runtime
    • Verify format of report templates (MS Word)
    • Verify technology of web desktops
    • Identify Solution packs used
    • Decide 'Definition of path of MetaAssociation'
    • Check license with your sales representative
    • Review use of the profile 'Enterprise Architect'
    • Review authentication mode
    • Decide to keep web settings
  • Upgrade data from HOPEX V2R1 to HOPEX V3
    • Check data upgrade pre-requisites
    • Upgrade environment with SQL Server storage
    • Update stored procedures with SQL Server storage
  • Complete upgrade of data
    • Set a value for 'Definition of path of MetaAssociation'
    • Re-import solutions packs
    • Rebuild full search indexes
    • Review command line parameters
    • Convert custom report templates (MS Word) to format RTF
    • Restore web settings
  • Check upgraded data
    • First control of migration
    • Check data modelling consistency
    • Other checking indications
  • Appendix
    • Conversion details
    • Utilities details
  • FAQs
    • Warning 'Run the menu 'Perform SQL conversion on the repository' to perform the upgrade
    • Warning 'Your environment and site are not of the same version. Your environment requires updating…'
    • Warning 'Writing access diagram is not compiled…'
    • How to run a specific conversion or utility?
• HOW TO INSTALL CP HOPEX V3
  • Foreword
    • Corrective Pack
    • Identification of version
  • Upgrading HOPEX programs
    • Upgrading Web Front-end
      • Pre-install
      • Procedure
    • Upgrading HOPEX Data
      • Pre-upgrade
      • Procedure
      • Post-installation and data upgrade
  • FAQs
    • What is the meaning of the actions below?
    • How can I get the MSP file of the Corrective Pack?
• How to Migrate Data from Oracle to SQL Server HOPEX V3
  • PRE-REQUISITES
  • RECOMMENDATIONS
  • PROCEDURE
    • General process
    • Procedure
  • Check DATA
• RDBMS Repository Installation Guide
  • Summary
  • Generalities
    • Supported Versions of RDBMS
    • Unsupported HOPEX Features in RDBMS Storage
    • Expected Advantages
    • Licensing
  • Infrastructure Requirements
    • RDBMS Client
    • Network Capability to Database Server
    • File Server and RDBMS local cache
    • Architecture Model
    • Database Server
      • Server disk size
      • Number of connections opened by HOPEX on the RDBMS for each HOPEX workstation
  • HOPEX RDBMS Diagnostic Utility
    • Purpose
    • Running the RDBMS Diagnostic Utility
  • SQL Server support
    • SQL Server Requirements
      • Encoding
      • User management
    • Defining a HOPEX SQL Server Connection
      • Procedure with a native SQL account
      • Procedure when using Windows authentication
    • Creating an Environment
      • Creating a new SystemDb database
      • Using an existing SystemDb database
    • Creating a Repository
      • Creating a new SQL Server database
      • Using an existing SQL Server database
    • HOPEX Private Workspaces Cleanup
      • Installing the procedure
    • HOPEX Historical Data Cleanup
      • Before cleaning Historical Data
      • Installing the procedure
    • Batching Cleanup procedures for SQL Server
    • Maintenance tasks
  • HOPEX RDBMS repositories specific administration actions
    • Migrating Your Data from One Storage Support to Another
    • Restoring a HOPEX environment from formatted data
      • Restoring an environment (SystemDb repository)
      • Restoring a data repository
    • Handling of HOPEX RDBMS repositories specific internal format
  • Vocabulary
  • Appendix - FAQs
    • Is it possible to share user repositories and the SystemDb repository through user's workgroups that do not share a file server?
    • Is it possible to have a user repository stored on a GBMS and a SystemDb repository stored on a SQL server?
    • Is it possible to consult the data from a SQL Server?
    • Is it possible to update the data from an SQL Server?
• Must License Installation Guide HOPEX V3
  • Summary
  • Foreword
  • Must licence utility
    • User Interface
      • Select server path window
      • User management window
      • Select HOPEX installation window
  • Installation procedures
    • Communicating with MEGA Sales Administration
    • Choosing a machine to host the Must licence folder
    • Creating a Must licence folder
    • Sending the UNC address of the licence folder
    • Installing a Must licence file
    • Configuring the licence folder in the HOPEX installation (direct reference)
    • Configuring the licence folder in the shared configuration folder (indirect reference)
    • Uninstalling the Must licence
    • Resetting the configuration files
    • Converting licence
    • Configure file permissions
  • Configuration and monitoring procedures
    • Configuring the command line (/RO /RW code)
    • Specifying a default licence
    • Declaring users
      • Adding a user to a licence
      • Removing a user from a licence
    • Configuring possible users of products
      • Setting a user as a possible user of a product
      • Removing a user as a possible user of a product
      • Cleaning up licence tokens
    • Instant monitoring of licence connections
  • Configuring licensing modes and user types
    • Configuration of main users with concurrent mode (floating mode)
      • Check .Must licence
      • Configure command line
    • Configuration of main users with dedicated mode
      • Check .Must licence
      • Configure command line
    • Configuration of main users with shared mode
      • Check .Must licence
      • Configure command line
    • Configuration for viewer users
      • Configure command line
    • Configuration for contributor users
      • Configure command line
  • Inside
    • Licence deployment model
    • Licence execution
      • Windows Front-End
      • Web Front-End
    • File access
  • FAQs and Troubleshooting
    • How can I use the Web licensing console?
    • Do I have to configure possible users?
    • How can I secure configuration of the HOPEX Must licence?
    • How can I prevent the dynamic declaration of possible users?
    • How can I get a log of licence connections?
    • What is the Router.ini file?
    • How can I get the assignment of users to licences?
    • How can I get the assignment of possible users to product?
    • When adding a user, I get an error 'Bad format with user 'XX'!
    • How can I get the list of logins of users?
    • I do not know the names of the logins. Why can't the utility provide a list of existing login?
    • How can I set possible users for a selection of users?
    • Can I mix shared and dedicated modes?
    • Is my licence shared or dedicated?
    • Error message 1
    • Where is the latest licence folder used saved?
    • How can I check that an HOPEX installation is part of a cluster?
    • A message is displayed like You are not allowed to launch HOPEX V3 with your licence file “xxxx.must”. It must be upgraded for this version. Please contact your sales representative to obtain a valid licence file.
• HOPEX UNIFIED AUTHENTICATION SERVICE
  • Contents
  • Introduction
    • Unified Authentication Service Overview
    • What is SAML2 ?
      • How SAML Works ?
      • Profiles
      • Security
    • What is Oauth2 and OpenID?
      • Description of the OAuth2 protocol
      • The notion of token
      • Client registration
      • OpenID Connect protocol description
      • The notion of Token ID
      • Sample Token ID:
      • The notion of Authorization Flow
      • Focus on JWT
  • UAS Options configuration
    • Configuring authentication options
    • Server Option Description
      • Server global options
      • Authentication options
      • Cookie options
      • Events options
      • Logging trace options
      • Token Signature options
    • Identity Provider Option Description
      • Google, see Open ID Connect (OIDC) provider
      • HOPEX provider
      • IIS Windows provider
      • SAML2 provider
      • Open ID Connect (OIDC) provider
      • Google provider
      • Microsoft provider
      • Salesforce provider
      • Custom provider
    • Cross-Origin Resource Sharing Option Description
      • Simple requests
      • Preflighted requests
      • Use within browsers
    • Error detection
    • Client Option Description
      • HOPEX Custom (options in Extended view only)
  • UAS api Endpoints
    • Authorization/Authentication
    • Token
    • UserInfo
    • Discovery Endpoint
    • Logout Endpoint
    • Token Revocation
    • Introspection Endpoint
    • Access token validation endpoint
    • Identity Token Validation Endpoint
    • CSP Endpoint
  • Establish an SSL connection
    • Creating a certificate request from IIS
    • Completing the certificate request
    • Binding IIS with SSL certificate
    • Exporting certificate to the local disk
  • Install HOPEX Signing Certificate (Manually)
  • Configure UAS hopex by options
    • Local Configuration
      • Defining authentication options
    • Cluster Configuration
      • Configuring your data component type
      • Configuring your SQL Server Data component type
      • Configuring Hopex Web options
      • Generating Machine Key
  • Configure client using UAS
  • Standalone Mode
  • Anonymous environment mode
  • SAML2 ADFS Server Configuration
  • Windows Authentication in cluster mode with UAS
  • OKTA Configuration
    • Configuring OKTA
    • Configure UAS with OKTA
  • Terminology
    • Client
    • User
    • Scope
      • Identity scopes
      • Resource scopes
    • Authentication/Token Request
      • Identity Token
      • Access Token
  • Protocol specifications
  • Troubleshooting
    • General
    • Get information about configuration
    • Redirect Server name to Full Qualified Domain name
    • Client configuration in Windows Authentication mode
    • Filtering Windows group
      • Filtering Windows group by number
      • Filtering Windows group by name
• UAS Tools
  • Purpose
  • Configuration
    • Configuration page
      • Getting Started
      • Identity Providers
      • CORS
    • Result page
  • Diagnostic