Reform project. BME-PC VPN - PRODUCTION
Once the SALMON-coloured fields of this form are completed, it should be sent to BME who:
Will set up the necessary configuration tasks
Will fill in the BLUE-coloured fields
Will return back the form to the Entity so the connectivity can be tested
Data Entity
Company name
Contactperson
Contactphonenumber
Contact email
0.- Tipo de petición. Entorno de producción
In case a modification, it should be highlighted in YELLOW. / Register ☐ Decommission ☐ Modification ☐ / Date
Remarks
1.- CONECTIVIDAD BME-PC- The following will be needed:
Modified "HOST" file of the terminal, which it includes “10.166.4.163 gui.bme-pc.es”.
If connectivity is done through VPN you must complete the attached application for "VPN-Service Request Form" selected in BME-PC "" Interconnected Applications application ".
You must install the Cisco VPN Client software and the connection profile Production (Cisco VPN Client Configuration File Prod.) .The Instructions (Cisco VPN Client Installation Guide.) And all information can be downloaded from the URL http: // software.bolsasymercados.es/helpdesk The user and password will be supplied by BME Helpdesk.
Information to be supplied by the Entity( all date must be filled in)
Network used (mark an option) / Internet. ( VPN) ☐
IP addresses of the computers through which you are going to access (Public IP)
C.I.F. of Entity
Information to be supplied by BME
A Certificate for production environment, username and password for VPN are supplied by BME to the entity.
Remarks:
BME-PC featuresApplication
Description of the tool / Client terminal to access to BME tool.
Execution framework / Web browser (Explorer 8 or higher), Chrome, FireFox)
Execution of the tool / It is executed on web browser connected to the BME network
Internet access / NO
Updating of the tool and components / The tool will be updated on BME servers. You will receive nothing for its installation for making it work.
Installation of additional elements / The application does not need to install nothing on the client’s computer.
Security- Authentication
Authentication / User/Password + Web browser Certificate
Certification type / Auto signed X'509 SHA1 PKCS12 2048 bits
Administration / Users are managed with a tool developed for this purpose, where roles and rights of each one are set up.
Level of authorization / Roles are defined as Profiles and they content the authorized menu options as well as the relationship with Entities-Members.
Password features / The password has to content at least a capital letter, a number, a special symbol and also it has to be longer than 8 characters.
Management of the password / Initially, the password is set up by an administrator. It is mandatory to change it when the user login to the application by the first time. It will be sent and save encrypted.
Accessibility to the user credentials / Only the administrator of the system can access to the credentials, but it cannot see the user password.
Force a new password / The application does not obligate to change from time to time the password, but the administrator can force its reboot.
Inactivity of the system / The session can be lost if there is no activity at the terminal in 15’.
Security-Remote access
Remote access / Nowadays it is only allowed the access through the BME Market network.
Getting credentials / For any type of access, it would be necessary to contact with the BME business unit in order to know the necessary credentials.
Inactivity of the system / The session can be lost if there is not activity at the terminal in 15’.
Processed Information
Processing of the information / The application does not deal with any type of data in local. All the information is kept on the internal servers of BB. DD.
Processing of the cookies / If the session is in shadow variables, the application does not manage cookies.
Monitoring
Network security / The terminal to access is previously identified in the network.
Follow-up / The IP of the connected client terminal is controlled so only y the necessary protocols and ports (HTTPS/443) are active.
Control access / There are tools for the administrator of the system in order to verify the access to the terminal client with the periodicity that it is deemed appropriate.
1 BME-H202.0.12