WIC Computer Configuration - Details

WIC Computer Configuration - Details
Edited 08/19/15
WIC Computer Configuration - Details
This document outlines the details of the WIC information system. The focus is on the client side of the information
system.
Contents
Architecture ............................................................................................................................................................................ 1
Computer Configuration ......................................................................................................................................................... 1
Operating System ................................................................................................................................................................ 2
Office Suite .......................................................................................................................................................................... 2
Anti-Virus Software ............................................................................................................................................................. 2
Hard Drive Encryption ......................................................................................................................................................... 2
List of Required Applications for Full WIC Functionality..................................................................................................... 2
Network Configuration ........................................................................................................................................................... 2
Computer to Server Communications ................................................................................................................................ 3
Computer to Printer Communications................................................................................................................................ 3
Computer to FTPS Server Communications ........................................................................................................................ 3
Computer Security Practices ................................................................................................................................................... 3
WIC IT Hardware Descriptions, as of 08/19/15 ...................................................................................................................... 4
Computer Models ............................................................................................................................................................... 4
Printer Models .................................................................................................................................................................... 4
Other Equipment ................................................................................................................................................................ 4
Architecture
The WIC information system is a centralized system employing the “HuBERT” client and server software. The client
application creates, retrieves, and updates information in real time against the central database. This is facilitated
through communications between the .NET based client application and the server application over the Internet and the
HTTPS protocol. All connections are initiated by the client application.
Computer Configuration
The computers provided are owned by the State of Minnesota, and are configured with certain software packages and
settings. Some applications and settings are required for successful operation. Some are required to maintain a secure
environment and adhere to policy. State computers may be reconfigured as needed, provided WIC information system
functionality, data security, and policies are maintained. The WIC Help Desk will support the HuBERT application and
State owned hardware. Any changes to the default configuration of State hardware will necessitate that support then be
provided locally for those particular changed areas.
Edited 08/19/15
All software licenses and hardware are owned by the State of Minnesota.
Operating System
The Microsoft Windows 7 Enterprise x64 operating system is installed on State computers. This is the supported
operating system for the HuBERT client application. State computers are shipped with the latest updates installed and
the latest version of Internet Explorer.
Office Suite
The Microsoft Office 2010 Pro Plus x86 is installed on State computers. Microsoft Office 2007 or later is required to
generate some documents within the HuBERT client application.
Anti-Virus Software
McAfee Virus Scan Enterprise is installed on State computers. The State requires a real time anti-virus package to be
installed on all computers implementing the WIC information system.
Hard Drive Encryption
Microsoft BitLocker is active on all State desktop and laptop computers. The State requires full disk hard drive
encryption on all State owned computers, and any other laptop computers implementing the WIC information system.
Full disk encryption software must be FIPS 140-2 compliant as well as have an auditable installation trail that can be
provided to the State in the event that the computer is stolen.
List of Required Applications for Full WIC Functionality
There are numerous supporting applications required to run the HuBERT client application. State owned computers ship
with these installed. These are provided by the State and may be installed on non-State computer, but only after review
by the State. If you need these applications, you may contact the WIC help desk or appropriate State personnel.
Approval to use the applications on non-State hardware involves agreeing to, and signing, the Local Hardware
Agreement form.
Disregarding the Microsoft Operating System and Office suite, the following is a list of the applications required by the
system:
•
•
•
•
•
•
•
•
•
•
•
HuBERT Client
HuBERT Client – Second installation that points at a database for generating reports.
Microsoft .NET – Needed for the HuBERT client to function.
FileZilla – Application to access the WIC FTPS site for reports.
Adobe Acrobat Reader – PDF viewer required to see certain reports and documentation.
HHActiveX.dll – Registered DLL file required to view help files in the HuBERT client.
SigplusNET.dll – Used for implementing the signature pad within HuBERT.
Crystal Reports Basic for Visual Studio 2008 x64 – Required for reports in HuBERT.
SigPlus Basic – Used to test the signature pad.
Source Technologies Universal Print Driver v.2 – Required for network attached printers.
HP Scanjet G4010 and Canon P-215II Scanner Driver – Required for the document
scanners.
Network Configuration
For successful communication between the WIC computers, WIC servers, and WIC printers, there are a few
considerations. State computers are shipped assuming they will be connected a DHCP capable local network.
Edited 08/19/15
Computer to Server Communications
The computers will need access to the following URLs:
-
https://hubert.mnwic.net
https://reports.mnwic.net
https://training.mnwic.net
In some cases https whitelists are in use locally. If that is the case, the WIC URLs may need to be added. All connections
are client side initiated, meaning that added firewall rules should not be needed on most networks.
Computer to Printer Communications
State computers ship with five WIC printers installed to five different TCP/IP ports. The printer must have one of these IP
addresses statically assigned to it, or, a port can be added to an installed WIC printer. The added port would correspond
to a local WIC printer’s IP address. See the Printer – Common Issues document posted to the WIC website for further
information on configuring WIC printers in Windows.
When printers are warranty replaced, the replacement printer comes without the appropriate IP address assigned. See
the Printer – Replacement document posted to the WIC website for further information on replacement printer
configuration.
Computer to FTPS Server Communications
From time to time the MN WIC FTPS server is used to download and upload items that cannot be distributed via the
HuBERT system. This implementation of FTPS is secured using “Implicit FTP over SSL encryption.” As such, there may be
firewall rules necessary to allow this functionality. A recommended set of rules is below:
Port
990
25000-25500
Protocol
TCP
TCP
Incoming
outgoing
x
x
IP Address
12.162.231.118
12.162.231.118
Computer Security Practices
Most practices regarding WIC computer configuration are intended to maintain participant data security.
•
•
•
•
•
•
•
•
•
WIC computers must have an antivirus application installed. The application must provide real time scanning.
State WIC computers must have full disk encryption. The encryption installation must be auditable, in the case
of stolen computer equipment.
All WIC laptops must have full disk encryption, whether owned locally or by the State.
WIC computers must be behind a firewall.
Wireless communications must be encrypted.
WIC personnel Windows user accounts should not have administrative permissions, though this does not
preclude the creation and use of administrative accounts for administrative functions.
Disposal of WIC computers must include data wiping, or hard disk destruction. “Disposal” includes shifting the
computer’s use to another program within the local agency.
State owned computers are wiped of data prior to disposition.
The WIC HuBERT application may not be installed on a locally owned computer, for which the computer has not
been preemptively included on a signed Local Agency Hardware agreement.
Edited 08/19/15
• The State of Minnesota’s licensed software may not be installed on locally owned computers. If using locally
owned computers, the local agency will need to procure and support licensed software. This includes Microsoft
Windows and Office licenses.
• Refer to Minnesota Operations Manual (MOM), Chapter 9 for additional policies concerning the security of the
system.
o http://www.health.state.mn.us/divs/fh/wic/localagency/program/mom/ch/ch9.html
WIC IT Hardware Descriptions, as of 08/19/15
Below are the details of the equipment in use at WIC clinics. The list of equipment is as up to date as the “Edited” date in
the header of this document.
Computer Models
Dell Optiplex 9020 Desktop Computer – Intel Core i5-4570, 8GB 1600MHz DDR3, 500GB HDD, Internal Speaker
Dell Optiplex 7010 Desktop Computer – Intel Core i5-3470, 8GB 1600MHz DDR3, 250GB HDD, Internal Speaker
HP Elite 8000 Desktop Computer – Intel Core2 Duo E8400, 4GB 1333MHz DDR3, 160GB HDD, Internal Speaker
Dell Latitude E6530 Laptop Computer – Intel i5-3380M, 8GB 1600MHz DDR3, 320GB HDD
Printer Models
Source Technologies ST9715 – MICR printing, 550 sheet add on tray, approximately 45lbs (w/ printer, tray, w/o paper)
Source Technologies ST9712 – MICR printing, 550 sheet add on tray, approximately 45lbs (w/ printer, tray, w/o paper)
Source Technologies ST9612 – MICR printing, 550 sheet add on tray, approximately 45lbs (w/ printer, tray, w/o paper)
Other Equipment
Topaz SignatureGem 4x3 LBK755-BHSB Signature Pad – USB connectivity, 4”x3” backlit signing area
HP ScanJet G4010 Flatbed Scanner – USB connectivity, single-sheet flatbed
Canon P-215II - Mobile document and ID scanner, sheetfed
Asus Router RT-N66U – Wireless G/N, 10/100/1000 speed, 4 LAN ports, 1 WAN port, preconfigured with a wireless
network to which the State owned WIC laptops can automatically connect
Buffalo Router WHR-HP-G300N – Wireless G/N, 10/100 speed, 4 LAN ports, 1 WAN port, preconfigured with a wireless
network to which the State owned WIC laptops can automatically connect
Was this manual useful for you? yes no
Thank you for your participation!

* Your assessment is very important for improving the work of artificial intelligence, which forms the content of this project

Download PDF

advertising