Placing UGC Devices under UGMC Management

To manage devices, you need to add them to UGMC. UGC managed devices can be added in two ways:

  1. Adding one UGC managed device at a time. Suitable for companies with only a few UGC managed devices.

  2. Bulk addition of devices, suitable for companies with a larger number of devices.

Adding Single Devices

To add a single UGC managed device, follow these steps:

Name

Description

Step 1. Enable access to UGMC from the UGC managed device.

On the UGMC server, allow the Endpoints control service in the zone interface to which the managed device is connected. The UGMC server listens for UGC managed device connections at TCP ports 4045 and 9712.

Data transfer between the UGMC server and managed devices occurs over an encrypted data link.

Step 2. Create an entry for the UGC managed device in UGMC.

In the Endpoints ➜ Devices section of the realm management console, click Add and provide the desired settings.

Step 3. Display the unique code for the new device.

In the Endpoints ➜ Devices section of the realm management console, select a record, click Show device unique code, and note it. This code will need to be entered when the UGC software is installed on a specific user device (computer).

Step 4. Install the UGC software on the specific user device (computer).

Install the UGC software on the specific user computer (endpoint). In the setup wizard, enter the IP address of UGMC and the unique device code created at the previous step.

For more details about installing the software on devices, see the UserGate Client Software Installation section.

When creating a UGC managed device record, provide the following settings:

Name

Description

Enabled

Enables the UGC managed device object.

Licensed

Endpoint licensing: if the flag is set, then it uses one license.

If there is no license, the endpoint will not be able to connect to the UGMC.

If the flag is removed after registering the device with UGMC, then:

  • firewall rules earlier received from the MC continue to work;

  • VPN connection with settings previously received from the MC is available;

  • The endpoint does not receive new settings from the MC.

Name

The name of the UGC managed device. The name can be arbitrary.

Description

The description of the UGC managed device.

Template Groups

The templates group whose settings should be applied to this UGC managed device. The settings (policies) will be applied after synchronization with UGMC.

Sync mode

The synchronization mode: disabled, automatic, or manual sync.

Adding Devices In Bulk

To bulk-add UGC managed devices, follow these steps:

Name

Description

Step 1. Enable access to UGMC from the UGC managed devices.

On the UGMC server, allow the Endpoints control service in the zone interface to which the managed devices are connected. The UGMC server listens for UGC managed device connections at TCP ports 4045 and 9712.

Data transfer between the UGMC server and managed devices occurs over an encrypted data link.

Step 2. Create a code for the device group.

In the Endpoints ➜ Endpoint codes section of the realm management console, click Add and provide the desired settings.

Step 3. Display the unique code for the new device group.

In the Endpoints ➜ Endpoint codes section of the realm management console, click Endpoint unique code and note the code. This code will need to be entered when the UGC software is installed on the device group.

Step 4. Install the UGC software on user devices.

Install the UGC software on user computers (endpoints). In the setup wizard or Active Directory administrative template, enter the unique device group code created at the previous step and the IP address of the UGMC interface to which the managed devices will be connected.

Upon completion of the software installation, an entry is automatically created for each UGMC device in the Endpoints ➜ Devices section, and each device receives all settings from the template group applied to it.

For more details about installing the software on devices, see the UserGate Client Software Installation section.

When creating a code for a device group, provide the following settings:

Name

Description

Enabled

Enables this code. When disabled, the code cannot be used for adding new devices, but all devices created earlier with the same code will continue working.

Name

The name of the code. The name can be arbitrary.

Description

A description of the code.

Template Groups

The template group whose settings should be applied to UGC managed devices activated using this code. The settings (policies) will be applied after synchronization with UGMC.
Note After registering an endpoint with the code, you can change the template group used individually for each device. In case of problems, reinstallation of the UserGate Client software and the need to re-register on the UGMC, you are required to use the procedure for reconnecting the device (in the Endpoints ➜ Devices section click Reconnect device). If you re-register an endpoint with a common code, then a new registration record for the endpoint will be created on UGMC with the device linked to the group of templates specified in the code settings. Previous registration information will also be saved.