Expedient Enterprise Workspace - Zoom Integration Overview Expedient Enterprise Workspace utilizes VMware Horizon virtual desktop technology. To provide a high-quality audio/video meeting experience for users running the Zoom client within a VDI desktop, Zoom provides VDI optimized releases of the Zoom software. This document outlines how to properly configure Zoom VDI integration with the Expedient Enterprise Workspace platform. The Zoom VDI integration requires the following: The VDI version of the Zoom client installed on the virtual desktop End users are running the desktop version of the Horizon client on Windows, Mac, Linux, or select thin client OS's The Zoom VMware Media plugin is installed on the end-users device alongside the Horizon client Download the software You can download the most recent version of the Zoom VDI client and plugin from the Zoom site linked below. Click on the version number under the VDI Release column, and that

Install CSE Software Prerequisite: Python 3.73 or greater, which can be found at python.org With the installation of Python,  python’s package manager, Pip,  is installed by default. Install and Verify CSE Enter these commands to install and verify CSE Install and Verify CSE $ pip3 install container-service-extension ... $ cse version CSE, Container Service Extension for VMware vCloud Director, version 2.5.0 Enable CSE in vCD-CLI The CLI and the container-service-extension must be installed on the machine running the commands and the profile located at ~/.vcd-cli/profiles.yaml must be updated to reflect the presence of the extension.  Additional details on this config are available at - https://vmware.github.io/container-service-extension/#tenant-installation   Example below... Profile Config File active: default extensions: - container_service_extension.client.cse profiles: For more information, see https://vmware.github.io/container-service-extension/cse3

Encryption Expedient's Cloud Object Storage platform leverages AES256 encryption methods to encrypt all data at rest. This configuration is enabled by default, requiring no action on your part. A shared encryption key is utilized across all data stored within the system. If desired, you may manually override the default encryption levels, providing a key of your own via the S3 protocol. Data is also encrypted in flight as all S3 API commands leverage HTTPS (TLS 1.2). This ensures that data remains secure while it is being transferred between a client system and the Cloud Object Storage platform. Regulatory Compliance The technology powering Expedient's Cloud Object Storage has achieved multiple regulatory certifications and compliance ratings. The platform is Common Criteria EAL2 certified as well as FIPS140-2 Level 1 validated. These attestitions involve a review and certifcation of the crypographic methodoligies utilized and are a 'gold standard' for

Login To Panorama Follow the steps in this article to login to Panorama: How To Access Multi-Cloud Firewall There are two ways to view the active users in GlobalProtect: View Active Users by Portal When a user navigates to the portal in a web browser they are authenticated and then given the option to download the GlobalProtect client. If you decide to set up Clientless Apps, they will appear in this area as well. Note that Clientless Apps are available to configure, but are not supported by Expedient. Click the Panorama drop down in the top left corner. Select your primary device (the device with the green icon). Click the Network Tab. Click on Portals under GlobalProtect If Clientless Apps are set up, there will be a link here to view the current users who are using these apps. Clicking on “Current Users” will display a popup window of

Encryption Encryption of data housed on the invidiaul vGateways will be determined by its hosting infrastructure. Within Expedient Enterprise Cloud, all SSD utilized for caching will leverage the underlying infrastructure to ensure data is encrypted at rest with AES256 algorithms. When deployed outside of EEC, responsibility of data at rest encryption lies with you or your infrastructure provider. vGateways optionally offer software encryption of the caching drive if the underlying infrastrcuture does not provide sufficienct encryption mechanisms. Utilizing software encryption on a vGateway may decrease its performance. Data is also encrypted before it leaves a local vGateway device and is uploaded to the Global File System with a unique key for your Portal. The same AES256 alogrithms are utilized as data is packaged and encrypted before the upload begins over an HTTPS (TLS 1.2) connection to the Portal and the back end storage. Metadata is further encrypted at rest

During the Expedient Delivery implementation of your service, you should have received information to set up your OneLogin account or been configured for Active Directory sync. Now you've logged in, but maybe you don't see all the expected services. OneLogin has a "company-specific" feature, allowing applications to be assigned to a particular company tab. If you are logged into OneLogin and cannot find the application you're looking for, change the tab selection from "Company" to "Everything." Select the "Company:" tab and select "Everything." See the images below:

On the  Virtual Datacenters dashboard screen, click the card of the virtual data center you want to explore, and under  Networking , select Security . Select a security service, and click Configure services . View the assigned tags from the Security Tags tab.  On the Security Tags tab, select the security tag for which you want to see assignments, and click the Edit   icon. Under the  Assign/Unassign VMs , you can see the list of virtual machines assigned to the security tag. Click Discard . View the assigned tags from the Security Groups tab.  Click the Grouping Objects tab, and click  Security Groups . Select a security group. From the list under  Include Members , you can see the security tag assigned to a security group.

Login into Operations CTRL - Monitoring (https://xxxxx.elastic.expedient.cloud:9243) Select the appropriate space. Select the Client space with the client name. If the "Select your space" screen does not appear then most likely dashboards have not been configured. Contact the OSC to setup dashboards for your account. If the "Default" is selected all default Elastic dashboards will be available, there are many. The "Expedient Client Home" Dashboard will appear with a list of Expedient Services and associated Dashboards. To return to this dashboard click the client name on the top center of the page. To navigate between spaces, click the square icon in the upper left corner to the right of the hamburger icon and the selection of spaces will appear. The space marked as "CL" will have the Expedient Client Dashboards. Other spaces may server other purposes. To view all available dashboards on any Elastic Space, click

During your implementation project with our Service Delivery team your Project Manager will provide you with a DR runbook. This will document the basic steps to failover any Expedient services you have subscribed to that include this option. We highly encourage you add any additional content to this document about specific applications or services you will need to plan for in the event of failover.  If you need a copy of the DR runbook Expedient has created for your environment you can simply open a ticket at support.expedient.com and our support team will provide you with a copy.

Remote Hands Support for Your Colocation Subscription At Expedient, we understand the importance of providing you with seamless, reliable, and hassle-free colocation services. As part of your subscription to our colocation service, you gain access to valuable remote hands support from our 24x7 Expedient Operations Support Center (OSC). This service is designed to ensure that your infrastructure operates smoothly, even when you're miles away. What Remote Hands Support Includes: Our standard remote hands support is a valuable inclusion with your subscription for a wide range of essential tasks. This service is offered at no extra charge for in-scope requests that are achievable within thirty (30) minutes. These services include: Visual Verification: Our experienced technicians can visually inspect device status, check cable positions, observe LED colors, and undertake similar troubleshooting efforts as requested by you. Console Port Access: In cases where a device becomes unreachable, we can connect

Service Overview Multi-Cloud Firewall is a network security platform that provides north-south firewall capability in multiple clouds all managed through a centralized management plane, enabling simpler and more consistent management of security policies. As a managed service, Expedient maintains the platform, provides alerting, and performs patching so you can focus on the security of your infrastructure. Clients have full access to view and create policies, create custom alerts, and set deploy policy updates to tailor the platform to their security posture. Service Features Basic Networking and Firewall Functionality IPv4/IPv6 VLAN Tagging NAT / NO-NAT Clustering / HA Failover FIPs Mode Routing - Static, Dynamic, and Policy based IPSec - Routed, Policy Based, and Multiple VPN Source IPs Built-in Security DNS Attack Prevention Threat Prevision (Exploit, Malware, and C2) URL Filtering (Maclicious Site & Phishing) Dashboard for management and monitoring of multiple firewalls 24x7x365 support for alerting and troubleshooting Default Deployment

Service Overview Expedient Colocation enables clients to host their physical hardware in hardened, resilient data centers staffed 24x7x365 across the United States. Expedient manages the power distribution, cooling, rack placement and floor space in each of our 14 data centers. Clients still have full access to their hardware at any time and can submit tickets to grant access to vendor support for break/fix. Service Features Metered or circuit based power Multiple rack and cage options Cages Traditional cage with available options: Available options: Roof Under floor Biometric security Slimline Cage A cage only slightly larger than the racks within to provide an additional layer of physical security for critical IT assets Available options: Roof Under floor Biometric security Full rack Half rack (not available in cages) Multiple power feeds A+B circuits to rack Multiple public utility feeds Redundant UPS (See Facility Specific Information links for per DC detail

Overview Description This informational document is intended to guide an Expedient client who subscribes to Host-to-Host Virtual Server Replication through the process of initial installation and configuration of the underlying products used to deliver this Expedient service. Underlying Products Zerto Virtual Manager (ZVM) is the management service for the Zerto Virtual Replication (ZVR) platform, which is an integral part of Expedient's Host-to-Host Virtual Server Replication service. The ZVM is a Linux-based application that provides installation, management, and orchestration services for Zerto and the corresponding Virtual Replication Appliances (VRA). ZVM is also responsible for site pairing and acts as a management interface to the virtual hypervisor environment. Preconditions This informational document assumes the following preconditions: An active VPN tunnel or MAN connection with bidirectional access to the protected Zerto Virtual Manager (ZVM) site and ZVM replication site. Zerto Replications Appliances (ZRAs) have been established, and

Once the VCD-CLI and CSE extensions are installed Clusters can be created and managed via the commandline.  Once the cluster has been deployed it can be accessed by copying the file located at /etc/kubernetes/admin.conf from the master node to ~/.kube/config on the local machine.  Additional details and description are available at - https://vmware.github.io/container-service-extension/#using-the-container-service and a sample Cluster creation command is below. Cluster Creation Command vcd cse cluster create --nodes 2 --cpu 2 --memory 4096 --network cse-cluster- test -151- local --storage-profile 151-Storage --template ubuntu-16.04 -- ssh -key ~/. ssh /id_rsa .pub -- enable -nfs clustername Switches --nodes The number of nodes to deploy.  This count does not include the master node so the total vApp will be one VM larger than specified --cpu The number of CPU cores to assign to each node *By

Access the Admin Console from the following URLs: Pittsburgh acm-cvportal.expedient.com/adminconsole Indianapolis: 701-cvportal.expedient.com/adminconsole Phoenix: phx-cvportal.expedient.com/adminconsole Enter your provided credentials and press Continue . This document will explain and outline the steps to successfully restore files from a server receiving Windows File System Agent backups using the Commvault Admin Console. 1. Select "servers" from the column on the left to display all protected servers. 2. Navigate to the server you wish to restore from. 3. Under the Actions column click the and select "Restore" 1. Select the subclient you wish to restore from. The default/standard subclient is named "default" 2. Click "select content" 1. Select what date you want to perform the restore from. Default is most recent. 2. To restore from an earlier date, click the drop-down arrow. 1. Navigate to and select the file/folder you wish