Video Screencast Help

Procedure to Install Secure pcAnywhere Host and Remote

Created: 06 Jun 2012 • Updated: 06 Jun 2012 | 2 comments
Language Translations
Nitin's picture
+1 1 Vote
Login to vote

Note : This article is applicable to the older versions of pcAnywhere (prior to pcAnywhere 12.5 SP4). This information is provided to ease of use and users are agree to use it at their own risk. The author can not be held liable for the use or misuse of this information.

 

Procedure to install secure pcAnywhere Host and Remote

Pre-requisites

Certificates in the form of .p7b and .p12 for the host and remote have already been generated. P7b contains only private key and p.12 contains both private and public key.

 

Procedure to install the  certificate on pcA remote machine

On the remote machine create a folder c:\Program Files\Symantec\pcAnywhere\Certs

Copy the .p12 file created for the remote user into the Certs directory.

Copy the .p7b file created for the host into the Certs directory.

Using Windows Explorer, navigate to the Certs directory.

Double-click on the .p12 file for the remote user.

This will start the Certificate Import Wizard.

Click next

Click next, provide password. Ensure the Enable strong private key protection box is not checked. Check the box for Mark the private key as exportable

The result should look like the panel pictured below.

When finished, hit the Next button. This will bring you to a panel asking for the certificate store to use. It should look like this:

Do the following:

1. Select the radio button for Place all certificates in the following store

2. Hit the Browse button

3. On the choose dialog that comes up, select the Personal store and hit the OK button to close the browse dialog

The result should look like the panel pictured above. When finished, hit the Next button.

Hit the Finish button.

Open certmgr.msc, you will see the certificate under personal store

Go to pcanywhere installed location via command prompt. Type MachKey.exe and enter

Machkey application will open and certificate is visible under My store

Select check box in My store for the certificate and click on copy to Machine store

Now certificate is moved to machine store. Close MachKey

 

Copy the certcons.exe file from c:\Program Files\Symantec\pcAnywhere into the Certs directory created earlier.

Go to a DOS prompt and do the following:

cd c:\Program Files\Symantec\pcAnywhere\Certs

certcons pca.store host.p7b  [The name of the host’s .p7b file]

Exit the DOS prompt.

 

Double-click the pcAnywhere icon on the desktop it to run the program. Go to remote tab

Right click in right pane select new item and select advanced to create remote. You will see dialog box below. Confirm that the TCP/IP device is checked.

Click Settings tab and provided the host machine ip address or name

Go to encryption tab. You should get a screen that looks like this

Do the following:

1. For the Level selection box, choose Public key

2. Select appropriate algorithm. ( I have selected AES with 256 key length)

3. Hit the button for the Public key Encryption Wizard

Drop down Public key encryption setting. Select the private key from the private key container 

Click on public key encryption wizard

Click Next and select the certificate visible and click next

Select the certificate store which is created for the certificate earlier. Click next

Click finish.

You will see the final wizard as below. Click OK

 

Procedure to install the  certificate on pcA host machine

On the host machine, create a folder c:\Program Files\Symantec\pcAnywhere\Certs

Copy the host’s .p12 file into the Certs directory.

Copy the .p7b files for the remote users into the Certs directory.

Using Windows Explorer, navigate to the Certs directory.

Double-click on the .p12 file generated for the host machine.

This will start the Certificate Import Wizard.

Follow the same procedure to add the certificate in personal store and then machine store.

 

Double-click the pcAnywhere icon on the desktop it to run the program. Go to Host tab

Right click and select new item and then advanced option. Go to caller tab and create appropriate caller. I have created pca caller for testing purposes. Click on new item in caller list and set pca user name and password

Go to encryption tab and repeat the same steps used to create remote item on host item to select the host certificate

Click Apply and Ok

Double click on new host created with Encryption level set to Public Key.

Host is running and visible in system tray.

 

Comments 2 CommentsJump to latest comment

Nitin's picture

This article mainly focussed on setup Encryption for host and remote in pcAnywhere (old version of pcAnywhere prior to 12.5 SP4) for the ease of use for the customer. Hope this helps.

Regards,
Nitin

If you feel your issue has been addressed to, please use the "Mark as Solution" link for the relevant thread

+1
Login to vote
ICHCB's picture

Good write up thanks for posting this.

If you find this post helpful please give it a thumbs up!
If you find that this solves your problem please mark it as the solution! 

0
Login to vote