mobileFX Spartan RDP Guard
In This Topic
    Initial Configuration
    In This Topic

    Spartan setup package installs Spartan Service and Spartan UI on your server. You use the later for configuring the service but you can also configure the service using a plain text editor such as Notepad.

    Configuration is saved in a config.json file residing in the same folder with service executable Spartan.exe and looks like the image below:

    Copy Code
      "ALLOWED": [
      "DYNDNS": [
      "Interval_DynDNS_Resolve_Minutes": 5,
      "Interval_EventLog_Audit_Seconds": 5,
      "Max_Records_Attacks": 5000,
      "SSL_CA_File_PEM": "ssl/CA.pem",
      "SSL_Cert_File_PEM": "ssl/company_com.pem",
      "SSL_Disable_SSLv2": true,
      "SSL_Disable_SSLv3": true,
      "SSL_Disable_TLSv1": true,
      "SSL_Disable_TLSv1_1": true,
      "SSL_Disable_TLSv1_2": false,
      "SSL_Force_Secure": false,
      "SSL_Key_File_PEM": "ssl/company_com.key",
      "SSL_Key_Password": "TAjctd09v8PId2AyysFfqpbj5Tz6RX/UJhOoAavj2s=",
      "Server_AllowPublicAccess": false,
      "Server_Bind_IP": "",
      "Server_Bind_Port": 8443,
      "Server_BlockAttacksToSpartanService": true,
      "Server_Password": "TAjctd09v8PId2AyysFfi3zx3QIIe/dq/CAk1EmLv0="


    Setting Description
    ALLOWED An array of allowed IP addresses. It is highly recommended to add your own public IPv4 address here in order to avoid lock-out from your server.
    DYNDNS An array of dynamic dns domain names. Those are resolved in regular intervals into IPv4 IP addresses and added to ALLOWED list.
    Interval_DynDNS_Resolve_Minutes The resolve interval of DynDNS records in minutes.
    Interval_EventLog_Audit_Seconds The consolidation interval of instant Firewall rules into a single rule.
    Max_Records_Attacks The max attack records to download to the reporting views in Spartan UI. This limitation affects payload size and should be a reasonable number.
    SSL_CA_File_PEM Absolute path to a PEM certificate authority file.
    SSL_Cert_File_PEM Absolute path to a PEM certificate file.
    SSL_Key_File_PEM Absolute path to PEM certificate encrypted key file.
    SSL_Disable_SSLv2 Boolean, used to disable SSL v2 on WebSocket server.
    SSL_Disable_SSLv3 Boolean, used to disable SSL v3 on WebSocket server.
    SSL_Disable_TLSv1 Boolean, used to disable TLS v1 on WebSocket server.
    SSL_Disable_TLSv1_1 Boolean, used to disable TLS v1.1 on WebSocket server.
    SSL_Disable_TLSv1_2 Boolean, used to disable TLS v1.2 on WebSocket server.
    SSL_Force_Secure Boolean, used to force SSL/TLS security on WebSocket server.
    Server_AllowPublicAccess Boolean, if true Spartan service will self-exclude itself in Windows Firewall.
    Server_Bind_IP The IP address to bind the WebSocket server of the service, default is
    Server_Bind_Port The port to bind the WebSocket server of the service, the default is random.
    Server_BlockAttacksToSpartanService Boolean, when true Spartan service will block any IP address that fails to connect.
    Server_Password Encrypted password of Spartan server. The default password is password.
    SSL_Key_Password Encrypted password of private key file.


    Resetting Passwords

    All passwords in Spartan are encrypted and you cannot edit them in config.json directly.

    To reset Spartan administration password, delete the entry from config.json and restart the service. The password will reset to default "password".

    Please note, you must immediately use Spartan UI to set a new administration password and avoid using default password.

    When using Spartan UI to set passwords it is recommended you type them in Notepad and copy-paste them to Spartan Advanced Settings dialog.

    Passwords are immediately encrypted and applied as soon as you press the Apply or OK buttons, so make sure you type correctly to avoid lock-outs.