System Requirements and Install Notes - Reflection ZFE
Technical Note 2837
Last Reviewed 23-Feb-2017
Applies To
Reflection ZFE version 2.0 or higher
Summary

This technical note lists the minimum supported platforms and prerequisites for Reflection ZFE (including the administrative component, Host Access Management and Security Server).

Prerequisites

These prerequisites need to be met before you can successfully install Reflection ZFE:

  • Reflection ZFE requires Host Access Management and Security Server (MSS) for session management; you can use an existing MSS installation or a simple first-time installation. The Windows install program will install MSS, the ZFE session server, and documentation to a single machine. Different components can reside on different machines.

MSS uses activation files (activation.jaw) to enable product functionality. The Reflection ZFE MSS installation contains a Reflection ZFE activation file. You will need to provide an activation file if you intend to use an already installed or remote MSS server that has not been activated for use with Reflection ZFE. UTS support and the Terminal ID Manager also require separate activation files. You can read all about MSS activation files in the Host Access Management and Security Server Installation Guide at https://www.attachmate.com/documentation/mss-12-4/mss-installguide/data/bookinfo.htm.

  • Reflection ZFE requires a Java JDK version 8 or higher and MSS requires a Java JRE version 8 or higher. This Java requirement is met during installation, except for these platform exceptions:
    • For systems, such as AIX or Linux on System Z that require an IBM JDK, you can use the “nojdk” installer media, which does not include a bundled JDK.

If you decide to use the nojdk media option, note the following:

    • For the installation to start a Java executable must be found. If a Java executable cannot be found by the installer, then the INSTALL4J_JAVA_HOME environment variable can be set to refer to a Java installation’s bin directory.
    • When started, the installation program will automatically search for version-compatible JDKs on the system. If more than one JDK is found, a list is displayed from which you can choose. If only a JRE is found on the system, you can continue with the installation, but the Reflection ZFE server will not run correctly until you have updated the wrapper.java.command property located in sessionserver/container.conf to refer to a JDK installation.
  • Both Reflection ZFE and MSS require that the Java installation support unlimited strength encryption. More information can be found on the Java web site.
  • If necessary, you can use the environment variables named above and INSTALL4J_JAVA_HOME_OVERRIDE to specify a specific Java installation.
  • If you plan on using the IIS Reverse Proxy with Reflection ZFE, read Technical Note 2859 for prerequisites and configuration instructions.

Preparing to install

Reflection ZFE supports the TLS and SSH protocols to protect mission-critical data. To secure your passwords and other sensitive data, you should require browsers to use the HTTPS protocol. To configure a Reflection ZFE session to use TLS/SSL, you must first establish a ‘trust’ for the public certificate chain of the host you’re attempting to connect to. MSS centrally manages the trust store used by Reflection ZFE. By default, the Reflection ZFE session server fetches this trust store every time it attempts a connection.

For a successful installation you must have a valid certificate signed by a trusted CA and install it on the session server. The Reflection ZFE User Guide, https://www.attachmate.com/documentation/rzfe-2-1/rzfe-user/, has instructions on setting up secure connections between the browser and the Reflection ZFE session server, the Reflection ZFE session server and the host, and between the Reflection ZFE session server and MSS.

Ports used by Reflection ZFE

Configure your firewall to allow connections on the following TCP listening ports:

Component
Default Port Numbers
Reflection ZFE Session Server
7070 – HTTP
7443 – HTTPS

Reflection ZFE Components for MSS
7080 – HTTP
7444 – HTTPS

MSS
80 – HTTP
443 – HTTPS

Both the Reflection ZFE Session Server and MSS Administrative Server ports can be modified depending on your network needs. To modify the session server ports, see https://www.attachmate.com/documentation/rzfe-2-1/rzfe-user/data/b1e1gwe2.htm.

All requirements are the minimum required to successfully install Reflection ZFE

Supported Web Browsers

The only thing needed to access Reflection ZFE terminal emulation is a supported web browser. Reflection ZFE supports the following browsers:

  • Google Chrome 33+
  • Mozilla Firefox 27+
  • Microsoft Internet Explorer 11+

See Technical Note 2827 for information on performance issues when using Internet Explorer

  • Microsoft Edge
  • Apple iOS Safari 7+

MSS is platform-independent and supports any web browser using JRE 7 or later that supports JavaScript and Cascading Style Sheets (CSS).

Session Server Operating Systems

The Reflection ZFE session server supports the following 64-bit platforms:

  • Windows 2008 Server
  • Solaris 10 (SPARC)
  • Red Hat Enterprise Linux 6.x
  • SUSE Enterprise Linux 11.x
  • AIX 6.x

z/Linux (SUSE E11.x and RHEL 6.x) Installation

  1. If you installed from the Micro Focus download site, follow the procedures described in the download site instructions to start the Reflection ZFE setup program.
  2. Run the installation setup, and click Continue to proceed to the next screen.
  3. Complete the installation program and click Finish to complete the installation.

Installing on UNIX platforms

  • To successfully complete the installation, you must either install as ‘root’ or a user account with root privileges. If you are not ‘root’ or are not running as ‘root,’ then the install will be canceled. When the installation has successfully completed, the installed application can be started and managed by ‘root’ or someone running as ‘root’.
  • Elevated privileges are needed to open any application ports lower than 1024. If you use a lower port number for Reflection ZFE, then the application will not start unless you have system privileges to open low numbered ports.
  • You can use the chmod command to assign application privileges to users other than root.
Related Technical Notes
2838 Troubleshooting Reflection ZFE Connections
2869 Reflection ZFE - UTS Support with Management and Security Server
2884 Reflection ZFE 2.0.2 - New Features and Release Notes
2890 Reflection ZFE 2.1 - New Features and Release Notes

Did this technical note answer your question?

           



Need further help? For technical support, please contact Support.