MindLink Mobile Management Center


Configuration Sections

The MindLink Management Center will load with the logging configuration as its default page. The user can navigate through different configuration settings by using the navigation tree , which includes the following configuration sections:

  • Licence
  • Logging
  • General
  • Add-Ins
  • Lync/Skype for Business
  • Active Directory
  • Exchange
  • Network
  • Advanced
  • Feature
    • MindLink Mobile
      • Android
      • Apple
      • Server Pooling
      • Policies


Licence

The licence page ensures the products you are using are firstly; supported by MindLink and secondly; that only the correct products (as stated by contract) are in use.

Opening the license tab, you are given the ability to browse for a file. This will be the file you received within the correspondence with your account manager.

Click the Browse for license file button which will open file explorer. Navigate to your license file. MLM

Click the Browse for license file button which will open file explorer. Navigate to your license file. Selecting a valid license file will show similar details to the corresponding management center image below.

MLM - License Holder: This field specifies the Company name the license is issued to and also the product owner at the time of purchase.

  • Expiry date: The date the product expires. At this time (grace period built in) the product will cease to function.

  • Details: This field contains the product/s that the license has been issued for. MindLink will not run with an incorrect product license (a single license can be issued for multiple products).

The system periodically checks the number of users who could log on and starts rejecting new logons if it sees that the number of hypothetical users is larger than the licensed capacity.

If a license reaches expiry the following message will appear. Please contact your account manage to receive a current license within contract renewal. MLM

If a license is issued for a different product to the one you are attempting to run. The following message will appear stating the product this license is valid for. Please contact your account manager to discuss increasing your subscribed products.


Logging

The logging section enables the user to configure the logging level as well as the log file location for the Connector Service.

Please note that logging on the Connector Service is performed using the Microsoft Enterprise Library Logging Application Block. MLM

By default logging is configured as follows:

  • Error level - Error class events
  • Warning level - Warning class events (Recommended)
  • Info level - Info class events
  • Verbose level - All class events

Logging Configuration

You can Configure the Connector service logging level and log file location by Clicking on the Browse button will let you find an absolute path to a new log file location, or you can manually edit the field to a path relative to the Connector Service install location.

The account used to run the Connector Service must have write access to the install location of the product in order to log to the rolling log file. The file can by default be found at %ProgramFiles%\MindLink Software\MindLink Application\ConnectorService\Logs\Connector.log


General

The General section lets the user configure the general settings that will be applied to the Connector Service. MLM

Information service port: The port number used when behind a load-balancer to provide a service heart-beat.To allow collocation, Default Ports are as below and can be tested eg http://{server}:9007/Connector/InfoService/Status

  • MindLink API = 9006
  • MindLink Anywhere = 9007
  • MindLink SharePoint 9008
  • MindLink Mobile = 9009

File Transfer

Maximum concurrent downloads: The maximum number of allowed concurrent file download requests.

If an attempt is made to download a file when the number of active file downloads to the server is equal to the number specified, the download will fail with an error indicating that the server limit is currently exceeded and to try again later.

Maximum concurrent uploads: The maximum number of allowed concurrent file upload requests.

If an attempt is made to upload a file when the number of active file uploads to the server is equal to the number specified, the upload will fail with an error indicating that the server limit is currently exceeded and to try again later.

Maximum file size for file uploads: If the configured connector supports file posting, the maximum size of files in kilobytes allowed to be uploaded.

If an attempt is made to upload a file that is larger than the specified size, the server will return an error indicating that the file is too large to upload.

Features

MLM Features

Enable instant messaging: When set, allows connected clients to use instant messaging.

When not checked, user presence will not be published, instant messaging will be disabled, and the client will be limited to group messaging functionality. Any client that exposes instant messaging functionality when instant messaging is disabled will receive failure notifications from the server when an attempt is made to use such functionality.

Enable group chat: When set, allows connected clients to use group chat.

When not checked, group chat preferences are not loaded and users will not see any groups or chat rooms to which they are subscribed in their contacts list nor will they be able to search for and add groups.

Allow user to disable instant messaging When set, allows users to specify whether they want to log on with or without the instant messaging capability enabled on their web or mobile client.

When not checked, users will not be able to choose to enable/disable instant messaging upon login and the setting will default to the configuration in the management tool .

Allow user to disable group chat When set, allows users to specify whether they want to log on with or without the group chat capability enabled on their web or mobile client.

When not checked, users will not be able to choose to enable/disable group chat upon login and the setting will default to the configuration in the management tool .

Enable file transfers in 1-1 conversations - Allows users to send between one another

File transfer allows users to send messages in IM conversations. This includes both images and text files.

Message Constraints

Message Constraints

Maximum message length: The number of characters that a single message can include.

If an attempt is made to send a message that is longer than the specified length, the message will be automatically converted to a story instead.

Maximum story length: The maximum number of characters that a single story can include.

If an attempt is made to send a story that is longer than the specified length the server will not send the story and will return an error indicating that the story exceeded the allowed story length. The maximum story length must be longer than the maximum message length


Add-Ins

In this section the user can configure Group Chat add-ins across MindLink Anywhere and Tablet Platforms. Add-in page

  • When set, Group Chat add-ins will be displayed within compatible clients. When false, any configured client add-ins will not be displayed for any chat room.

  • MindLink Anywhere and MindLink mobile(on tablet devices)

Rewrite rules for Add-ins:

  • A set of key/value pairs that describe the client add-in proxy rules that should be applied to client add-in URLs.

See Section 5 for detailed instructions on setting up Group Chat Add-ins.


Lync/Skype for Business

The Adaptor section manages the selection of the underlying chat system to which to connect and the infrastructure DNS servers that define the chosen platform. Lync/SfB

Server Version: Select the chat platform version.

Auto Provisioning Server Information: (Lync 2013/SFB Only) Enable the auto detection of the Front End Server. This will allow the server to detect any server changes within the Topology and auto configure the new servers. This requires Lync Core Components to be installed

Auto Provisioning Application ID: (Lync 2013/SFB Only) Enter the Application ID of the trusted application on the Front End.

Local Server Name: Manually enter the FQDN of the local machine

Next hop connection

Server Name: Manually enter the FQDN of the OCS/Lync/SFB front end or pool server.

Trusted Application Server

Server/Listen Ports: The default communication port for OCS/Lync/SFB used by the Front End Server to listen on when using trusted authentication.To allow Collocation the default ports are as below :

  • MindLink API => 4096
  • MindLink Anywhere => 4097
  • MindLink SharePoint => 4098
  • MindLinkMobile => 4099

Platform Certificate: The certificate to use for establishing an MTLS connection with the OCS/Lync server.

Persistent Chat

Enable Group Chat SDK Logging: Enabled by developers to debug SDK Issues on OCS 2007

Auto Provision Group Chat Information: Automatic discovery of the lookup address for querying Group Chat Lync 2013 only. Use this option to look at multiple chat pools

Lookup Server Address : Manually enter the lookup address for querying Group Chat. This is the address created upon activation, , use Get-csPersistentChatEndpoint to identify.

Connect to Multiple Persistent Chat Pools Multiple Persistent Chat Pools

Users can connect to multiple persistent chat pools. This allows users to join any chatrooms that are in the located on any of the specified persistent chat pools

Explicit

Explicit conections involve specifying specific chat pools in the management tool. Only users within those specified persistent chat pools can login. A single chatpool can be specified in the Default Persistent Chat pool endpoint address field. Multiple chat pools are specified by clicking the Connect to multiple Persistent Chat pools checkbox. Entries added in the table can be removed by pressing the Delete key. Multiple Persistent Chat Pools

Auto provision

Auto provisioned connections allow users to login as any user located on the configured persistent chat pools on the server. The user does not need to specify any of the configured chat pools to login as users located on them.

Troubleshooting

Use untrusted connection: To Debug the communication protocol and transport mechanism during debug mode.

Disable transport: The transport type between the Connector service and the OCS pool e.g. TLS or TCP during debug mode.

Authentication Protocol: Domain protocol set to either NTLM or Kerberos.

Conversation History

Conversation History: Enable conversation history saving and loading.

Preferences

Preferences: Sets the file repository for saving local preferences.

Private File Transfers

Private file transfrer cache - Specified direcory where private file transfers cache folders are kept

Sessions

Session timeout: This sets the timeout for MindLink Anywhere. The MindLink client will be set to an idle/away status after being disconected from the network after the configured time has elapsed.


Active Directory

Message Constraints

LDAP Connections

Enable Auto discovery of Global Catalogue

OCS/Lync/ Forest Name: Select the relevant forest name in which platform is installed and base for AD operations for users.

Server Name: Manually enter the FQDN of the LDAP server is Auto-Discover is not detecting correctly.

Use Default Port: Default port number of the Global Catalog used to look-up user SIP addresses from Active Directory i.e. 3268.

Port Number: To enter a custom port number to look-up user SIP addresses from Active Directory.

Active Directory Time-out: Specify the time interval in seconds for Active Directory queries.

Use Default Naming Context: Auto-discover the name of the root context of the directory. Use this is membership is not restricted.

Naming Context: Manually enter full OU path if users are to be restricted to this AD OU object

Authentication

Search Filter: Must be configured, responsible for retrieving sip address for a user via Active Directory.

Default user domain: The default domain that will be used if a user does log specify a domain in their user name when logging on.

Restrict usage to members of an AD group. Restrict access to Membersof this AD Group to be able to log in

Group Name: Select the Group from the dropdown (start typing the name to dynamically list) if users are to be restricted to this AD Group.


Exchange

Exchange tab

As of 17.7, administrators can now explicitly configure how the exchange server is resolved. This can be done automatically by ticking the Autodiscover Exchange Web Services box or the URL can manually be entered in the box below. Additionally, a list of well-known URLs can be added where the management centre will look to resolve the exchange server name based off of those URLs


Network

Network tab The network tab allows HTTP Proxy settings to be configured.


Advanced

Advanced tab

You can add debug keys (such as configuring Exchange Online or enable pre-release features) and you can also override any other configuration value. Examples of a couple custom setting keys include:

  • Configuration key: connector.uma.serverversion Value: Unknown
  • Configuration key: global.message.maxlength Value: 200

Notes when using custom settings:

  • Custom key/value

  • Invalid keys cause the host to crash


This section manages MindLink Mobile settings and provides general information with regard to the MindLink Mobile Client set up.

MindLink Mobile General Settings

MLM

Mobile Server Global Settings

General

Token Issuing Certificate Specify a token issuing certificate to manage user authentication.

Server

Hostname External DNS of the Mobile Server FQDN. This matches the server address in the client app.

Socket server

Port The port on which the Connector service will listen on for incoming MindLink Mobile client connections.

Disable security: When enabled, the socket service is NOT protected by TLS

Certificate: Specifies the certificatie to use over TLS.

Host identification web service

Port: Specifies the port to use for the identification service and optionally all other HTTP-based services; port used to initiate a connection

SSL option Secure the lookup connection

SSL certificate A valid certificate must be selected for the service to provide for HTTPS connections.

Session web service

For both iOS and Android, the client is configured to connect to the Web Service URL. For example, for a Web Service running on '7074' (as shown in the Web Service Port), the client should be configured as the following example shows:

http://{servername}:7074 If there is a proxy in front of the service, then the client should be configured with the proxy URL.

Port: When enabled, use a different port for session web services; Option to use a different HTTP port for File Transfers

File Transfer Port File Transfer Port number

Enable Secure file transfer Enable HTTPS File Transfers

SSL Certificate Select the certificate to be used to secure File Transfers

Session ServiceProxy Base URL: Base URL for session services external proxy connections

File Download External Proxy Base URL: Base URL for file transfer external proxy connections

Session Expiration

Enable session expiration: Enable long session timeouts. This is the connection between the Mobile server and SFB/Lync

Long session time (days): Timeout setting, in Days

For both iOS and Android, the client is configured to connect to the Web Service URL.

For example, for a Web Service running on '7074' (as shown in the Web Service Port), the client should be configured as the following example shows:

http://{servername}:7074

If there is a proxy in front of the service, then the client should be configured with the proxy URL.


Android Settings

MLM

Android devices

Allow Android device connections: The setting that allows Android devices to connect to the MindLink Mobile server.

Firebase Cloud Messaging

FCM URL: Specifies the URL at which to reach the Firebased Cloud messaging platform for Push Notifications Leave this as default unless there is an outbound proxy.


Apple Settings

The following settings need to be configured for the MindLink Mobile for iPhone implementation.

MLM

Apple Devices

Allow Apple Device Connections: The setting that allows iOS devices to connect to the MindLink Mobile server.

Apple Push Notification Service (APNS)

Disable APNS: Tick this box to prevent iOS devices from using out-of-app push notificaitons, such as those received on the device's lock screen.

APNS Host: The Apple Push Notification Settings host server address.

APNS Port: Outbound port number for the APNS host, default 2195.

APNS Certificate: The certificate assigned to the APNS host. The certificate will be provided by MindLink along with the installers. The certificate needs to be installed first in the Computer Personal store so it can be selected from the MindLink Management Center.

Network : HTTP Connectivity: This is a special connectivity mode designed for use with iOS and MobileIron. It allows the 7072 TLS connection to be replaced by a HTTPS connection for use when Tunneling supports only HTTP/S traffic and TLS/Websocket is not available.


Server Pooling

To enhance resiliency for your MindLink Mobile Enterprise implementation. The Server Pooling feature can be utilised. Please note that the Server Pooling feature requires access to a database instance setup on either Microsoft SQL Server versions 2012, 2014 or 2016. In the Management Center for MindLink Mobile, there is a tab within the feature MindLink Mobile - that enables server pooling. MLM

Enable server pooling: This is enable server pooling to be utilised, this will require a SQL database

Database connection string: - Configure the connection string with the following syntax:

Server=FQDN SQL server; Initial Catalogue=SQL catalogue; Integrated Security=SSPI

or if you wish to use a Failover SQL partner you could use the following syntax :

Server=FQDN SQL server; Failover Partner=FQDN SQL partner; Initial Catalogue=SQL catalogue; Integrated Security=SSPI

Override credentials for database operation: If the user running the management tool does not have sufficient SQL permissions, then these can be overridden by a set of credentials that have sufficient permission by your SQL administrator.

Test the connection: To check the validity of a relevant SQL database connection string and the override credentials, select 'Test'. The following steps may differ and as such are outlined in the two scenarios listed below.


Policies

MLM

Disable Copy and Paste: Ticking this option will disable the ability to use the native copy and paste functionality within the Mindlink Mobile Application. Applying this option will disable copying content from within the application, however, you will still be able to paste from an external source into the chat.

Disable Group/Sender name in notificaitons: Ticking this option will hide the name of the message sender in out-of-app notifications, such as the ones received on the device's lock screen. When this setting is ticked the 'Disable message preview in notifications' setting below is automatically ticked, too.

Disable message preview in notifications: Ticking this option will hide the preview of received messages in out-of-app notifications, such as the ones received on the phone's lock screen. The sender's name will still show unless the above policy is also ticked.