Device Authorization

Communication between the Virtual Appliance Client and the Virtual Appliance instance An instance is a collection of services and service groups that is associated with a customer. A customer's instance is created from an application template and is then deployed to a cloud or virtual server. requires an authorization code. When an authorization code is applied, the device receives an OAuth token, which enables the device to receive printer deployments.

The OAuth token can also allow end users to access the Self-service Portal and Release Portal without requiring sign in credentials. For more details, see Portal Security.

There are three ways to authorize a device:

  1. Include the authorization code in the installation scripts using a third-party application or a Group Policy Object (GPO) Group Policy Object (GPO) is a feature that controls the working environment of user accounts and computer accounts. Group Policy provides centralized management and configuration of operating systems, applications, and users' settings in an Active Directory environment. software.
  2. Provide the authorization code to the end user so they can enter the code when prompted.
  3. Sign into the Virtual Appliance Admin Console using an administrator account on the device.

Generate authorization code page

About Authorization Codes

When you generate an authorization code you have the following options for code expiration length:

  • 30 minutes.
  • 60 minutes.
  • 2 hours.
  • 6 hours.
  • 24 hours.
  • 48 hours.
  • No Expiration.

Once you generate a code, it displays in the Active Authorization Codes section in a table format with the following information:

  • Code — the generated code.
  • Time To Live — the code expiration length.
  • Expiration Date — the date and time the code expires.

The list clears authorization codes after they've expired.

Active authorization codes

Generate Authorization Code

  1. Open a web browser and sign in to the Admin Console.
  2. Navigate to Tools then Tokens then Authorized Devices or Tools then Authorized Devices depending on your permissions.
  3. Use the Code Expiration length drop-down to select the expiration time.

  4. Select Generate.

    Generate code option

Authorization Code and Client Deployment

The authorization code can be deployed during the Client installation to end user workstations using scripts. For more information on this option see the documentation on how to install the Client for the desired OS: Windows, Mac, Ubuntu Linux, and Red Hat. This method bypasses any end-user need to enter in the code.

End User Authorization

When an end user attempts to log in to the Self-service Portal on an unauthorized workstation, they are prompted to enter an authorization code.

By entering the correct code, the OAuth token is placed on the end user's workstation, and the name of the workstation displays in the Admin Console Active Devices section. If the device is deleted from the Active Devices list, it would need to be reauthorized again.

Autnorization Code Incorrect/Missing window.

Authorize via Admin Console Access

If an unauthorized device is used by someone with Admin access to the Virtual Appliance Admin Console, upon signing into the console, the device is authorized and is provided an OAuth token. The device displays on the Active Devices list and can be removed, if needed.