ThinPrint Client package signature verification
Introduction
eLux is an ultra-slim, hardware-independent and highly secure operating system from Unicon for complex VDI and DaaS environments (unicon.com).
Tips
- ThinPrint Client does not require the installation of CUPS.
- Duplicate printer names are not supported on same eLux host.
This is in line with CUPS behaviour.
Technical requirements
- eLux version 6 or 7
ThinPrint provides separate ThinPrint Client packages for each eLux version.
ThinPrint Client package signature verification
To make signature validation succeed for the ThinPrint packages, you need to import the R45 Code Signing intermediate CA and root CA certificates from GlobalSign.
As an example, here is the procedure that can be followed to configure package signature validation for ThinPrint packages in Scout Elias:
- Save GlobalSign GCC R45 CodeSigning CA 2020 intermediate CA certificate to a file in PEM format, and then load it:
- Open support.globalsign.com/ca-certificates/intermediate-certificates/code-signing-standard-ev-intermediate-certificates.
- Search for the GlobalSign GCC R45 CodeSigning CA 2020 section.
Note that there is an unrelated certificate with a very similar name. - Click View in Base64, copy all the just expanded text and save it to a file, with a name ending with PEM suffix.
- On Scout Elias, select Security from main menu and then select Manage certificate, click Intermediate CA tab and then click Import button.
- Select the recently created intermediate CA file and click Open.
- Then click OK button to close the Manage certificate dialog.
- Save GlobalSign Code Signing Root R45 root CA certificate to a file in PEM format, and then load it:
- Open support.globalsign.com/ca-certificates/root-certificates/globalsign-root-certificates.
- Search for the GlobalSign Code Signing Root R45 section.
- Click View in Base64. Copy all the just expanded text and save it to a file, with a name ending with PEM suffix.
- On Scout Elias, select Security from main menu and then select Manage certificate.
- Click Trusted Root CA tab and then click Import button.
- Select the recently created root CA file and click Open.
- Then click OK button to close the Manage certificate dialog.
- Then, import the ThinPrint EPM package as you normally would, and when verifying the signature click Yes when the Elias ‒ Trust the Certificate dialog appears for ThinPrint packages. This will add ThinPrint Code Signing "leaf" certificate to Security→ Manage certificate→ Trusted Issuer list.
Installation
- Select the desired ThinPrint Client package in Scout Elias with Container→ Import Package (here the package for eLux 7).
- Select the desired file and click on Open.
The ThinPrint Client package appears under Available packages.
- Mark the ThinPrint Client package and click on the <== arrow to install it under Defined packages.
The ThinPrint Client package appears in the Defined packages column.