Remote panel Tool KM

Re: Remote panel Tool KM

I GOT IT, I GOT IT!!!!

Ok, here are the settings that you need to use for both the software and the machines:

Server - Install using all defaults as per the standard installation. Once installed, ensure that you start the "Remote Panel Server" and also click on "Open Port" to punch a hole through the firewall. This hole should only be opened for the client software to communicate with, so there is no need for this port to be opened up and internet facing.

While on the server, ensure that the firewall also allows the following Inbound rule "World Wide Web Services (HTTPS Traffic-In). This should be running on port 443 and this is what is used for machines to connect from the outside world. You will also need to forward port 443 from your router to the IP address of the server.

Client Software - Install as per standard installation. Once the software is run for the first time, you will be presented with the configuration which basically means you just need to type in the address (DNS or IP address if your connection is assigned a static IP). Allow this to run on the default port which is 61239 and should match the port on the server.

Copier Settings - Ensure that you have an SSL Certificate setup on the machine and then configure the following settings on the copier:

Admin Settings > Network Settings > Remote Panel Settings > Client Settings

Port Number - 443 (This is a common port for routers to have open, other wise you would be able to view HTTPS web sites)
Connection Time Out - 60 Sec
Host Address - IP or DNS name of your internet connection such as mail.youcompany.com
Certificate Verification - This will need to be adjusted to the certificate settings on your server installation.
Synchronize WebDav Settings - I haven't entered anything in here.

Once all this has been setup, you can then test the connection.

On the machine go to Utility > Remote Panel Operation > Start

A randomly generated PIN will be displayed on the display of the machine and is required for the connection to be successful. You can now go to the client software and you should see a machine in the list. Once you attempt to start a connection with the machine, you will be requested to enter in the PIN number. If you have entered in the PIN correctly, you should now see the machine's panel.

This setup is done so that machines can be remote controlled on a customers network without any setup requirements on the customers network other than having port 443 allowed for outbound traffic on their router. As I previously stated, if 443 isn't opened on the customers router, then they won't be able to view HTTPS web pages.

The way I described this software to our sales guys is "Think of it as TeamViewer for the 4 Series Konica Minolta devices. You have a user initiated remote session which you are then able to connect to as long as the customer give you the correct PIN". This makes the customers feel more secure as well as they will know that we can't access the devices remotely without them knowing or giving us the PIN.

Play around with this stuff guys as it IS a powerful sales and technical tool which be utilised to decrease you response times and help users in remote areas without having to leave you desk.

I will also be allowing our helpdesk girls to access this as they will also be able to better inform techs of error codes and jams statuses in the event of getting that typical user on the phone requesting for help.

Re: Remote panel Tool KM

hello!

Thats fast! Good to hear you got it all working. I think i've found whats going wrong on my end. Port 443 is directed to an other server than the server Remote panels software works on, what i didnt know. I got everything set-up the same as you did but now I might know whats wrong.

I'll have to talk with my coworker on how to fix this. Thanks for looking in to it and letting me know the results!! You helped me out a lot by doing this!

Michel

Re: Remote panel Tool KM

Wiht out 443 forwarded to the correct server, you are dead in the water so to speak.

The only issue that I have with forwarding this port is that I lost my webmail server, but I can access that in many different ways. What I might end up doing is getting another static IP address assigned to the network so that I can segregate 443 by different IP addresses.

Either that or do the unthinkable and use a different port number other than 443... lol

Re: Remote panel Tool KM

Ill let you know how we fixed it to get it working. We will lose our mail server as well when i forward 443 to the other server. Ill get back to you

Re: Remote panel Tool KM


Dude! You are brilliant! Thanks a lot. Have not used it..yet, but surely it is one of the set-ups I will keep on file as a reference! Can't give you rep as the last one went to you so .. Here it is " You have been awarded a Administrators IT Xross for best IT services on Copytechnet" Howl :P

Re: Remote panel Tool KM

How do i need to setup the SSLCertificate settings on the machine (under the Security Tab)?

Thanks in advance.

I think we are almost there, server and firewall are all setup correctly (as you described).

Re: Remote panel Tool KM

I use the remote panel tool frequently, as it is a huge time saver..Wish KM would incorporate this tool on the new B&W MFPs..

If it can help, here are my settings;

After inputting all basic network info including DNS and Domain settings...

1. Create a new self-signed certificate, make it the default and delete the original.
2. Turn on SSL for user and admin modes
3. Under network settings, check all the boxes under open API and TCP Socket settings
4. Turn on the client settings under remote panel settings..I have never used the server side and I'm not sure how it works

Open a web browser and type https://IPADDRESS:50443/panel/top.html

Now you have access to the MFP as if you were standing right in front of it. You can also access service mode from here. I have used this tool to fix a lot of VCARE issues without needing to drive to the site...helps to have a accomodating customer that is willing to do a remote session with you though. EMujo

Re: Remote panel Tool KM

Are you talking about the certificate verification settings under the Server Settings or just how to create an SSL Certificate?

In the server settings, I just set them to all to not verify which seems to work the best with a Self-Signed Certificate.

Emujo, you should really jump on-board with the server side setup. It means you don't even need to leave the office to get access to the machine. All you need is for some one to press Utility/Counter, Remote Panel Operation, Start and inform you of the temporary PIN code.

We have taken this to the point where I am in the middle of getting approval for a new server at work so I can get this to work for mulitple techs at once by using Microsoft Remote Desktop Services.

Re: Remote panel Tool KM

Im using the client setup on the MFP. But i tought you had to do something under the security tab also, but i guess thats only when using server?

We've also set everything to not confirm but it still isnt working (even on port 443), so i started looking at the security tab.

Re: Remote panel Tool KM

Have you got port 443 forwarded from your router to the server which is running the Konica Minolta Remote Panel Tool?

Are you using the outside DNS name or the internal DNS name of the server?

Say you have an outside DNS name of abctechs.com as well as a website externally hosted, then you would have two DNS records.

www.abctechs.com - which would point to the IP address of your website host.
mail.abctechs.com - which would be for forwarding email to your email server (doesn't have to be mail.)

You need to make sure that you are using the correct DNS name to sucessfully get back into your own network or the external IP address of your router.

If you like, you can PM me your company name and web details and I will use a tool which should find your MX record which relates to your IP address.

Re: Remote panel Tool KM

I use our external IP adres to connect to our firewall, from there traffic is forwarded to the correct server. We havent registered an DNS name for the remote panel software, maybe later but for now this will do (if i get it to work offcourse!)

Re: Remote panel Tool KM

Now from what I remember, your server that is running the Remote Panel Software is in your DMZ and the rest of your gear is in your local intranet. Is that correct?

Do you have a firewall between your DMZ and intranet?

Is the copier in the DMZ as well or on your intranet?

Is it possible to put your copier insode the DMZ for testing?

Do you have a customer nearby with a 4 Series device that you could quickly test your settings on?

Is port 443 blocked as an outbound port from your site at all?

Work through those and let us know how you go with each one as they should provide clues as to what is going on.

Re: Remote panel Tool KM

Now from what I remember, your server that is running the Remote Panel Software is in your DMZ and the rest of your gear is in your local intranet. Is that correct?
Not anymore. We have to seperate networks with two internet connections. So there is no DMZ. Its build like two seperate office locations.

Do you have a firewall between your DMZ and intranet?
There is a firewall on the network wich forwards port 443 to the remote panel server.

Is the copier in the DMZ as well or on your intranet?
The copier is on the office network, the server is on the other network. It can only be connected via the world wide web.

Is it possible to put your copier insode the DMZ for testing?
We've done this before placing the server outside the same network, everything worked perfect.

Do you have a customer nearby with a 4 Series device that you could quickly test your settings on?
I've just finished installing one and we are delivering it this week at a site nearby, ill test it out.

Is port 443 blocked as an outbound port from your site at all?
no

Work through those and let us know how you go with each one as they should provide clues as to what is going on.
Thanks

Re: Remote panel Tool KM

If i want to use another port instead of 443, can i just change the port number on the printer and on the remote panel server software/settings? And offcourse forward the other port. We need a second mail server on that other network, so 443 cannot be used by remote panel server any longer.

Thanks in advance

Re: Remote panel Tool KM

I think you only need to forward the port that you use and set the machines to use that port.