Orion Knowledge Base

Back to Orionlaw.com »

How can we help you?

Popular Keywords

Categories

No Record Found

View All Results
Support Home Server and Workstation Preparation and Installation of iOrion

Preparation and Installation of iOrion

Print this article

Preparation and Installation of iOrion

Installing iOrion for your firm is a fairly easy process but requires a little planning.  While most of the settings are controlled by Orion’s installation staff, there are a few components that require the assistance of the firm’s networking team.  This guide serves as an excellent overview for preparing and installing iOrion in the firm’s environment.  After reviewing, if you have any questions, please contact our support desk.  This document is not intended to serve as end-user training of iOrion.  We will be happy to arrange for training and/or a video webinar.

Requirements

  • The Firm must be running Orion 4.5.  If the firm is not currently running 4.5, please contact Orion for scheduling.
  • Installation of the Orion Application Server.  This is provided with Orion 4.5 by Orion’s installation staff.
  • Creation of two DNS entries.  The firm must create a DNS entry to be used both external and internal to the firm.
  • A Firewall Port Forwarding traffic on port 8099 to the Orion Server

How it All Works

iOrion communicates directly with the firms Orion server in real-time.  It requires a constant connection to the database and a constant internet connection.   The Orion Application Service is responsible for transmitting and receiving the connection and translating it for communication with the database.  The application service will be set to automatically start and must be a required service on the server.  The transmission occurs over port 8099 and if traversing a firewall, a firewall port forwarding rule is required.  For security purposes, the connection information is fully encrypted and requires high level authentication.  iOrion must be configured on each device.  IOrion is available directly from the App Store and requires some setup in order to connect to the database.  This should occur with simple DNS names the firm must configure.  Below is an example picture of how the connection works. 

 firewall

Creation of DNS Records

Since iOrion communicates directly with the firm’s in-house server, it needs to be configured with connection information.  This means an IP address is necessary for correct resolution.  We highly recommend the firm create a DNS record to make configuring iOrion as quick and easy as possible.  Two DNS records should be created, one for outside the organization and one for inside the organization.  IP address resolution is different when the users are located inside the organization (such as the firm’s Wi-Fi) versus outside the organization.  Users should be able to use iOrion when inside the office as well as outside.  We highly recommend you make both DNS names the same.   Failure to do so will require two different profiles (saved connections in iOrion) that the user must switch between.

Using the above picture as an example, we would create two different DNS records. 

DNS record with firms DNS Registration company that points to the external Firewall IP address

A Record iOrion.orionlaw.com 74.10.10.10

DNS record with firm’s internal DNS server that points to internal Orion server

A Record iOrionlaw.com 192.168.0.10

The firm’s networking staff should be able to create these records.  Orion cannot do them for you, although we can help if any assistance is needed.  Please consult Orion as necessary.  Note, it can take 48 hours for DNS records to populate. 

Firewall Rules

As mentioned above, iOrion communicates over port 8099.  This means port 8099 must be opened (bi-directional) on the firewall for the firm (as well as any soft firewall such as the Windows Firewall).  Please make the necessary adjustments.  Security of iOrion will be addressed later in this document.

Testing Connection Information

We highly recommend you test the connectivity of the application server before deploying any devices.  You can test the connection using telnet, a common tool available for Microsoft.

To test the connection (attempt from an external and internal computer separately),

  1. Open the Command Prompt (Start, Run, CMD, enter).
  2. Type in without the quotes, “Telnet iOrion.yourlawfirm.com 8099)”
  3. If the connection is refused, review the firewall rules and verify the Orion Application Service is running.  Double check your DNS entries.
  4. If the connection is successful, you will receive a blank screen like below (note, there is no response from the server for security purposes).

 

Configuring Users

iOrion is configured on a per user basis.  User accounts must be configured as a licensed iOrion user thourgh User Setup in Orion Admin.  The amount of licensed users is available in the System Settings along with other license information. 

To configure a user, pull up the selected user’s account and go to the Administration tab.  Check the box for iOrion User.  Enable/Disable the Enforce of User Passcode and Enforce Auto-Log-Out as necessary (description below).  Insert the username and password.  Note, both the User Name and Password are case sensitive. 

firewall

 There are two optional settings you may choose:

  • Enforce Use of Passcode – When checked, this forces users to choose a PIN number to open iOrion.  This PIN number is specific to the user and created when setting up the profile of iOrion.  This setting is designed for firms to help protect sensitive data if the iPad/iPhone is ever lost or stolen.
  • Enforce Auto Logout – When checked, iOrion will close after a period of inactivity.  Users are able to switch between different applications by design.  By forcing an Auto Logout, you can help protect sensitive data if the iPad/iPhone is ever lost or stolen, especially when used with the Passcode.

Configuring iOrion

With all the prerequisites met, you can now download and configure iOrion.  iOrion is available from the app store – simply perform a search and download to install it.  Upon launching the App, the user will be presented with a connection screen.  This profile screen contains the connection information.  If the firm is using multiple databases, the user can create multiple connections.

firewall5

When configuring the profile screen, you must fill out the following,

  • Description – Any Descriptive field, such as “Firm Name Data”
  • Passcode – Unique PIN number for the user.  This field cannot be reset and is required if “Enforce Use of Passcode” is checked in Orion Administration.  If the user forgets his PIN, you must delete the connection profile and recreate it.
  • Server IP – This should be the IP address or DNS name that resolves to the Orion server.
  • Server Port – This should be set to 8099 unless otherwise directed by Orion personnel.
  • Orion User – This must match the Remote Access User Name field.  This is case sensitive.
  • Orion Password – This must match the Remote Access Password field.  This is case sensitive.

The user should now be able to login and connect to the database.

Security of iOrion

Orion recognizes that security is very important to firms due to the confidentiality required by the legal industry.  Orion has built in numerous controls into both the app and underlying communication process to help keep the firms data secure.  Below highlights the security features with iOrion. 

  • No data is stored on the local device other than the connection information.  If the device is stolen, hackers cannot retrieve any information other than the connection data (which is also encrypted) from the device.  No client matter numbers, names or other items are saved locally.
  • The device communicates directly with the Orion Server.  No third party website or broker computer is used to facilitate communication.
  • Transmission data is fully encrypted to 256/bit/binary AES (Advanced Encryption Service)
  • The transmission uses port 8099, which is not a typical port used by hackers or by other services.  This significantly reduces any hacking attempts made by third parties.
  • There is no response by the application server over port 8099.  If hackers attempt to “probe” the firewall for open ports, it receives no signal.  When no response is made, the service remains hidden to potential attacks.
  • The requirement of Passcodes by users to launch iOrion.  This is a unique code that can only be set and known by the end user.
  • Auto-Logout policy further reduces the chance of data being seen or used if the device is stolen or misplaced.
  • Connection data is fully controlled by the Server, providing the firm the opportunity to revoke the device credentials quickly if the device is stolen or misplaced. 

While data security is always evolving, the above technologies represent the best strategies currently available to thwart data stealing.  As warranted, Orion will continue to enhance and refine further security and protection features. 

 

Questions? 

If you still have questions, we can help.  Feel free to contact Orion Support today at support@orionlaw.com or 1-800-305-5867

                                                                                                           

Was this article helpful?
YesNo

Related Questions:

Scroll to Top